Skip to content

Shared Networks Overview

What Are Shared Networks?

Shared networks allow for more complex networking structures with group and team-level subnet capabilities, firewalls, as well as unique DNS records for each team’s resources. These enhanced capabilities allow for teams to interact with each other in realistic attack-defense or other interactive exercises with each other.

Scenarios you can practice using shared networks include, but are not limited to, the following:

  • Red vs Blue
  • Man-in-the-Middle
  • Dynamic Capture The Flag style exercises

Note

If you’d like to make a copy of a shared network environment, please contact support so that we can assist in copying that environment with you. We also recommend reading over our Avoiding Common Issues with Copying Exercise Environment Images article to help prevent potential errors.


Create a Shared Networks Environment

To add the shared networks version of an environment to your course, you can follow the Creating an Environment to Your Course section until you reach step 4. Once you've reached step 4, you will be presented with options to configure the environment.

Note

If the "Networks" section doesn't appear when creating an exercise environment, the shared networks feature is not currently available for that environment.

  1. Underneath the OS Version, you will find the "Networks" section. The "Networks" section is located underneath the "OS Version" section towards the top of the screen.

  2. Once you click on this section, you'll have the choice between Isolated Networks and Shared Networks. Select the "Shared Networks" option before you press "Confirm" to enable this feature. The "Shared Networks" option is located underneath the "Isolated Networks" option.


Inter-Team Connectivity

Shared network environments have a unifying group subnet that all teams have a presence on, instructors can control inter-team connectivity, empowering them to allow or prevent network traffic between teams. Inter-team connectivity will be disabled by default upon group creation, restricting user view to their individual "bubble" of one or more virtual machines. Once inter-team connectivity has been enabled, users can interact with each other’s team-level subnets openly which is restricted only by the software configurations of the virtual machines and/or firewalls. Review the exercise environment description and/or courseware to determine if the default state of the environment includes vulnerable-by-default machines.

Enable Inter-Team Connectivity

  1. Towards the bottom of the environment page, click on the “Toggle Inter-Team Connectivity” button.

    The “Toggle Inter-Team Connectivity” button is located towards the bottom right of the screen, between “Start All Exercises” and “Export DNS Records”.

  2. A “Toggle Inter-Team Connectivity” pop-up will appear. Select the “Enable” button.

    A pop-up window shows that team connectivity is disabled. The “Enable” and “Close” buttons are in the bottom right corner.

  3. A “Communication Updated” pop-up will appear once the communication has been successfully enabled.

    A pop-up window confirming that inter-team connectivity is enabled is displayed. The “Close” button is in the bottom right corner.

Disable Inter-Team Connectivity

  1. Towards the bottom of the environment page, click on the “Toggle Inter-Team Connectivity” button.

    The “Toggle Inter-Team Connectivity” button is located towards the bottom right of the screen, between “Start All Exercises” and “Export DNS Records”.

  2. A “Toggle Inter-Team Connectivity” pop-up will appear. Click on the “Disable” button.

    A pop-up window shows that team connectivity is enabled.. The “Disable” and “Close” buttons are in the bottom right corner.

  3. A “Communication Updated” pop-up will appear once the communication has been successfully disabled.

    A pop-up window confirming that inter-team connectivity is disabled is displayed. The “Close” button is in the bottom right corner.


Credentials

View User Credentials

As an instructor, you can click on the “View Credentials” button (denoted with a hat and sunglasses icon) that's next to a student’s name to access the list of initial credentials assigned to each access point.

The "View Credentials" button is to the right of the "Copy" button.

View Your Credentials

Any user can click on the “View My Environment Login” button and access the credentials assigned to their own access points.

The "View My Environment Login" button is located under the "Copy My Environment" button towards the right of the screen.


DNS Records

Each virtual machine is assigned one or more unique DNS records that any team can query. Users can view DNS records for themselves, however, they do not know the DNS records of other teams and will not be able to easily identify another's DNS records without assistance. The instructor is provided the choice of sharing DNS records if they would like users to be able to find each other with that lookup.

View DNS Records

Your DNS records will be located in the middle of the screen under the “Your Team's DNS Records” section.

The Your Team's DNS Records” section is located under the "Status" section in the middle of the screen. In descending order, it lists the Subdomain,Desktop, Server 1, Server 2, and Firewall.

Export DNS Records

If you’d like to share the current DNS records assigned to each team, you can export the list from the course.

Tip

Each user will be assigned a unique subdomain.

  1. Towards the bottom of the environment page, click on the “Export DNS Records” button

    The “Export DNS Records” button is located towards the bottom right of the screen, beneath “Toggle Inter-Team Connectivity”.

  2. Once our system has collected the current DNS records, you will be prompted to save, or automatically download, a CSV file titled “exported_dns_records” depending on your browser or system configuration. The CSV file should appear similar to the one in the image below.

    The CSV file will contain the following columns listed left to right: Team, Subdomain, Desktop, Server 1, Server 2, and Firewall with the corresponding information listed below each column.


Have a Question? Contact Support

We're here to help you. If you still have questions after reviewing the information above, please feel free to submit a ticket with our Support Team and we'll get back to you as soon as possible.