CHR in EVE-NG environment for learning/testing purposes

Ihor Hreskiv

MUM Hungary

Budapest - May 2019

Ihor Hreskiv - MUM HungaryBudapest - May 2019

IHOR HRESKIV

ABOUT ME

System administrator and system architect with over 20 years of experience in different kinds of business from government companies to own coworking space in Cracow, Poland

Experience in: virtualisation (desktop and infrastructure) linux, bsd systems networking routing vpnihor@mwtc.pl

Ihor Hreskiv - MUM HungaryBudapest - May 2019 �3

CHR - What’s this?

WHY CHR

Cloud Hosted Router

a RouterOS image specifically tailored for running in virtual environments

CHR - minimal requirements

WHY CHR

64-bit CPU with virtualisation support

128 MB RAM for the CHR instance

128 MB disk space for the CHR virtual hard drive

CHR - Supported platforms

WHY CHR

• VMware ESXi/Fusion/Workstation/Player

• Microsoft Hyper-V

• QEMU

• VirtualBox

Hypervisors that provide paravirtualization are not supported!

licensing

WHY CHR

License Speed limit Price

Free 1Mbit FREE

P1 1Gbit $45

P10 10Gbit $95

P-Unlimited Unlimited $250

60-day free trial license is available for all paid license levels

CHR - REAL LIFE CASE SCENARIO

CHR - The Router

• Extends VMware ESXi standard switch functionality

• Adds full featured router for network layer of virtualisation

• Adds VPN and dynamic routing functions for border with advanced firewall

CHR - The Dude

CHR - REAL LIFE CASE SCENARIO

• Bandwidth is enough for monitoring with free license usage

• Can be used as backup monitoring system

• In combination with VPN can monitor remote sites/users

EVE-NG

learning/testing environments

WHY EVE-NG

learning/testing environments

eve-ng some features

• KVM HW acceleration

• Topology designer "click and play"

• Labs in xml file format

• Custom Kernel support for L2 protocols

• Memory optimisation ( UKSM )

• Full HTML5 User Interface

• Ability to use without additional tools

WHY EVE-NG

platforms for eve-ng

• .ova template for hypervisors

• Bare metal installation

• Install on Ubuntu system

WHY EVE-NG

comparing versions

Features/Edition Community Proffesional Learning center

Price Free 99 eur w/o VAT 99 eur + roles

User’s role admin only admin only admin, user, editor

Lab timer X X V

Node limit per lab 63 1024 1024

HTML5 Desktop X V V

Link quality X V V

Multi startup config X V V

Advanced design X V V

Docker support X V V

download link for eve-ng community edition

https://www.eve-ng.net/downloads/eve-ng-2

integration packs for eve-ng

https://www.eve-ng.net/downloads/windows-client-side-pack

Windows and Linux systems have the client side, which includes:

- Wireshark - UltraVNC - Putty - necessary wrappers

https://www.eve-ng.net/downloads/linux-client-side

quick deployment from .ova template:

VmWare player MS Hyper-V under Windows 10 Professional

installing CHR in eve-ng

1. Login into eve-ng host by ssh

2. Download CHR image from mikrotik.com/download

3. Create necessary directory, according to docs

4. Unpack and rename [version].img file to hda.qcow2

5. Move image to previously created directory

6. Fix permissions of the files and directories

Script for install CHR and labs from presentation are available in GitHub repository

https://github.com/hreskiv/chr-eve-ng

QUICK START

FIRST PROJECT

default credentials: Username: root Password: eve

starting first project in eve-ng

login to your virtual machine

FIRST PROJECT

get a copy of script chr-eve.sh (from GitHub)

simply run a script for adding CHRsh chr-eve.sh 6.44.3

next steps will be in your browser

wget https://github.com/hreskiv/chr-eve-ng/raw/master/chr-eve.sh

starting first project in eve-ng

FIRST PROJECT

default credentials: Username: admin Password: eve

http://[ip.address.of.eve.ng]

starting first project

FIRST PROJECT

creating new lab button

name your project

adding project

FIRST PROJECT

your workbench in eve-ng

adding nodes/networks

manipulating startup-configs

actions for all nodes like start/stop or wipe

FIRST PROJECT

adding node to project

quick search field

FIRST PROJECT

choose version of RouterOS*

select network cards driver*

* you can host multiple versions

* virtio-net-pci consumes less memory

adding node to project

FIRST PROJECT

add management network for your project

* you can have more than one

adding network to project

FIRST PROJECT

connecting node and network

FIRST PROJECT

controls of your VM

start/stop your CHR

wipe configuration of your CHR

export configuration of your CHR

delete your CHR

capture traffic on interfaces of your CHR

IMPORT/EXPORT

startup configurations

after clicking Export CFG, you can see and edit in simply text editor configuration of your router

slider ON/OFF allow applying on startup configuration after wiping router

IMPORT/EXPORT

delay 10s command from router os, give a 10 seconds to router for starting up interfaces*

* 10s is experimental value and you can change it according to your needs

startup configurations

IMPORT/EXPORT

import/export buttons allow you transfer your labs between computers with configuration of previously configured routers

import/export configurations in eve-ng

DEMO 1 - HELLO WORLD

let’s start from «Hello world»

CHR Internet

DEMO 2 - STATIC ROUTING

topology

192.168.10.0/25 172.16.11.0/27

connection linkbetween routers

lab in eve-ng

DEMO 2 - STATIC ROUTING

DEMO 3 - OSPF MULTI AREA

OSPF multi area topology

backbone

area 3

area 1

area 2

internet

192.168.3.0/24

192.168.2.0/24

192.168.1.0/24

10.0.0.0/8

DEMO 3 - OSPF MULTI AREA

OSPF multi area topology

THANK YOU

Questions?

ihor@mwtc.pl https://github.com/hreskiv/chr-eve-ng

CHR in EVE-NG environment for learning/testing purposes · 60-day free trial license is available...

Documents

Http Www.hotelschool.cornell.edu Chr PDF Showpdf Chr Research Tools Carrolltool.pdf My Path Info=Chr Research Tools Carrolltool

ITME Africa Flyer 2 · FORTUNE FAVORS THE BRAVE Pioneet2 JoinThe expedition - ITME Africa 2020. Book your berth now. ute . CHR 1 CHR 2 CHR 3 CHR 4 CHP. 5 CHR 7 CHR 8 CHA 9 CHR 11

Ihor Podolchak's Press Archive (2000-2001)

GTC – Gyrokinetic Toroidal Code Training course: Part I Ihor Holod

Ihor Podolchak. Catalog. Painting 1983-2002

Ihor Podolchak. Catalog. Mixed media and photography

Chr. Mannenkoor Jubilate Deo · 2013-11-18 · Chr. Gemengd koor Jubilate Deo Chr. Mannenkoor Jubilate Deo Chr. Gemengd koor Jubilate Deo Chr. Mannenkoor Jubilate Deo Pag. 3 1. Welkom

Ihor Podolchak. Catalog. Prints 1983-1997

RAPPOR T - Heumen · 2020. 9. 8. · 150 na Chr. 700 voor Chr. 320 na Chr. 250 na Chr. 1650 na Chr. 2200 voor Chr. 3750 voor Chr. 6500 voor Chr. RAPPOR T Archeologisch Adviesbureau

Service des Urgences - CHR Haute Senne - CHR Haute Senne

IHOR PODOLCHAK. Works. (Mixed Technique 1986 - 2001)

RAPPOR T - Rijksdienst voor het Cultureel Erfgoed · 2016. 11. 6. · 150 na Chr. 700 voor Chr. 320 na Chr. 250 na Chr. 1650 na Chr. 2200 voor Chr. 3750 voor Chr. 6500 voor Chr. RAPPOR

Chirurgie - CHR Haute Senne - CHR Haute Senne

경암바이오유스캠프강의2014 유전자와게놈의진화 · -hoxd1 -hoxa1-hoxa2-hoxb1-hoxb2 chr#2 chr#7 chr#12 chr#17 hoxc13 hoxd13 hoxa2 hoxb2 hoxa6 hoxb6 hoxc6-hoxd3-hoxd4

Users’ Manual of QTL IciMapping v3 · chr 1 chr 2 chr 3 chr 4 chr 5 chr 6 Testing position LOD score QZ1 QZ2 QZ3 QZ4 QZ5 QZ6QZ7 QZ8 QZ9 QZ10 6 QZ1 QZ2 QZ3 QZ4 QZ5 QZ6 QZ8 QZ9 8

Thick Presentism and Newtonian Mechanics Ihor Lubashevsky

Full Chr-17 & Chr-18

IHOR PODOLCHAK. Works (Painting 1983-2002)

IHOR PODOLCHAK. Selected Photos 1987-2004. Part #1

IHOR PODOLCHAK. Selected Works