LLC405: Linux Firewall Solutions

Overview
LLC405 begins with basic overview of network security and exploring into the world of Advanced Firewalling. The course LLC405 enables you to: Configure and Maintain intermediate devices to restrict communication between the networks; To implement firewall rules to translate source and destination IP addresses using the concept of NAT.

Pre-Requisites
The course is open to anyone who knows basic Linux Operating System knowledge, routing concepts and TCP/IP packet structure. RHCE Certified, having undergone the course LLC103 or equivalent knowledge is recommended as pre-requisite.

Target Audience
The network administrators who design, implement and maintain intermediate devices to secure communication between networks. This is useful for the network administrators who setup virtual private networks.

Duration: 2 days (Full-time)

Training Fee: Rs.15,000/- (Plus Service Tax)


Course Outline

Firewall using Linux OS
– Firewall Concepts
– Proxy Vs Firewall
– Router Vs Firewall
– Public and Private IP addresses

Routing Concepts
– Gateways
– IP Forwarding
– Communication Between Networks
– Network Address Translation

Implementing Firewall Using iptables
– iptables Features
– Installation of iptables
– iptables Rule Constructs
– Tables and ChainsRestricting the Packets
– filter table
– Adding and Inserting Rules
– Listing and Saving filter Rules
– INPUT, OUTPUT and FORWARD Chains

Advanced Filtering Through iptables
– Protocol, port Filtering
– Layer2 Restrictions
– Generating icmp Messages with REJECT
– TCPMSS

NAT Using iptables
– Source NAT
– MASQUERADE
– Destination NAT

Port Forwarding and REDIRECT
– Mangle Table Implementation
– Marking the Packets
– Co-existing of Rules in Multiple Tables
– TTL,TOS Restrictions

Logging and Optimization
– Syslog and iptables
– iptables Logging
– Applying Log Limit
– Resetting iptables Counters

User Defined Chains
– Creating of User Defined Chains
– Linking UDC with Built-in Chains
– Managing User Defined Chains

Virtual Private Network(VPN)
– VPN Termininology
– VPN with ISO Based Firewalls
– IPSec Prorocol
– IPSec VPN Configuraion
– Configuration Left, Right Routers
– Initializing Secure Channel
– VPN Connectivity