CCIE Sec Vracks from Antonio Soares on 2010-02-21 (Ccielab archives /201002)

From: Antonio Soares <amsoares_at_netcabo.pt>
Date: Sun, 21 Feb 2010 03:28:22 -0000

Hello group,

I've been playing with Dynamips+Qemu these last weeks and i want to share the Vracks i have developed. The two already available are
based on INE's topology:

http://www.ine.com/downloads/ine.sc.physical.topology.v5.002.pdf

And here they are:

http://www.ccie18473.net/dynamips4/dynamips4.htm

I think it's possible to do a good preparation using these Vracks. To build them you will need Dynamips and Qemu.

Dynamips is available here:

http://sourceforge.net/projects/dyna-gen/files/

You also need WinPcap:

http://www.winpcap.org/install/default.htm

For Qemu the best is to build your own binaries. I followed the GNS tutorial to do that:

http://blog.gns3.net/2009/10/olive-juniper/2/

Then there is IPS, ASA and ACS.

Once you have your Qemu binaries, is quite easy to build the ACS Server. You will need Windows 2003 Server and CSACS installation
CDs. And don't forget to install Java otherwise you will have some problems with the ACS Admin Page.

Then for ASA, take a look to this:

http://7200emu.hacki.at/viewtopic.php?t=4936

The ASA doesn't not work very well under Windows (see my comments in the last page). I never tried under Linux but it seems it works
fine. For this reason i have replaced the ASAs with PIXs in the second Vrack.

For IDS:

http://inetpro.org/wiki/Using_qemu_to_run_Cisco_IPS

The Qemu integration with Dynamips is done via loopback interfaces. I have 12 in my PC: 8 for connecting the 2 ASAs to dynamips, 2
for the IDS, 1 for the ACS and finally 1 for simulating the test PC.

I plan to develop more Vracks based on IPexpert's and Ccbootcamp's topologies since they are public:

http://www.ipexpert.com/Cisco/CCIE/Security/Rack-Rental

http://www.ccbootcamp.com/self-paced-training/sec-remote-racks.html

I'm not preparing for the CCIE Security but in the case i change my mind, you will see something here:

http://www.ccie18473.net/dynamips3/dynamips3.htm

;)

Regards,

Antonio Soares, CCIE #18473 (R&S/SP)
amsoares_at_netcabo.pt

Blogs and organic groups at http://www.ccie.net
Received on Sun Feb 21 2010 - 03:28:22 ART

This archive was generated by hypermail 2.2.0 : Mon Mar 01 2010 - 06:28:36 ART