LPI202 - LPIC-2 Exam Prep (Course 2)

This 5 days course prepares students to take the LPI 202 exam of the LPIC-2 certification. The Linux Professional Institute (LPI) is the go-to certification body for vendor independent Linux certifications.  This course covers more advanced Linux skills such as system management and networking. Students will feel confident taking the LPI LPIC-2 202 exam with in classroom assessments and practice exams.

Trajanje: 5 dana/ 40 časova

Cena: 475 €

Ovaj kurs možete pohađati online(?)   

Poželjno predznanje: 

LPIC-1 certification or LPI101 "LPIC-1 Exam Prep (Course 1)" and LPI102 "LPIC-1 Exam Prep (Course 2)".

Dalje usavršavanje : 

Sledeći polasci:

Beograd
Kontaktirajte nas
Virtuelna učionica
Kontaktirajte nas
Plan obuke : 

Module 1:  DNS Concepts

  • LPI Objectives Covered
  • Naming Services
  • DNS - A Better Way
  • The Domain Name Space
  • Delegation and Zones
  • Server Roles
  • Resolving Names
  • Resolving IP Addresses
  • Basic BIND Administration
  • BIND Configuration Files
  • rndc Key Configuration
  • Configuring the Resolver
  • Testing Resolution

Lab Tasks

  • Configuring a Slave Name Server
  • Use rndc to Control named

Module 2: Creating DNS Hierarchies

  • LPI Objectives Covered
  • named.conf Syntax
  • named.conf Options Block
  • Creating a Site-Wide Cache
  • Zones In named.conf
  • Zone Database File Syntax
  • SOA - Start of Authority
  • A & PTR - Address & Pointer Records
  • NS - Name Server
  • CNAME & MX - Alias & Mail Host
  • Abbreviations and Gotchas
  • $GENERATE, $ORIGIN, and $INCLUDE
  • Subdomains and Delegation
  • Subdomains
  • Delegating Zones
  • in-addr.arpa. Delegation
  • Issues with in-addr.arpa.
  • RFC2317 & in-addr.arpa.

Lab Tasks

  • Configuring BIND Zone Files
  • Create a Subdomain in an Existing Domain
  • Subdomain Delegation

Module 3: Securing DNS

  • LPI Objectives Covered
  • Split Namespaces
  • Split Namespace with Views
  • Address Match Lists & ACLs
  • Restricting Queries
  • Restricting Zone Transfers
  • Running BIND in a chroot jail
  • Securing DNS With TSIG

Lab Tasks

  • Securing BIND DNS

Module 4: Implementing a Web Server

  • LPI Objectives Covered
  • Apache Architecture
  • Dynamic HTTP Content
  • Configuring PHP
  • Securing PHP
  • Security Related php.ini Configuration
  • Installing PHP
  • Apache Configuration Files
  • httpd.conf - Server Settings
  • httpd.conf - Main Configuration
  • Adding Modules to Apache
  • Virtual Hosting DNS Implications
  • httpd.conf - VirtualHost Configuration
  • Port and IP based Virtual Hosts
  • Name-based Virtual Host
  • Apache Logging
  • Log Analysis
  • Delegating Administration
  • Apache Access Controls (mod_access)
  • HTTP User Authentication
  • Standard Auth Modules
  • HTTP Digest Authentication
  • Directory Protection
  • Directory Protection with AllowOverride
  • Common Uses for .htaccess
  • Apache Troubleshooting

Lab Tasks

  • Apache Architecture
  • Apache Architecture
  • Apache Content
  • Apache Content
  • Using .htaccess Files
  • Using .htaccess Files
  • CGI Scripts in Apache
  • CGI Scripts in Apache

Module 5: Maintaining a Web Server

  • LPI Objectives Covered
  • HTTP Virtual Servers
  • Virtual Hosting DNS Implications
  • Virtual Hosting Security Implications
  • Port and IP based Virtual Hosts
  • Name-based Virtual Host
  • Scrubbing HTTP Headers
  • Symmetric Encryption Algorithms
  • Asymmetric Encryption Algorithms
  • Digital Certificates
  • SSL Using mod_ssl.so

Lab Tasks

  • Configuring Virtual Hosts
  • Using SSL Certificates with Apache
  • Using SSL Certificates with Apache
  • Create a TLS CA key pair
  • Using SSL CA Certificates with Apache
  • Enable Apache SSL Client Certificate Authentication

Module 6: Nginx, Squid, and DHCP

  • LPI Objectives Covered
  • Nginx
  • Squid Overview
  • Squid File Layout
  • Squid Access Control Lists
  • Applying Squid ACLs
  • Monitoring Squid
  • DHCP Protocol Operation
  • IP to MAC Address Mapping with ARP
  • Configuring a DHCP server

Lab Tasks

  • Nginx Web Basics
  • HTTPS and Reverse Proxy with Nginx
  • Installing and Configuring Squid
  • Squid Cache Manager CGI

Module 7: Module SAMBA Server Configuration

  • LPI Objectives Covered
  • Introducing Samba
  • Samba Daemons
  • Accessing Windows/Samba Shares from Linux
  • Samba Utilities
  • Samba Configuration Files
  • The smb.conf File
  • Share Authentication
  • Share-Level Access
  • User-Level Access
  • Mapping Users
  • Samba Account Database
  • User Share Restrictions

Lab Tasks

  • Samba Share-Level Access

Module 8: NFS Server Configuration & Securing FTP Servers

  • LPI Objectives Covered
  • File Sharing via NFS
  • NFSv4
  • NFS Clients
  • TCP Wrappers
  • The /etc/hosts.allow & /etc/hosts.deny Files
  • /etc/hosts.{allow,deny} Shortcuts
  • Advanced TCP Wrappers
  • NFS Server Configuration
  • The FTP Protocol
  • Active Mode FTP
  • Passive Mode FTP
  • vsftpd
  • Configuring vsftpd
  • Anonymous FTP with vsftpd
  • Pure-FTPd
  • ProFTPD

Lab Tasks

  • NFS Server Configuration
  • Configuring vsftpd

Module 9: PAM Authentication

  • LPI Objectives Covered
  • PAM Overview
  • PAM Module Types
  • PAM Order of Processing
  • PAM Control Statements
  • PAM Modules
  • pam_unix
  • pam_limits.so
  • pam_cracklib.so
  • pam_listfile.so
  • pam_tally2.so
  • pam_console.so

Lab Tasks

  • Setting Limits with the pam_limits Modules
  • Using pam_limits to Restrict Simultaneous Logins

Module 10: Configuring an OpenLDAP Server and Client

  • LPI Objectives Covered
  • LDAP
  • What LDAP Provides
  • LDAP Concepts
  • LDAP Organization
  • Entry Referencing
  • Online LDAP Data Manipulation
  • Querying LDAP Databases
  • OpenLDAP: Server Architecture
  • OpenLDAP: Backends
  • OpenLDAP: Replication
  • OpenLDAP: Configuration Options
  • OpenLDAP: Configuration Sections
  • OpenLDAP: Global Parameters
  • OpenLDAP: Database Parameters
  • OpenLDAP Server Tools
  • Enabling LDAP-based Login
  • System Security Services Daemon (SSSD)

Lab Tasks

  • Querying LDAP
  • Building An OpenLDAP Server
  • Enabling TLS For An OpenLDAP Server
  • Enabling LDAP-based Logins

Module 11: Using E-mail Servers

  • LPI Objectives Covered
  • SMTP
  • SMTP Terminology
  • SMTP Architecture
  • SMTP Commands
  • SMTP Session
  • Sendmail Architecture
  • Sendmail Configuration
  • Sendmail Remote Configuration
  • Controlling Access
  • Sending Email with sendmail
  • Exim
  • Postfix Features
  • Postfix Architecture
  • Postfix Components
  • Postfix Configuration
  • master.cf
  • main.cf
  • Virtual Domains
  • Configuration Commands
  • Postfix Logging
  • Advanced Postfix Options

Lab Tasks

  • Configuring Postfix
  • Postfix Network Configuration
  • Postfix Virtual Host Configuration
  • Configuring Sendmail
  • Sendmail Network Configuration
  • Sendmail Virtual Host Configuration
  • Sendmail SMTP AUTH Configuration
  • Sendmail STARTTLS Configuration
  • SUSE Sendmail Configuration Cleanup

Module 12: Managing Local and Remote E-Mail Delivery

  • LPI Objectives Covered
  • Filtering Email
  • Procmail
  • SpamAssassin
  • Accessing Email
  • The IMAP4 Protocol
  • Courier IMAP
  • Dovecot POP3/IMAP Server

Lab Tasks

  • Configuring Procmail & SpamAssassin
  • Dovecot Setup

Module 13: Configuring a Router and Security Tasks

  • LPI Objectives Covered
  • IPv4 Fundamentals
  • TCP/UDP Fundamentals
  • Security Advisories
  • Discovering Hosts
  • nmap
  • Netcat
  • Nessus Insecurity Scanner
  • Configuring OpenVAS
  • Intrusion Detection Systems
  • Snort Rules
  • Writing Snort Rules
  • Linux as a Router
  • Configuring Routing Tables
  • Basic Firewall Activation
  • Using the iptables Command
  • Netfilter Rule Syntax
  • Netfilter Concepts
  • Targets
  • Common match_specs
  • Netfilter: Stateful Packet Filter Firewall
  • Connection Tracking
  • Address Translation
  • Configuring NAT and PAT

Lab Tasks

  • NMAP
  • OpenVAS
  • Securing Services with SuSEfirewall2
  • Securing Services with Netfilter

Module 14: OpenSSH and OpenVPN

  • LPI Objectives Covered
  • Secure Shell
  • ssh and sshd Configuration
  • Accessing Remote Shells
  • SSH Port Forwarding
  • Transferring Files
  • SSH Key Management
  • ssh-agent
  • OpenVPN

Lab Tasks

  • Introduction to ssh and scp
  • SSH Key-based User Authentication
  • Using ssh-agent
  • OpenVPN