Adding/Removing Kali on AD VLAN

The Active Directory portion of the TCM’s PEH course is meant to simulate an internal penetration test, where you have gained an initial foothold into a network environment, or you are dropped directly into an internal network. For some of these attacks to work, the attack machine should be on the same network as the AD machines. A more secure implementation would have the Domain Controller on a different subnet than the client machines.

Add Kali to the AD VLAN

Kali is currently on its own VLAN. We need to move Kali to the AD VLAN in order to learn about as many attacks as possible. It’s easy to make the change.

1. In Proxmox, change the Kali VM’s network interface so that it is on VLAN 80
2. In Kali, run these commands:

Replace with your Kali VM’s interface.

sudo ip link set <interface-name> down
sudo ip link set <interface-name> up

Move Kali to its own VLAN

If you want to move Kali back to the native VLAN, just reverse your steps:

1. In Proxmox, change the Kali VM’s network interface so that there is no VLAN ID
2. In Kali, run these commands:

Replace with your Kali VM’s interface

sudo ip link set <interface-name> down
sudo ip link set <interface-name> up

• Introduction
• Previous Section - Staging the Network
• Next Section - Install and Configure Windows Server 2019/2022