The lab I am going setup it looks some what like this:
Here pfsense is both firewall and router. So that I can setup both internal and external pentesting lab.
What is pfSense firewall?
is an open source firewall/router computer software distribution based on FreeBSD. It is installed on a computer to make a dedicated firewall/router for a network and is noted for its reliability and offering features often only found in expensive commercial firewalls. It can be configured and upgraded through a web-based interface, and requires no knowledge of the underlying FreeBSD system to manage. pfSense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and as a VPN endpoint.
The name was derived from the fact that it helps make the stateful packet-filtering tool PF (which acts as a firewall, packet filter, and routing service on many BSD and Unix platforms) make more sense to non-technical users.
Installing and Configuring pfSense
download .iso image from link given above
:goto VMware --> File --> New virtual machine --> Typical
For PfSense you need add 2 network adapter. So that you can have 2 different network. For both internal and external pentesting
- First network adapter you have keep it in Bridge Mode
- Second network adapter should be custom mode(VMnet 2)
finish --> run the machine.
Configuring the pfSense:
- Automatically takes the option by itself
- Press I to launch installer.
- Select “Accept these setting”
- When it prompts for VLAN setup, just type “n” and hit enter
- Name the WAN interface as em0
- Name the LAN interface as le0
The above step creates an IP address for the WAN interface automatically. This is shown in the figure below.
Now, let us hit enter. We will be prompted for the subnet mask bit count.
Enter 24 as shown below.
Hit enter 3 times to get the screen to configure DHCP service for private LAN.
As we can see in the above figure, we need to enable DHCP server on LAN interface by typing “Y”.
Checking connectivity from pfSense to public users
Now, let us see if we are able to ping the host machine.
Select “Ping host” by typing 7 in the command line as shown below.
Then enter the IP address of the host machine. We should see it getting responses.
Configuring private network
Setting up Kali Linux, window 7 , windows servers :
Assign the network adapter for every machine same has pfSense (VMnet 2)
- Check IP address in kali, windows 7 and window server
Let us open up a browser and type in http://10.0.0.1/ in the URL. We should see pfSense’s login screen as shown below.
The default username is “admin
” and password is “pfsense
”. Consider changing your password after logging in for the first time.
We should see the dashboard as shown in the above figure. We can play around with various settings available in pfsense.
Now both public and private network is created using VMware