pen test lab setup

[LT72884]

I currently have version 3.0.8 installed on vista. i have backtrack 3 and winxp pro sp2 working great. the only problem i do not know how to accomplish is this:

I need to be able to have all OS's be able to ping eachother and be on the same network seperate from my host machine. One of the pentest labs requires the network for the guests to be set up as 192.168.1.0/24 my current host net is 192.168.0.0/24. I was told by the pentest instructor to set up my guests as host only. im not sure if the guests need internet connectivity, but if that can be accomplished as well then we are good to go. The reason why it has to be 192.168.1.x is because th iso of the os is preconfigured and saved as that and can NOT be changed. the os is de-ice pentest challenge 1.

All i need is to be able to communicate at layer 3 between each OS and have them separate from my host. I have tried setting up the network pref in VB to be 192.168.1.1 with dhcp enabled starting from 192.168.1.2-254 and dhcp server address to be 192.168.1.4. im hoping the dhcp server does not need to be the same IP as the adaptor in VB.

thanx.

Matt

[Perryg]

Try setting it with the dhcp server out of the dynamic range.
Host = 192.168.1.1
dhcp = 192.168.1.2
range = 192.168.1.3-254

[LT72884]

LOL. ok when you say host. Are you reffering to virtual box settings itsself or the laptop or the guest OS? Thanx for the reply. im hoping i can get this working.

If anyone here is OSCP i would like some help with security basics.

Thanx guys.

[Perryg]

VBox is just a program that runs on the "Host" and allows you to install another OS and use it. So the "Host" refers to the main computer that houses the VBox program and the guest.

If you go into the VBox GUI and click on file -> preferences -> network. you will see that you have some control over the host-only settings.
From there you should be able to change it to match the settings that you need. But I would think that the dhcp server should be outside the scope of the dhcp pool.
So if you need to range of 192.168.1.0/24 you would set it up as I indicated above and start you dhcp pool at some number bigger than .2 since that would be reserved for the dhcp server and .1 will be the Hosts IP address for host-Only connection.
This is mine and should give you an idea of what to do.

Host-1.jpg (36.3 KiB) Viewed 6585 times

Host-2.jpg (37.38 KiB) Viewed 6577 times

[LT72884]

Ok cool thanx. So the host machine is my laptop. So will my laptop which runs vista be able to communicate with the guest OS's. It doesnt need to. I just need my Guest os's to be able to communicate with other guests.

EDIT
i cant ping dhcp server but i can ping 192.168.1.1 from 1.3 but cant ping 1.2. Is this normal with virtualbox. im used to real routers where the dhcp server is part of the actual router.

thanx

matt

[Perryg]

Using Host-only the host and the guests can communicate.
If however you do not want the host to be included you would use Internal for the Network mode instead of Host-only.
Not sure that will work like you want though because I have only tested a limited amount with Internal.

[LT72884]

Please forgive me but im still a we bit confused. my vista laptop is 192.168.0.147 assigned by my dlink router. Now my guest os's are 192.168.1.3 and 1.4. when you say i can communicate with the host system your are saying that 192.168.1.3 should be able to ping 192.168.0.147? as of right now they can not. nor can any guest os get internet. BUT the guest os's can ping eachother.

[Perryg]

Nope.
In a command window run ipconfig /all and look at the host-only adapter. See what the IP address is.

[LT72884]

Nope.
In a command window run ipconfig /all and look at the host-only adapter. See what the IP address is.

OHH so its a virtual adaptor on my host machine. Ok cool. Next question. With it setup the way it is now. Is there any way to get internet to the guest os's without changing the adressing scheme?

Thanx

Matt

[Perryg]

Add a second adapter to each guest and set it to NAT.

[LT72884]

Thanx pery. I owe you one. Trying to get ready for some serious study time.. I will give that a shot after i study history for a while.