Routing between 2 nat networks?
Posted: 20. Jun 2021, 16:16
I'm working on setting up a home lab to test some active directory stuff and do some pentesting. I've had success when having everything one nat network, but this doesn't really simulate a corp environment so I was wondering if you guys could help me with getting nat networks to talk to each other.
my plan for the layout is as follows
NAT 1: my attacking machine. network IP: 10.0.2.0/24
NAT 2: pfSense Firewall and a vuln Linux web server, the firewall should act as a DMZ with setting to block from my kali "External", and connections to and from the "Internal", Network IP: 10.0.3.0/24
NAT 3: windows AD stuff child of NAT 4. Network IP 10.0.4.0/24
NAT 4: windows AD stuff, parent domain for NAT 3 AD network. Network IP 10.0.5.0/24
NAT 5: pfSense and snort IPS between NAT 4 and NAT5, windows AD stuff simulated ADMIN network. Network IP: 10.0.6.0/24
each NAT would talk to the one above it and below in number, so 1 can reach 2, 2 can reach 1, and 3. So on up to 4 reaching 5.
1. Is a setup like this possible?
2. I'm not sure how to add routes so the Virtualbox routers can talk to each other?
3. And is it ok if I add the firewalls last, do they act as a replacement for the Virtualbox router?
my plan for the layout is as follows
NAT 1: my attacking machine. network IP: 10.0.2.0/24
NAT 2: pfSense Firewall and a vuln Linux web server, the firewall should act as a DMZ with setting to block from my kali "External", and connections to and from the "Internal", Network IP: 10.0.3.0/24
NAT 3: windows AD stuff child of NAT 4. Network IP 10.0.4.0/24
NAT 4: windows AD stuff, parent domain for NAT 3 AD network. Network IP 10.0.5.0/24
NAT 5: pfSense and snort IPS between NAT 4 and NAT5, windows AD stuff simulated ADMIN network. Network IP: 10.0.6.0/24
each NAT would talk to the one above it and below in number, so 1 can reach 2, 2 can reach 1, and 3. So on up to 4 reaching 5.
1. Is a setup like this possible?
2. I'm not sure how to add routes so the Virtualbox routers can talk to each other?
3. And is it ok if I add the firewalls last, do they act as a replacement for the Virtualbox router?