Linux Network Services RH253

Prerequisites: Linux Administration 1 RH133

Duration: 5-days

Course to include RHCT Exam Guide.

1. Introduction to Network Services

Red Hat Enterprise Linux Network Components
Connecting Networks
Service Management
Chkconfig
xinetd Services
The xinetd Daemon
Fault Analysis

2. Organizing Networked Systems

DNS Basics
Internet DNS Hierarchy
Name Server Hierarchy
Client-Side DNS
Server-Side DNS
Berkeley Internet Name Domain (BIND)
Configuring BIND
Configuration File Basics
Address Match Lists and acl
rndc
Zone Files
Main Record Types
Delegating Subdomains
Caching-Only Name Server
BIND Utilities
BIND Syntax Utilities
Configuring the DHCP server

3. Network File Sharing Services

Configuring NFS Services
Configuring FTP Services
Samba Services
Samba Daemons
Configuring Samba
Configuring File and Directory Sharing
Printing to the Samba Server
Authentication Methods
Samba Client Tools: smbclient and smbmount

4. Electronic Mail Services

sendmail Features
Security and "Anti-Spam" Features
An E-Mail Review
Simple Operational Overview
Main Configuration Files
sendmail Configuration with the m4 Macro Language
sendmail Client Configuration
Blacklisting Recipients
Debugging sendmail
Postfix
Using Postfix
Additional Postfix Configuration Files
procmail Local Delivery

5. The HTTP Service

Apache Features
Apache Configuration
Apache Server Configuration
Virtual Hosts
Apache Namespace Configuration
CGI
Apache Encrypted Web Server
Squid Web Proxy Cache

6. Security Concerns and Policy

Security Terms
Basic Network Security
Which Services are Running?
Remote Service Detection
Definitions of Security
Security Policy
Backup Policies

7. Authentication Services

Authentication Basics
Service Profile: PAM
PAM Operation
Core PAM Modules
Authentication Modules
Password Security
Password Policy
Resource Limits
User Access Control
Single User Mode
Authentication Troubleshooting
NIS Overview
NIS Server Topology
Configuring an NIS Server
NIS Client Configuration
NIS Troubleshooting

8. System Monitoring

Introduction to System Monitoring
File System Analysis
Set User and Group ID Permissions
Typical Problematic Permissions
EXT2 Filesystem Attributes
Monitoring Data Integrity with tripwire
Configuring tripwire
System Log Files
syslogd and klogd configuration
Advanced syslogd configuration
Log File Analysis
Monitoring and Limiting Processes
Monitoring Processes with top
Monitoring Processes Graphically
System Activity Reporting
Process Accounting Tools

9. Securing Networks

Packet Filtering Capabilities
Netfilter Architecture
Netfilter Packet Flow
Chain Operations
Rule Targets
Rule Matching
Network Address Translation (NAT)
Connection Tracking
Rule Persistence
The "Bastion Host"

10. Securing Services

SystemV Startup Control
Securing the Service
tcp_wrappers Configuration
Daemon Specification
Client Specification
Advanced Syntax
xinetd-Based Security
xinetd Access Control
Host Patterns
Advanced Security Options

11. Securing Data

The Need for Encryption
Cryptographic Building Blocks
Random Numbers
One-Way Hashes
Symmetric Encryption
Asymmetric Encryption
Public Key Infrastructures
Digital Certificates
Generating Digital Certificates
OpenSSH Overview
The OpenSSH
OpenSSH Authentication
Protecting Your Keys
Applications: RPM

Labs
1. Introduction to Network Services
2. Organizing Networked Systems
3. Network File Sharing Services
4. Electronic Mail Services
5. HTTP Service
6. Security Concerns and Policy
7 Authentication Services
8. System Monitoring
9. Securing Networks
10. Securing Services
11. Securing Data