Index


0.2 Prerequisites


0.1 Overview



The diagram shows a home computer connected to a home router with NAT functionality. On the home computer, a virtual network, and a line of virtual machines is set up and connected.

There are three virtual switches, the External network, which is bridged to the physical interface of the host, and two private switches providing the Internal Network and the DMZ.

A virtual machine is set up as firewall and router with NAT functionality, between the External Network and the two private networks.

To avoid using NAT on the firewall, you would have to make static routes on the home router, but in this practice setup NAT is used.


Unit

Interface

Network

IPv4 address

Mask

Gateway

Home Router


External Network

192.168.0.1

255.255.255.0

none

Server Master*

eth0

External Network

192.168.0.128

255.255.255.0

192.168.0.1

Host WIN10PRO

Ethernet Adapter vEthernet

External Network

192.168.0.192

255.255.255.0

192.168.0.1

Firewall

eth0

External Network

192.168.0.254

255.255.255.0

192.168.0.1

Firewall

eth1

Internal Network

192.168.1.1

255.255.255.0

none

DHCP Server

eth0

Internal Network

192.168.1.3

255.255.255.0

192.168.1.1

Firewall

eth2

DMZ

192.168.255.1

255.255.255.0

none

DNS Server

eth0

DMZ

192.168.255.2

255.255.255.0

192.168.255.1

Mail Server

eth0

DMZ

192.168.255.4

255.255.255.0

192.168.255.1

Web Server

eth0

DMZ

192.168.255.5

255.255.255.0

192.168.255.1

Clients

eth0

Internal Network

192.168.1.21 - 120

255.255.255.0

192.168.1.1

Throughout the examples in this practice, ip addresses from this table will be used. If you need to change any addresses, make sure you also change them in the configurations you encounter.

* The Server Master virtual machine is only used temporarely, and is therefore not part of the final network.