Morning all,
I've been lucky enough to get myself a spot in a top-notch SOC. While I'm a smart kid, I'm still a long way from being an expert, and one of the steps on the road to becoming a security zen master is a way to learn all the stuff I won't learn on the job. Hence, personal lab is required. I've had some ideas, and some advice from a good friend who knows what he's talking about, and some of his advice was to ask you guys for thoughts.
My main goals for a lab are:
- Proxy server
- Firewall
- VPN
- Some sort of basic NIDS/NIPS
Additional goals, but these are stretch goals:
- DHCP
- Start learning about AD
- Pen testing
- Malware analysis
My budget isn't huge but I can probably stretch to close to €1,000 at the minute.
I'm still working on the details, which is where I hope you can come in with some thoughts. Firstly, hardware. I'm thinking that I can get a shuttle/HTPC box and max out the RAM (16GB or even 32), then virtualize most of the functions with ESXi. Should I plan for more than one physical box or is one enough for now?
For OS, I want to do as much with Linux as possible because although I've used it, I'm still pretty green. Are there distros you would recommend for this? Bonus points for the less dependency headaches I have with installing the various software packages.
I've only done a very small amount of exploration on applications, enough to suggest that squid might be a good place to start for a proxy but no more than that really.
Walkthroughs, guidance, instructions - I know what it's like to be constantly pestered by newbies on really basic questions so if you can point me at resources that will help to save me from asking them, that would be great. I have a couple of books that I'm sure will have some relevant stuff in, but they're not exactly tailored to this specific task - if you know of more that will be a good idea for me to read for this purpose, please say so.
Finally, if I also plan on setting up a media server, could this be done on the same machine or should I avoid that? Thanks for your time,
fearnothing