courses

Homework 1
Due Date: 2026-02-02 23:59:59
Submission: via GitLab repo

Homework 1
Due Date: 2026-02-02 23:59:59
Submission: via GitLab repo

Homework 1
Due Date: 2026-02-02 23:59:59
Submission: via GitLab repo

Homework 1
Due Date: 2026-02-02 23:59:59
Submission: via GitLab repo

          .
          .
          .


Introduction

This homework is intended for you to provide verification of a functional mini-lab environment. You will be using this environment for the rest of the term. In theory, you have already completed nearly all of this. However, I want to make sure that you have a working environment before we get too far into the term.

All work will be submitted via MarkDown documents within a gitlab repo. You will be using this repo for the rest of the term. This repo exists on the CECS intranet.

Make sure the following is the last line of your /etc/pf.conf file:

pass out on $int_if from $int_if:network to any

Tasks

  1. Create a private GitLab repo called secdevops-w26-<CECS> (replace with your actual MCECS username) and clone it to your local machine. You will be using this repo for the rest of the term. This repo exists on the CECS intranet, and uses your CECS credentials for authentication.
  2. Add dmcgrath and shaned as a member of your repo. This will allow us to view your repo and provide feedback.
  3. Create a folder within the repo called hw1. This is where you will add documentation regarding this assignment.
  4. Now that you have your repo set up, we’ll be turning to the systems.
    1. Create a FreeBSD VM on your proxmox host

      1. Ensure you are connected to the SNAT network and a second interface on an isolated bridge named internal

        The bridge configuration has to be done on the proxmox host web UI. Select the host, then click on Network. Create a new linux bridge and name it internal.

        new bridge

        Leave all settings aside from name blank:

        bridge settings

      2. Ensure you have run the freeBSD setup script
      3. Ensure the host has a running firewall
      4. I would suggest you document everything you did in a markdown file in your repo called hw1.md.
    2. Create an Ubuntu VM that connects to the isolated internal bridge.
    3. Create and store appropriate SSH keys for both hosts.
    4. Include the contents of your ~/.ssh/config file in your hw1.md file, to show you have a bastion or jump host configured.
    5. Take a screenshot of your FreeBSD terminal (after logging in) with the output of the command ifconfig and hostname showing. Add this to your repo and include it in your hw1.md file.
    6. Take a screenshot of the Ubuntu terminal with the output of the command ip a s showing. Add this to your repo and include it in your hw1.md file.
  5. Follow the instructions on the Ubuntu configuration page to configure the Ubuntu host. Document this in your hw1.md file.

Submission

Once you have completed the above, you should have a markdown file in your repo called hw1/hw1.md that contains all the requested information above. Commit and push this to your repo. Also commit and include the requested screenshots. Once you have done this, you can consider the assignment submitted.