My first project is going to rebuild my lab to support the other projects in the future. So this is where I am at now:
I have 2 dedicated power circuits just for this lab and some rack space in a cold mechanical area of my house next to my office and an air purifier in this area to cut down on dust.
I have placed a Linux based firewall on my ISP connection built with Damn Small Linux (DSL) and a modified rc.firewall script (use apt-get not the freshmeat distro). This is built on an old HP600 laptop (256 megs of ram) with a dock that allows me to place 3 nic cards in the system to separate ISP, DMZ, and 2 internal Networks: White-Net for family use and Black-Net for my lab.
I adjusted the rc.firewall script a little. The $STOP string is set to DENY so I changed it to DROP to make the firewall stealth to network scanning. When I checked this with ShieldUP (my nessus server is down) I noticed that some ports were open and all ports over 1024 were open. So that type of item needed to be adjusted in the script to stop all responses. This was relatively easy, just had to dig around a little, but the script is commented relatively well.
Behind the firewall I have 2 WRT54Gs running DD-WRT modified firmware to separate my Black and while nets from the DMZ area.
Currently I have 2 DNS servers running on older RAQ4 equipment in my lab that will be moving into the DMZ so that all networks will be able to benefit from an internally maintained DNS system.
I have a lot more gear stacked (PC, Cisco, Sun) up that will eventually start taking places to provide other services and as test gear. I also hope to start building more nessus plug-ins than the one I have in the distribution now.
More later.
