Cyber Security I. Netzplan: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(→IPv4) |
|||
| (25 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt) | |||
| Zeile 1: | Zeile 1: | ||
| − | + | ==Übersicht== | |
{{#drawio:cybersec-1.1-plan}} | {{#drawio:cybersec-1.1-plan}} | ||
==IPv4== | ==IPv4== | ||
*'''gateway 192.168.Y.254''' | *'''gateway 192.168.Y.254''' | ||
| − | *'''nameserver | + | *'''route add -net 10.88.0.0/16 192.168.Y.88''' |
| − | *'''externe Domain | + | *'''nameserver 1.1.1.1''' |
| − | *'''interne Domain | + | *'''externe Domain it2XX.xinmen.de''' |
| + | *'''interne Domain sec-labs.de''' | ||
{| class="wikitable" | {| class="wikitable" | ||
| − | ! Teilnehmer !! Labor !! | + | ! Teilnehmer !! Labor !! Haupt-IP !! Zweite-IP !! INSIDE !! SERVER !! DMZ |
|- | |- | ||
| − | | TN01 || | + | | TN01 || it201 || 192.168.Y.201 || 192.168.Y.221 || 172.17.201.0/24 || 10.0.10.0/24 || 10.88.201.0/24 |
|- | |- | ||
| − | | TN02 || | + | | TN02 || it202 || 192.168.Y.202 || 192.168.Y.222 || 172.17.202.0/24 || 10.0.10.0/24 || 10.88.202.0/24 |
|- | |- | ||
| − | | TN03 || | + | | TN03 || it203 || 192.168.Y.203 || 192.168.Y.223 || 172.17.203.0/24 || 10.0.10.0/24 || 10.88.203.0/24 |
|- | |- | ||
| − | | TN04 || | + | | TN04 || it204 || 192.168.Y.204 || 192.168.Y.224 || 172.17.204.0/24 || 10.0.10.0/24 || 10.88.204.0/24 |
|- | |- | ||
| − | | TN05 || | + | | TN05 || it205 || 192.168.Y.205 || 192.168.Y.225 || 172.17.205.0/24 || 10.0.10.0/24 || 10.88.205.0/24 |
|- | |- | ||
| − | | TN06 || | + | | TN06 || it206 || 192.168.Y.206 || 192.168.Y.226 || 172.17.206.0/24 || 10.0.10.0/24 || 10.88.206.0/24 |
|- | |- | ||
| − | | TN07 || | + | | TN07 || it207 || 192.168.Y.207 || 192.168.Y.227 || 172.17.207.0/24 || 10.0.10.0/24 || 10.88.207.0/24 |
|- | |- | ||
| − | | TN08 || | + | | TN08 || it208 || 192.168.Y.208 || 192.168.Y.228 || 172.17.208.0/24 || 10.0.10.0/24 || 10.88.208.0/24 |
|- | |- | ||
| − | | TN09 || | + | | TN09 || it209 || 192.168.Y.209 || 192.168.Y.229 || 172.17.209.0/24 || 10.0.10.0/24 || 10.88.209.0/24 |
|- | |- | ||
| − | | TN10 || | + | | TN10 || it210 || 192.168.Y.210 || 192.168.Y.230 || 172.17.210.0/24 || 10.0.10.0/24 || 10.88.210.0/24 |
|- | |- | ||
| − | | TN11 || | + | | TN11 || it211 || 192.168.Y.211 || 192.168.Y.231 || 172.17.211.0/24 || 10.0.10.0/24 || 10.88.211.0/24 |
|- | |- | ||
| − | | TN12 || | + | | TN12 || it212 || 192.168.Y.212 || 192.168.Y.232 || 172.17.212.0/24 || 10.0.10.0/24 || 10.88.212.0/24 |
|- | |- | ||
| − | | TN13 || | + | | TN13 || it213 || 192.168.Y.213 || 192.168.Y.233 || 172.17.213.0/24 || 10.0.10.0/24 || 10.88.213.0/24 |
|- | |- | ||
| − | | TN14 || | + | | TN14 || it214 || 192.168.Y.214 || 192.168.Y.234 || 172.17.214.0/24 || 10.0.10.0/24 || 10.88.214.0/24 |
|} | |} | ||
| + | |||
| + | =Weiteres= | ||
| + | ;Offizielle Zertifikate | ||
| + | *https://web.samogo.de/certs/ | ||
| + | ;drawio rpm runterladen und installieren | ||
| + | *https://github.com/jgraph/drawio-desktop/releases/tag/v24.7.17 | ||
| + | |||
| + | =Netzplan= | ||
| + | *wget https://xinux.de/downloads/linuggs.de/cybersec1.drawio.svg | ||
| + | =Wie passe ich einen Debian/Ubuntu Rechner an= | ||
| + | '''Beispiel''' | ||
| + | ;Resolver | ||
| + | *cat /etc/resolv.conf | ||
| + | nameserver 78.47.133.194 | ||
| + | search it2xx.xinmen.de | ||
| + | ;Netzwerk | ||
| + | *cat /etc/network/interfaces | ||
| + | auto enp0s3 | ||
| + | iface enp0s3 inet static | ||
| + | address 10.88.2xx.2/24 | ||
| + | gateway 172.26.55.1 | ||
| + | ;Hostnamen setzen | ||
| + | *hostnamectl set-hostname www.it2xx.xinmen.de | ||
| + | ;Lokale Hostnamensauflösung | ||
| + | *cat /etc/hosts | ||
| + | 127.0.0.1 localhost.localdomain localhost | ||
| + | ::1 localhost6.localdomain6 localhost6 | ||
| + | '''127.0.0.1 www.it2xx.xinmen.de www''' | ||
| + | # The following lines are desirable for IPv6 capable hosts | ||
| + | ::1 localhost ip6-localhost ip6-loopback | ||
| + | fe00::0 ip6-localnet | ||
| + | ff02::1 ip6-allnodes | ||
| + | ff02::2 ip6-allrouters | ||
| + | ff02::3 ip6-allhosts | ||
| + | |||
| + | =Portforwarding= | ||
| + | *192.168.12.34:9923 -> 172.26.55.2:22 | ||
| + | *192.168.12.34:9924 -> 172.26.53.52:22 | ||
Aktuelle Version vom 14. Februar 2026, 14:15 Uhr
Übersicht
![Bearbeiten](javascript:editDrawio("1258473260", "cybersec-1.1-plan.drawio.png", "png", false, false, false, true, "https://embed.diagrams.net")){kind=link}
IPv4
- gateway 192.168.Y.254
- route add -net 10.88.0.0/16 192.168.Y.88
- nameserver 1.1.1.1
- externe Domain it2XX.xinmen.de
- interne Domain sec-labs.de
| Teilnehmer | Labor | Haupt-IP | Zweite-IP | INSIDE | SERVER | DMZ |
|---|---|---|---|---|---|---|
| TN01 | it201 | 192.168.Y.201 | 192.168.Y.221 | 172.17.201.0/24 | 10.0.10.0/24 | 10.88.201.0/24 |
| TN02 | it202 | 192.168.Y.202 | 192.168.Y.222 | 172.17.202.0/24 | 10.0.10.0/24 | 10.88.202.0/24 |
| TN03 | it203 | 192.168.Y.203 | 192.168.Y.223 | 172.17.203.0/24 | 10.0.10.0/24 | 10.88.203.0/24 |
| TN04 | it204 | 192.168.Y.204 | 192.168.Y.224 | 172.17.204.0/24 | 10.0.10.0/24 | 10.88.204.0/24 |
| TN05 | it205 | 192.168.Y.205 | 192.168.Y.225 | 172.17.205.0/24 | 10.0.10.0/24 | 10.88.205.0/24 |
| TN06 | it206 | 192.168.Y.206 | 192.168.Y.226 | 172.17.206.0/24 | 10.0.10.0/24 | 10.88.206.0/24 |
| TN07 | it207 | 192.168.Y.207 | 192.168.Y.227 | 172.17.207.0/24 | 10.0.10.0/24 | 10.88.207.0/24 |
| TN08 | it208 | 192.168.Y.208 | 192.168.Y.228 | 172.17.208.0/24 | 10.0.10.0/24 | 10.88.208.0/24 |
| TN09 | it209 | 192.168.Y.209 | 192.168.Y.229 | 172.17.209.0/24 | 10.0.10.0/24 | 10.88.209.0/24 |
| TN10 | it210 | 192.168.Y.210 | 192.168.Y.230 | 172.17.210.0/24 | 10.0.10.0/24 | 10.88.210.0/24 |
| TN11 | it211 | 192.168.Y.211 | 192.168.Y.231 | 172.17.211.0/24 | 10.0.10.0/24 | 10.88.211.0/24 |
| TN12 | it212 | 192.168.Y.212 | 192.168.Y.232 | 172.17.212.0/24 | 10.0.10.0/24 | 10.88.212.0/24 |
| TN13 | it213 | 192.168.Y.213 | 192.168.Y.233 | 172.17.213.0/24 | 10.0.10.0/24 | 10.88.213.0/24 |
| TN14 | it214 | 192.168.Y.214 | 192.168.Y.234 | 172.17.214.0/24 | 10.0.10.0/24 | 10.88.214.0/24 |
Weiteres
- Offizielle Zertifikate
- drawio rpm runterladen und installieren
Netzplan
Wie passe ich einen Debian/Ubuntu Rechner an
Beispiel
- Resolver
- cat /etc/resolv.conf
nameserver 78.47.133.194 search it2xx.xinmen.de
- Netzwerk
- cat /etc/network/interfaces
auto enp0s3 iface enp0s3 inet static address 10.88.2xx.2/24 gateway 172.26.55.1
- Hostnamen setzen
- hostnamectl set-hostname www.it2xx.xinmen.de
- Lokale Hostnamensauflösung
- cat /etc/hosts
127.0.0.1 localhost.localdomain localhost ::1 localhost6.localdomain6 localhost6 127.0.0.1 www.it2xx.xinmen.de www # The following lines are desirable for IPv6 capable hosts ::1 localhost ip6-localhost ip6-loopback fe00::0 ip6-localnet ff02::1 ip6-allnodes ff02::2 ip6-allrouters ff02::3 ip6-allhosts
Portforwarding
- 192.168.12.34:9923 -> 172.26.55.2:22
- 192.168.12.34:9924 -> 172.26.53.52:22