But I've decided some hands on time on some of these more obscure topics is in order. I say obscure because no one I know actually uses the Microsoft NPS or VPN routing solutions, but hey, I don't want to come across bitter.
So I took an "old" Z800 workstation I had laying around and dumped some extra memory in it to get me to 32 GB. Its been my experience that RAM is the most limiting factor in setting up labs, as just in production the CPU largely sits idle, and because we can be a little more tolerant of any sluggishness created by using a single disk.
I wanted to setup as complex environment as possible, while not buying any more equipment. Fortunately, the Z800 comes with 2 NICS built in, which is all I needed.
- Inside - 192.168.0.0/22 - An actual physical network connection to my production network
- Outside - 192.168.11.0/24 - An actual physical network connection to a "stand alone" network connected to Cable Internet
- My Private Net - 192.168.249.0/24 - To simulate my "main office"
- My Private DR Net - 192.168.248.0/24 - To simulate my "DR" site
- My Remote Net - 192.168.245.0/24 - To simulate a branch office - for RODCS lab
I intend to join all the networks together with a RRAS server running routing, and to be authentic I added two additional networks to simulate my leased lines / some general internetwork.
- My Private Interconnect - 192.168.247.0/24 - to "connect" my main network and DR network
- Remote Site Interconnect - 192.168.246.0/24 - to connect my main network to remote site network
I imported two copies of my previously exported base machine and promptly loaded ADDS on the first to create the domain, which I quite imaginatively called test.local. Then I created a file server. That's it for now. In my next post, I'll talk about the remote access and routing server buildup, which MAY be the most complex part.