Certified Network Administrator LI321-CNA
Cursusduur 5 dagen.
Beschrijving Deze cursus behandelt de taken van de Linux systeem beheerder in een netwerk omgeving. De cursus is bedoeld voor systeem beheerders die diensten op het Internet aanbieden. Deze cursus is geschikt voor een programma dat opleidt voor de LPI certificatie op Intermediate level Administrator LPIC2 niveau.
Doelstelling In deze cursus leert de deelnemer het volgende: • The TCP/IP protocol. • Linux network configuration. • Linux routing. • DHCP Server and Client. • Xinetd, ARPA and Berkeley services. • Secure shell. • E-mail systems and mail processing. • Network file system (NFS). • Automounter (Autofs) • Domain Name System (DNS). • Web services (Apache). • FTP server and security. • Web proxying (Squid). • Samba Windows Networking® file sharing. • NIS Configuration. • LDAP Directory server. • Linux Firewall (ipchains) • TCP wrappers. • Network time synchronization.
Doelgroep Systeembeheerders die in een Internet omgeving werken en het certificaat willen halen. Deze cursus is ook geschikt voor deelnemers die een gedegen kennis van de populaire Linux netwerkdiensten willen verkrijgen.
Vereiste kennis en vaardigheden Kennis en vaardigheden op LI121-CSA Certified System Administrator niveau.
Formaat Een 5 daagse klassikale training met een presentatie die door een ervaren Linux instructeur gepresenteerd wordt. Elk onderwerp gaat vergezeld van een lab sessie waarin het geleerde direct in de praktijk gebracht wordt. Het cursusmateriaal bestaat uit: • Cursusboek met alle dia’s van de presentatie met begeleidende tekst. -Engelstalig, ~450 pagina’s. • Lab instructieboek met labs voor alle hoofdstukken plus uitgewerkte oplossingen voor alle labs. Voorzien van instructies om het lab zelf elders te kunnen opbouwen. -Engelstalig, ~100 pagina’s.
Examens Deze cursus leid op voor examinatie van LPI Intermediate Level Administrator LPIC2.
Vervolgopleiding Applicatie gerichte cursussen: LI341-ASP Advanced Shell Programming. LI342-APP Advanced Perl Programmer. LI343-AWP Advanced Web Programmer. LI344-AJP Advanced Java Programmer. LI362-ARP Advanced Roaming profiles. LI363-AMA Avanced Email Administration. LI364-ASA Advanced Samba Administration. LI365-AWA Advanced Web Administration. LI366-ARA Advanced Routing Administration. LI367-ANS Advanced Network Security.
Inhoud The TCP/IP protocol • Protocol suite overview. • Packet switch vs. Circuit switched communication. • The OSI model and IP. • IP Addressing: Addresses and netmasks. • Calculating Route and broadcast addresses. • The IP Packet fields. • Routing with IP. • TCP and UDP port numbers. • The ICMP Protocol
Linux IP Configuration • Linux interface names • Interface configuration files. • The ifconfig command. • Configuring an interface alias. • Using DHCP to configure an interface • Adapting DHCP received options. • Installing routes. • Route command. • The /etc/hosts file. • Configuring DNS servers. • Monitoring IP: Ping and Traceroute.
• Network related kernel parameters • The IP_FORWARD parameter.
DHCP server • The DHCP protocol tansaction. • The ISC DHCP server. • Configuring the server. • Assigning fixed addresses. • Using multiple servers on the same LAN. • Using a DHCP relay. • DHCP and DNS interaction.
DNS forward mappings • DNS system overview. • Distributed databse. • DNS zones and domains. • DNS resolution protocol transaction. • DNS server types. • Configuring a Primary server. • Configuring a Secondary server. • The zone file. • Popular Resource Records. • Sub domain delegation. • Monitoring and checking a DNS server. • Testing DNS.
DNS reverse mapping • Reverse mapping overview. • The in-addr.arpa domain. • Setup of a reverse DNS server. • Reverse zone file. • The PTR RR. • Reverse query protocol transaction. • Automatic Zone file updates. • Journal files in bind 9. • DNS consistency.
Network Information Service (NIS) • NIS purpose and overview. • NIS domains.
• NIS server roles. • NIS client set-up. • NIS Client binding. • Preparing a network for NIS. • Set-up of a master NIS server. • Set-up of a slave NIS server. • Transferring maps between master and slave. • Updating NIS maps. • Changing passwords in NIS. • The nsswitch configuration file. • NIS commands overview.
Network File System (NFS) • NFS overview and history. • NFS server and client operation. • The role of the portmapper. • NFS deamons. • Unix file protection in a NFS environment. • Set-up of an NFS server. • The /etc/exports file. • Mounting NFS file systems. • NFS mount options. • Monitoring NFS: showmount, rpcinfo and nfsstat. • NFS troubleshooting.
Automounter (autofs) • Autofs history and overview. • Mount maps. • Automatic key substitution in mount maps. • Set-up of autofs. • Autofs operation and monitoring.
Xinetd, Berkeley and ARPA services. • Operation of a network server. • Xinetd super server. • Xinetd configuration and protection. • Enabling services in xinetd. • TCP wrapper library. • TCP wrapper configuration.
• Common Services: telnet, rlogin, ftp, rcp and TCP small services. • Host protection in Berkeley services. • FTP server implementations. • Setting up anonymous FTP.
The Secure Shell • Secure shell overview and benefits. • The OpenSSH implementation. • The ssh protocol. • Host and user authentication. • Public key Infrastructure. • PKI in SSH. • Generating key pairs. • Key pass phrases. • User authentication using PKI in ssh. • The ssh-agent.
The Apache web server • Apache overview and history. • Apache configuration files. • Apache modules. • General configuration directives. • Protecting web server access:
and directives. • Per directory configuration: .htaccess. • Mapping URL’s to directories. • Monitoring Apache. • Set-up of a password protected website. • Web usage reporting: webalizer.
Samba file sharing • Samba history and overview. • The samba configuration file. • Set-up of a shared directory. • Samba security levels: user, domain and Active Directory® integrated.
• Browsing the Windows® network. • CIFS and NetBIOS. • Windows® and Linux passwords. • The SWAT tool.
Electronic mail • E-mail overview: MTA, UA and DA. • E-mail delivery transaction. • The sendmail MTA. • Configuration of sendmail using M4. • SPAM protection in sendmail: relaying and access. • Set-up of outgoing e-mail. • Set-up of incoming –email. • Delivery agents: IMAP and POP3 • User agents: Evolution® and Outlook® • Troubleshooting e-mail.
The squid web proxy • Squid overview. • Hardware requirements. • Squid proxy hierarchy. • Squid configuration. • Client ACL settings. • The cache manager.
LDAP directories • Purpose of a directory. • RDBMS and Directory comparison. • Directory structure. • Directory hierarchy. • Attributes and ObjectClasses. • Setup of OpenLDAP. • The directory schema. • Directory operations: Add, Modify, Delete and query. • Replacing NIS with LDAP. • Authenticating against LDAP. • Troubleshooting LDAP.
The Linux firewall • Iptables overview. • Firewall types. • Packet traversal in iptables. • The iptables command. • Traffic selection in iptables. • Iptables actions. • Setup of iptables. • Saving firewall rules. • Default firewall policy.
Network Time Protocol • Why synchronise time. • The ntp protocol. • Configuring NTP. • Reference clocks. • Public time servers. • Monitoring ntp. • Managing the hardware clock in Linux.
Using 802.1q VLANs in Linux • 802.1q VLAN overview. • Access ports. • Trunk lines. • 802.1q frame encapsulation. • Configuring VLANs in Linux. • VLAN applications.