Open main menu

CDOT Wiki β

Changes

SRT210 Lab 2

305 bytes added, 03:50, 2 July 2019
PART 1: NESTED VIRTUAL MACHINE
Since we're forced to use a Windows machine as the main VM host, we're going to have to set up nested virtualisation. Luckily that's not too difficult.
* Change the settings for your c7host to have at least 4GB of RAM(8 would be better), and enable "Virtual Intel VT-X/EPT or AMD-V/RVI" under VM/Settings/Processors.
* Install the following packages: qemu-kvm qemu-img virt-manager libvirt libvirt-python libvirt-client virt-install virt-viewer bridge-utils
* Make sure (using <code>systemctl enablestatus</code>) that the libvirtd service starts at boot.
* Those will include both the KVM hypervisor and Virt Manager, which is a graphical tool used to administer it.
* Create a new virtual machine with the following settings:
** Will be installed from the network: https://mirror.senecacollege.ca/centos/7/os/x86_64/ or http://mirror.netflash.net/centos/7/os/x86_64/
** 2GB of RAM(needed for installation, you should change it to 512MB after the install is done)
** 10GB of disk
** NAT for networking
::Let's look at how these rules would apply to a simple web connection (HTTP - port 80):
::# For the ''request''(originating from browser on local machine), the '''source port (sport) for the example in the above diagram is 40112(browser on local machine)''' and the '''destination port (dport) is 80(webserver on remote machine)'''::# For the ''response''(originating from server on remote machine), the '''source port (sport) is 80(webserver on remote machine)''' and the '''destination port (dport) is 40112(browser on local machine)'''
::# Since the '''RELATED,ESTABLISHED''' rule already exists, we are only concerned about <u>'''controlling'''</u> the '''incoming traffic on the server''', which in our example, the '''chain is: INPUT''', the '''protocol is: tcp''', and the '''destination is: port 80'''.