How not to do network
in the Spring of 2016 held competitions on information security in Novosibirsk NSK CTF. The competition was held on two consecutive days, the first day is given to the students, the second — students. Total participation of 162 people, 19 school and 12 student teams. By the way, since the last competition (article about Sibsutis-CTF and video about school Sibsutis CTF 2015) interest only increases as increases and the level of training of participants. Is it simple?
the
I decided to describe the process of setting up a network for the event, and at the same time to tell of those experiences and any problems encountered. Perhaps the post will be useful for those competitions are carried out or intends to carry out, and also all wishing to have fun.Please enjoy.
The competition was held in the old and new building of the University context, SibSUTI. After the first day had to collapse the entire network and reconfigure it in another case.
One of the sponsors, D-link, without whom these competitions would not take place kindly provided us with a wide range of equipment, namely: DIR-300S, DIR-806A DIR-815C1, DIR-645, DIR-640L, DES-1005A, DES-1008D, DAP-2590, DAP-2360.
The equipment is not new, operating in the rental and, I suspect, he was treated mostlyreal boys professionals, so banal reset has turned into an interesting and exciting quest called “find contact button”. As a result of experiments it was determined: point Dlink equipped with a standard package of "counter-admin". On relief took up to 10 minutes. Also revealed a strange feature of routers dir-300, dir-600, dir-1000. The numbers in the title – the time necessary for these routers to run, presumably at the minute... all This stuff, but when it is necessary to configure a large number of equipment, waste of time become very significant.
the
Floor plans of the housing.
According to the rules in each classroom is a team, as well as router or AP. And IP plan for the classroom (ip heard from the public network in case of use of DAP and began with 20 to eliminate address conflicts):
the
Traditionally, all the most important cooking to do right before the start.
The competition starts at 9 a.m. April 10, at 18-00 hours on 9 April.
the
Before the start of the 15 hours:
The audience is not ready, no Internet, interactivity is not ready and the team of organizers is not allowed in the audience for a second in my head flashed the thought that in the morning at the gate will see the words: "good try....". As often happens in our country, people want to stand out, to show its importance, which affects the process. They need to care, to cherish and to persuade as small children. However, the human factor affects all aspects in all activities and do not consider it impossible.
Interactives. The command for configuring the network is not the only one and there were people, simultaneously engaged in the reconstruction of the maze for the robot type (Gauss gun), a training platform for virtual reality glasses and preparing audiences for the participants. Yes, the workshops also needed to move.
Some photos interactives:
The same robot with remote control and Gauss gun. And screenshots for VR:
By the beginning of the competition for the best system administrator, the team slept about 12 hours, you know, if the person is not sleeping nights, his reaction and mental abilities lose their power. Another factor is the nature of the activity. Hard work depletes the body. Remember what it means to concentrate or to hold a big event — the end of the day squeezed like a carrot on the moon. Get the ideal worker: tired, with poor memory and concentration, with a wandering attention. About any work you can forget.
Before the start of 13 hours:
Configured 2 routers. Point refuse "to roboticize". Waking hours – 14 hours starts to affect "the intoxication of lack of sleep". Slowly custom points tested. Be sure to take into account the channel spacing of the frequencies, as later shown, these are not empty words.
Before the start of 9 hours:
Configured and installed point for audiences, 451, 408, 420, 422. @ Test: DNS 8.8.8.8 and 195.149.200.230 (local ISP) is unavailable, the situation is unclear and mysterious. The settings for one of the TD: 172.112.19.53, DHCP is distributed from 54 to 74. Antenna-feeder device receives the signals of new problems. People frankly exhausted and a simple job turns into a complicated and protracted process.
Lucky for us, the rooms were computers, the cable connected to the network. The sensible idea is to check their settings bore fruit: a ip: 192.168.0.33.
In the classrooms configured internal network that goes through a firewall that blocks all connections, except on sibsutis.ru. We love good news. Very much.
Actually got 1 room, and it can not be used. But three other the Internet should be. You ask: "why not call the administrator, he will make the settings for the screen?" We will reply: "2am".
Theoretically, the Internet can hold a cable of 449, but the distance of 3-4 length for twisted pair does not overpower, despite the presence of switches. You will not find enough cable.
The nearest outlet with the intoxicating smell of Internet is in room 216. The decision is made, the network plan is developed!
Before the start of 5 hours:
Point configured and installed, only tests. They were still spent 2 hours as 2 and so on was incorrectly configured.
Before the start of the 3 hours:
All ready.
the
Despite concerns, this design worked steadily all day. The main problem is the hardware, more precisely the stability and speed of his work. For a one-time setup and long-term use is not a problem, but frequent changes to them, spent a lot of time.
Soon the team will start preparing now another school and interuniversity competitions. It's nice that despite all the problems the city of Novosibirsk got their competition up to a decent level. And even more encouraging is the fact that there are people who are able to organize it all, assemble, test and escort, quickly solving the inevitable problems that arise.
In the end I will leave links to videos and photos from the competition.
"Video about the competition
"Photo competition
Article based on information from habrahabr.ru
the
a Fragment of an interview:
Anton A. Kiselev, senior lecturer in security and management in telecommunications SibSUTI, curator of the project CTF in SibSUTI.
– How much time the organizers left to prepare for the competition?
It's impossible to measure. Skill, of course, is accumulating, and we have been easier to handle than last year. This time we spent a week at the most intense part of the training. I know that in Tomsk strenuously to prepare for two weeks. But good, you need to start even earlier in the month, to do everything slowly, and even better three months before the competition. It is necessary to prepare documents, coordinate with administration and other. Most likely will do so, especially if we decide in advance to conduct the selection. For example, in Samara, Russia at the international competition Volga CTF is the selection online in a few months. This year it was attended by 800 teams, and it's only been five. Maybe in school competitions, we also come to a similar selection scheme: for example, we skip the 15 best teams.
In any case, we got a good experience. Everyone was tired but happy. We had a guy who all the day of his birth decided to hold the competition (7:00 to 21:00).
The competition took place in a task based format, and for the diversity activity was additionally made interactive 2: the scout robot with a real Gauss gun and virtual reality glasses.
I decided to describe the process of setting up a network for the event, and at the same time to tell of those experiences and any problems encountered. Perhaps the post will be useful for those competitions are carried out or intends to carry out, and also all wishing to have fun.Please enjoy.
The competition was held in the old and new building of the University context, SibSUTI. After the first day had to collapse the entire network and reconfigure it in another case.
One of the sponsors, D-link, without whom these competitions would not take place kindly provided us with a wide range of equipment, namely: DIR-300S, DIR-806A DIR-815C1, DIR-645, DIR-640L, DES-1005A, DES-1008D, DAP-2590, DAP-2360.
The equipment is not new, operating in the rental and, I suspect, he was treated mostly
the
task
Floor plans of the housing.
According to the rules in each classroom is a team, as well as router or AP. And IP plan for the classroom (ip heard from the public network in case of use of DAP and began with 20 to eliminate address conflicts):
| 219.172.112.19.20 | 359.172.113.59.20 |
| 263.172.112.63.20 | 408.172.114.8.20 |
| 333.172.113.33.20 | 420.172.114.20.20 |
| 335.172.113.35.20 | |
| 346.172.113.46.20 | 449.172.114.49.20 |
| 347.172.113.47.20 | 451.172.114.51.20 |
| 349.172.113.49.20 | 457.172.114.57.20 |
| 358.172.113.58.20 |
Traditionally, all the most important cooking to do right before the start.
The competition starts at 9 a.m. April 10, at 18-00 hours on 9 April.
the
Development
Before the start of the 15 hours:
The audience is not ready, no Internet, interactivity is not ready and the team of organizers is not allowed in the audience for a second in my head flashed the thought that in the morning at the gate will see the words: "good try....". As often happens in our country, people want to stand out, to show its importance, which affects the process. They need to care, to cherish and to persuade as small children. However, the human factor affects all aspects in all activities and do not consider it impossible.
Interactives. The command for configuring the network is not the only one and there were people, simultaneously engaged in the reconstruction of the maze for the robot type (Gauss gun), a training platform for virtual reality glasses and preparing audiences for the participants. Yes, the workshops also needed to move.
Some photos interactives:
The same robot with remote control and Gauss gun. And screenshots for VR:
By the beginning of the competition for the best system administrator, the team slept about 12 hours, you know, if the person is not sleeping nights, his reaction and mental abilities lose their power. Another factor is the nature of the activity. Hard work depletes the body. Remember what it means to concentrate or to hold a big event — the end of the day squeezed like a carrot on the moon. Get the ideal worker: tired, with poor memory and concentration, with a wandering attention. About any work you can forget.
Before the start of 13 hours:
Configured 2 routers. Point refuse "to roboticize". Waking hours – 14 hours starts to affect "the intoxication of lack of sleep". Slowly custom points tested. Be sure to take into account the channel spacing of the frequencies, as later shown, these are not empty words.
Before the start of 9 hours:
Configured and installed point for audiences, 451, 408, 420, 422. @ Test: DNS 8.8.8.8 and 195.149.200.230 (local ISP) is unavailable, the situation is unclear and mysterious. The settings for one of the TD: 172.112.19.53, DHCP is distributed from 54 to 74. Antenna-feeder device receives the signals of new problems. People frankly exhausted and a simple job turns into a complicated and protracted process.
Lucky for us, the rooms were computers, the cable connected to the network. The sensible idea is to check their settings bore fruit: a ip: 192.168.0.33.
In the classrooms configured internal network that goes through a firewall that blocks all connections, except on sibsutis.ru. We love good news. Very much.
Actually got 1 room, and it can not be used. But three other the Internet should be. You ask: "why not call the administrator, he will make the settings for the screen?" We will reply: "2am".
Theoretically, the Internet can hold a cable of 449, but the distance of 3-4 length for twisted pair does not overpower, despite the presence of switches. You will not find enough cable.
The nearest outlet with the intoxicating smell of Internet is in room 216. The decision is made, the network plan is developed!
Before the start of 5 hours:
Point configured and installed, only tests. They were still spent 2 hours as 2 and so on was incorrectly configured.
Before the start of the 3 hours:
All ready.
the
Results
Despite concerns, this design worked steadily all day. The main problem is the hardware, more precisely the stability and speed of his work. For a one-time setup and long-term use is not a problem, but frequent changes to them, spent a lot of time.
Soon the team will start preparing now another school and interuniversity competitions. It's nice that despite all the problems the city of Novosibirsk got their competition up to a decent level. And even more encouraging is the fact that there are people who are able to organize it all, assemble, test and escort, quickly solving the inevitable problems that arise.
In the end I will leave links to videos and photos from the competition.
"Video about the competition
"Photo competition
Комментарии
Отправить комментарий