Agenda: lab-access.htm

File lab-access.htm, 7.3 KB (added by andy, 5 years ago)
1<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "">
2<html xmlns="">
4  <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
5  <meta http-equiv="Content-Style-Type" content="text/css" />
6  <meta name="generator" content="pandoc" />
7  <meta name="author" content="Accessing Lab Components" />
8  <title>Security Workshop</title>
9  <style type="text/css">code{white-space: pre;}</style>
10  <link rel="stylesheet" href="../../style.css" type="text/css" />
13<div id="header">
14<h1 class="title">Security Workshop</h1>
15<h2 class="author">Accessing Lab Components</h2>
17<div id="TOC">
19<li><a href="#objectives"><span class="toc-section-number">1</span> Objectives</a></li>
20<li><a href="#ssh"><span class="toc-section-number">2</span> SSH</a><ul>
21<li><a href="#windows"><span class="toc-section-number">2.1</span> Windows</a></li>
22<li><a href="#linux"><span class="toc-section-number">2.2</span> Linux</a></li>
23<li><a href="#os-x"><span class="toc-section-number">2.3</span> OS X</a></li>
25<li><a href="#router-console-access"><span class="toc-section-number">3</span> Router Console access</a></li>
26<li><a href="#virtual-machine-console-access"><span class="toc-section-number">4</span> Virtual Machine Console access</a><ul>
27<li><a href="#windows-1"><span class="toc-section-number">4.1</span> Windows</a></li>
28<li><a href="#linux-1"><span class="toc-section-number">4.2</span> Linux</a></li>
29<li><a href="#os-x-1"><span class="toc-section-number">4.3</span> OS X</a></li>
34<h1 id="objectives"><a href="#objectives"><span class="header-section-number">1</span> Objectives</a></h1>
35<p>This set of instructions is to ensure you have access to the different equipment in your group. Keep in mind that since you are working as a group each one of you potentially needs to be able to access all the equipment in the group but no single equipment is allocated to a particular person. You must all decide on who does what.</p>
36<p>In particular after completing this you should have the following setup.</p>
38<li>SSH for accessing the VMS (and later on routers)</li>
39<li>Telnet for console access to routers</li>
40<li>VNC for console access to the VMS</li>
42<h1 id="ssh"><a href="#ssh"><span class="header-section-number">2</span> SSH</a></h1>
43<p>Depending on your operating system, you may already have an SSH client installed. SSH will be discussed in class and gives encrypted console access to the equipment managed by your group.</p>
44<h2 id="windows"><a href="#windows"><span class="header-section-number">2.1</span> Windows</a></h2>
45<p>Windows does not come with an SSH client but you can download one. For this course we need more than just the SSH executable we also need an SSH key generator and an SSH agent.</p>
47<li>You can download all the above as the <a href="">Putty Application</a>. You would need
49<li>putty.exe - the SSH application</li>
50<li>puttygen.exe - an SSH Key generator</li>
51<li>pageant.exe - an SSH Agent</li>
53<li><p>An alternate SSH application that can work with PUTTY's ssh agent and key generator is <a href="">Kirby</a></p></li>
54<li><p>See the SSH presentation for others.</p></li>
56<p>These executables will likely be available on the workshop wiki page so you do not have to download them from the Internet.</p>
57<h2 id="linux"><a href="#linux"><span class="header-section-number">2.2</span> Linux</a></h2>
58<p>Linux distributions usually ship with SSH clients. To check, open a terminal and type:</p>
59<pre><code>$ ssh -V</code></pre>
60<p>How to install one depends on your distribution. For Ubuntu and other Debian based derivatives you can install the OpenSSH client package (and we'd recommend the server package while you're at it).</p>
61<pre><code>$ sudo apt-get install openssh-client</code></pre>
62<h2 id="os-x"><a href="#os-x"><span class="header-section-number">2.3</span> OS X</a></h2>
63<p>Mac OS X comes with an SSH client (OpenSSH). To use it just open the Terminal application located in /Applications/Utilities</p>
64<h1 id="router-console-access"><a href="#router-console-access"><span class="header-section-number">3</span> Router Console access</a></h1>
65<p>Each of your groups includes a router. We are using dynamips to emulate CISCO hardware. The instructor will let you know what IP to use to access the console server. Assuming your group number is X and the console server is you can then access your router's console port by using:</p>
66<pre><code>$ telnet 210X</code></pre>
67<p>Windows does not ship with the telnet application installed by default these days. However, you can use the putty (or Kirby) application downloaded earlier and ensure you use telnet rather than SSH as the protocol - it will select the right port once you switch.</p>
68<h1 id="virtual-machine-console-access"><a href="#virtual-machine-console-access"><span class="header-section-number">4</span> Virtual Machine Console access</a></h1>
69<p>We are running all your machines in a virtualised environment using <a href="">KVM</a>. In some cases you may want to access the console of the virtual machine for example when installing software off a CD remotely.</p>
70<p>The instructors will give you the ip address of the VNC server(s) and the port used to access particular VMs. However you need a VNC client installed which depends on your operating system. As an example the firewall on each of your groups will be under VNC port 1000X where X is your group number.</p>
71<p>A good opensource VNC server (and client) is <a href="">TightVNC</a>. If you have java installed you can just use the <a href="">Java client</a> and not install additional software.</p>
72<h2 id="windows-1"><a href="#windows-1"><span class="header-section-number">4.1</span> Windows</a></h2>
73<p>Windows does not ship with a VNC client but Tight VNC makes clients for <a href="">32 bit</a> and <a href="">64 bit</a> versions of windows. Download and install either one (or the Java client mentioned earlier)</p>
74<h2 id="linux-1"><a href="#linux-1"><span class="header-section-number">4.2</span> Linux</a></h2>
75<p>Most linux distributions come with a VNC client. Ubuntu's default VNC client is vinagre. If you don't have it installed you can get it via apt:</p>
76<pre><code>$ sudo apt-get install vinagre</code></pre>
77<p>If you want to install the tightvnc viewer on Ubuntu instead you could type:</p>
78<pre><code>$ sudo apt-get install xtightvncviewer</code></pre>
79<p>If you have a JRE installed you can also use the Java Client.</p>
80<h2 id="os-x-1"><a href="#os-x-1"><span class="header-section-number">4.3</span> OS X</a></h2>
81<p>Mac OS X comes with an inbuilt VNC client accessible via Finder. However, it does not consistently allow you to connect to an arbituary port on the VNC server. As such you are advised to download a VNC client for OS X such as <a href="">Chicken</a></p>