The task was to create some virtual machines on the yamuna.fossee.in server using VirtualBox. Then, make those VMs globally accessible using IPv6.
- Hosting services on IPv6 should be possible.
- Securely SSH into the server using IPv6.
- Apply standard FOSSEE
firewalldrules for IP whitelisting.
The process involved creating a VirtualBox VM, configuring a host-only network (vmbr0) for initial IP allocation, and enabling SSH access. A bridged network was then set up on a secondary interface to assign a static IPv6 address manually, ensuring global accessibility. Finally, a NAT connection on the primary interface provided IPv4 connectivity for internet access. Process
Next step in the task was to configure the firewall such that only certain services and subnets are able to access our machine. The reduces Attack Surface and make our servers more secure. I was not able to complete this part of the task. Refer to this for my findings.
The task was successfully executed by leveraging VirtualBox's powerful tools and automation scripts. The process involved efficiently setting up IPv6 addresses for VMs and ensuring seamless connectivity, making the VMs globally accessible while adhering to FOSSEE security standards.
However when firewall rule were applied, they interfered with networking and blocked all incoming traffic.
I recommend these options:
- KVM/QEMU: Easy to use and more powerful cmd.
- Proxmox: Has a convenient to use WebUI along with a more powerful cmd, it also has the feature to make globally accessible VMs.