Linux System Networking and Administration (LFS211)

In this course, we will discuss networking concepts and connections, file transfer, name resolution, time coordination, web, remote connections, and email servers. We will also focus on networking administration topics like network security, package management, and virtualization.

Course Learning Objectives.
By the end of this course, you should be able to:

  • Design, deploy and maintain a network running under Linux
  • Administer the network services
  • Create and operate a network in any major Linux distribution
  • Securely configure the network interfaces
  • Deploy and configure file, web, email and name servers.

Kurikulum Kursus

  • Modul 1

    Introduction

    • Course Introduction
    • Course Learning Objectives
    • Lab 1.1 : Configuring the System for sudo
    • Course Support
    • The Linux Foundation
    • The Linux Foundation Events
    • The Linux Foundation Training Offerings
    • The Linux Foundation Certifications
    • Training/Certification Firewall
  • Modul 2

    Linux Networking: Concepts and Review

    • The Open Systems Interconnection (OSI) Model
    • LAN, WAN, and VLAN Networks
    • Bridged Network
    • Domain Name System (DNS)
    • System Services
    • Lab 2.1. Verify vsftp and ftp Installation
    • Lab 2.2. Start a System Service Manually
    • Lab 2.3. Start a System Service with the SysVinit Script
    • Lab 2.4. Start a System Service with systemd
    • Lab 2.5. Enable a System Service Using the systemctl Command
    • Lab 2.6. Create and Customize a systemd Service
  • Modul 3

    Network Configuration

    • Layer 2: Configuration
    • Layer 2: Advanced Configuration
    • Layer 3: Configuration
    • Boot Time Network Configuration
    • Network Manager
    • openSUSE, CentOS and Ubuntu Configurations
    • netplan Administrator Interface
    • netplan Startup Events
    • What Is a VPN?
    • OpenVPN Software
    • Lab 3.1. Explore and Record the Existing Network Configuration
    • Lab 3.2. Create a boot-time Configuration of Your Network Interface
    • Lab 3.4. Restore the DHCP Configuration
  • Modul 4

    Network Troubleshooting and Monitoring

    • Networking Troubleshooting
    • Client Troubleshooting
    • Server Troubleshooting
    • Network Monitoring
    • Lab 4.1. Create an Intermittent Network Issue and Prove What Is Broken
    • Lab 4.2. Prove a Service Is Listening Only on localhost
    • Lab 4.3. Block Traffic to a Service with TCP Wrappers and Prove It Is Blocked
  • Modul 5

    Remote Access

    • Telnet
    • Remote Shell (rsh)
    • Cryptography
    • Secure Shell
    • SSH Session Overview
    • OpenSSH Server
    • Per-User OpenSSH Configuration
    • OpenSSH Key-Based Authentication
    • OpenSSH Tunnel
    • Parallel SSH Command
    • Virtual Network Computing (VNC) Server
    • VNC Client
    • X Window System
    • Lab 5.1. Set Up SSH Key-Based Authentication
    • Lab 5.2. Make OpenSSH Client Configuration Changes
    • Lab 5.3. Secure Your OpenSSH Daemon
    • Lab 5.4. Launch a Remote X11 Application Locally
    • Lab 5.5. Parallel ssh Command Execution
    • Lab 5.6. Start and Test a VNC Server
    • Lab 5.7. Tunnel VNC over SSH
    • Lab 5.8. VNC Server Autostart
  • Modul 6

    Domain Name Service

    • Before DNS
    • /etc/hosts
    • DNS Recap
    • Recursive DNS Query Recap
    • Query/Record Types
    • Forward and Reverse DNS Queries
    • DNS Server Daemons
    • BIND (named) Server
    • BIND Configuration File
    • BIND Configuration Options
    • BIND as a Caching Nameserver
    • BIND Zone Configuration
    • Zone Files
    • SOA Records
    • Split Horizon or DNS View
    • DNS Views
    • View Configuration Considerations
    • Lab 6.1: Configure Caching DNS
    • Lab 6.2: Create an Authoritative Forward Zone for the example.com Domain
    • Lab 6.3: Create a Reverse DNS Zone
  • Modul 7

    HTTP Servers

    • Main Configuration File
    • Configuration File Includes
    • Other Important Files
    • Log Configuration
    • Other Configuration Options
    • IP/Port Virtual Hosts
    • Name-Based Virtual Hosts
    • Name Vhosts and SSL
    • File Permissions
    • SELinux
    • Safe CGI Scripting
    • Secure Sockets Layer (SSL)
    • Install SSL Keys
    • Lab 7.1: Overview of Lab Environment
    • Lab 7.2: Install Apache and Test
    • Lab 7.3: Create a New IP Virtual Host
    • Lab 7.4: Create a Name-Based Virtual Host
    • Lab 7.5: Create a Password-Protected Subdirectory
    • Lab 7.6: Create and Test a Self-Signed SSL Certificate
    • Lab 7.7: Create a Certificate Signing Request
  • Modul 8

    Advanced HTTP Server

    • Rewriting URLs
    • Rewrite Map
    • Rewriting Examples
    • mod_alias
    • AliasMatch
    • AliasMatch Considerations
    • ScriptAlias
    • mod_status
    • mod_include
    • mod_perl
    • Multi-Processing Modules (MPMs)
    • Configuring Prefork
    • Configuring Worker
    • Load Testing
    • Caching and Proxies
    • Speciality HTTP Servers
    • Web Server Balancer
    • Web Server Balancer Configuration
    • Lab 8.1. Create a New cgi Script-Enabled Directory
    • Solution 8.1. Create a New cgi Script-Enabled Directory
    • Lab 8.2. Create a Rewrite Rule for 'pretty' CGI Script URLs
    • Solution 8.2: Create a rewrite rule for “pretty” CGI script URIs
    • Lab 8.3. Enable mod_status
    • Solution 8.3. Enable mod_status
    • Lab 8.4. Enable 'includes' under the URI '/magic/index.html'
    • Solution 8.4. Enable 'includes' under the URI '/magic/index.html'
  • Modul 9

    Email Servers

    • Email Overview
    • SMTP, POP3 and IMAP Protocols
    • Email Life Cycle
    • MTA, MDA, MUA and IMAP/POP Implementations
    • Postfix Configuration
    • Common Postfix Configuration
    • Security Considerations
    • Postfix Authentication
    • Postfix SASL
    • Postfix Security
    • Monitoring Postfix
    • Reducing SPAM
    • Email Aliases and Forwarding
    • Advanced Email Software
    • Dovecot
    • Lab 9.1. Enable the Postfix SMTP Server for External Access
    • Solution 9.1. Enable the Postfix SMTP Server for External Access
    • Lab 9.2. Enable Dovecot as IMAP Server
    • Solution 9.2. Enable Dovecot as IMAP Server
    • Lab 9.3. Enforce TLS/SSL for IMAP in Dovecot
    • Solution Enforce TLS/SSL for IMAP in Dovecot
    • Lab 9.4. Enable Relaying Using SMTP Authentication in Postfix
    • Solution Enable relaying using SMTP Auth in postfi
    • Lab 9.5. Enable StartTLS for Postfix, and Force Plain-Text Logins to Use StartTLS
    • Solution Enable StartTLS for Postfix, and Force Plain-Text Logins to Use StartTLS
  • Modul 10

    File Sharing

    • File Transfer Protocol (FTP)
    • rsync
    • scp and sftp
    • rsync over SSH
    • WebDAV
    • BitTorrent
    • Lab 10.1. Use SCP to Copy a Folder from One Location to Another
    • Lab 10.2. Use rsync Over ssh to Add the *.bin Files Only to Previously Created Folder
    • Lab 10.4. Share a Folder Over the rsync Protocol
  • Modul 11

    Advanced Networking

    • Routing
    • Virtual Local Area Network (VLAN)
    • VLAN: Packet Attributes
    • Dynamic Host Configuration Protocol (DHCP) Server
    • DHCP Configuration
    • Network Time Protocol
    • NTP Applications
    • Configuring ntpd Client and ntpd Server
    • Lab 11.1. Create a VLAN Interface
    • Lab 11.2. Create a New Static Route
    • Lab 11.3. Configure and Enable a Stratum 3 NTP Server, and Connect It to the NTP Protocol as a Client
  • Modul 12

    HTTP Caching

  • Modul 13

    Network File Systems

  • Modul 14

    Network Security

    • Security Concepts
    • Security Principles
    • Service Practices
    • Demilitarized Zone (DMZ)
    • Application Security
    • Security Awareness
    • Network Inspection
    • Firewalls
    • Application Access Control
    • chroot
  • Modul 15

    Firewalls

    • TCP Wrappers
    • Netfilter Vocabulary
    • Filter, NAT and Mangle Tables
    • iptables Command
    • Match Criteria
    • Targets
    • Configuration Utilities
    • Distribution Defaults
    • Managing iptables
    • Forced Transparent Proxy
    • Network Address Translation
    • netfilter Hooks
    • nftables Configuration Structure
    • nft Administration Interfaces
    • nft File Locations
    • Lab 15.1. Exploring iptables Firewalls
    • Lab 15.2. Enable a Firewall Which Blocks All Unwanted Traffic
  • Modul 16

    LXC Virtualization Overview

    • Linux Containers (LXC)
    • LXC Utilities
    • LXC Network Example
    • Networking Alternatives
    • Lab 16.1. Install and Test Web Server as an LXC Application
    • Lab 16.2. Duplicate an LXC Container
  • Modul 17

    High Availability

  • Modul 18

    Databases

  • Modul 19

    System Log

  • Modul 20

    Package Management

Reviews (0)


Level Menengah
LFS211-2022-01
16 Feb. 2022 - 12 Maret 2022

Kategori

Linux