A Reference Network for Testing

A high level overview of a reference network representative of a small home or small business network utilizing a Linux server to perform functions such as filtering, reporting, intrusion detection, management, and segmentation.

advertisement

The figure below depicts a real network that we use for a subset of our Private Island testing and as a reference for developing documentation for this site. The devices are chosen to represent a typical private network that presents various privacy and security challenges. The network consists of an an Android tablet and an iPhone on a wireless subnet and a Windows 7 laptop and miscellaneous web cameras on a wired subnet.

reference network

The private network is both filtered and protected. Access to specific Internet ports, services, and web sites are blocked. The devices utilize DHCP to receive their IP addresses from the Linux server. We configure each device that we support for a specific IP address, so we can easily identify the device on the network when working with logs, packet sniffing tools, etc. Fixed, known addresses are also useful when implementing policy and identifying intruders.

On this network, we instantiate and test one of two Linux servers with very similar configurations. One instance is an off-the-shelf PC running Ubuntu 16.0.4 server, and the other instance is an NXP P1010RDB running the mainline Linux kernel with a distribution built using the Yocto Project.

Both servers have integrated WiFi. The Ubuntu server utilizes a TP-Link TL-WDN4800, which is powered by an Atheros AR93xx chipset and uses the Linux ath9k drivers. The P1010RDB utilizes a Compex mini PCIe 802.11ac WLE900VX card, which is powered by the Atheros QCA9880 chip set and uses the ath10k drivers.

Please help us improve this article by adding your comment or question:

email addresses are neither displayed nor shared