I want to accomplish a honeynet project.
The honeynet will consist of some virtual servers runing windows and linux with various services (but i am not yet to this point)
In order to procced with the project i have to make a plan and that's why i am here...
I need the help of people with experience in Honeynets help me design the architecture of my honeynet.
It will be an internal honeynet in a University's network and honeypots will be high interactive.
So first of all what tools should i use..
I was thinking of deploying Honeywall roo as i see it the most used and well documented project.
So i have some questions:
1)Does honeywall roo provide me all the necessary tools needed to setup a honeynet?
2)Honeywall roo will be installed on a machine (with 3 NICs) between the production network and the honeynet.On the honeypots i only need to install the OS and whatever services i whould like?Do i have to install other software for capturing traffic or keystrokes etc or everything is done on the machine running honeywall roo?
3)Assuming i want to have my honeypots on Virtual Machines can i install Honeywall Roo on a VM in the same physical computer with the honeypots?Or i have to seperate them?
I am at the very beggining of this project.
So every suggestion whould be welcome.
Edited by KonaR, 22 February 2016 - 03:00 PM.