CTS 240 VPN Lab
Lab Environment
• 2 SEED Ubuntu VMs
Skills Covered in this Lab
1.Discuss how to use route, netstat, ifconfig commands in linux 2. How to use the TUN/TAP devices to set up network tunnel.
3. Test 3 principles of VPN functionality (confidentiality, authentication, tunnel)
Lab Tasks
The following lab tasks must be completed correctly/successfully for full credit
Step 1: Configure VM1 interface to “NAT network” setting and IP/netmask of diagram, Step 2: Configure VM2 interface to “NAT network” setting and IP/netmask of diagram.
Step 3: Configure TUN/TAP interfaces for each VM, Provide screen shot of interface configuration
Step 4: Configure route paths for each VM
Step 5: Troubleshoot and Confirm network connectivity
Step 6: Troubleshoot and Confirm tunnel connection using Ping and SSH. Troubleshooting
Some of the common challenges include:
• Properly setting up the VMs
• Getting the network interfaces to communicate correctly.
• See Tools and Video Demos on learning resources page.
Submission and Demo
You should submit a detailed lab report to describe your design and implementation.
You should also describe how you evaluate the functionalities and security of your system. Your lab report should describe the steps to took to successfully complete each task and provide screen shots showing the correctly configuration and operation of your tunnel.
In your lab report you should also explain why this host-to-host tunnel is useful in some network/business needs and technically explain why the TCP tunnel (using TUN/TAP) you built is not a preferred way of tunneling. More specifically, explain why the UDP tunnel is more standard practice/preferred when setting up a VPN.
