Network
MaCySTe simulates the networks onboard of the ship with two technologies:
- MACVLAN networks attached to dummies which are not reachable by the host and act as completely isolated L2 domains
- Bridge networks reachable by the host
MACVLAN networks
These MACVLAN networks act as virtual cables, completely segregated from the host and allowing a pristine network environment.
- Bridge (
10.1.5.0/24), the network containing the ship Integrated Navigation System - Control (
10.1.3.0/24), the network containing the ship control systems and engineering workstation - Serial (
10.1.2.0/24), a network emulating direct connections (this is a non-scenario network with unrepresentative traffic) - NATS (
10.1.4.0/24), a network allowing communication with the message queue (this is a non-scenario network with unrepresentative traffic)
Bridge networks
These networks are host-reachable and are used for interacting with the scenario components
- Management (
192.168.249.0/24), the network allowing the host to reach tools such as the GUI (this is a non-scenario network with unrepresentative traffic)
Attacker addon
These additional networks will be deployed as part of the attacker addon
- Simulated internet (MACVLAN
198.51.0.0/16), a network simulating a public internet
SIEM addon
These additional networks will be deployed as part of the SIEM addon
- SIEM (MACVLAN
10.1.6.0/24), a network joining the probes and the SIEM