Finally getting time to write about my experience building out my security lab and some of the things I found along the way. As versions and tools change, I wanted to make a note of the hardware and versions I'm currently using in my lab. I'm using the following in my lab unless otherwise specified:
- UCS C220 M3 - 2x 6-core processors, 128GB RAM, 6x 1.2TB SAS drives (RAID 1)
- ESXi and vCenter 6.0
- 3650 48-Port Switch running 3.07.01E with IP Base
- 3602i Wireless Access Point
- vWLC 8.1.111.0
- Windows Server 2012
- ASA 5506 running 9.5(1)5 and ASDM 7.5(1)
- Firepower Module on the ASA is running 6.0.1005
- ISE 2.0 VM with Patch 1
- Firepower Management Console VM v6.0.1005
- WSA VM v8.8
- Nexus 5.2(1)SV3(1.5a)
In later posts, I'll try to run through Firepower v5.4 for the ISE remediation module aspect of it unless it's already released on v6.x by then and I will be adding Lancope to the lab as well. I plan on covering a wide variety of different things in these blogs posts including the following:
- Certificate Template Creation in Active Directory
- GPO creation
- Pxgrid Integration
- Basic ISE configuration
- Basic dot1x switch configuration
- Basic Wireless Controller configuration
- Dot1x policy creation
- BYOD policy creation
- MDM integration
- Guest Wireless policy creation
- Hotspot Wireless policy creation
- Profiling
- Nexus 1000v installation
- TrustSec configuration in ISE
- Nexus 1000v Basic TrustSec configuration
- Switch and Wireless Controller TrustSec configuration
- Basic ASA configuration
- ASA TrustSec configuration
- Firepower setup
- Pxgrid integration with FirePower
- Connecting AMP for Endpoints to Firepower
- WSA setup and Pxgrid integration
- Netflow configuration on devices for Lancope
- Lancope Pxgrid integration
- Fire and ISE remediation policies
- Posture policy creation
- VPN policy creation
...And whatever other crazy things I can think of. I hope this can be beneficial to everyone reading this out there and maybe help you in your own environments or give you some different ideas on how to deploy some of the technology.