◼️
General Knowledge
  • Introduction
  • Building a Home Lab
  • Certification Roadmap
  • Basics
    • Basic Networking
    • Basic Gigamon Configuration
  • Firewalls
    • PFSense
    • Cisco ASA
  • Hardware Setup and Device Networking
    • Cisco Device
    • MaxVision Servers
    • Gigamon
  • Reporting
    • Network Activity Report (NAR)
    • Network Change Request (NCR)
    • Redmine
  • DCO Tools
    • Splunk
      • Threat Hunting with Splunk
    • Security Onion 2.4
      • Threat Hunting with Security Onion
    • OsQuery
  • Methodology
    • Gather Information
    • Gather Documents
    • Prepare Equipment and Team Procedures
    • Conduct Network Reconnaissance
    • MITTRE ATT&CK Framework
    • Considerations when Recommending Remedial Action
    • Document Everything
    • Defensive Cyber Operations Checklist
  • Requirements
    • Power Requirements
    • Port Density Requirements
    • Opened Port Requirements
  • Building a Virtual Testing Environment
    • Identify Requirements
    • Gather Equipment and tools
    • Initial Draft
    • Building the Environment
    • Example
Powered by GitBook
On this page
  1. Requirements

Port Density Requirements

Ports required for different build-outs

Typical Port numbers required

For a buildout that has :

  • 1 Server

  • 1 Switch

  • 1 Gigamon

You would require one port on the customer switch and the ports for the inline tap. This assumes that the server is providing a firewall with a NAT connected to the operator switch which is what the analysts connect to

Typically, customers have very few ports available for cyber operators so the most effective way to connect to the customer network is to have one port (on the customer switch) that connects to a firewall where all DCO is using NAT to one outward IP

In a scenario with the following build-out:

  • 1 Server with DCO tools installed directly on the hardware

  • 1 Gigamon

You would need at least two ports. One for web access to your tools and one for IPMI of the server itself. This, along with the tap

In any operation or exercise, it's essential to understand how many ports are required as far in advance as possible to give those requirements to the customer.

PreviousPower RequirementsNextOpened Port Requirements

Last updated 2 years ago