5 Day Course
Introduction
This course is the official courseware for the Security Certified Program
SC0-451 certification exam. The Tactical Perimeter Defense course is designed
to provide network administrators and certification candidates with hands-on
tasks on the most fundamental perimeter security technologies. The network
perimeter is often the first line of defense in an organizations network, and
this course covers the issues every administrator must be familiar with.
Prerequisites
To ensure your success, we recommend that you have CompTIAs Security+
certification, or have equivalent experience. This course assumes that the
reader has fundamental working knowledge of networking concepts, and
foundational security knowledge.
Delivery Method
Instructor-led, group-paced, classroom-delivery learning model with
structured hands-on activities
At Course Completion
Upon successful course completion students should be able to:
•
Describe the core issues of building a perimeter
network defense system
•
Investigate the advanced concepts of the TCP/IP
protocol suite
•
Secure routers through hardening techniques and
configure Access Control Lists
•
Design and configure multiple firewall
technologies
•
Examine and implement IPSec and Virtual Private
Networks
•
Design and configure an Intrusion Detection
System
•
Secure wireless networks through the use of
encryption system
Course Outline
Lesson 1: Network Defense Fundamentals
•
Network
Defense
•
Defensive
Technologies
•
Objectives
of Access Control
•
The
Impact of Defense
•
Network
Auditing Concepts
Lesson 2: Advanced TCP/IP
•
TCP/IP
Concepts
•
Analyzing
the Three-way Handshake
•
Capturing
and Identifying IP Datagrams
•
Capturing
and Identifying ICMP Messages
•
Capturing
and Identifying TCP Headers
•
Capturing
and Identifying UDP Headers
•
Analyzing
Packet Fragmentation
•
Analyzing
an Entire Session
Lesson 3: Routers and Access Control Lists
•
Fundamental
Cisco Security
•
Routing
Principles
•
Removing
Protocols and Services
•
Creating
Access Control Lists
•
Implementing
Access Control Lists
•
Logging
Concepts
Lesson 4: Designing Firewalls
•
Firewall
Components
•
Create a
Firewall Policy
•
Rule
Sets and Packet Filters
•
Proxy
Server
•
The
Bastion Host
•
The
Honeypot
Lesson 5: Configuring Firewalls
•
Understanding
Firewalls
•
Configuring
Microsoft ISA Server 2006
•
IPTables
Concepts
•
Implementing
Firewall Technologies
Lesson 6: Implementing IPSec and VPNs
•
Internet
Protocol Security
•
IPSec
Policy Management
•
IPSec AH
Implementation
•
Combining
AH and ESP in IPSec
•
VPN
Fundamentals
•
Tunneling
Protocols
•
VPN
Design and Architecture
•
VPN
Security
•
Configuring
a VPN
Lesson 7: Designing an Intrusion Detection System
•
The
Goals of an Intrusion Detection System
•
Technologies
and Techniques of Intrusion Detection
•
Host-based
Intrusion Detection
•
Network-based
Intrusion Detection
•
The
Analysis
•
How to Use
an IDS
•
What an
IDS Cannot Do
Lesson 8: Configuring an IDS
•
Snort
Foundations
•
Snort
Installation
•
Snort as
an IDS
•
Configuring
Snort to Use a Database
•
Running
an IDS on Linux
Lesson 9: Securing Wireless Networks
•
Wireless
Networking Fundamentals
•
Wireless
LAN (WLAN) Fundamentals
•
Wireless
Security Solutions
•
Wireless
Auditing
