Network Setup¶
Network Topology¶
┌─────────────────────────────────────────────────────────────┐
│ INTERNET │
│ (via building WiFi) │
└──────────────────────────┬──────────────────────────────────┘
│
│ WiFi
│
┌────────▼─────────┐
│ M1 MacBook │
│ │
│ en0 (WiFi): │
│ 192.168.5.182 │────► Internet access
│ │
│ en7 (Ethernet): │
│ 192.168.1.10 │────┐
│ │ │
│ bridge100: │ │
│ 192.168.64.1 │ │
└──────────┬───────┘ │
│ │
Virtual │ │ Physical
Network │ │ Ethernet
│ │
┌──────────▼───────┐ │
│ Parrot VM │ │
│ 192.168.64.3 │ │
│ │ │
│ (HTB: tun0) │ │
│ 10.10.14.52 │ │
└──────────────────┘ │
│
│
┌───────────▼───────────┐
│ Ethernet Switch │
└───┬───────┬───────┬───┘
│ │ │
┌─────────────┘ │ └─────────────┐
│ │ │
┌───────▼────────┐ ┌────────▼───────┐ ┌────────▼───────┐
│ Mac Mini 1 │ │ Mac Mini 2 │ │ Mac Mini 3 │
│ (Debian) │ │ (Debian) │ │ (Debian) │
│ │ │ │ │ │
│ enp4s0f0: │ │ enp4s0f0: │ │ enp4s0f0: │
│ 192.168.1.12 │ │ 192.168.1.13 │ │ 192.168.1.14 │
│ │ │ │ │ │
│ wlp3s0b1: │ │ wlp3s0b1: │ │ wlp3s0b1: │
│ 192.168.6.13 │ │ 192.168.6.14 │ │ 192.168.6.15 │
│ (WiFi) │ │ (WiFi) │ │ (WiFi) │
└────────────────┘ └────────────────┘ └────────────────┘
Network Breakdown¶
Network 1: Building WiFi (192.168.5.x or 192.168.6.x)¶
- M1 en0: 192.168.5.182
- Minis WiFi: 192.168.6.x
- Purpose: Internet access
- Gateway: 192.168.5.1 or 192.168.6.1 (router)
Network 2: Local Ethernet (192.168.1.x)¶
- M1 en7: 192.168.1.10
- Mini 1: 192.168.1.12
- Mini 2: 192.168.1.13
- Mini 3: 192.168.1.14
- Purpose: Direct device-to-device communication
- No gateway (local only, no internet)
Network 3: UTM Virtual Network (192.168.64.x)¶
- M1 bridge100: 192.168.64.1 (acts as router for VMs)
- Parrot VM: 192.168.64.3
- Purpose: Virtual machines on M1
- Gateway: 192.168.64.1 (M1 routes traffic)
Connection Matrix¶
Who Can Talk to Whom¶
| FROM | TO | HOW |
|---|---|---|
| M1 | Internet | Direct via WiFi (en0) |
| M1 | Minis | Direct via Ethernet (en7) |
| M1 | Parrot VM | Direct via bridge100 |
| Parrot VM | Internet | Via M1 NAT (en0) |
| Parrot VM | M1 | Direct (192.168.64.1) |
| Parrot VM | Minis | Via M1 NAT (en7) |
| Parrot VM | HTB targets | Via tun0 VPN |
| Mini 1 | Internet | Via WiFi (192.168.6.x) |
| Mini 1 | Mini 2/3 | Direct via Switch |
| Mini 1 | M1 | Direct via Switch (192.168.1.10) |
| Mini 1 | Parrot VM | Via M1 routing (can't directly) |
Key Concepts¶
1. Same Network = Direct Communication¶
- Mini 1 and Mini 2 both on 192.168.1.x → talk directly
- M1 and Parrot both on 192.168.64.x → talk directly
2. Different Networks = Need Router¶
- Parrot (64.x) to Mini (1.x) → M1 routes between them
- This is what the NAT/forwarding commands did
3. Physical vs Virtual¶
en7,enp4s0f0= physical ethernet ports/cablesbridge100= virtual interface created by UTM
4. Multiple Networks on One Device¶
- M1 has 3 IPs because it's connected to 3 networks
- Minis have 2 IPs (ethernet + WiFi)
- Each IP is a "door" to a different network
5. Routing/NAT¶
- M1 acts as middleman between VM and minis
- Changes packet addresses so replies work
- Without this, VM and minis can't communicate