Skip to content
UltiblobStatus
Back to course
ExpertHalf day to full dayInstructor visible

Network Security Expert capstone

A team needs a production-ready network security design with evidence that it survives failure and rollback.

Business context

Ultiblob uses this exercise to train network security engineer candidates on realistic private-cloud lab operations rather than static videos.

Technical objective

Design, validate, document, and recover a network security environment using the provided templates and checks.

Student instructions

  1. 1Open the lab workspace and review the topology map.
  2. 2Launch the required templates and wait for all provisioning checks to complete.
  3. 3Complete the configuration task in the course module.
  4. 4Run validation and capture the result for instructor review.
  5. 5Create a snapshot before any risky troubleshooting or failure exercise.

Troubleshooting

  • If access fails, confirm the bastion session is active and the instance is not expired.
  • If validation fails, inspect the lab event log before rerunning the check.
  • If configuration drifts, restore the latest clean snapshot and repeat the module task.

Cleanup

  • Export notes or reports required by the instructor.
  • Restore or delete temporary snapshots created during the exercise.
  • Use the teardown action when the module is complete or allow the TTL policy to expire the lab.
Launch flow

Provisioning readiness

Pending
Waiting for launch

Click Launch lab to start the provisioning flow and watch each stage complete.

0%
  1. Request accepted
  2. Capacity reserved
  3. Templates queued
  4. Validation running
  5. Workspace ready
firewall-rules-active
Pending
siem-receiving-logs
Pending
routing-path-works
Pending

Required templates

  • pfSense or equivalent firewall/router - defined
  • Kali/security workstation - defined
  • SIEM/logging node - defined
  • Ubuntu Server 24.04 - available

Validation checks

  • Firewall rules active: Allowed path works and denied east-west path is blocked.
  • SIEM receiving logs: A generated test event appears in the tenant security index.
  • Routing path works: Traffic follows the intended lab path and reaches the expected service.

Expected result

The lab reaches Healthy state for Firewall rules active, SIEM receiving logs, Routing path works.

Reset policy: Student can reset to the last clean snapshot; instructor can force reset from admin view. Teardown policy: Automatic teardown at TTL expiry with manual instructor override for cohorts.