Learn security fundamentals as you build, test, and
deploy a secure network.
Network Security I: Policy,
Administration, and Firewalls
Price: £495 (ex.
VAT)
High-profile security breaches have made network access control
one of the most important concerns for corporate and government
network managers. It is your job to reduce the chance of security
breaches. Do you know what attacks intruders use and how to counter
them? As hackers become more sophisticated, so must you. This
course will give you the foundation security knowledge to protect
your network from attack.
Network Security II: Integration and
Implementation
There is more to security than just buying and installing
hardware and software products. Gain a valuable understanding of
the level of effort and life cycle management issues involved in
developing and maintaining robust security architectures. Take the
principles and concepts learned in Network Security I to the next
level - analysis, comprehension, and implementation.
Network Security II ensures that you know how to apply security
best practices to real security architectures. Design security
policies that meet your organization's business objectives, apply
them to the security architecture, and test your configuration
during each stage of development.
What You'll Learn
- Design security plans to protect your network access points and
services
- Translate policy requirements into a technical security
solution
- Test your classroom network's security and repair holes
reported by vulnerability detection tools
- Use an Intrusion Detection System (IDS) to identify hacker
attacks
- Configure a bastion host
- Develop and design Access Control Lists (ACL)
- Design firewalls using router packet filtering and stateful
inspection devices
- Use port scanners, Telnet, TFTP, FTP, and other hacker
tools
- Use certificates and public-key cryptography to encrypt
information
- Implement IPSec-compliant VPNs
Course Outline
Title 1: Attack Methods
Learn who the attackers are, how they break in, and how they
gain information about their victims.
You'll Learn
- Attack Methods
- Gaining Access
- Unauthorized Access
- Non-authenticated Services
- Denial of Service
- Network Insecurity
Title 2: Security Policy Design and
Implementation
Understand threats to your organization, what assets to protect,
how to implement safeguards, and the value of establishing a
security policy.
You'll Learn
- Security Assessment
- Risk Assessment
- How to Identify Attackers
- How to Identify Motives
- Legal Issues
- Security Implementation Policy
Title 3: Firewalls, Proxies, and Packet
Filters
Examine firewalls, components, and advanced features. Learn
about packet filters, proxy servers, stateful inspection, and
bastion hosts.
You'll Learn
- Firewall Architecture
- Depth of Defense
- Firewall Components
Title 4: Authentication, Detection, and
Auditing
Get an in-depth look at intrusion detection systems,
vulnerability scanners, and auditing features. Learn about features
of authentication: passwords, tokens, keys, and biometrics.
You'll Learn
- Authentication
- Intrusion Detection and Incident Response
- Vulnerability Assessment and Audit
Title 5: Cryptographic Functions and
Applications
Learn how cryptographic functions work together to enable secure
communications and authentication of data transmitted.
You'll Learn
- Cryptographic Functions and Applications
- Cryptosystems
- Certificates and Public-Key Infrastructure
- Public-Key Management Issues
- Applications of Cryptography
Network Security II: Integration and
Implementation
Title 1: Routers as Security
Devices
Learn how to securely control traffic going to the router by
changing default settings and turning on security features. Create
access control lists to control traffic passing through the router
going to either the internal network or to external locations.
Learn how to set up logging capabilities to monitor events handled
by the router. Test and troubleshoot router security configurations
and access control lists for errors in logic or administration.
Take the appropriate steps to fix problems.
You'll Learn
- Routers as Security Devices
- Router Access
- Disabling Unnecessary Services
- Routed and Routing Protocols
- Access Control Lists
- Auditing
Title 2: Bastion Hosts
Define what constitutes a bastion host and explain how the
bastion host protects itself, as well as the network, from attacks.
Determine the role each bastion host plays in the design of
security architectures. Learn how to implement general
configuration procedures to harden Windows and UNIX-based operating
systems as well as security applications hosted by those operating
systems. Demonstrate the process to set up, configure, and test a
Windows-based bastion host to support Check Point FireWall-1
NG.
You'll Learn
- Defining the Bastion
- Protecting the Bastion Host and the Network from Attack
- The Role of the Bastion Host
- General Configuration
- Hardening the Operation System
- Securing the Application
Title 3: Architecture
Integration
Learn how to establish the DMZ to place the bastion hosts into
operation. Explain the relationship between the different bastion
devices that make up the security architecture. Learn how to
resolve which device is best suited to handle the different
protocols entering and exiting the network, yet use all the devices
efficiently to balance security duties. Evaluate the changing
business environment to determine if the current architecture can
still handle the requirements, or if changes need to be implemented
to the architecture. Understand how changes or modifications to the
existing security architecture could have significant impacts if
they are not documented and tested for potential holes or
vulnerabilities. Learn how periodic health checks and testing of
the existing architecture can help avoid these holes or
vulnerabilities before they become serious problems.
You'll Learn
- The Demilitarized Zone
- Device Relationships
- Filtering Inbound/Outbound Traffic
- Extenuating Circumstances
- Modifying and Maintaining the Architecture
Title 4: Virtual Private Networks Using
IPSec
Understand the IPSec framework and security protocols that are
the basis for that framework. Identify the security areas addressed
by IPSec. Learn the differences between the two operational modes,
transport and tunnel, within IPSec. Understand how security
associations and automated key management are fundamental
components of IPSec. Identify the three most likely VPN business
scenarios. Set up a site-to-site IPSec-compliant VPN using Check
Point Firewall-1 NG as the VPN gateway.
You'll Learn
- VPN Solutions
- IPSec Protocols
- IPSec Operational Modes
- Business Solutions