Demand of networking professionals has significantly came down in recent years, graduate engineers seek help from professional certifications to attain the skills in order to grab the job opportunities in market.. Traditional beginner courses like A+, CCNA, network+ are does not meet the skills organizations today demands.
TSE has been designed by industry skilled professionals keeping current organization requirements under consideration. Multi-vendor skills and understanding of converged technologies – both network and security – has become key attribute to success of any professional training program today.
This multi vendor course helps beginners to understand various aspects of different network and security technologies. Powered with our cloud ilab, this course provides hands-on experience on how to install, operate, configure IPv4 network with in-depth understanding on configuring a LAN switch, router , identifying and implementing security policies using firewall and troubleshooting of common network & security issues.
Prerequisites: General knowledge of computer and basic network fundamentals is requiredCourse Objectives:
After completion of this course students will learn networking basics IP Addressing, Subnetting, Routing – static and dynamic routing, LAN Switching – VLAN’s, VLAN domain, STP. This course will also cover various firewall technologies, firewall architecture and help candidate to perform basic and advance configuration including security policies, Firewall NAT & VPN.
Who should attend? Network engineers, System administrators, Network architects, Graduates, post graduate’s, systems engineers staff who are responsible for planning, Implementing and deploying system, IP networks which may require network security skills in the future.Module 1 – Network Basics
- Basics of Networking
- History of networking
- Why networking is required
- What is internet
- Recognize the purpose and functions of various network devices such as Routers, Switches, Bridges and Hubs.
- Describe the purpose and basic operation of the protocols in the OSI Model.
- Application layer protocols – HTTP, FTP, DNS, HTTPS
- Transport layer protocols in detail – TCP & UDP
- Significance of network layer – protocols, routing
- Understanding data link layer – protocols and frame structure
- Brief understanding of other layers
- Designing small network with router & switches
- Understanding the data flow between two hosts across a network
- Significance of ARP protocol and Types of ARP
- Why we need default gateway
- Importance of MAC (Media Access Control) for network communication
- Basics of DHCP server
Module 2 – TCP/IP
- Understanding TCP/IP
- TCP/IP 3-way handshake
- TCP/IP flags in detail
- Syn , ack, psh
- Fin, rst, urg
- Understanding TCP vs UDP protocol
- Brief about packet structure in IP networks
- Packet captures using wireshark and understanding various packet layers
- Describe the operation and necessity of IP addresses
- Private IP address
- Public IP address
- Identify the appropriate IPv4 addressing scheme using sub netting.
Module 3 – IP Routing Technologies using CISCO
- Router hardware details and understanding router basic operation and command line interface
- Router configuration modes
- Configuration of router interfaces
- Basic router operational commands including configuration save, show commands etc..
- Understanding essential of routing concepts
- Understanding need of static and dynamic routing protocols in network environment
- Static routing attributes and design parameters
- Understanding dynamic routing algorithms
- OSPF
- Designing layer3 network with using static and dynamic routing protocols
- Configure and verify routing configuration for a static or default route given specific routing requirements
- OSPF routing Protocol
- Multi Vendor Configuration and verify routing configuration for a static and OSPF routing Protocol, with CISCO, Juniper & Vyatta products.
- Basic Hardware details and understanding the basic commands of Juniper and Vyatta.
- Static Routing in mixed environment with three vendor products Cisco, Juniper & Vyatta
- Dynamic Routing (OSPF) in mixed environment with three vendor products Cisco, Juniper & Vyatta
Module 4 – Packet Based filtering ACL “ Access Control List”
- Understanding firewall concepts in details with types of firewalls
- Details on Most comman Security Threats
- Packet filter firewall
- Application gateway firewall
- Stateful Inspection
- Next generation firewall
- Understanding Packet based filtering (ACL) and types of ACL
- Standerd Access List
- Extended Access List
- Name base Access List
- Time Base Access List
Module 5 – LAN Switching Technologies
- Determine the technology and media access control method for Ethernet networks
- Basic difference between HUB, Bridge, Non Manageable Switch and Manageable Switch
- LAN switching essentials
- Access port, trunk ports, VLAN, VTP, logical interfaces/ VLAN interfaces
- Describe how VLANs create logically separate networks and the need for routing between them
- Types of switching
- Layer2 vs layer3 switching
- Designing layer2 & layer3 switched network with using VLAN’s, sub interfaces and routing protocols
- Configure and verify VLANs
- Configure and verify trunking on Cisco switches
- Configure and verify inter VLAN routing (Router on a stick)
- Understanding spanning tree protocol and significance in switched network
Module 6 – Network security basics
- Network security concepts explained
- Enterprise security architecture – defense in depth / layered security architecture
- Perimeter defense
- Gateway layer defense
- Server/end point defense
- Understanding on various enterprise wide network and security technologies
- Enterprise firewalls,
- Intrusion prevention systems,
- Proxy technologies
- Forward proxy
- Reverse proxy
- Transparent proxy
- Web security & mail security etc..
- Describe various threat vectors
- Syn attack , ip spoofing
- DOS attack , password cracking
- Application oriented attacks
- Understanding firewall concepts in details with types of firewalls’
- Packet filter firewall
- Application gateway firewall
- Stateful Inspection
- Next generation firewall
Module 7 – Firewall & UTM Architecture
- Understanding of firewall hardware architecture and its components
- Content processor
- Network processor
- Overview of parallel processing
- Design consideration with firewall security solution
- Overview of firewall & UTM security modules
- Firewall, IPS
- Application control, web filter
Module 8 – Installation and administration in virtual environment
- Understanding standalone and distributed deployment architecture
- Firewall deployment – NAT/Route mode
- IP address spoofing – reverse path forwarding
- Understanding security rule base of firewall
- Overview of firewall policy parameters
- Policy order & policy identification in firewall
Module 9 – Network Address Translation
- Overview on NAT requirements
- Network address translation
- Source NAT
- Destination NAT
- Static NAT
- Virtual IP port forwarding NAT
- Understanding and implementation of NAT policies in firewall
Module 10 – Introduction of VPN
- Overview of VPN technologies
- IPsec
- IKE
- ESP & AH
- Understanding on policy based VPN and its limitations
Module 11 –Troubleshooting
- Debug the packet flow
- Examine firewall session list
- Routing, policy and NAT troublshooting
- Session logging and monitoring
- Expamine system resources such as CPU, RAM and disk
- Backup and Restore of Configuration
- Packet captures using wirewshark
- Reset admin password & factory reset
- Firewall security policy and NAT troublehsooting