Network / Security, Network, implementation

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 1

Network / Security, Network, implementation

Orsys, with 30 years of experience, is providing high quality, independant State of the Art seminars and hands-on courses corresponding to the needs of IT professionals. Orsys proposes a set of courses on the most important topics in IT technologies and management.

Hands-on courses

Networks, Fundamentals.... ( p2 )

TCP/IP Implementation, hands-on.... ( p4 )

Network Configuration and Troubleshooting.... ( p6 ) Introduction to IPv6 deployement and migration.... ( p8 ) Voice Over IP, Technologies and Applications.... ( p10 ) Introduction to Cisco Routers.... ( p12 )

System and Network monitoring tools and techniques.... ( p14 ) Network Management with SNMP.... ( p16 )

Hands-on courses , 3 day(s)

Ref : TRM

Participants

This course is intended for whoever is involved with networking technologies : engineers, software developers, computer scientists as well as non technical persons. Requirements are some practical skills with computer systems. This course is essential as an introduction to higher-level, advanced courses about networking.

Pre-requisites

Next sessions

Networks, Fundamentals

Install, interconnect, and manage local area networks

OBJECTIVES

This course, including both theoretical and hands-on exercises, will help you to understand and practice enterprise networking. Most important aspects, including software and hardware parts will be explained. Interconnection devices such as switches and routers, networking protocols such as TCP/IP, and high-level application protocols such DNS, DHCP, HTTP and others will be examined thoroughly. Following this course, you will be able to set up local area networks and to connect and manage PCs running Windows or Linux.

1) Introduction

2) Networking technologies and general principles

3) Cabling possibilities 4) Local Area Networks (LAN) 5) Interconnection devices

6) Wide Area Networks (WAN) 7) The TCP/IP stack

8) Routers : inter-networking principles 9) Application protocols and services 10) Introduction to network management

1) Introduction

- What can we do with a network ? - Which parts will constitute our network ? - What are the typical needs of network users ?

- Architecture : communication, interconnection, administration, and security.

2) Networking technologies and general principles

- Types of network.

- Which technologies ? Characteristics of each technology. - Client-Server communication.

- Sharing resources. What is a " protocol " ?

- Open System Interconnection Basic Reference Model : The seven layers.

3) Cabling possibilities

- Twisted pair, coaxial cable, fiber optics. - Cabling systems : design and principles. - Wireless networks.

- Standards.

4) Local Area Networks (LAN)

- Central role of Local Area Networks in today networking. - The Ethernet " family ".

- CSMA/CD Medium Access Control in IEEE 802.3 networks. - From 10 Mbps hubs to 10 Gbps switches.

- Wireless networks (802.11x).

5) Interconnection devices

- Hubs and repeaters.

- Bridges and switches. VLANs. - Routers

- Gateways - Firewalls

- Switched Ethernet based architecture. - What is Spanning Tree ?

Workshop

Connecting workstations and servers to ethernet switches.

6) Wide Area Networks (WAN)

- When to use a WAN ? What kind of WAN can we use ? - WAN services.

- Overview of WAN technologies and protocols (From RNIS to MPLS). - ADSL.

7) The TCP/IP stack

- Interconnection basic needs. - The IP protocols.

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 3

- Unicats, multicast, broadcast. - The ICMP protocol.

- Understanding the Transports protocols : TCP and UDP. - Applications and transport port numbers.

- Client/server model.

- How to configure Windows and/or Linux.

Workshop

Using some Network Sniffers (Ethereal/Wireshark). Setting up addresses and masks on Windows and/or Linux. What is a MAC address. ARP protocol. Connection test (ping).

8) Routers : inter-networking principles

- Why use a router ?

- Routing and forwarding principles. Routing tables. - Static versus dynamic routing.

- Routing protocols (RIP2, OSPF, BGP). - IP switching.

Workshop

Connecting and configuring routers. Displaying and modifying routing tables. Testing the networks and routers (traceroute).

9) Application protocols and services

Domain Name Service

- Translating names and addresses. - Observing DNS requests and replies.

Dynamic Host Configuration Protocol

- When and how to use DHCP. - DHCP and network administration.

Other application protocols

- SMTP, POP3, IMAP4. - HTTP, HTTPS. - NFS.

- SNMP.

- FTP, TELNET, SSH.

Windows specific protocols

- NETBIOS.

10) Introduction to network management

Techniques and tools

- Which aspects should we monitor ? - Protocol analyzers.

- Proprietary tools versus standardized tools.

Standardized techniques

Hands-on courses , 4 day(s)

Ref : INR

Participants

This course is designed for technical persons directly involved in designing, implementing, and managing TCP/IP networks and services.

Pre-requisites

Basic knowledge of either Windows or Linux. Mandatory basic networking skills.

Eligible DIF

Next sessions

Brussels

jun. 9 2015, nov. 17 2015

TCP/IP Implementation, hands-on

hands-on

OBJECTIVES

This course will provide you with the relevant knowledge you need to successfully implement a TCP/IP network. It presents in a progressive manner what you need to know and to do to implement a TCP/IP network. You will configure a workstation and servers and set up some basic TCP/IP services.

1) Introduction to TCP/IP 2) IP protocols

3) IP on Lan/Man/Wan

4) Transport layer : TCP and UDP 5) Interconnecting IP networks

6) TCP/IP applications

7) TCP/IP network management 8) Towards IPv6

9) TCP/IP security

1) Introduction to TCP/IP

- Basic notions. TCP/IP architecture. Networking standards. - Services and protocol. Communication mechanisms. - Connection-oriented versus datagram communication. - Client-server model.

- RFCs. What is IETF?

2) IP protocols

- Using the physical networks. From Ethernet to SDH/SONET. - Network addresses.

- Address classes.

- What a netmask is. How to use it.

- Routing principles. Routing tables. Static versus dynamic routing. - Subnetting. What for. How to implement them.

- ICMP protocol. How to use it.

- The ping and tracert commands. How to use them. - DHCP protocol. How to implement it.

Workshop

Setting up a basic IP network with Ethernet and Windows or Linux workstations. Using ICMP, observing traffic. Setting up DHCP servers and clients. Setting up a DHCP relay.

3) IP on Lan/Man/Wan

IP on Lan and Man

- Addresse Resolution: IP and MAC addresses. - Understanding the ARP protocol.

IP on Serial Lines

- PPP: Point-to-point Protocol: Relationship with IP.

IP on Wan

- Connection-oriented WANs (ATM, FR). How to set up IP interfaces on WANs. QoS-related aspects.

MPLS

- What is MPLS. Advantages. QoS. Performances.

4) Transport layer : TCP and UDP

- Application addresses: Transport port numbers.

- TCP: Connection-oriented transport protocol. When to use it.

- Setting up a connection. Numbering scheme, acknowledgement and retransmission, Flow control. - UDP: Connectionless transport protocol. When to use it.

- The socket interface. Network application design principles.

Workshop

Observing TCP-based transfers and UDP-based transfers.

5) Interconnecting IP networks

- Routers. Functions implemented on a router. Translation addresses and/or port numbers (NAT, PAT). - Comparing routers with switches.

- Routing. Dynamic versus static routing. Interior Gateway Protocols (IGP: RIP-distance vector routing, OSPF-link state routing) and Border Gateway Protocol (BGP-path vector routing)

- IP switching. How to make IP routing faster: from proprietary tag switching techniques to MPLS.

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 5 Designing and implementing several IP subnetworks. Choosing netmasks, setting up routers. Using RIP and OSPF.

6) TCP/IP applications

- Domain Name System. Design principles. How to set up and test a DNS server. - File Transfer Protocol. How it works. Security aspects.

- Another file transfer protocol: Trivial File Transfer Protocol. How it uses UDP. - WWW HTTP and related techniques.

- Mail related protocols: Pop, Imap, Smtp. How to avoid Spam. - Remote access protocols: Telnet, rlogin, ssh. What is SSL. - Sharing resources: NFS, SMB and other protocols. - Multimedia applications.

Workshop

Observing FTP transfers from a command-line client or a browser. Comparison with TFTP transfer. Using Telnet and HTTP.

7) TCP/IP network management

- What is a network management system: manager and agents. - Using SNMP (SNMP V1, V2c, V3. SMI. MIBs).

- Analysis tools.

Workshop

Monitoring traffics. Basic SNMP use.

8) Towards IPv6

- Why to get ready for IPV6. - Adresses and adressing structure.

- Statically versus dynamically assigned adresses. Using DHCPv6. - IPv6 migration : using dual stacks, tunnels.

Workshop

Setting up the IPv6 stack on a Windows workstation. Assigning static adresses. Observing Iv6 packets.

9) TCP/IP security

- What is IPSec. - Building VPNs.

Hands-on courses , 3 day(s)

Ref : RID

Participants

Network installers and maintainers.

Pre-requisites

Basic knowledge of networking technologies and TCP/IP. Eligible DIF

Next sessions

Network Configuration and Troubleshooting

This very practical course will give you the skills to diagnose faults that may occur within a network infrastructure. Several approaches and technical solutions will be proposed to identify the causes of the problems and solve them effectively.

1) Basic networking concepts 2) Local Area Networks 3) Wireless Networks

4) Routers

5) Network Infrastructure Services

6) Simple Network Management Protocol (SNMP)

1) Basic networking concepts

- OSI model and TCP/IP architecture. - Different types of networks.

- Network equipment : routers, switches, client and server computers. - Hardware and software aspects.

- Configuration, test, and troubleshooting principles.

Workshop

Basic IP configuration. Network test.

2) Local Area Networks

- Ethernet and IEEE 802.3. Switched Ethernet. - Switching principles, switch operation. - Spanning Tree Protocol.

- Virtual Local Area Networks (VLAN). - Common problems.

- Configuring and troubleshooting ethernet switches.

Workshop

Switch installation and configuration using VLAN. Simulation troubleshooting.

3) Wireless Networks

- Methods and principles of operation.

- IEEE 802.11 Wireless Networking Standards . - Wi-Fi alliance.

- Security models: WEP, WPA, WPA-2.

Workshop

Setting up and using a Wireless Access Point.

4) Routers

- How IP networks operate. - Using IP addresses and netmasks. - Routing techniques and protocols. - Address Resolution Protocol (ARP). - Saving and restoring router configuration . - Troubleshooting router configuration. - Security. SSH implementation.

Workshop

Basic router configuration. Using ping and traceroute. Using static and dynamic routing. Analyzing routing tables. Saving and restoring router configuration.

5) Network Infrastructure Services

- Dynamic Host Configuration Protocol (DHCP). - DHCP server and DHCP relay. Using DHCP.

- Domain Name Service (DNS). Direct and reverse queries. - Static versus dynamic DNS.

- Configuring DNS server and DNS client. - Common problems.

- DNS testing and troubleshooting.

Workshop

Setting up, testing and troubleshooting DHCP and DNS services.

6) Simple Network Management Protocol (SNMP)

- SNMP principles : agent and supervisor. - SNMP versions.

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 7

- Management Information Bases. - Traps and notifications.

- Using SNMP on a switch, a router, a server. - Configuring SNMP agents.

Workshop

Installing and configuring SNMP on a Windows server. Configuring SNMP agents on a switch and a router. Using a MIB Browser.

Hands-on courses , 4 day(s) Ref : PVI

Participants

Pre-requisites

Eligible DIF

Next sessions

Brussels

sep. 8 2015

Introduction to IPv6 deployement and migration

IPv6 (Internet Protocol version 6) was developed to deal with the long-anticipated problem of IPv4 running out of addresses. This course will provide you with the relevant knowledge you need to successfully implement this new Internet Protocol. It presents in a progressive manner what you need to know.

1) Introduction 2) IPv6 overview 3) Addressing scheme 4) Automatic configuration

5) Applications using IPv6 6) IPv6 routing

7) Mobile and Security with IPv6 8) Migrating from IPv4 to IPv6

1) Introduction

- IPv4, a 30-year long success story. - Problems with IPv4.

- Routing table explosion and addressing space exhaustion. - Real-time traffic and QoS handling. Efficiency.

- Using CIDR and NAT. - Using DSCP.

2) IPv6 overview

- IPv4 and IPv6 packet header formats.

- IPv6 extension headers instead of IPv4 options. - TCP, UDP, and ICMP using IPv6 : what's new ?

3) Addressing scheme

- 128-bit long addresses : address types, address representation, address lifetime. - Adresses scopes.

- Link local and Global addresses. - Multicast and Anycast addresses. - Address allocation, IANA/ICANN, and RIR.

Workshop

Activating IPv6 on a Windows computer. Automatic and manual address configuration. Link local and global addresses. The IPv6 "ping" command.

4) Automatic configuration

- New protocols : ICMPv6 and DHCPv6. - The enhanced role of the local router.

- Neigbor Discovery Protocol and the RS, RA, NS and NA ICMPv6 messages. - Redirect ICMPv6 message.

- Stateless and statefull automatic configuration. - Phases during automatic stateless configuration. - Building a globally unique address .

Workshop

Configuring routers and servers. Manual and/or automatic workstations configuration.

5) Applications using IPv6

- IPv6 compatible DNS. - IPv6 transport, AAAA records.

- Reverse address resolution. DNS clients.

- IPv6 software compatibility. Native compatibility. Network API translation. - Upper layer protocols : Telnet, SSH, TFTP, SNMP, FTP, HTTP.

Workshop

Registering IPv6 addresses within a DNS server. Testing DNS servers and clients for IPv6 address resolution. Using IPv4 and IPv6 applications

6) IPv6 routing

- Static routing vs. dynamic routing. - RIPng protocol.

- OSPFv3 protocol. - EIGRP protocol and IPv6. - MBGP and IPv6.

Workshop

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 9

7) Mobile and Security with IPv6

- From mobile IPv4 to mobile IPv6. - Using bidirectional tunnels. Direct routing. - IPSec protocol.

- Host authentication with AH. Privacy with ESP

- Establishing dynamic security association with IKE and ISAKMP. - Internet Security Association Key Management Protocol.

Workshop

Transport mode IPsec between hosts. IPsec tunnels between routers.

8) Migrating from IPv4 to IPv6

- Going from IPv4 to IPv6.

- Using both IPv4 and IPv6 protocols.

- Transition mechanisms. Dual stack, Protocol translation, Tunneling. - Best common practices.

Hands-on courses , 4 day(s)

Ref : VON

Participants

This seminar is aimed at technicians, engineers and network architects interested in the identification of challenges and successes for the implementation of voice over IP technologies.

Pre-requisites

The participant should have basic understanding of TCP/ IP or telephony. Eligible DIF

Next sessions

Voice Over IP, Technologies and Applications

Voice over IP has been proven to reduce telephony costs and provide unique opportunities for integrating voice and data. By completing this course participants will learn how to implement Voice over IP (VOIP) quality of service and how to use it for new applications.

1) Introduction and technology

2) Protocols and data network technologies: the basics

3) H.323 architecture 4) SIP architecture

5) MGCP/MEGACO/H.248 architecture 6) Voice quality

7) Packet networks: quality

1) Introduction and technology

Market analysis

- Data networks cost allocation. - Telephony networks cost allocation.

- Marketplace, latest trends and developments. - TOIP/VOIP major players.

- Business triggers.

Key points

- Why VOIP (challenges, strategies, benefits, constraints...). - Factors and motivations.

- Today's network components. - Tomorrow's network trends. - Organization factors.

Data networks versus voice networks

- Typical telephony network technology (architecture/functionalities...). - Data network technologies (architecture/functionalities...).

- Benefits and constraints of today's solutions.

Positioning of VOIP/TOIP technologies

- Philosophies of major players.

2) Protocols and data network technologies: the basics

- Introduction to OSI, Ethernet, LAN, WAN.

IP protocol essentials

- Operating mode, addresses, class, subnet, header content. - IPV6.

Router operating mode and routing process

- Routing table/switching. - Ports/sockets.

Introduction to VOIP/TOIP layers

- UDP protocol role.

- Real time RTP/RTCP protocol.

3) H.323 architecture

Typical telephony signaling

- Telephone call steps. - Sequences. - Signaling.

Introduction to H.323

- Protocol stack: definition and presentation.

- Components (Gatekeeper, Gateway, End point, MCU...). - H.323 signaling: with and without Gatekeeper.

- H.225 and H.245 protocols: definition and presentation.

4) SIP architecture

- SIP protocol history.

- Components (proxy server, redirect server, registrar server...). - SIP architectures and associated message flows.

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 11 Introduction to SIP - Primitives, commands. - SIP versus H.323.

5) MGCP/MEGACO/H.248 architecture

- Components (MG, Access GW, MCU...).

- H.248 architectures and associated message flows.

Introduction to H.248

- Primitive, commands.

6) Voice quality

Introduction to voice

- Operating mode, characteristics, constraints... - Voice quality, how to measure it?

- Digitization of voice.

- Carrying voice over a packet network: constraints and challenges.

Voice quality management: tools

- Signal coding.

- Codecs (PCM, CELP, ADPCM...). - Bandwidth.

- Compression. - Echo cancellation.

7) Packet networks: quality

- IP quality of service: definition. - Why is quality of service needed?

Quality of service models

- Diffserv, Intserv, COS / IP Precedence, 802.1Q/P. - QoS within an Ethernet frame.

- QoS within an IP packet.

QoS within a data network

- Delay and jitter.

- Measuring transmission time (packetization, bufferization, serialization, coding...). - Silence detection.

- Fragmentation.

Hands-on courses , 5 day(s)

Ref : ROC

Participants

Anyone involved in installing and maintaining Cisco based networks.

Pre-requisites

Next sessions

Introduction to Cisco Routers

At the end of this practical course, participants will be able to install, configure and maintain a router or switch. Also, to implement a static or dynamic routing, interconnecting LANs via a WAN solution, filter traffic, which model of Cisco router, administering routers in the safest conditions.

1) Cisco router architecture

2) Installing and configuring a router 3) Installing and configuring a Cisco switch 4) IP routing configuration

5) Using serial interfaces and WAN 6) Security

7) Router exploitation and maintenance

1) Cisco router architecture

- Hardware components (Flash, NVRAM, network interface cards,...). - The Internetworking Operating System (IOS).

- Initial configuration.

2) Installing and configuring a router

- Preparing the router environnement.

- Connecting the console cable and the ethernet connection. - Using the "enable" mode. The "show" command.

- Showing material and software versions. Using the "configure" mode.

- Basic configuration commands : Time, host name, user names and passwords. - Interfaces configuration. Preparing VTY access with telnet or ssh.

- Testing the network with "ping" and "traceroute" commands.

Workshop

Basic router configuration. Testing network reachability with ping and traceroute.

3) Installing and configuring a Cisco switch

- Cisco switching platforms.

- Frame switching versus packet routing. - Building a reliable level-2 architecture.

- The Spanning Tree Protocol. Designing VLANs. - Configuration commands.

- Integrating switches and routers.

Workshop

Installing a Cisco switch. Basic configuration. Implementing VLANs.

4) IP routing configuration

- Designing a redundant network topology.

- Defining a routing strategy. Static or dynamic routing. Default routes. - Understanding routing tables.

- Ensuring service availability with Hot Standby Router Protocol (HSRP). Virtual router.

- Dynamic routing with RIP v1 and v2. Understanding Routing Information Protocol (RIP). Configuration commands. Debugging.

- Dynamic routing with EIGRP. Enhancement to IGRP. EIGRP metrics. Load balancing. Configuration commands. Debugging

- Dynamic routing with OSPF. Open Shortest Path First (OSPF). Metrics and areas. Configuration commands. Debugging.

Workshop

Designing and implementing a redundant topology. Using HSRP Static routing. Dynamic routing with RIP, EIGRP, and OSPF.

5) Using serial interfaces and WAN

- Serial interfaces on leased lines.

- Frame relay interfaces. Physical interface configuration. Virtual serial interface configuration. - ATM and ISDN interfaces.

- Point-to-Point Protocl (PPP). Basic mechanisms. Password Authentication Protocol (PAP). - Challenge Handshake Authentication Protocol (CHAP). Using ML-PPP (Multilink PPP).

Workshop

Connecting routers with "cross" serial lines. Interface configuration with PPP encapsulation. Managing rates and Maximum Transmission Units (MTU). Analyzing network performances

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 13

- Private addresses vs. routable official Internet addresses. - Using Network Address Translation (NAT).

- Using Port and Address Translation (PAT).

- Using Access Control Lists (ACL). Basic ACL. Extended ACL. - Replacing telnet access with ssh.

- Using HTTPS to configure a router. - Using the syslog protocol.

Workshop

Using NAT and PAT on a router. Using ACL. Configuring ssh.

7) Router exploitation and maintenance

- Boot sequence.

- Using Cisco configuration register. - Recovering a lost password. - Installing a new IOS.

- Managing router configuration with TFTP. - Configuring SNMP on the router.

Workshop

Using the PROM Monitor. Changing the configuration register. Installing a new IOS with the tftpdnld command. Configuring and querying the SNMP agent.

Hands-on courses , 3 day(s)

Ref : SUR

Participants

Network and system administrators.

Pre-requisites

Basic knowledge of networking technologies and IPv4. Notion of network security.

Eligible DIF

System and Network monitoring tools and techniques

This course will teach you how to perform daily tasks of monitoring and to administrate systems and networks. The work environment will be Windows and Linux with TCP/IP routers and you will use the basic system commands and open source tools.

1) Network and system administration principles 2) Deploying a TCP/IP Network

3) Network Observers 4) System protection

5) Simple Network Management Protocol 6) Multiple Router Traffic Grapher 7) Supervision tools

1) Network and system administration principles

- What to monitor : Processes, system resources usage, file systems, users. - Network traffic and Network equipments.

- Monitoring tools.

- Basic system commands, scripts. Log files. - Network observers and network scanner.

- File system audit tools. SNMP tools. Global monitoring tools.

Workshop

Define a strategy for the administration.

2) Deploying a TCP/IP Network

- TCP/IP architecture. Services and protocols.

- Addressing and routing. Address classes and network masks. - Configuring routers. Routing protocols.

- Configuring servers and services. - Setting up FTP, HTTP, and DNS services. - Network and application services monitoring. - Open Source Software. Smokeping. Munin.

Workshop

Network setup. Routers and switches. Configuring Windows and Linux systems. Using network testing basic tools. Smokeping. Configuration. Munin configuration.

3) Network Observers

- Using network sniffer applications. - Adresses and protocols observation. - From Tcpdump to Wireshark. - How they work. Other tools.

Workshop

Using Etherape on Linux. Using Wireshark to analyze network traffic. Creating Capture and/or Display filters with Wireshark.

4) System protection

- Monitoring network services . - The netstat command.

- Network scanners. Nmap. Nessus. - Monitoring files and directories.

- Application software. Checking file and directory integrity.

- Intrusion detection tools. AIDE (Advanced Intrusion Detection Environnement).

Workshop

Using Nmap on Windows. Using AIDE on Linux.

5) Simple Network Management Protocol

- SNMP operation and messages : get, get-next, set, response. Agents. - Management Information Bases.

- Scalar vs. tabular data.

- SNMP tools. Net-SNMP Software. MIB Browsers.

Workshop

Configuring SNMP agents on WIndows, Linux, and Cisco routers ans switches. Using Net-SNMP commands. Using a MIB Browser.

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 15

- MRTG Principles

- Creating traffic graphs. Publishing graphs on a Web Server. - RRDtool. Data storage.

- Graph creation. Exemple of CACTI.

Workshop

Configuring MRTG and CACTI on Linux.

7) Supervision tools

- Nagios origin. Monitored systems and services. Plugins. - Configuration files. Test scheduling.

- CENTREON. Advanced interface. Graphical configuration. - Big Brother. Monitoring principles.

Workshop

Hands-on courses , 3 day(s)

Ref : SNM

Participants

Network and system administrators, SNMP developpers.

Pre-requisites

Basic knowledge of networking technologies and IPv4. Eligible DIF

Next sessions

Network Management with SNMP

This practical course will give you the skills to implement management of heterogeneous networks based on SNMP. Introduce the concepts of SNMP architecture and recent developments.

1) Introduction to network management 2) Simple Network Management version 1 3) SNMPv2c

4) Security with SNMPv3 5) Extending agent capabilities

1) Introduction to network management

- Network monitoring and management. - Architectural model for network management. - Heterogeneous systems and networks. - IETF approach vs. OSI approach.

2) Simple Network Management version 1

- Architectural model, management data representation, SNMP verbs. - SNMP agent, SNMP supervisor, SNMP proxy.

- MIB : Management Information Base. - SMI : Structure of Management Information. - ASN.1 : Abstract Syntax Notation 1. - MIB management rules.

- Scalar versus tabular data.

Workshop

Using basic command line tools to query an SNMP agent. Using Net-SNMP Open Source software. Analyzing data encoding. Comparison of Get and Get-next verbs. Using a graphical MIB Browser.

3) SNMPv2c

- Performance and security requirements for SNMPv2. - Supervisor to supervisor communication.

- Using Get-Bulk and Infom Request. - New TrapV2 message.

- Understanding new MIB and agent developement. - Understanding SNMP traps and notifications.

Workshop

Using Get-Bulk messages. Using Trap, TrapV2, and Inform Request messages.

4) Security with SNMPv3

- New requirements for SNMPv3. - New architectural model and terms. - Authentication and privacy with SNMPv3. - Notions of SNMP Users and Views.

Workshop

SNMPv3 agent configuration. Implementing authentication and privacy on Linux and Cisco routers and switches. Implementing users and views. Analyzing authentication and privacy.

5) Extending agent capabilities

- Extending agent capabilities. - Definign new MIBs.

- Using RMON for remote monitoring. - Using SNMP proxies.

Workshop

ORSYS, La Grande Arche, Paroi Nord, 92044 Paris La Défense cedex. Tél : +33 (0)1 49 07 73 73. Fax : +33(0)1 49 07 73 78 page 17

Hands-on courses , 3 day(s)

Ref : LDX

Pre-requisites

The students should have basic system administration knowledge of a Unix/Linux system. Eligible DIF

Next sessions

Unix/Linux Open LDAP Directory Service

At the end of this training, students will master the directory concepts as well as the LDAP protocol. This training will cover security features while deploying an enterprise directory service. Labs will be using the Unix/Linux OpenLDAP public domain implementation.

1) Introduction

2) LDAP Framework and setup 3) Name directory security strategy

4) Developing applications using LDAP 5) Conclusion

1) Introduction

- What is a name directory ? - Distributed directory principle. - Directory Framework. - LDAP Standards : OSI, X500. - OpenLDAP Directories.

Workshop

Installing LDAP on a Linux System. Configuration files and customization.

2) LDAP Framework and setup

- LDAP models.

- Managing data and model. - Managing LDAP Scheme.

- Naming and designing your LDAP service. - LDAP access.

- Distribution model.

Workshop

Designing an LDAP directory. Extending the LDAP scheme. Using authentication. Making LDAP requests. Using fetch requests. Setting up SLURP. Using referrals to other name services.

3) Name directory security strategy

- Authentication.

- LDAP and secure LDAP.

- Security protocols and communications.

- Integrating security frameworks in LDAP (RSA, DES, etc.).

Workshop

Integrating SSL module in OpenLDAP. Securing data access. User authentication.

4) Developing applications using LDAP

- LDAP Development interfaces. - Using directory features in scripts. - Web access : LDAP access URL. - Interface between LDAP and JAVA.

Workshop

Programming OpenLDAP Access. C APIs for LDAP. Windows client accessing an OpenLDAP server on a Unix system.

5) Conclusion

- Other directory products on Unix/Linux : Netscape, Netware Directory Service, Sun/Oracle Solutions. - Tools to help building directories. Meta-directories.