13,420
edits
Changes
no edit summary
=INVESTIGATION 1: CONFIGURING A VIRTUAL PRIVATE NETWORK (VPN)=
For the remainder of this course, we will focus on networking involving our VMs and our c7host machine. This lab will focus on setting up a virtual private network ('''VPN'''), connecting our VMs and c7host machine to the VPN, and configuring our VPN to make more convenient to use, troubleshoot and protect. '''Lab 7''' will focus on configuring SSH and making access to the VPN more secure. Finally, '''lab 8''' will focus on configuring mobile (as well as wired devices) via DHCP to automatically assign an IP address.
There are several reasons for creating '''VPNs'''. The main reason is to '''safely connect servers together''' (i.e. to safely limit but allow share information among computer network users). This allows for a secure connection of computers yet controlling access to and monitoring (protecting) access to permitted users (discussed later in '''lab7''').
If we are going to setup a private network, there are a number of steps to perform: First, '''define a new private network in the Virtual Manager application'''; and second, '''configure each of our VMs to connect to this new private network'''. In Part 1, we will be perform the first operation. In part 2, we will be performing the second operation for all VMS (graphical and command-line).
Before configuring our network , we want to '''turn off dynamic network configuration for our Virtual Machines''' by turning off the '''"default"''' virtual network. We will then define our virtual private network.
:'''Perform the following steps:'''
# Launch your '''c7host VM''' and start the Virtual Machine Manager.
# Make certain that the centos1, centos2, and centos3 virtual machines are '''<u>powered off</u>'''.
# In the Virtual Machine Manager dialog box, Select select '''Edit'''-> '''Connection Details'''.
# In the '''Connection Details''' dialog box, select the '''Virtual Networks''' tab
# Click to <u>de-select</u> the '''Autostart (on boot)''' check-box options and click the '''Apply''' button.
# Then stop Stop the default network configuration by clicking on the '''stop''' button at the bottom left-side of the dialog box.
# Click the '''add''' button (the button resembles a "plus sign") to add a new network configuration.
# Type the network name called: '''network1''', and then click the '''Forward''' button.
# In the next screen, enter the '''new network IP address space''' called: '''192.168.235.0/24'''
# Disable the '''DHCP4 ''' check box and click the '''Forward''' button.
# Click the '''Forward''' button again to accept the default in the next screen.
# Enable Network Forwarding by Selecting '''Forwarding to physical network''', the destination should be '''Any physical device''' and the mode should be '''NAT'''
=== Part 2: Configuring Network For centos1 VM===
In this section, we will be using a graphical tool to connect our '''centos1''' and '''centos2''' VMs VM to our private network.
:'''Perform the following steps:'''
:'''Perform the following steps:'''
# Configure the your '''centos3 ''' VM (in the '''View''' -> '''Details''' menu of Virtual Machine Manager) to configure the NIC interface to '''network1'''.
# Start your '''centos3''' VM, login, and su to '''root'''.
# Use the command called: '''ifconfig''' to list active interfaces, you should see one with a name of '''eth0''' or a similar name.
#: <b><code><span style="color:#3366CC;font-size:1.2em;">route add default gw 192.168.235.1</span></code></b>
# To configure a DNS server for this VM, edit the file '''/etc/resolv.conf'''. Change the nameserver line to read:
#: <b><code><span style="color:#3366CC;font-size:1.2em;">nameserver 192.168.235.1</span></code></b># Save your editing session.
# Confirm your settings work by doing the following (you might need to do the steps '''3''' and '''4''' a few times before it works; keep checking with the commands below and wait a bit before each attempt): <b><code><span style="color:#3366CC;font-size:1.2em;">ifconfig</span></code></b>, <b><code><span style="color:#3366CC;font-size:1.2em;">route -n</span></code></b>, <b><code><span style="color:#3366CC;font-size:1.2em;">ping</span></code></b> (other VM's IP address), and <b><code><span style="color:#3366CC;font-size:1.2em;">ssh</span></code></b> ( to your Seneca's Matrix account to test your DNS)
# Restart the <code>centos3</code> VM, or just wait a few minutes.
