title
Please take a moment to fill out this form. We will get back to you as soon as possible.
All fields marked with an asterisk (*) are mandatory.
Enterprise Linux Network Services
Course Description
Overview
This expansive course covers a wide range of network services useful to every organization. Special attention is paid to the concepts needed to implement these services securely, and to the trouble-shooting skills which will be necessary for real-world administration of these network services. The course material is designed to provide extensive hands-on experience. Topics include: Security with SELinux and Netfilter, DNS concepts and implementation with Bind; LDAP concepts and implementation using OpenLDAP; Web services with Apache; FTP with vsftpd; caching, filtering proxies with Squid; SMB/CIFS (Windows networking) with Samba; and e-mail concepts and implementation with Postfix combined with either Dovecot or Cyrus.Courseware supports Red Hat Enterprise Linux 7 and SUSE Linux Enterprise 12.
Objectives
- Implement services securely
- Administer the necessary trouble-shooting skills of the network
Audience
- System and Network Administrators
- Database Administrators
- Programmers
Prerequisites
- 
Students should already be comfortable with basic Linux or Unix administration. Fundamentals such as the Linux filesystem, process management, and how to edit files will not be covered in class. A good understanding of network concepts, the TCP/IP protocol suite is also assumed. These skills are taught in the OSUN-120 Linux Fundamentals and OSUN-225 Enterprise Linux Systems Administration courses.
Topics
- Xinetd
- Xinetd Connection Limiting and Access Control
- Xinetd: Resource limits, redirection, logging
- TCP Wrappers
- The /etc/hosts.allow & /etc/hosts.deny Files
- /etc/hosts.{allow,deny} Shortcuts
- Advanced TCP Wrappers
- SUSE Basic Firewall Configuration
- FirewallD
- Netfilter: Stateful Packet Filter Firewall
- Netfilter Concepts
- Using the iptables Command
- Netfilter Rule Syntax
- Targets
- Common match_specs
- Connection Tracking
-  Lab Tasks
- Securing xinetd Services
- Enforcing Security Policy with xinetd
- Securing Services with TCP Wrappers
- Securing Services with SuSEfirewall2
- Securing Services with Netfilter
- FirewallD
- Troubleshooting Practice
 
- AppArmor
- SELinux Security Framework
- Choosing an SELinux Policy
- SELinux Commands
- SELinux Booleans
- SELinux Policy Tools
-  Lab Tasks
- Exploring AppArmor Modes
- SELinux File Contexts
 
- Naming Services
- DNS A Better Way
- The Domain Name Space
- Delegation and Zones
- Server Roles
- Resolving Names
- Resolving IP Addresses
- Basic BIND Administration
- Configuring the Resolver
- Testing Resolution
-  Lab Tasks
- Configuring a Slave Name Server
 
- BIND Configuration Files
- named.conf Syntax
- named.conf Options Block
- Creating a Site-Wide Cache
- rndc Key Configuration
- Zones In named.conf
- Zone Database File Syntax
- SOA Start of Authority
- A, AAAA, & PTR Address & Pointer Records
- NS Name Server
- TXT, CNAME, & MX Text, Alias, & Mail Host
- SRV SRV Service Records
- Abbreviations and Gotchas
- $GENERATE, $ORIGIN, and $INCLUDE
-  Lab Tasks
- Use rndc to Control named
- Configuring BIND Zone Files
 
- Subdomains and Delegation
- Subdomains
- Delegating Zones
- in-addr.arpa. Delegation
- Issues with in-addr.arpa.
- RFC2317 & in-addr.arpa.
-  Lab Tasks
- Create a Subdomain in an Existing Domain
- Subdomain Delegation
 
- Address Match Lists & ACLs
- Split Namespace with Views
- Restricting Queries
- Restricting Zone Transfers
- Running BIND in a chroot
- Dynamic DNS Concepts
- Allowing Dynamic DNS Updates
- DDNS Administration with nsupdate
- Common Problems
- Common Problems
- Securing DNS With TSIG
-  Lab Tasks
- Configuring Dynamic DNS
- Securing BIND DNS
 
- HTTP Operation
- Apache Architecture
- Dynamic Shared Objects
- Adding Modules to Apache
- Apache Configuration Files
- httpd.conf Server Settings
- httpd.conf Main Configuration
- HTTP Virtual Servers
- Virtual Hosting DNS Implications
- httpd.conf VirtualHost Configuration
- Port and IP based Virtual Hosts
- Name-based Virtual Host
- Apache Logging
- Log Analysis
- The Webalizer
-  Lab Tasks
- Apache Architecture
- Apache Content
- Configuring Virtual Hosts
 
- Virtual Hosting Security Implications
- Delegating Administration
- Directory Protection
- Directory Protection with AllowOverride
- Common Uses for .htaccess
- Symmetric Encryption Algorithms
- Asymmetric Encryption Algorithms
- Digital Certificates
- TLS Using mod_ssl.so
-  Lab Tasks
- Using .htaccess Files
- Using TLS Certificates with Apache
- Use SNI and TLS with Virtual Hosts
 
- Dynamic HTTP Content
- PHP: Hypertext Preprocessor
- Developer Tools for PHP
- Installing PHP
- Configuring PHP
- Securing PHP
- Security Related php.ini Configuration
- Java Servlets and JSP
- Apache's Tomcat
- Installing Java SDK
- Installing Tomcat Manually
- Using Tomcat with Apache
-  Lab Tasks
- CGI Scripts in Apache
- Apache's Tomcat
- Using Tomcat with Apache
- Installing Applications with Apache and Tomcat
 
- The FTP Protocol
- Active Mode FTP
- Passive Mode FTP
- ProFTPD
- Pure-FTPd
- vsftpd
- Configuring vsftpd
- Anonymous FTP with vsftpd
-  Lab Tasks
- Configuring vsftpd
 
- Squid Overview
- Squid File Layout
- Squid Access Control Lists
- Applying Squid ACLs
- Tuning Squid & Configuring Cache Hierarchies
- Bandwidth Metering
- Monitoring Squid
- Proxy Client Configuration
-  Lab Tasks
- Installing and Configuring Squid
- Squid Cache Manager CGI
- Proxy Auto Configuration
- Configure a Squid Proxy Cluster
 
- Popular SQL Databases
- SELECT Statements
- INSERT Statements
- UPDATE Statements
- DELETE Statements
- JOIN Clauses
- MariaDB
- MariaDB Installation and Security
- MariaDB User Account Management
- MariaDB Replication
-  Lab Tasks
- SQL with Sqlite3
- Installing and Securing MariaDB
- Creating a Database in MariaDB
- Create a Database Backed Application
 
- LDAP: History and Uses
- LDAP: Data Model Basics
- LDAP: Protocol Basics
- LDAP: Applications
- LDAP: Search Filters
- LDIF: LDAP Data Interchange Format
- OpenLDAP Client Tools
- Alternative LDAP Tools
-  Lab Tasks
- Querying LDAP
 
- Popular LDAP Server Implementations
- OpenLDAP: Server Architecture
- OpenLDAP: Backends
- OpenLDAP: Replication
- Managing slapd
- OpenLDAP: Configuration Options
- OpenLDAP: Configuration Sections
- OpenLDAP: Global Parameters
- OpenLDAP: Database Parameters
- OpenLDAP Server Tools
- Native LDAP Authentication and Migration
- Enabling LDAP-based Login
- System Security Services Daemon (SSSD)
-  Lab Tasks
- Building An OpenLDAP Server
- Enabling TLS For An OpenLDAP Server
- Enabling LDAP-based Logins
 
- Introducing Samba
- NetBIOS and NetBEUI
- Samba Daemons
- Accessing Windows/Samba Shares from Linux
- Samba Utilities
- Samba Configuration Files
- The smb.conf File
- Mapping Permissions and ACLs
- Mapping Linux Concepts
- Mapping Users
- Sharing Home Directories
- Sharing Printers
- Share Authentication
- Share-Level Access
- User-Level Access
- Samba Account Database
- User Share Restrictions
-  Lab Tasks
- Samba Share-Level Access
- Samba User-Level Access
- Samba Group Shares
- Handling Symbolic Links with Samba
- Samba Home Directory Shares
 
- SMTP
- SMTP Terminology
- SMTP Architecture
- SMTP Commands
- SMTP Extensions
- SMTP AUTH
- SMTP STARTTLS
- SMTP Session
- Postfix Features
- Postfix Architecture
- Postfix Components
- Postfix Configuration
- master.cf
- main.cf
- Postfix Map Types
- Postfix Pattern Matching
- Advanced Postfix Options
- Virtual Domains
- Postfix Mail Filtering
- Configuration Commands
- Management Commands
- Postfix Logging
- Logfile Analysis
- Postfix, Relaying and SMTP AUTH
- SMTP AUTH Server and Relay Control
- SMTP AUTH Clients
- Postfix / TLS
- TLS Server Configuration
- Postfix Client Configuration for TLS
- Other TLS Clients
- Ensuring TLS Security
-  Lab Tasks
- Configuring Postfix
- Postfix Virtual Host Configuration
- Postfix Network Configuration
- Postfix SMTP AUTH Configuration
- Postfix STARTTLS Configuration
- SUSE Postfix Configuration Cleanup
 
- Filtering Email
- Procmail
- SpamAssassin
- Bogofilter
- amavisd-new Mail Filtering
- Accessing Email
- The IMAP4 Protocol
- Dovecot POP3/IMAP Server
- Cyrus IMAP/POP3 Server
- Cyrus IMAP MTA Integration
- Cyrus Mailbox Administration
- Fetchmail
- Roundcube Webmail
- Mailing Lists
- GNU Mailman
- Mailman Configuration
-  Lab Tasks
- Configuring Procmail & SpamAssassin
- Configuring Cyrus IMAP
- Dovecot TLS Configuration
- Configuring Roundcube
- Base Mailman Configuration
- Basic Mailing List
- Private Mailing List
 
- NIS Overview
- NIS Limitations and Advantages
- NIS Client Configuration
- NIS Server Configuration
- NIS Troubleshooting Aids
-  Lab Tasks
- Using NIS for Centralized User Accounts
- Configuring NIS
- NIS Slave Server
- NIS Failover
- Troubleshooting Practice: NIS
 
Related Courses
- 
   z/VM and Linux on IBM Z and LinuxONE BootcampZL00G- Duration: 40 Hours
- Delivery Format: Classroom Training, Online Training
- Price: 4,475.00 USD
 
- 
   Red Hat Enterprise Linux v7 DifferencesOSUN-280- Duration: 3 Days
- Delivery Format: Classroom Training, Online Training
- Price: 1,755.00 USD
 
Self-Paced Training Info
Learn at your own pace with anytime, anywhere training
- Same in-demand topics as instructor-led public and private classes.
- Standalone learning or supplemental reinforcement.
- e-Learning content varies by course and technology.
- View the Self-Paced version of this outline and what is included in the SPVC course.
- Learn more about e-Learning
Course Added To Shopping Cart
bla
bla
bla
bla
bla
bla
Self-Paced Training Terms & Conditions
Exam Terms & Conditions
Sorry, there are no classes that meet your criteria.
Please contact us to schedule a class.
		
STOP! Before You Leave
	
	Save 0% on this course!
Take advantage of our online-only offer & save 0% on any course !
Promo Code skip0 will be applied to your registration
Purchase Information
title
Please take a moment to fill out this form. We will get back to you as soon as possible.
All fields marked with an asterisk (*) are mandatory.
 

 
    	 
    	



 
               