Optimized Virtual Honeynet with Implementation of Host Machine as Honeywall

This paper proposes a methodology for the establishing a honeynet in which host machine work as honeywall and thus take advantage of underlying architecture on which they are deployed. Such setup help to minimize the CPU and RAM load for running extra virtual machine for CDROM Roo. In this implementation various types of honeypots continue to run in virtual environment using Virtual Box as in case of Generation III Virtual Honeynet. The implementation is specific to Linux based host machine having single network interface card deployed in distributed environment. Security of the host machine is of utmost important and hence special techniques are discussed to ensure its security and methods to mitigate security risk associated with host and virtual machines. Special techniques were implemented to enhance the data control and data capturing mechanisms to generate logs and securely forward to central data collection server.