Phase 1 - Installing and Configuring VMware and Honeypots
                                                                                                                                                                                                       

Previous

Next

We will be configuring the Honeywall [4], Honeypots [6 & 7], and Attacker [8] on VMware. The goal is to have the entire Honeypots [6 & 7] routed through the Honeywall [4] and use Attacker [8] to test the Honeynet setup. We will be using VMware virtual networking components to create our required network.

Figure - 1 - VMware Configuration


Above is a logical VMware configuration diagram. It shows the virtual network orientation and how the Honeypots [6 & 7] connects through the Honeywall [4] to an external network.

To set up this configuration, we must create virtual machines and use the Virtual Machine Control Panel to adjust the settings for their virtual Ethernet adapters. Two of them will be used for the Honeypots [6 & 7], one will be used for Honeywall [4] and one for Attacker [8].

Let's launch VMware and we will walk step-by-step through a typical Honeywall Virtual Machine configuration. Click New Virtual Machine.


Select Custom Virtual Machine Configuration. It allows you to create virtual machine with additional devices and specific configuration options.



Select the New - Workstation 5 Virtual Machine Format. It has various new features available.
 


Since Honeywall is based on Fedora, select Linux as Guest Operation System.
 


Set Honeywall as Virtual Machine Name.
 


Allocate at least 256 MB Memory for Honeywall virtual machine, though 512 MB is recommended. More memory is usually better depending on how active your Honeywall will be.
 


Select Use bridged networking for Network Connection. We will add two more bridged and host-only network connections after wizard is completed.
 


Honeywall supports most IDE and SCSI disks/controllers. Proceed with default settings.
 


Select Create a new virtual disk for Disk.
 


Select IDE for Virtual Disk Type.
 


Set 4 GB Disk Capacity.4 GB is minimum requirement for installing Honeywall. More disk space is usually better depending on how active your Honeywall will be.
 


Change disk file name if required otherwise move on with default name.
 


We have just gone through a virtual machine wizard and will see a summary of configured virtual machine.
 

Now we will use the Virtual Machine Control Panel to edit the Honeywall Virtual Machine settings. We will add two more virtual network adapters and connect them to Bridge Network (VMnet0) and Host-only Networking (VMnet1) respectively. Final VMware Honeywall configuration would look something like in Figure - 2.

Figure 2 - Typical Honeywall VMware Configuration

Set up three more virtual machines, just like we created for Honeywall above, using the New Virtual Machine Wizard. Create two virtual machines [6 & 7] with host-only networking (VMnet1) [5].Create virtual machine for Attacker [8] with bridged networking (VMnet0) [3] so it can connect to an external network using the host computer's Ethernet adapter [1].

Now, we have four virtual machines ready for installing the guest OS.

Install individual guest OS for honeypots except Honeywall. Power on virtual machine, boot up with Operating System media and follow standard installation steps. Configure these machines with real internet IP addresses. These would be the IPs which an attacker would attack.


 

Previous

Next

Page 3