Good Daddy
2008-10-29 15:12:54 UTC
I've been researching more and more into security and have been experimenting with fundamental network operations. My goal is to set up my own personal WAN in my lab (in my house) and monitor packet payloads of rudimentary network operations such as dns cache updates, ARP, ns lookups, dn translations, maybe even as far as active directory replication, remote LDAP mods, DHCP, etc...
I've got a collection of 9 computers dating back no more than 7 years in my lab that have been set up as DDNS web servers in the past, but i don't need them anymore. I'd like to set up a series of dedicated DNS servers, routers, separate dubnets, a client machine, a couple web servers, and what not on a private WAN all objects running some kind of net monitor to document what goes on, how and when.
I'm not sure how i'm going to model these after the real internet. What OS's should i use for each object? I have access to any kind of OEM installer including Server2003 Enterprise, Redhat, Ubuntu, XP-Pro. Non of this model will be connected to the real net, ideally i'd like to try and break my system to try and prevent it at the office.
Any advice? Any books, labs or documentation you could recommend? How would you do it? What experiments would you conduct?