0.1 Overview

The diagram shows a home computer connected to a home router with NAT functionality. On the home computer, a virtual network, and a line of virtual machines is set up and connected.

There are three virtual switches, the External network, which is bridged to the physical interface of the host, and two private switches providing the Internal Network and the DMZ.

A virtual machine is set up as firewall and router with NAT functionality, between the External Network and the two private networks.

To avoid using NAT on the firewall, you would have to make static routes on the home router, but in this practice setup NAT is used.

Unit	Interface	Network	IPv4 address	Mask	Gateway
Home Router		External Network	192.168.0.1	255.255.255.0	none
Server Master*	eth0	External Network	192.168.0.128	255.255.255.0	192.168.0.1
Host WIN10PRO	Ethernet Adapter vEthernet	External Network	192.168.0.192	255.255.255.0	192.168.0.1
Firewall	eth0	External Network	192.168.0.254	255.255.255.0	192.168.0.1
Firewall	eth1	Internal Network	192.168.1.1	255.255.255.0	none
DHCP Server	eth0	Internal Network	192.168.1.3	255.255.255.0	192.168.1.1
Firewall	eth2	DMZ	192.168.255.1	255.255.255.0	none
DNS Server	eth0	DMZ	192.168.255.2	255.255.255.0	192.168.255.1
Mail Server	eth0	DMZ	192.168.255.4	255.255.255.0	192.168.255.1
Web Server	eth0	DMZ	192.168.255.5	255.255.255.0	192.168.255.1
Clients	eth0	Internal Network	192.168.1.21 - 120	255.255.255.0	192.168.1.1

Throughout the examples in this practice, ip addresses from this table will be used. If you need to change any addresses, make sure you also change them in the configurations you encounter.

* The Server Master virtual machine is only used temporarely, and is therefore not part of the final network.