Cyber Security I. Netzplan: Unterschied zwischen den Versionen

Aus Xinux Wiki
Zur Navigation springen Zur Suche springen
 
(33 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt)
Zeile 1: Zeile 1:
{{#drawio:cybersec-1-plan}}
+
==Übersicht==
 +
{{#drawio:cybersec-1.1-plan}}
  
{{#drawio:cybersec-2-plan}}
+
==IPv4==
 +
*'''gateway 192.168.Y.254'''
 +
*'''route add -net 10.88.0.0/16 192.168.Y.88'''
 +
*'''nameserver 1.1.1.1'''
 +
*'''externe Domain it2XX.xinmen.de'''
 +
*'''interne Domain sec-labs.de'''
 +
{| class="wikitable"
 +
! Teilnehmer !! Labor !! Haupt-IP !! Zweite-IP !! INSIDE !! SERVER !! DMZ
 +
|-
 +
| TN01 || it201 || 192.168.Y.201 || 192.168.Y.221 || 172.17.201.0/24 || 10.0.10.0/24 || 10.88.201.0/24
 +
|-
 +
| TN02 || it202 || 192.168.Y.202 || 192.168.Y.222 || 172.17.202.0/24 || 10.0.10.0/24 || 10.88.202.0/24
 +
|-
 +
| TN03 || it203 || 192.168.Y.203 || 192.168.Y.223 || 172.17.203.0/24 || 10.0.10.0/24 || 10.88.203.0/24
 +
|-
 +
| TN04 || it204 || 192.168.Y.204 || 192.168.Y.224 || 172.17.204.0/24 || 10.0.10.0/24 || 10.88.204.0/24
 +
|-
 +
| TN05 || it205 || 192.168.Y.205 || 192.168.Y.225 || 172.17.205.0/24 || 10.0.10.0/24 || 10.88.205.0/24
 +
|-
 +
| TN06 || it206 || 192.168.Y.206 || 192.168.Y.226 || 172.17.206.0/24 || 10.0.10.0/24 || 10.88.206.0/24
 +
|-
 +
| TN07 || it207 || 192.168.Y.207 || 192.168.Y.227 || 172.17.207.0/24 || 10.0.10.0/24 || 10.88.207.0/24
 +
|-
 +
| TN08 || it208 || 192.168.Y.208 || 192.168.Y.228 || 172.17.208.0/24 || 10.0.10.0/24 || 10.88.208.0/24
 +
|-
 +
| TN09 || it209 || 192.168.Y.209 || 192.168.Y.229 || 172.17.209.0/24 || 10.0.10.0/24 || 10.88.209.0/24
 +
|-
 +
| TN10 || it210 || 192.168.Y.210 || 192.168.Y.230 || 172.17.210.0/24 || 10.0.10.0/24 || 10.88.210.0/24
 +
|-
 +
| TN11 || it211 || 192.168.Y.211 || 192.168.Y.231 || 172.17.211.0/24 || 10.0.10.0/24 || 10.88.211.0/24
 +
|-
 +
| TN12 || it212 || 192.168.Y.212 || 192.168.Y.232 || 172.17.212.0/24 || 10.0.10.0/24 || 10.88.212.0/24
 +
|-
 +
| TN13 || it213 || 192.168.Y.213 || 192.168.Y.233 || 172.17.213.0/24 || 10.0.10.0/24 || 10.88.213.0/24
 +
|-
 +
| TN14 || it214 || 192.168.Y.214 || 192.168.Y.234 || 172.17.214.0/24 || 10.0.10.0/24 || 10.88.214.0/24
 +
|}
 +
 
 +
=Weiteres=
 +
;Offizielle Zertifikate
 +
*https://web.samogo.de/certs/
 +
;drawio rpm runterladen und installieren
 +
*https://github.com/jgraph/drawio-desktop/releases/tag/v24.7.17
 +
 
 +
=Netzplan=
 +
*wget https://xinux.de/downloads/linuggs.de/cybersec1.drawio.svg
 +
=Wie passe ich einen Debian/Ubuntu Rechner an=
 +
'''Beispiel'''
 +
;Resolver
 +
*cat /etc/resolv.conf
 +
nameserver 78.47.133.194
 +
search it2xx.xinmen.de
 +
;Netzwerk
 +
*cat /etc/network/interfaces
 +
auto enp0s3
 +
iface enp0s3 inet static
 +
  address 10.88.2xx.2/24
 +
  gateway 172.26.55.1
 +
;Hostnamen setzen
 +
*hostnamectl set-hostname www.it2xx.xinmen.de
 +
;Lokale Hostnamensauflösung
 +
*cat /etc/hosts
 +
127.0.0.1 localhost.localdomain localhost
 +
::1 localhost6.localdomain6 localhost6
 +
'''127.0.0.1    www.it2xx.xinmen.de www'''
 +
# The following lines are desirable for IPv6 capable hosts
 +
::1    localhost ip6-localhost ip6-loopback
 +
fe00::0 ip6-localnet
 +
ff02::1 ip6-allnodes
 +
ff02::2 ip6-allrouters
 +
ff02::3 ip6-allhosts
 +
 
 +
=Portforwarding=
 +
*192.168.12.34:9923 -> 172.26.55.2:22
 +
*192.168.12.34:9924 -> 172.26.53.52:22

Aktuelle Version vom 14. Februar 2026, 14:15 Uhr

Übersicht

IPv4

  • gateway 192.168.Y.254
  • route add -net 10.88.0.0/16 192.168.Y.88
  • nameserver 1.1.1.1
  • externe Domain it2XX.xinmen.de
  • interne Domain sec-labs.de
Teilnehmer Labor Haupt-IP Zweite-IP INSIDE SERVER DMZ
TN01 it201 192.168.Y.201 192.168.Y.221 172.17.201.0/24 10.0.10.0/24 10.88.201.0/24
TN02 it202 192.168.Y.202 192.168.Y.222 172.17.202.0/24 10.0.10.0/24 10.88.202.0/24
TN03 it203 192.168.Y.203 192.168.Y.223 172.17.203.0/24 10.0.10.0/24 10.88.203.0/24
TN04 it204 192.168.Y.204 192.168.Y.224 172.17.204.0/24 10.0.10.0/24 10.88.204.0/24
TN05 it205 192.168.Y.205 192.168.Y.225 172.17.205.0/24 10.0.10.0/24 10.88.205.0/24
TN06 it206 192.168.Y.206 192.168.Y.226 172.17.206.0/24 10.0.10.0/24 10.88.206.0/24
TN07 it207 192.168.Y.207 192.168.Y.227 172.17.207.0/24 10.0.10.0/24 10.88.207.0/24
TN08 it208 192.168.Y.208 192.168.Y.228 172.17.208.0/24 10.0.10.0/24 10.88.208.0/24
TN09 it209 192.168.Y.209 192.168.Y.229 172.17.209.0/24 10.0.10.0/24 10.88.209.0/24
TN10 it210 192.168.Y.210 192.168.Y.230 172.17.210.0/24 10.0.10.0/24 10.88.210.0/24
TN11 it211 192.168.Y.211 192.168.Y.231 172.17.211.0/24 10.0.10.0/24 10.88.211.0/24
TN12 it212 192.168.Y.212 192.168.Y.232 172.17.212.0/24 10.0.10.0/24 10.88.212.0/24
TN13 it213 192.168.Y.213 192.168.Y.233 172.17.213.0/24 10.0.10.0/24 10.88.213.0/24
TN14 it214 192.168.Y.214 192.168.Y.234 172.17.214.0/24 10.0.10.0/24 10.88.214.0/24

Weiteres

Offizielle Zertifikate
drawio rpm runterladen und installieren

Netzplan

Wie passe ich einen Debian/Ubuntu Rechner an

Beispiel

Resolver
  • cat /etc/resolv.conf
nameserver 78.47.133.194
search it2xx.xinmen.de
Netzwerk
  • cat /etc/network/interfaces
auto enp0s3
iface enp0s3 inet static
 address 10.88.2xx.2/24
 gateway 172.26.55.1
Hostnamen setzen
  • hostnamectl set-hostname www.it2xx.xinmen.de
Lokale Hostnamensauflösung
  • cat /etc/hosts
127.0.0.1	localhost.localdomain	localhost
::1		localhost6.localdomain6	localhost6
127.0.0.1    www.it2xx.xinmen.de www
# The following lines are desirable for IPv6 capable hosts
::1     localhost ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
ff02::3 ip6-allhosts

Portforwarding

  • 192.168.12.34:9923 -> 172.26.55.2:22
  • 192.168.12.34:9924 -> 172.26.53.52:22
Abgerufen von „http://wiki.ixheim.de/index.php?title=Cyber_Security_I._Netzplan&oldid=66882