Jump to content
  • CLC SEC Rack Access Guide


    Rihaza Norby
     Share

    [ Do not try to login once your time is completed, if you try to access lab after your time, 100 credits will be deducted from your account without any prior notice / explanation ]

    Prerequisite

    Download EVE-NG Client Pack (Putty & VNC will not work if not downloaded)

    Windows : https://www.eve-ng.net/index.php/download/#DL-WIN
    MAC  : https://www.eve-ng.net/index.php/download/#DL-OSX
    Linux : https://www.eve-ng.net/index.php/download/#DL-LIN

     

    Read All Question First and Map it with topology.

    1. Do not Power ON all devices follow the procedure as per this guide.
    2. Make sure ASA1-2 are in Multi Mode and ASA3-4 in Single Mode
    3. All devices and switches console connection is up and running specially ISE, DNAC, FireAMP, ASA & Stealth watch. ( check as per Section) 
    4. Make Following changes and verification on ISE in starting as it will take around 20-30 minutes. 
    5. Ping all next hops IP’s.
    6. Check EIGRP & OSPF neighborship on routers/switches wherever configured. 
    7. All ASA’s are blank, you’ve to start from scratch. 
    8. In Exam cisco used cisco.com as a domain name, but in clc lab it is clc.local 
    9. Accessing WSA, use MS internet explorer 11 . 
    10. Access other URL, use MS Edge installed on Management PC 
    11. All router’s interfaces you’ll have to no shutdown.
    12. Wipe the device & start as per Section required.

    CLC recommended to complete Section2 first & then start Section1, as Section1 is completely depend on connectivity, which depends on Section2.

    image.png.bb0957e98ac0c28ce3c0d4f7f902b294.png

     

    STEP 1:

    1. Go to the browser and enter https://clc.openvpn.com (use in incognito mode) 

    2022-08-31_23h17_18.thumb.png.eb6f7c19e4a854c94cd694e5566315d0.png

     

    2. Download the suitable VPN Client

    2022-08-31_23h19_15.thumb.png.6d9061e66d4ec09b12ee46ae828f7688.png

     

    3. Once Downloading is done, Install the VPN Client

    2022-08-31_23h19_57.png.ee55c1408328299a58f2bb8c910873f1.png

     

    4. Enter your username & password

     2022-08-31_23h20_05.png.c90787581929a58ca06550b1ef001138.png

     

    5. After login select the nearest location your country

     2022-08-31_23h20_32.png.61c4a3d2b8138eb5ca158740bc57a16d.png

     

    6. After performing all steps, you will see below screen, and after that you will be able to access our Racks.

    2022-08-31_23h20_54.png.12988eb67a5cf80672e1135d85bafd79.png

     

    STEP 2:

    IP ADDRESS AND CREDENTIALS TO ACCESS OUR RACK

    DOMAIN

    SYSTEM

    DNS NAME

    LOGIN DETAILS

    SEC R1

    EVE

    https://secr1.clc.local

    admin / eve

    DNAC

    https://secr1-dnac.clc.local

    clc / [email protected]#

           

    SEC R2

    EVE

    https://secr2.clc.local

    admin / eve

    DNAC

    https://secr2-dnac.clc.local

    clc / [email protected]#

           

    DNAC REVERT

    EI R1 DNAC

    https://secr1.dnac.clc.local

    clc / Crach?03t$&w_uTh

    EI R2 DNAC

    https://secr2.dnac.clc.local

     

    STEP 3:

    Steps for reverting Eve-ng Lab

    1. Login the Eve-ng Lab with Cred

    image.thumb.png.d3069f31509ce489ce806c4dc0f7133a.png

    2. After Login Click on -> More Action -> Wipe all Nodes (WAIT TILL ALL DEVICES GET SHUTDOWN)

    image.thumb.png.25eda172c3806f2b715b4212674c12b0.png

    Start devices as per section (DO NOT START ALL DEVICES)

    3. If any device is not coming up on console, so please wipe that device again.

    image.thumb.png.7ade0fbc38f249333c10fd0c76c01b1a.png

     

    Verify all devices are come up on console.

    1. GUI Devices

    • ISE
    • FMC NGIPS
    • IPS
    • WSA
    • ESA
    • FireAMP Cloud
    • FMC FTD
    • FTD1 & 2
    • SMC
    • FC
    • NGIPS

    2. All Router & Switches.

    3. Windows Systems

    • AD-DNS
    • Management PC
    • Sales PC
    • Finance PC
    • Marketing PC
    • Engineering PC
    • TAC PC
    • QA PC
    • Contractor PC

    NOTE : All Routers interfaces you’ll have to no shut might be they will be in  shutdown 

    STEP 4:

    Steps for reverting Cisco DNAC

    1. Login the ESXi Host with Cred

    image.thumb.png.76d2f4bf4af4c2ab8ed00dd6f47eb5bc.png

    image.thumb.png.83660d30b79f04b0d5a0852e927b461d.png

    2. Select DNAC VM -> Action -> Snapshots -> Manage Snapshots

    image.thumb.png.f4ad25d1b077a31624725801897d31f2.png

    3. Click on Initial -> Restore Snapshot (it will get power off)

    image.thumb.png.ad8d9eba486538139086b2e94d28e199.png

    4. Close it then power on DNAC VM (Verify as per below Diagram )

    image.thumb.png.543935ca6404e23e1dc41a8c5e3d2b38.png

    NOTE:  DNAC takes 30 minutes to come up after reverting.

    After Login to DNAC if it ask for setup do exit the one time setup as it is already done.

    image.png

    image.png

    image.png

     

    Device Login details

     

    S/N

    Device

    User

    password

    Device

    AD UserID

    Pass

    1

    R1

    clc

    clc

    Router

    contractoruser1

    Cisc0123

    2

    R2

    clc

    clc

    engineeringuser1

    3

    R3

    clc

    clc

    financeuser1

    4

    R4

    clc

    clc

    marketinguser1

    5

    R5

    clc

    clc

    qauser1

    6

    R6

    clc

    clc

    salesuser1

    7

    R7

    clc

    clc

    tacuser1

    8

    R8

    clc

    clc

    Administrator(AD Login)

    [email protected]#

    9

    R9

    clc

    clc

       

    10

    R10

    clc

    clc

       

    11

    R11

    clc

    clc

       

    12

    R12

    clc

    clc

       

    13

    R13

    clc

    clc

       

    14

    R14

    clc

    clc

       

    15

    R15

    clc

    clc

       

    16

    R16

    clc

    clc

       

    17

    SW1

    clc

    clc

    Switches

       

    18

    SW2

    clc

    clc

       

    19

    SW3

    clc

    clc

       

    20

    SW4

    clc

    clc

       

    21

    SW5

    clc

    clc

       

    22

    SW6

    clc

    clc

       

    23

    SW7

    clc

    clc

       

    24

    SW1-P

    clc

    clc/cisco

       

    25

    SW2-P

    clc

    clc/cisco

       

    26

    All ASA

     

    You've to configure from Scratch, you've to keep username cisco & pass cisco

    SSH & GUI password are same (all these devices open from Management PC

    Remark

    S/N

    Device

    user

    password

    IP

    URL

     

    1

    ISE

    admin

    [email protected]#

    150.1.7.111

    https://ise2.clc.local

    MS Edge

    2

    WSA

    admin

    [email protected]#

    150.1.7.213

    https://wsa.clc.local:8443

    Microsoft IE

    3

    ESA

    admin

    [email protected]#

    150.1.7.219

    https://esa.clc.local

    MS Edge

    4

    FMC NGIPS

    admin

    [email protected]#

    150.1.7.251

    https://fmc620.clc.local

    MS Edge

    5

    NGIPS

    admin

    [email protected]#

    150.1.7.252

    NA

    MS Edge

    6

    FMC FTD

    admin

    [email protected]#

    161.1.7.15

    https://fmc-ftd.clc.local

    MS Edge

    7

    FTD1

    admin

    [email protected]#

    161.1.7.16

    NA

    MS Edge

    8

    FTD2

    admin

    [email protected]#

    161.1.7.18

    NA

    MS Edge

    9

    SMC

    admin

    [email protected]#

    161.1.7.22

    https://labsmc.clc.local

    MS Edge

    10

    FC

    admin

    [email protected]#

    161.1.7.23

    https://fc.clc.local

    MS Edge

    11

    FireAMP admin

    NA

    [email protected]#

    150.1.7.216

    https://fcadmin.clc.local

    MS Edge

    12

    FireAMP Console

    [email protected]

    [email protected]#

    150.1.7.217

    https://console.clc.local

    MS Edge

    13

    DNAC

    clc

    [email protected]#

    172.20.54.220

    Open in GCP Server

    in Exam 150.1.7.115

    14

    Kali Attacker

    clc

    [email protected]#

    150.1.7.226

    NA

    in Exam open from Mgmgt-PC with Mputty

     Share


    User Feedback

    Recommended Comments



    Guest
    This is now closed for further comments

×
×
  • Create New...