This is an interesting question, but the answer is simple: it's an investment. While you can utilize your company's test environment for conducting tests or working on proofs of concept (POCs), I've found that going the extra mile is necessary to stay up-to-date and acquire new skills beyond regular tasks. Another advantage is that you don't have to share it with colleagues and wait for someone to prepare it for yourself.
Physical or Virtual
It depends on your preferences and your budget. If you're working with vendors like Cisco, Palo Alto, or other firewall providers, opting for a virtual setup would make sense. However, certain tasks may demand physical devices such as switches. Nonetheless, there are alternative approaches available. The key takeaway is that you needn't spend thousands of dollars on networking equipment to experiment with features like spanning tree that typically require physical setups. Renting a lab for such occasions proves to be a more cost-effective choice. When it comes to tasks involving firewalls and supporting infrastructure (RADIUS, LDAP, SYSLOG), a virtual environment works perfectly well.
My lab setup takes a hybrid approach. I've established a server that supports virtual infrastructure, along with an old but reliable ASA5505. This ASA is connected to the server's four-port NIC card for two reasons: first, I needed different networks to link to the virtual appliances from my home network using various physical and logical connections; second, using a switch would have been another requirement. Consequently, my ASA firewall essentially functions as a switch now. Additionally, I've set up an edge firewall to segregate my home network from the lab environment.
Virtual Environment
My server is currently equipped with VMware ESXi, a decision that has proven to be a solid choice. The fact that I can evaluate it for a generous 180-day period is certainly advantageous, offering both a learning opportunity and practical experience. This exposure might not have happened otherwise, and I consider it a significant benefit.
While VMware ESXi has been my preference, there are a couple of alternative virtual environments worth exploring: Proxmox and Linux KVM. Additionally, if you're looking to set up virtualization on your PC, options like VirtualBox or VMware Workstation/Player are available. However, considering my comprehensive needs, ESXi remains my top choice. It not only supports Cisco but also accommodates various other operating systems.
For those planning to run multiple operating systems or tools, thoughtful planning is crucial. With ESXi, I recommend booting it from a USB drive and ensuring you have an SSD on hand for storing your virtual machines and ISO images. This configuration ensures optimal performance and efficient management of your virtualized environment.
Conclusion
If you're aiming to enhance your skills, having a practical playground is essential. Through my blog, I'll be demonstrating practical examples that illustrate how you can skillfully construct your own network topology and leverage it to your benefit.