You are using an outdated browser. For a faster, safer browsing experience, upgrade for free today.

Modules

Details

Release Info

Among Debian, RedHat and others, SuSE Linux has long provided an Enterprise Linux Distro offering centered on slow, predictable release cycles, and, timely ysoftware updates. It's YaST administrative tool is apt and has been a 'beacon-of-administrative-hope' where other Distros have failed miserably. If you are in the traditional Enterprise, pay attention to this Distro, as it surfaces more often than not.

Release Syllabus

SuSE® Enterprise Linux Version 11x
  • PXE-based, HTTP, SSH and Virtual Installations
    • Discuss system requirements
    • Explain installation phases
    • Prep TFTP server for installation
    • Configure DHCP on Cisco Router to support PXE installation
    • Publish SUSE 11 ISO image on Apache HTTPD server
    • Install SUSE Ent. 11 Server via PXE, HTTP & VNC
    • Implement custom partition scheme
    • Confirm results
    • Discuss requirements for SSH semi-auto install
    • Configure installation process to use SSH
    • Configure automatic installations via AutoYaST & SSH
    • Publish AutoYaST XML file to HTTP-accessible location
    • Commence automatic installation via SSH
    • Discuss virtualization installation requirements
    • Provision VMWare containers for SUSE 11 Enterprise
    • Configure and deploy automatic installation for general virtual hosts
    • Deploy SUSE 11 instance on VMWare using MAC address configuration - uniqueness
    • Perform MAC address installation on physical Dell PowerEdge server
    • Use AutoYaST to provision installation profile
    • Install server using installation profile
    • Evaluate results of various installation methods
  •  
  • Grand Unified Boot Loader (GRUB) & Boot Problems
    • Explore GRUB configuration
    • Explain SUSE Linux System V Init Runlevel (0 - 6) concepts & applications
    • Identify key startup files, including scripts (inittab,Sscripts,Kscripts,etc.)
    • Explore single-user mode as a troubleshooting aide
    • Use repair mode to explore startup environment & perform system check
    • Explore rescue system
  •  
  • X & GNOME
    • Identify default runlevel
    • Configure X environment using YaST
    • Explore the GNOME desktop environment
  •  
  • Basic GNU/Linux Skills - Command Line Interface (CLI) - BASH
    • Introduction to GNOME Terminal
    • Demonstrate usage of the following useful commands & concepts
    • ls, pwd, cd, cp, mv, rm, mkdir, rmdir, whoami, man, info
    • alias, cat, file, chmod, chown, history
    • Standard in/out, UNIX Pipes, Redirection, Command Chaining
    • ps, df, free, vmstat, top, kill
    • less & more, head & tail, diff
    • which & whereis, w, who
    • Explore BASH configuration files
    • find, locate
    • Use grep and awk to process text files
    • Archival & Compression Utilities: tar, gzip, bzip2, zip
    • Convert Windows text files to Unix format using dos2unix
    • Convert Unix text files to Windows format using unix2dos
  •  
  • Common Network Clients
    • File Transfer Protocol (FTP) client
    • Install and use LFTP - Sophisticated FTP Client to connect to FTP/HTTP servers
    • Mirror and reverse mirror using LFTP to synchronize data
    • Wget - HTTP/HTTPS/FTP connectivity
    • Explore SSH clients - Discuss features
    • Identify key SSH-client files (.known_hosts, public/private key pairs,etc.)
    • Use Secure Copy Protocol (SCP) to move data between systems non-interactively
    • Use Secure File Transfer Protocol (SFTP) to move data between systems interactively
    • Demonstrate how to generate Public/Private key (RSA/DSA) pairs using ssh-keygen
    • Copy public keys to remote systems using: ssh-copy-id
    • Demonstrate using SSHto authenticate to remote Linux hosts without passwords
    • Authenticate to remote Linux systems using alternate credentials
    • Generate Public Key/Private Key pairs for use with file and E-mail encryption
    • Demonstrate using E-mail client with GNU Privacy Guard (GPG) Open PGP for E-Mail encryption
    • Use ping, netstat, arp, telnet, traceroute, ifconfig - network diagnostics
    • Use dig, host, nslookup, whois name resolution clients
  •  
  • RPM Package Management Tool Concepts & Usage
    • Explain classes of SUSE Linux Packages
    • Query existing packages
    • Identify offline and online package repositories
    • Install packages
    • Upgrade packages
    • Freshen packages
    • Remove packages
    • Identify package membership of files on the SUSE system
  •  
  • Users, Groups & Permissions
    • User profile implementation logic and concepts - (Bash profile/etc/skel/aliases/PATH/etc.)
    • User and group creation & management concepts - passwd, shadow, group, gshadow files
    • Use lastlog to determine system-access to various terminals
    • Use YaST to create and manage users and groups
    • Use stat to ascertain file information
    • SETUID
    • SETGID - Group collaboration
    • Sticky Bit
    • Discuss and Implement Hard and Symbolic links
  •  
  • Paritions, File Systems & Volumes (RAID|LVM)
    • Provision additional Swap storage paritions and files
    • Use dd, mkswap & swapon to enable additional Swap storage
    • Identify allocated swap space to the kernel
    • Committ changes to /etc/fstab for persistence
    • Disable swapping with swapoff as necessary
    • Allocate virtual storage for RAID configuration
    • Provision new paritions with YaST
    • Configure RAID 0/1/5/ Volumes
    • Discuss features and benefits of LVM
    • Implement Logical Volume Management (LVM)
    • Evaluate results
  •  
  • Explore System Logging via SYSLOG-NG and Logrotate
    • Explore Boot log & System Log
    • Explanation of syslog facilities & levels
    • Discuss SYSLOG-NG features & enhancements
    • Demonstrate syslog administration
    • Enable SYSLOG network listener
    • Demonstrate Cisco PIX Firewall to SUSE Linux SYSLOG-NG functionality
    • Explore automatic log rotation and customization via Logrotate
    • Configure Logrotate to rotate & compress sample log files
  •  
  • Network - Physical & Logical Configuration
    • Identify key directories & files for static & dynamic communications
    • Configure Linux client with static TCP/IP parameters for network communication
    • Explore hotplug -> hwup -> ifup logic
    • Use ifconfig to ascertain logical TCP/IP configuration
    • Use hwinfo to ascertain installed hardware
    • Configure Aliased Ethernet Interfaces to faciliate multiple IP addresses
  •  
  • CRON - System Scheduler
    • Explore Cron Implementation
    • Explain scheduling options
    • Global and scope-based Cron options
    • Schedules jobs to run & examine the output
    • Configure individual Crontab entries
  •  
  • Implement Network Time Protocol Daemon (NTPD) Client/Server
    • Configure Network Time Protocol (NTP) to perform client/server time synchronization
    • Identify NTP bounded UDP interfaces
    • Synchronize SUSE Enterprise Linux NTP with RedHat Linux Stratum 2 NTP server
    • Synchronize against Stratum 1 NTP servers
  •  
  • Implement Trivial File Transfer Protocol Daemon (TFTPD) Server
    • Discuss TFTP attributes
    • Implement TFTPD
    • Backup Cisco router configuration via TFTP
    • Backup Cisco firewall configuration via TFTP
    • Use sed to update TFTPD configuration
  •  
  • Dynamic Host Configuration Protocol (DHCP)
    • Explain DHCP Concepts & Applications
    • Explore DHCP confiuration files
    • Configure DHCP subnet with applicable options
    • Configure DHCP Reservation based on layer-2 address
    • Enable DHCP with DDNS
    • Configure DHCP Failover between SUSE and RedHat Linux Servers
    • Test DHCP Failover with Windows 2003 Host
  •  
  • Domain Name System (DNS)
    • Explore SUSE DNS configuration via YaST
    • Configure BIND as a caching-only DNS server
    • Implement Master DNS Zone
    • Configure Reverse Zone for local subnet
    • Implement Dynamic Domain Name System (DDNS) Zones (Forward/Reverse)
    • Explain DHCP and DNS update integration options
    • Integrate DHCP with DNS via Encypted Transaction Signatures (TSigs)
    • Evaluate results of BIND configuration using DIG & host
    • Implement DNS sub-domains (Third-level domains)
  •  
  • FTPD with Very Secure VSFTPD & ProFTPD File Transfer Protocol (FTP) services
    • Implement anonymous FTPD
    • Implement user-level FTPD access
    • Implement FTPD banners
    • Disable anonymous access
    • Configure VSFTPD to chroot jail users into their home directories
    • Implement bandwidth rate-limiting to control bandwidth usage
    • Implement & test banning of unwelcomed anonymous e-mail addresses
    • Implement ProFTPD with settings similar to VSFTPD
    • Evaluate results
  •  
  • Network File System (NFS) Implementation
    • Identify key services/daemons
    • Configure NFS Client & Server
    • Evaluate NFS connectivity to other Linux hosts
  •  
  • Samba Implementation
    • Explore key Samba clients
    • Explore Samba Configuration files
    • Implement SMBFS integration with SUSE Enterprise Linux File System
    • Mount Windows shares seamlessly using Samba File System (SMBFS)
    • Configure FSTAB to support repetitive mounts
    • Implement secure SMBFS credentials for mounting
    • Install Samba Server support
    • Install Samba Web-based Administration Tool (SWAT)
    • Configure Samba file sharing
    • Configure Samba with multiple NETBIOS aliases
    • Install Active Directory on Windows 2003 Server
    • Integrate with Windows Active Directory (AD)
    • Test Samba-to-Windows integration using 'getent' and authentication
    • Implement Windows 2008 Active Directory with Samba
    • Evaluate results
  •  
  • Apache Web Server Implementation
    • Discuss Apache server's features and concepts
    • Install Apache
    • Examine Apache-SUSE HTTPD CONF hierarchy
    • Examine various configuration files
    • Configure Virtual Hosts
    • Examine user home directories
    • Discuss the Directory directive
    • Explore redirects
    • Configure .htacess file with directives
    • Configure Name-based Virtual Hosts
    • Explore Apache logging
    • Implement Apache logging system per virtual host
    • Webalizer Log Analysis software Implementation
    • Generate web reports using Webalizer
  •  
  • MySQL Relational Database Management System
    • Install MySQL Relational Database Management System
    • Secure access to MySQL
    • Explore MySQL monitor shell-based interface
    • Create sample MySQL databases
    • Load external data-set from Linux
    • Load external data-set from Windows
    • Integrate PHP with MySQL

  • PHPMyAdmin - MySQL Web-based Management Interface
    • Install PHPMyAdmin for web-based management of MySQL instances
    • Explain & Secure access to PHPMyAdmin
    • Explore PHPMyAdmin's interface
  •  
  • SMTP-MTA|IMAP|Squirrel-mail Web-based Mail Interface Implementation
    • Explore SMTP-MTA Configuration
    • Explore IMAP Configuration
    • Describe required squirrel mail components for web-mail integration
    • Install squirrel mail on SUSE Enterprise Linux system
    • Configure Apache virtual directory for squirrel mail integration
    • Configure Apache Virtual Host for squirrel mail integration
    • Configure BIND DNS services for squirrel mail integration
    • Explore squirrel mail's web-based interface
  •  
  • Apache SSL
    • Discuss features & benefits
    • Configure self-signing server
    • Generate usage certificates for hosted sites
    • Bind SSL keys to hosted sites on various TCP:Ports
    • Start Apache SSL
    • Evaluate results
  •  
  • Local Security
    • Use YaST to identify and configure key security directives
    • Identify, change and test file permissions policy
    • Peruse and tighten password policy
    • Limit SMTP TCP:Port communications to loopback interface
    • Shut superfluous daemons (services)
    • Explore additional XINETD features
  •  
  • Upgrade SUSE 10 Enterprise Edition
    • Define upgrade strategy
    • Discuss caveats
    • Provision ISO image on HTTP installation server
    • Perform upgrade via PXE using HTTP & SSH
    • Evaluate results Explore additional XINETD features
  •  
  • Network Mapper (NMAP)
    • Obtain, compile and install current version of NMAP
    • Identify commonly used NMAP options/switches/parameters
    • Perform default TCP SYN-based ethical scans of local and remote resources
    • Explain typical TCP handshake protocol while using NMAP
    • Examine the results of scans on remote Cisco firewall with debugging mode enabled
    • Perform default TCP Connect-based ethical scans of local and remote resources
    • Examine the results of scans on remote Cisco PIX Firewall with debugging mode enabled
    • Use NMAP to scan using aliased and spoofed IP addresses
    • Peform local ethical scans
    • Identifiy key NMAP configuration files
    • Use NMAP to perform operating system fingerprinting
    • Peform subnet-wide ethical scans
  •  
  • SuSEFirewall2 (IPTables - Netfilter Linux Kernel-based Firewall)
    • Discuss IPTABLES/Netfilter Concepts
    • Explain IPTABLES default chains/filters and policies
    • Examine TCP/ICMP communications pre-IPTABLES chains
    • Filter traffic based on Layer-4 TCP/UDP (Source/Destination Ports) information
    • Restrict access to various daemons (SSH/FTP/HTTP/etc.)
    • Test connectivity locally and remotely
  •  

Tokyo Time

16:9

Rate

1.25x

Watched

1

Completed

1 of 5

Recent