Scribd
Upload
36 views

Lab2 - Find - The - Secret - Server

The document discusses how to manually add network routes to reach servers on different networks in a lab environment. It provides information on current network configurations and interfaces, and how to connect to the lab VPN. It then explains how to check routes and interfaces after connecting, and how to manually add a route to reach an additional 'secret server' network.

Uploaded by

Saw Gyi
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
36 views

Lab2 - Find - The - Secret - Server

The document discusses how to manually add network routes to reach servers on different networks in a lab environment. It provides information on current network configurations and interfaces, and how to connect to the lab VPN. It then explains how to check routes and interfaces after connecting, and how to manually add a route to reach an additional 'secret server' network.

Uploaded by

Saw Gyi
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 11

© 2019 Caendra Inc.

| Hera for PTSv4 | Find the Secret Server 1


In this lab, you will learn how network routes work and how they can be manually added in
order to reach different networks. The following diagram shows the network configuration
of the lab:

As you can see, you are attached via VPN to the network 10.175.34.0/24 but there are also
other three networks. In each network, there is a web server (you can access it by browsing
its IP address with your web browser) with the following IP addresses: 172.16.88.81,
192.168.241.12 and 192.168.222.199.

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 2
The goal of the lab is to configure your VPN lab environment in order to reach all the hosts
in the networks!

The best tool is, as usual, your brain. Then you may need:

• OpenVPN client
• Web browser

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 3
Before connecting to the lab, check you current routes.

Establish the VPN connection to the lab. If it’s your first time in Hera Lab please refer to this
manual: https://members.elearnsecurity.com/lab/manual

What differs from the previous output?

There are two Web Servers at the following addresses: 172.16.88.81 and 192.168.241.12.
Are you able to navigate them once you are connected to the lab?

We know that there is another server at the address 192.168.222.199. Right now, we do
not have any route set on our machine and we are not able to reach it. Try adding the
correct route to that network and see if you can reach it.

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 4
Please go ahead ONLY if you have COMPLETED the lab or you are stuck! Checking the
solutions before actually trying the concepts and techniques you studied in the course, will
dramatically reduce the benefits of a hands-on lab!

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 5
[This page was intentionally left blank]

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 6
Before connecting to the lab, check your network configurations: interfaces and routes.
Note that the following screenshot may differ from your output:

As we can see from the screenshot above, we have two interfaces: the loopback (lo) and the
Ethernet interface (eth0). Moreover, in our example, we have few routes that determine
what networks we can reach and how.

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 7
Now that we know our current configuration, let us try to connect via VPN to the lab and
check the interfaces and the routes once again. You will see some differences:

In the previous screenshot, we can see that we now have a new interface (tap0). This is a
virtual interface created by OpenVPN. Moreover, we have three new routes: the first one
(second line of the output) sets the route for the communication in the tap0 network. The
second rule (third line) tells the system to route all the traffic destined to the
172.16.88.0/24 subnet through the tap0 interface. The last route (fifth line) works like the
previous one, but for the 192.168.241.0/24 network.

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 8
Right now, it seems we have the routes to reach two of the three servers. We can try to
reach them by opening their IP addresses in your web browser (172.16.88.81 and
192.168.241.12).

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 9
As we can see, we are able to navigate them. This is possible because we have the routes
configured in our system to reach them. However if we try to navigate the “Secret server”
we obtain the following result:

We are not able to navigate the web server because we don’t have a route for that network.

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 10
Right now, we do not have any route set to reach the “Secret server”. Let us see how to add
the correct route in our system!

We can simply do this with the following command:

Here we are saying our operating system to add a route for the 192.168.222.0/24 network
and that the connections have to go through 10.175.34.1 (which is the gateway of the lab).

If we try to reach the Web Server once again we can see that we are now able to navigate it:

© 2019 Caendra Inc. | Hera for PTSv4 | Find the Secret Server 11

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy