Documentos de Académico
Documentos de Profesional
Documentos de Cultura
Lab 1
Scenario: Customer is under attack
Overview
Description
This lab introduces you to the Pravail APS installation, initial
configuration and upgrade processes. You will learn about essential steps
performed. This lab is divided into the following parts:
• Installation of Pravail APS in monitor mode
• Initial CLI configuration using wizard
• Upgrade process
• Attack monitoring
Setup
DCN
mgt0 mgt1
Victim
ext0 int0
Internet
2 Mbps
last mile
Student 31 L1-1
Pravail APS Installation, Initial configuration and Upgrade
Lab 1
In this lab Pravail APS will be setup in monitor mode. Interfaces are
connected in the following way:
Objectives
After completing this lab, you will be able to do the following:
• Perform installation and initial configuration of Pravail APS in monitor mode;
Equipment/Tools
The following equipment is required to complete this lab:
• web browser (Chrome or Firefox)
When accessing training labs, you will be prompted for Training Portal
Authentication. Use following credentials:
• Login: student31
• Password: 76obQMem21
Connectivity verification
https://victim-pod31.training.arbor.net/
Installation process
In this section we will perform initial installation steps. These steps are
typically performed on new Pravail APS appliance after power on.
1. Wait while Pravail APS installation process prepares hard drive and
copies necessary software packages.
2. Set system hostname to APS-LAB31
3. Set IP address of mgt0 interface to 10.2.25.161
4. Set Network mask of interface mgt0 to 255.255.255.128
5. Skip media setting for interface mgt0 (press Enter)
6. Set IP address of mgt1 interface to 192.168.131.3
7. Set Network mask of interface mgt1 to 255.255.255.240
8. Skip media setting for interface mgt1 (press Enter)
9. Set default gateway to 192.168.131.14
10. Permit HTTPS access from any network – type 0.0.0.0/0 as the first entry
and confirm that there are no more entries by pressing enter for [done]
11. Permit ICMP Ping access from any network – type 0.0.0.0/0 as the first
entry and confirm that there are no more entries by pressing enter for [done]
12. Skip cloud signal protocol ACL configuration (press Enter)
Student 31 L1-3
Pravail APS Installation, Initial configuration and Upgrade
Lab 1
13. Permit SSH access from any network – type 0.0.0.0/0 as the first entry and
confirm that there are no more entries by pressing enter for [done]
14. Check that current date/time matches actual clock in UTC time zone.
Format of the string is MMDDhhmm[[CC]YY][.ss]
MF1VC-R1VTX-165M9-WZ49G-9PAWR-006M9-10HP9-ZWDS8-E3ZC4
6. Configure Pravail APS to run in monitor mode
services aps mode set monitor
7. Start Pravail APS service (services aps start)
8. Save configuration (config write)
Initial start of Pravail APS service may take few minutes.
4AGX3-DPEQV-C0XWG-2PJSE-TFJEZ-PVAKB-WE6V4-P9V87-WG9WC
4. Save configuration (config write)
5. Uninstall old Pravail APS package using system files uninstall
command. You can find exact names of installed packages in system
file show list.
6. Install new Arbos package using
system file install disk:arbos-5.3-EJTJ-i686-vlab
7. After installation of new Arbos package immediately reboot appliance
with reload command. WARNING: do not save system configuration
after installation of new Arbos package until you reboot the device. Due
to lab architecture limitations, you will be presented with shutdown
messages during reload process, however reload will actually happen.
8. Install new Pravail APS package using
system file install disk:Pravail-APS-5.6-EJTJ-vlab
9. Start Pravail APS service (services aps start)
10. Save configuration (config write)
11. Log back into Pravail APS and perform full page reload to clear web
browser local cache (Shift-Reload for most web browsers)
Student 31 L1-5
Pravail APS Installation, Initial configuration and Upgrade
Lab 1