IT4510 @ utahtech
You will experiment with a Firewall in this lab. Use your pfsense machine. You can always use my cloning script located at github If you don’t use my cloning script, make sure that you boot pfsense with the dualnic option. (This is only available via the command-line ant NOT the web interface). I am making the assumption that Kali is running at 192.168.1.2 and PFsense at 192.168.1.1 (plus it will also have a public ip)
Make sure the Kali can ping the pfsense machine. From your Kali machine, you should be able to open a webpage to 192.168.1.1 and login with the default of admin and pfsense.
Create a rule that will apply to your WAN network:
Create several rules that will apply to your LAN network:
utahtech.edu on port 80 and 443. (Since this isn’t an ip address, add an alias for it)Test all your rules!!!
Appropriately configure port forwarding so that when trying to ssh to port 2786 of the pfsense machine on the WAN side, it will redirect you to the Kali instance (may have to enable ssh on Kali). This is under the Firewall->NAT option. To test this, you should be able to ssh to port 2786 of your pfsens machine and it will take you to your kali machine. (Hint: The ssh command can receive a -p option to specify what port it should connect to instead of 22)
Take screenshots of your rules and schedules page. Put your screenshots in a single pdf and upload to canvas.