Monday, May 5, 2008

LinuxCBT Classic Edition Network Administration - Module 7

Your Ad Here


  • Linux Network Administration Essentials - Module 7
    • Discuss & demonstrate the usage of commonly used networking tools:
    • PING - Demonstrate PING flooding of remote hosts - ICMP Attack Techniques
    • PING - Cisco PIX Integration & Debugging of ICMP Echo Requests/Echo Replies
    • Traceroute - Cisco PIX Integration & provisioning of ICMP traffic types
    • MTR (PING & Traceroute functionality) plus Cisco PIX debugging of ICMP data flow
    • ARP
    • NETSTAT/LSOF
    • IFCONFIG
    • Route
    • DIG & NSLOOKUP
    • Whois
    • Who, w, wc, last, cat, grep, vi, pico, head, tail, etc.
    • Message of the day banners (MOTD), /etc/issue file (pre-login banner/display info.)

  • Implement Dynamic Host Configuration Protocol (DHCP) services
    • Explain the various steps of the DHCP process
    • Configure global & scope-level DHCP options
    • Configure IP reservations based on layer 2 MAC addresses
    • Disable Cisco PIX DHCP services
    • Enable Linux DHCP services
    • Configure Windows 2003/XP/Linux clients to receive dynamic addresses from Linux

  • Discuss Xinetd super server concepts and applications
    • Identify services controlled by Xinetd
    • Enable & disable Xinetd-controlled services & examine results
    • Implement access control on Xinetd controlled services
    • Implement Xinetd IP and port-level daemon redirection
    • Discuss Xinetd & TCP Wrappers relationship and dual-layer security benefits

  • Implement Very Secure VSFTPD File Transfer Protocol (FTP) services
    • Implement anonymous FTPD
    • Implement user-level FTPD access
    • Implement FTPD banners
    • Disable anonymous access
    • Configure VSFTPD to run under the auspices of Xinetd super server for increased security
    • Implement bandwidth rate-limiting to control bandwidth usage

  • Discuss Linux & Windows Integration via Samba
    • Install Samba support
    • Install Samba Web-based Administration Tool (SWAT)
    • Configure Samba file & print sharing
    • Evaluate access to Samba file & print server
    • Configure Samba Windows Internet Name Server (WINS) support
    • Evaluate Windows XP/2003 client access to Samba-WINS server

  • Discuss the Network File System (NFS) concepts and Linux support
    • Implement the NFS daemon
    • Review /etc/exports parameters and options
    • Evaluate access to NFS exports
    • Implement NFS connectivity across a WAN connection via IPSEC VPN-connectivity

  • Discuss the CRON scheduling system concepts and application
    • Identify various predefined CRON entries and schedules
    • Define custom cron jobs system-wide
    • Define custom cron jobs user-wide
    • Evaluate results of cron jobs

  • Implement the Berkeley Internet Daemon (BIND) Domain Name Server (DNS)
    • Implement BIND 9.x
    • Configure BIND as a caching-only DNS server
    • Test caching-only name resolution from Windows 2003 & Linux hosts
    • Secure access to caching-only/recursive name server via ACLs
    • Configure BIND as a primary DNS server
    • Test primary name resolution from Windows 2003 & Linux hosts
    • Configure BIND as a secondary(slave) DNS server
    • Restrict communications between primary & secondary DNS servers
    • Implement updates between master and secondary DNS servers via IPSEC VPN
    • Configure DNS zones on Linux BIND & Windows 2003 DNS - activate replication
    • Implement poor man's load balancing using DNS round robin
    • Evaluate results of BIND configuration using DIG
    • Configure DNS zones
    • Configure zone transfers
    • Configure secure-zone transfers
    • Evaluate BIND's configuration files named.conf & named.custom
    • Configure BIND sub-domain delegation. i.e. internal.linuxcbt.net
    • Configure BIND to support reverse domains
    • Configure Linux/Windows 2003 clients to use Linux BIND DNS server
    • DNS Transaction Signatures (TSIG) implemenation
    • Identify BIND logging information for troubleshooting purposes
    • Configure BIND DNS with IP Aliasing (Sub-Interfaces) to host DNS on separate IP address

  • Implement Network Monitoring & Graphing tools using SNMP, etc.
    • Implement Multi Router Traffic Grapher (MRTG)
    • Graph Cisco Firewall with MRTG
    • Implement Cacti Network Graphing Tool
    • Download and Install Cacti and required components (RRDTool, MySqL, etc.)
    • Explore Cacti Interface, options, etc.
    • Graph Cisco, Linux & Windows 2003 resources with Cacti using SNMP & Scripts

  • Implement Network Time Protocol (NTP) & Time Synchronization services for local subnets
    • Discuss features and distributed nature of the hierarchial NTP service
    • Ascertain and select optimal Stratum 1 NTP servers for synchronization
    • Review default NTP configuration
    • Configure NTP to synchronize with NTP servers
    • Configure internal Linux clients to syncrhonize with internal Stratum 2 NTP server
    • Configure Cisco PIX firewall to synchronize with internal Stratum 2 NTP server
    • Use NTP-related tools such as NTPQ, NTPTRACE to ascertain NTP-related information
Image Hosting by Picoodle.com Image Hosting by Picoodle.com Image Hosting by Picoodle.com

more info @http://www.linuxcbt.com/products_linuxcbt.php
Rapidshare: | Part 1 of 3 | Part 2 of 3 | Part 3 of 3 |
DepositFiles: | Part 1 of 3 | Part 2 of 3 | Part 3 of 3 |

 

Your Ad Here

 

at 5/05/2008 03:05:00 AM

Labels: ,

0 comments:

Post a Comment




Subscribe to: Post Comments (Atom)