LinuxCBT.com

Syllabus

Focus: SuSE® Enterprise Linux Version 11x

Duration: 40-Hours

    • PXE-based, HTTP, SSH and Virtual Installations
      • Discuss system requirements
      • Explain installation phases
      • Prep TFTP server for installation
      • Configure DHCP on Cisco Router to support PXE installation
      • Publish SUSE 11 ISO image on Apache HTTPD server
      • Install SUSE Ent. 11 Server via PXE, HTTP & VNC
      • Implement custom partition scheme
      • Confirm results
      • Discuss requirements for SSH semi-auto install
      • Configure installation process to use SSH
      • Configure automatic installations via AutoYaST & SSH
      • Publish AutoYaST XML file to HTTP-accessible location
      • Commence automatic installation via SSH
      • Discuss virtualization installation requirements
      • Provision VMWare containers for SUSE 11 Enterprise
      • Configure and deploy automatic installation for general virtual hosts
      • Deploy SUSE 11 instance on VMWare using MAC address configuration - uniqueness
      • Perform MAC address installation on physical Dell PowerEdge server
      • Use AutoYaST to provision installation profile
      • Install server using installation profile
      • Evaluate results of various installation methods
    •  
    • Grand Unified Boot Loader (GRUB) & Boot Problems
      • Explore GRUB configuration
      • Explain SUSE Linux System V Init Runlevel (0 - 6) concepts & applications
      • Identify key startup files, including scripts (inittab,Sscripts,Kscripts,etc.)
      • Explore single-user mode as a troubleshooting aide
      • Use repair mode to explore startup environment & perform system check
      • Explore rescue system
    •  
    • X & GNOME
      • Identify default runlevel
      • Configure X environment using YaST
      • Explore the GNOME desktop environment
    •  
    • Basic GNU/Linux Skills - Command Line Interface (CLI) - BASH
      • Introduction to GNOME Terminal
      • Demonstrate usage of the following useful commands & concepts
      • ls, pwd, cd, cp, mv, rm, mkdir, rmdir, whoami, man, info
      • alias, cat, file, chmod, chown, history
      • Standard in/out, UNIX Pipes, Redirection, Command Chaining
      • ps, df, free, vmstat, top, kill
      • less & more, head & tail, diff
      • which & whereis, w, who
      • Explore BASH configuration files
      • find, locate
      • Use grep and awk to process text files
      • Archival & Compression Utilities: tar, gzip, bzip2, zip
      • Convert Windows text files to Unix format using dos2unix
      • Convert Unix text files to Windows format using unix2dos
    •  
    • Common Network Clients
      • File Transfer Protocol (FTP) client
      • Install and use LFTP - Sophisticated FTP Client to connect to FTP/HTTP servers
      • Mirror and reverse mirror using LFTP to synchronize data
      • Wget - HTTP/HTTPS/FTP connectivity
      • Explore SSH clients - Discuss features
      • Identify key SSH-client files (.known_hosts, public/private key pairs,etc.)
      • Use Secure Copy Protocol (SCP) to move data between systems non-interactively
      • Use Secure File Transfer Protocol (SFTP) to move data between systems interactively
      • Demonstrate how to generate Public/Private key (RSA/DSA) pairs using ssh-keygen
      • Copy public keys to remote systems using: ssh-copy-id
      • Demonstrate using SSHto authenticate to remote Linux hosts without passwords
      • Authenticate to remote Linux systems using alternate credentials
      • Generate Public Key/Private Key pairs for use with file and E-mail encryption
      • Demonstrate using E-mail client with GNU Privacy Guard (GPG) Open PGP for E-Mail encryption
      • Use ping, netstat, arp, telnet, traceroute, ifconfig - network diagnostics
      • Use dig, host, nslookup, whois name resolution clients
    •  
    • RPM Package Management Tool Concepts & Usage
      • Explain classes of SUSE Linux Packages
      • Query existing packages
      • Identify offline and online package repositories
      • Install packages
      • Upgrade packages
      • Freshen packages
      • Remove packages
      • Identify package membership of files on the SUSE system
    •  
    • Users, Groups & Permissions
      • User profile implementation logic and concepts - (Bash profile/etc/skel/aliases/PATH/etc.)
      • User and group creation & management concepts - passwd, shadow, group, gshadow files
      • Use lastlog to determine system-access to various terminals
      • Use YaST to create and manage users and groups
      • Use stat to ascertain file information
      • SETUID
      • SETGID - Group collaboration
      • Sticky Bit
      • Discuss and Implement Hard and Symbolic links
    •  
    • Paritions, File Systems & Volumes (RAID|LVM)
      • Provision additional Swap storage paritions and files
      • Use dd, mkswap & swapon to enable additional Swap storage
      • Identify allocated swap space to the kernel
      • Committ changes to /etc/fstab for persistence
      • Disable swapping with swapoff as necessary
      • Allocate virtual storage for RAID configuration
      • Provision new paritions with YaST
      • Configure RAID 0/1/5/ Volumes
      • Discuss features and benefits of LVM
      • Implement Logical Volume Management (LVM)
      • Evaluate results
    •  
    • Explore System Logging via SYSLOG-NG and Logrotate
      • Explore Boot log & System Log
      • Explanation of syslog facilities & levels
      • Discuss SYSLOG-NG features & enhancements
      • Demonstrate syslog administration
      • Enable SYSLOG network listener
      • Demonstrate Cisco PIX Firewall to SUSE Linux SYSLOG-NG functionality
      • Explore automatic log rotation and customization via Logrotate
      • Configure Logrotate to rotate & compress sample log files
    •  
    • Network - Physical & Logical Configuration
      • Identify key directories & files for static & dynamic communications
      • Configure Linux client with static TCP/IP parameters for network communication
      • Explore hotplug -> hwup -> ifup logic
      • Use ifconfig to ascertain logical TCP/IP configuration
      • Use hwinfo to ascertain installed hardware
      • Configure Aliased Ethernet Interfaces to faciliate multiple IP addresses
    •  
    • CRON - System Scheduler
      • Explore Cron Implementation
      • Explain scheduling options
      • Global and scope-based Cron options
      • Schedules jobs to run & examine the output
      • Configure individual Crontab entries
    •  
    • Implement Network Time Protocol Daemon (NTPD) Client/Server
      • Configure Network Time Protocol (NTP) to perform client/server time synchronization
      • Identify NTP bounded UDP interfaces
      • Synchronize SUSE Enterprise Linux NTP with RedHat Linux Stratum 2 NTP server
      • Synchronize against Stratum 1 NTP servers
    •  
    • Implement Trivial File Transfer Protocol Daemon (TFTPD) Server
      • Discuss TFTP attributes
      • Implement TFTPD
      • Backup Cisco router configuration via TFTP
      • Backup Cisco firewall configuration via TFTP
      • Use sed to update TFTPD configuration
    •  
    • Dynamic Host Configuration Protocol (DHCP)
      • Explain DHCP Concepts & Applications
      • Explore DHCP confiuration files
      • Configure DHCP subnet with applicable options
      • Configure DHCP Reservation based on layer-2 address
      • Enable DHCP with DDNS
      • Configure DHCP Failover between SUSE and RedHat Linux Servers
      • Test DHCP Failover with Windows 2003 Host
    •  
    • Domain Name System (DNS)
      • Explore SUSE DNS configuration via YaST
      • Configure BIND as a caching-only DNS server
      • Implement Master DNS Zone
      • Configure Reverse Zone for local subnet
      • Implement Dynamic Domain Name System (DDNS) Zones (Forward/Reverse)
      • Explain DHCP and DNS update integration options
      • Integrate DHCP with DNS via Encypted Transaction Signatures (TSigs)
      • Evaluate results of BIND configuration using DIG & host
      • Implement DNS sub-domains (Third-level domains)
    •  
    • FTPD with Very Secure VSFTPD & ProFTPD File Transfer Protocol (FTP) services
      • Implement anonymous FTPD
      • Implement user-level FTPD access
      • Implement FTPD banners
      • Disable anonymous access
      • Configure VSFTPD to chroot jail users into their home directories
      • Implement bandwidth rate-limiting to control bandwidth usage
      • Implement & test banning of unwelcomed anonymous e-mail addresses
      • Implement ProFTPD with settings similar to VSFTPD
      • Evaluate results
    •  
    • Network File System (NFS) Implementation
      • Identify key services/daemons
      • Configure NFS Client & Server
      • Evaluate NFS connectivity to other Linux hosts
    •  
    • Samba Implementation
      • Explore key Samba clients
      • Explore Samba Configuration files
      • Implement SMBFS integration with SUSE Enterprise Linux File System
      • Mount Windows shares seamlessly using Samba File System (SMBFS)
      • Configure FSTAB to support repetitive mounts
      • Implement secure SMBFS credentials for mounting
      • Install Samba Server support
      • Install Samba Web-based Administration Tool (SWAT)
      • Configure Samba file sharing
      • Configure Samba with multiple NETBIOS aliases
      • Install Active Directory on Windows 2003 Server
      • Integrate with Windows Active Directory (AD)
      • Test Samba-to-Windows integration using 'getent' and authentication
      • Implement Windows 2008 Active Directory with Samba
      • Evaluate results
    •  
    • Apache Web Server Implementation
      • Discuss Apache server's features and concepts
      • Install Apache
      • Examine Apache-SUSE HTTPD CONF hierarchy
      • Examine various configuration files
      • Configure Virtual Hosts
      • Examine user home directories
      • Discuss the Directory directive
      • Explore redirects
      • Configure .htacess file with directives
      • Configure Name-based Virtual Hosts
      • Explore Apache logging
      • Implement Apache logging system per virtual host
      • Webalizer Log Analysis software Implementation
      • Generate web reports using Webalizer
    •  
    • MySQL Relational Database Management System
      • Install MySQL Relational Database Management System
      • Secure access to MySQL
      • Explore MySQL monitor shell-based interface
      • Create sample MySQL databases
      • Load external data-set from Linux
      • Load external data-set from Windows
      • Integrate PHP with MySQL

    • PHPMyAdmin - MySQL Web-based Management Interface
      • Install PHPMyAdmin for web-based management of MySQL instances
      • Explain & Secure access to PHPMyAdmin
      • Explore PHPMyAdmin's interface
    •  
    • SMTP-MTA|IMAP|Squirrel-mail Web-based Mail Interface Implementation
      • Explore SMTP-MTA Configuration
      • Explore IMAP Configuration
      • Describe required squirrel mail components for web-mail integration
      • Install squirrel mail on SUSE Enterprise Linux system
      • Configure Apache virtual directory for squirrel mail integration
      • Configure Apache Virtual Host for squirrel mail integration
      • Configure BIND DNS services for squirrel mail integration
      • Explore squirrel mail's web-based interface
    •  
    • Apache SSL
      • Discuss features & benefits
      • Configure self-signing server
      • Generate usage certificates for hosted sites
      • Bind SSL keys to hosted sites on various TCP:Ports
      • Start Apache SSL
      • Evaluate results
    •  
    • Local Security
      • Use YaST to identify and configure key security directives
      • Identify, change and test file permissions policy
      • Peruse and tighten password policy
      • Limit SMTP TCP:Port communications to loopback interface
      • Shut superfluous daemons (services)
      • Explore additional XINETD features
    •  
    • Upgrade SUSE 10 Enterprise Edition
      • Define upgrade strategy
      • Discuss caveats
      • Provision ISO image on HTTP installation server
      • Perform upgrade via PXE using HTTP & SSH
      • Evaluate results Explore additional XINETD features
    •  
    • Network Mapper (NMAP)
      • Obtain, compile and install current version of NMAP
      • Identify commonly used NMAP options/switches/parameters
      • Perform default TCP SYN-based ethical scans of local and remote resources
      • Explain typical TCP handshake protocol while using NMAP
      • Examine the results of scans on remote Cisco firewall with debugging mode enabled
      • Perform default TCP Connect-based ethical scans of local and remote resources
      • Examine the results of scans on remote Cisco PIX Firewall with debugging mode enabled
      • Use NMAP to scan using aliased and spoofed IP addresses
      • Peform local ethical scans
      • Identifiy key NMAP configuration files
      • Use NMAP to perform operating system fingerprinting
      • Peform subnet-wide ethical scans
    •  
    • SuSEFirewall2 (IPTables - Netfilter Linux Kernel-based Firewall)
      • Discuss IPTABLES/Netfilter Concepts
      • Explain IPTABLES default chains/filters and policies
      • Examine TCP/ICMP communications pre-IPTABLES chains
      • Filter traffic based on Layer-4 TCP/UDP (Source/Destination Ports) information
      • Restrict access to various daemons (SSH/FTP/HTTP/etc.)
      • Test connectivity locally and remotely
    •  

LinuxCBT SLES-11x Edition

  •  
DEMO