Friday, November 11, 2011
Linux video training: Network Administration
Linux Network Administration Essentials – Module 7
o Discuss & demonstrate the usage of commonly used networking tools:
o PING – Demonstrate PING flooding of remote hosts – ICMP Attack Techniques
o PING – Cisco PIX Integration & Debugging of ICMP Echo Requests/Echo Replies
o Traceroute – Cisco PIX Integration & provisioning of ICMP traffic types
o MTR (PING & Traceroute functionality) plus Cisco PIX debugging of ICMP data flow
o ARP
o NETSTAT/LSOF
o IFCONFIG
o Route
o DIG & NSLOOKUP
o Whois
o Who, w, wc, last, cat, grep, vi, pico, head, tail, etc.
o Message of the day banners (MOTD), /etc/issue file (pre-login banner/display info.)
*
* Implement Dynamic Host Configuration Protocol (DHCP) services
o Explain the various steps of the DHCP process
o Configure global & scope-level DHCP options
o Configure IP reservations based on layer 2 MAC addresses
o Disable Cisco PIX DHCP services
o Enable Linux DHCP services
o Configure Windows 2003/XP/Linux clients to receive dynamic addresses from Linux
*
* Discuss Xinetd super server concepts and applications
o Identify services controlled by Xinetd
o Enable & disable Xinetd-controlled services & examine results
o Implement access control on Xinetd controlled services
o Implement Xinetd IP and port-level daemon redirection
o Discuss Xinetd & TCP Wrappers relationship and dual-layer security benefits
*
* Implement Very Secure VSFTPD File Transfer Protocol (FTP) services
o Implement anonymous FTPD
o Implement user-level FTPD access
o Implement FTPD banners
o Disable anonymous access
o Configure VSFTPD to run under the auspices of Xinetd super server for increased security
o Implement bandwidth rate-limiting to control bandwidth usage
*
* Discuss Linux & Windows Integration via Samba
o Install Samba support
o Install Samba Web-based Administration Tool (SWAT)
o Configure Samba file & print sharing
o Evaluate access to Samba file & print server
o Configure Samba Windows Internet Name Server (WINS) support
o Evaluate Windows XP/2003 client access to Samba-WINS server
*
* Discuss the Network File System (NFS) concepts and Linux support
o Implement the NFS daemon
o Review /etc/exports parameters and options
o Evaluate access to NFS exports
o Implement NFS connectivity across a WAN connection via IPSEC VPN-connectivity
*
* Discuss the CRON scheduling system concepts and application
o Identify various predefined CRON entries and schedules
o Define custom cron jobs system-wide
o Define custom cron jobs user-wide
o Evaluate results of cron jobs
*
* Implement the Berkeley Internet Daemon (BIND) Domain Name Server (DNS)
o Implement BIND 9.x
o Configure BIND as a caching-only DNS server
o Test caching-only name resolution from Windows 2003 & Linux hosts
o Secure access to caching-only/recursive name server via ACLs
o Configure BIND as a primary DNS server
o Test primary name resolution from Windows 2003 & Linux hosts
o Configure BIND as a secondary(slave) DNS server
o Restrict communications between primary & secondary DNS servers
o Implement updates between master and secondary DNS servers via IPSEC VPN
o Configure DNS zones on Linux BIND & Windows 2003 DNS – activate replication
o Implement poor man’s load balancing using DNS round robin
o Evaluate results of BIND configuration using DIG
o Configure DNS zones
o Configure zone transfers
o Configure secure-zone transfers
o Evaluate BIND’s configuration files named.conf & named.custom
o Configure BIND sub-domain delegation. i.e. internal.linuxcbt.net
o Configure BIND to support reverse domains
o Configure Linux/Windows 2003 clients to use Linux BIND DNS server
o DNS Transaction Signatures (TSIG) implemenation
o Identify BIND logging information for troubleshooting purposes
o Configure BIND DNS with IP Aliasing (Sub-Interfaces) to host DNS on separate IP address
*
* Implement Network Monitoring & Graphing tools using SNMP, etc.
o Implement Multi Router Traffic Grapher (MRTG)
o Graph Cisco Firewall with MRTG
o Implement Cacti Network Graphing Tool
o Download and Install Cacti and required components (RRDTool, MySqL, etc.)
o Explore Cacti Interface, options, etc.
o Graph Cisco, Linux & Windows 2003 resources with Cacti using SNMP & Scripts
*
* Implement Network Time Protocol (NTP) & Time Synchronization services for local subnets
o Discuss features and distributed nature of the hierarchial NTP service
o Ascertain and select optimal Stratum 1 NTP servers for synchronization
o Review default NTP configuration
o Configure NTP to synchronize with NTP servers
o Configure internal Linux clients to syncrhonize with internal Stratum 2 NTP server
o Configure Cisco PIX firewall to synchronize with internal Stratum 2 NTP server
o Use NTP-related tools such as NTPQ, NTPTRACE to ascertain NTP-related information
o Discuss & demonstrate the usage of commonly used networking tools:
o PING – Demonstrate PING flooding of remote hosts – ICMP Attack Techniques
o PING – Cisco PIX Integration & Debugging of ICMP Echo Requests/Echo Replies
o Traceroute – Cisco PIX Integration & provisioning of ICMP traffic types
o MTR (PING & Traceroute functionality) plus Cisco PIX debugging of ICMP data flow
o ARP
o NETSTAT/LSOF
o IFCONFIG
o Route
o DIG & NSLOOKUP
o Whois
o Who, w, wc, last, cat, grep, vi, pico, head, tail, etc.
o Message of the day banners (MOTD), /etc/issue file (pre-login banner/display info.)
*
* Implement Dynamic Host Configuration Protocol (DHCP) services
o Explain the various steps of the DHCP process
o Configure global & scope-level DHCP options
o Configure IP reservations based on layer 2 MAC addresses
o Disable Cisco PIX DHCP services
o Enable Linux DHCP services
o Configure Windows 2003/XP/Linux clients to receive dynamic addresses from Linux
*
* Discuss Xinetd super server concepts and applications
o Identify services controlled by Xinetd
o Enable & disable Xinetd-controlled services & examine results
o Implement access control on Xinetd controlled services
o Implement Xinetd IP and port-level daemon redirection
o Discuss Xinetd & TCP Wrappers relationship and dual-layer security benefits
*
* Implement Very Secure VSFTPD File Transfer Protocol (FTP) services
o Implement anonymous FTPD
o Implement user-level FTPD access
o Implement FTPD banners
o Disable anonymous access
o Configure VSFTPD to run under the auspices of Xinetd super server for increased security
o Implement bandwidth rate-limiting to control bandwidth usage
*
* Discuss Linux & Windows Integration via Samba
o Install Samba support
o Install Samba Web-based Administration Tool (SWAT)
o Configure Samba file & print sharing
o Evaluate access to Samba file & print server
o Configure Samba Windows Internet Name Server (WINS) support
o Evaluate Windows XP/2003 client access to Samba-WINS server
*
* Discuss the Network File System (NFS) concepts and Linux support
o Implement the NFS daemon
o Review /etc/exports parameters and options
o Evaluate access to NFS exports
o Implement NFS connectivity across a WAN connection via IPSEC VPN-connectivity
*
* Discuss the CRON scheduling system concepts and application
o Identify various predefined CRON entries and schedules
o Define custom cron jobs system-wide
o Define custom cron jobs user-wide
o Evaluate results of cron jobs
*
* Implement the Berkeley Internet Daemon (BIND) Domain Name Server (DNS)
o Implement BIND 9.x
o Configure BIND as a caching-only DNS server
o Test caching-only name resolution from Windows 2003 & Linux hosts
o Secure access to caching-only/recursive name server via ACLs
o Configure BIND as a primary DNS server
o Test primary name resolution from Windows 2003 & Linux hosts
o Configure BIND as a secondary(slave) DNS server
o Restrict communications between primary & secondary DNS servers
o Implement updates between master and secondary DNS servers via IPSEC VPN
o Configure DNS zones on Linux BIND & Windows 2003 DNS – activate replication
o Implement poor man’s load balancing using DNS round robin
o Evaluate results of BIND configuration using DIG
o Configure DNS zones
o Configure zone transfers
o Configure secure-zone transfers
o Evaluate BIND’s configuration files named.conf & named.custom
o Configure BIND sub-domain delegation. i.e. internal.linuxcbt.net
o Configure BIND to support reverse domains
o Configure Linux/Windows 2003 clients to use Linux BIND DNS server
o DNS Transaction Signatures (TSIG) implemenation
o Identify BIND logging information for troubleshooting purposes
o Configure BIND DNS with IP Aliasing (Sub-Interfaces) to host DNS on separate IP address
*
* Implement Network Monitoring & Graphing tools using SNMP, etc.
o Implement Multi Router Traffic Grapher (MRTG)
o Graph Cisco Firewall with MRTG
o Implement Cacti Network Graphing Tool
o Download and Install Cacti and required components (RRDTool, MySqL, etc.)
o Explore Cacti Interface, options, etc.
o Graph Cisco, Linux & Windows 2003 resources with Cacti using SNMP & Scripts
*
* Implement Network Time Protocol (NTP) & Time Synchronization services for local subnets
o Discuss features and distributed nature of the hierarchial NTP service
o Ascertain and select optimal Stratum 1 NTP servers for synchronization
o Review default NTP configuration
o Configure NTP to synchronize with NTP servers
o Configure internal Linux clients to syncrhonize with internal Stratum 2 NTP server
o Configure Cisco PIX firewall to synchronize with internal Stratum 2 NTP server
o Use NTP-related tools such as NTPQ, NTPTRACE to ascertain NTP-related information
Download Links :-
http://www.filesonic.com/folder/1159981
