001- Introduction

This blog aims to build internal lab network using "KVM" as a hypervisor and "iptales" as firewall/router.

Computing and disks Info:

Network Topology:

Network Info:

KVM VM Name

Hostname

Usage

Network

Tier

NIC

IP Address

Subnet Mask

Subnet

KVM Virtual Bridge

Gateway

DNS

KVM Virtual Network

iptables-dmz1-gw

dmz1-gw.ab.lab

DMZ1 Router

ens3

10.0.0.254

255.255.255.0

10.0.0./24

virbr6

10.0.0.1

10.0.0.1

8.8.8.8

iptables-public

Public Tier

ens4

172.16.11.254

255.255.255.0

172.16.11.0/24

virb7

N/A

N/A

N/A

iptables-dmz1

Web Tier (Tier1)

ns1.ab.lab

Master DNS Server

ens3

172.16.11.21

172.16.11.254

127.0.0.1

172.16.11.21

ns2.ab.lab

SLave DNS Server

ens3

172.16.10.22

172.16.11.254

127.0.0.1

172.16.11.22

dhcp-relay1.ab.lab

DHCP Relay Server 1

ens3

172.16.11.23

172.16.11.254

172.16.11.21

172.16.11.22

www1.ab.lab

Web Server 1

ens3

172.16.11.11

172.16.11.254

172.16.11.21

172.16.11.22

jumpstart.ab.lab

SSH Jumpstart Server

ens3

172.16.11.31

172.16.11.254

172.16.11.21

172.16.11.22

iptables-dmz2-gw

dmz2-gw.ab.lab

DMZ2 Router

ens

172.16.11.100

172.16.11.254

172.16.11.21

172.16.11.22

ens4

192.168.20.254

255.255.255.0

192.168.20.0/24

virbr8

N/A

N/A

N/A

iptables-dmz2

Middleware Tier (Tier2)

app1.ab.lab

Application Server

ens3

192.168.20.11

192.168.20.254

172.16.11.21

172.16.11.22

dhcp-relay2.ab.lab

DHCP Relay Server 2

ens3

192.168.20.21

iptables-internal-gw

internal-gw.ab.lab

Internal Router

ens3

192.168.20.100

ens4

192.168.21.254

255.255.255.0

192.168.21.0/24

virbr10

N/A

N/A

N/A

iptbles-interna

Application Tier (Tier3)

db1.ab.lab

Database Server1

ens3

192.168.21.254

192.168.21.254

172.16.11.21

172.16.11.22

dhcp.ab.lab

DHCP Server

ens3

192.168.21.21