Deterlab Tutorial CS 285 Network Security. What is Deterlab? Deterlab is a security-enhanced experimental infrastructure (based on Emulab) that supports.

Slides:

Advertisements

Similar presentations

Brief Intro to ns2: The most widely used Network Simulator COMP5416 Advanced Network Technologies Based on: Marc Greis's

Advertisements

Ns-2 Tutorial Exercise (1) Multimedia Networking Group, The Department of Computer Science, UVA Jianping Wang Adopted from Nicolas’s slides Jianping Wang,

PlanetLab What is PlanetLab? A group of computers available as a testbed for computer networking and distributed systems research.

1 Use ProtoGENI CS606, Xiaoyan Hong University of Alabama.

KX-NS1000 Initial Set Up For step by step : 16 May,

© Copyright 1997, The University of New Mexico C-1 Internet Service Provider Services What to do once you’re connected.

Introduction to Emulab. W W W of EMULAB Who came up with Emulab??? What is Emulab??? Why something like EMULAB??

Chapter 23: ARP, ICMP, DHCP IS333 Spring 2015.

Chapter 27 Q and A Victor Norman IS333 Spring 2015.

hotEx RADIUS Manager Installation

Using the jFed tool to experiment from zero to hero Brecht Vermeulen FGRE, July 7 th, 2015.

Amazon EC2 Quick Start adapted from EC2_GetStarted.html.

 2013, Infotecs ViPNet Technology Advantages.  2013, Infotecs GmbH In today’s market, along with the ViPNet technology, there are many other technologies.

CRON: Cyber-infrastructure for Reconfigurable Optical Networks PI: Seung-Jong Park, co-PI: Rajgopal Kannan GRA: Cheng Cui, Lin Xue, Praveenkumar Kondikoppa,

Customized cloud platform for computing on your terms !

Pc Naming Configuration 1.WEB REGISTER 2.FIXNAME 3.MCAFEE AGENT SETUP ITC Training: Session 2.

Sarah Edwards, GENI Project Office

Switch Concepts and Configuration and Configuration Part II Advanced Computer Networks.

Redes Inalámbricas Máster Ingeniería de Computadores 2008/2009 Tema 7.- CASTADIVA PROJECT Performance Evaluation of a MANET architecture.

1 John Magee 9 November 2012 CS120 Lecture 17a: Publishing Web pages.

PrimoGENI Tutorial Miguel Erazo, Neil Goldman, Nathanael Van Vorst, and Jason Liu Florida International University Other project participants: Julio Ibarra.

1. 2 Device management refers to the IDS Sensor's ability to dynamically reconfigure the filters and access control lists (ACL) on a router, switch, and.

Using the jFed tool to experiment from zero to hero Brecht Vermeulen Thijs Walcarius GEC 22, March 24 th, 2015.

SDN Dev Group, Week 2 Aaron GemberAditya Akella University of Wisconsin-Madison 1 Wisconsin Testbed; Design Considerations.

COMP1321 Digital Infrastructure Richard Henson February 2014.

| nectar.org.au NECTAR TRAINING Module 5 The Research Cloud Lifecycle.

Definitions What is a network? A series of interconnected computers, linked together either via cabling or wirelessly. Often linked via a central server.

Client – Server Application Can you create a client server application: The server will be running as a service: does not have a GUI The server will run.

O.S.C.A.R. Cluster Installation. O.S.C.A.R O.S.C.A.R. Open Source Cluster Application Resource Latest Version: 2.2 ( March, 2003 )

Image Management and Rain on FutureGrid: A practical Example Presented by Javier Diaz, Fugang Wang, Gregor von Laszewski.

Sponsored by the National Science Foundation 1 September 15, 2015 Are you ready for the tutorial? 1.Grab a Worksheet and instructions 2.Did you do the.

Linux Networking Security Sunil Manhapra & Ling Wang Project Report for CS691X July 15, 1998.

Network Simulator-2 Sandeep singla 1998A2A7540. NS-2 A discrete event simulator Focused on modeling network protocols –Wired, wireless –TCP,UDP,unicast,multicast.

Sponsored by the National Science Foundation GENI Terminology: How All the Pieces Fit Together Sarah Edwards GENI Project Office.

Sponsored by the National Science Foundation 1 GREESC15– May 25, 2015 Are you ready for the tutorial? 1.Grab a Worksheet and instructions 2.Did you do.

Sample Presentation Headline REPRESENTATIVE SUBHEAD TO SUPPORT SUBJECT Presenter’s Name Presenter’s Title Presentation Date DeterLab A Tool for Cybersecurity.

VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.

Core 3: Communication Systems. Network software includes the Network Operating Software (NOS) and also network based applications such as those running.

Large-scale Virtualization in the Emulab Network Testbed Mike Hibler, Robert Ricci, Leigh Stoller Jonathon Duerig Shashi Guruprasad, Tim Stack, Kirk Webb,

Shivkumar Kalyanaraman Rensselaer Polytechnic Institute 1 Based upon slides from Jay Lepreau, Utah Emulab Introduction Shiv Kalyanaraman

© 2008 Cisco Systems, Inc. All rights reserved.CIPT1 v6.0—1-1 Getting Started with Cisco Unified Communications Manager Installing and Upgrading Cisco.

Switching Topic 2 VLANs.

| nectar.org.au NECTAR TRAINING Module 5 The Research Cloud Lifecycle.

Sample Presentation Headline REPRESENTATIVE SUBHEAD TO SUPPORT SUBJECT Presenter’s Name Presenter’s Title Presentation Date DeterLab A Tool for Cybersecurity.

Sponsored by the National Science Foundation Today’s Exercise.

A Testbed for Study of Thermal and Energy Dynamics in Server Clusters Shen Li, Fan Yang, Tarek Abdelzaher University of Illinois at Urbana Champaign.

+ Routing Concepts 1 st semester Objectives  Describe the primary functions and features of a router.  Explain how routers use information.

Lab 8 Overview Apache Web Server. SCRIPTS Linux Tricks.

1 Emulab's Current Support For IXPs: An example of support for non-PCs.

CS 283Computer Networks Spring 2013 Instructor: Yuan Xue.

@Yuan Xue CS 283Computer Networks Spring 2011 Instructor: Yuan Xue.

Claudio Grandi INFN Bologna Virtual Pools for Interactive Analysis and Software Development through an Integrated Cloud Environment Claudio Grandi (INFN.

Part 1: How to use EasyAccess 2.0 Similar to your social network software, such as Skype, WhatsApp. One license for each HMI No license is needed for.

COMP1321 Digital Infrastructure Richard Henson March 2016.

Cisco 2 - Routers Perrine. J Page 16/26/2016 Chapter 2 Cisco IOS Software Cisco’s operating system is called Cisco Internetwork Operating System (IOS)

© 2002, Cisco Systems, Inc. All rights reserved..

SECURE LAB: CREATING A CISCO 3550 VLSM NETWORK

6. The Open Network Lab Overview and getting started

Gateway HDL-MBUS01IP.431.

Using the jFed tool to experiment from zero to hero

File System Implementation

Chapter 5: Switch Configuration

Configuration of Cisco Routers in GNS3

Welcome To : Group 1 VC Presentation

Chapter 5: Switch Configuration

Chapter 10: Advanced Cisco Adaptive Security Appliance

Implement Inter-VLAN Routing

Lecture9: Embedded Network Operating System: cisco IOS

Lecture9: Embedded Network Operating System: cisco IOS

Presentation transcript:

Deterlab Tutorial CS 285 Network Security

What is Deterlab? Deterlab is a security-enhanced experimental infrastructure (based on Emulab) that supports repeatable medium-scale cyber security experiments. You can have control of a pool of real PC experimental nodes that are assigned, interconnected with high-speed links in a nearly-arbitrary topologies, loaded with software and monitored remotely. Doesn’t it sound cool?!

How does Deterlab work? The software running Deterlab will load operating system images onto free nodes (rebooting the machine), reconfigure programmable switches to create VLANs according to the specified topology, then execute specified scripts, and/or install rpm files, etc. Every experiment node has at least two interfaces, connected to both “Control network” (route control info and config signals, fixed ip addresses) and “Experiment network” (route your experiment traffic)

Start an experiment Login to Deterlab using your account. Load a NS file specifying the network topology or use GUI to generate it. An invisible node will be added between two nodes to simulate their link delay, loss, etc. set ns [new Simulator] source tb_compat.tcl set nodeA [$ns node] set nodeB [$ns node] set nodeC [$ns node] Set nodeD [$ns node] set link0 [$ns duplex-link $nodeB $nodeA 30Mb 50ms DropTail] tb-set-link-loss $link set lan0 [$ns make-lan "$nodeD $nodeC $nodeB " 100Mb 0ms] $ns rtproto Static $ns run

Control an experiment Swap in experiment: wait for several minutes, until notification from or webpage. View experiment configuration information. Perform your assignment via accessing experimental nodes. Save your work at HOME directory on experimental nodes (explained later). After you are done with experiment, always swap out the experiment to relinquish physical resources. Don’t “terminate” the experiment unless you don’t want to repeat it again.

Experiment Config Info Qualified Name: the “control interface” of experimental nodes. It will change with different “swap in” Physical: actual allocation for your experiment. It will change every time you swap in your experiment. IP/Mask: IP addresses for your specified experiment network. Refer to other nodes in your Experiment using IP address. Don’t use Qualified Name or Physical. Otherwise, the traffic goes thru “Control network”, not “Experiment Network”.

Access experiment nodes ssh (Secure Shell) to users.deterlab.net using your account, which is the “Control Server” for your experiment. Then ssh to other experimental nodes. eg. “ssh pc61 or “ssh nodeA.myexp.myproj.emulab.net” All your files/data can be uploaded and stored at your HOME directory at: users.deterlab.net. They are all automatically visible to all experimental nodes via NFS. Save your work at HOME directory at experimental nodes, also visible to your control node. They all map to one identify place. Make sure you save your work and there is no confliction among your saved work before you swap out your experiment. Note: every time you swap in, the machine will change, which will affect your software configuration and requires you reinstall those software. You can create an image, which can be automatically loaded when the machine is booted. (refer to:

References Questions?