:: 1-800-720-9185  
  :: COURSE OUTLINES
ITNDC - Network Defense and Countermeasures



Course length: 5 days

Course Description

Network Defense and Countermeasures (Second Edition) is designed to provide network administrators with an awareness of security-related issues and the essential skills they need to implement security in a given network. This is the second course of the Security Certified Program's level one certification track (the SCNP), and focuses primarily on defensive network technologies, such as firewalls and intrusion detection systems.

Prerequisites

We designed the Network Defense and Countermeasures (Second Edition) course for the student who is a network administrator responsible for maintaining a wide range of network technologies. To ensure your success, we recommend you first take the following course or have equivalent knowledge:
• Hardening The Infrastructure

Course Content

Lesson 1: Network Defense Fundamentals
Topic 1A: Network Defense
Topic 1B: Defensive Technologies
Topic 1C: Objectives of Access Control
Topic 1D: The Impact of Defense
Topic 1E: Network Auditing Concepts

Lesson 2: Designing Firewall Systems
Topic 2A: Firewall Components
Topic 2B: Creating a Firewall Policy
Topic 2C: Rule Sets and Packet Filters
Topic 2D: Proxy Servers
Topic 2E: The Bastion Host
Topic 2F: The Honeypot

Lesson 3: Configuring Firewalls
Topic 3A: Firewall Implementation Practices
Topic 3B: Installing and Configuring Check Point FireWall-1 NG
Topic 3C: Configuring Microsoft ISA Server
Topic 3D: IPTables Concepts
Topic 3E: Implementing Firewall Technologies

Lesson 4: Configuring VPNs
Topic 4A: VPN Fundamentals
Topic 4B: Tunneling Protocols
Topic 4C: VPN Design and Architecture
Topic 4D: VPN Security
Topic 4E: Configuring a VPN
Topic 4F: VPN Implementation

Lesson 5: Designing an IDS
Topic 5A: The Goals of an Intrusion Detection System
Topic 5B: Technologies and Techniques of Intrusion Detection
Topic 5C: Host-based Intrusion Detection
Topic 5D: Network-based Intrusion Detection
Topic 5E: The Analysis
Topic 5F: How to Use an IDS
Topic 5G: What an IDS Cannot Do

Lesson 6: Configuring an IDS
Topic 6A: Snort Foundations
Topic 6B: Snort Installation
Topic 6C: Snort as an IDS
Topic 6D: Configuring ISS Scanners

Lesson 7: Analyzing Intrusion Signatures
Topic 7A: Signature Analysis
Topic 7B: Common Vulnerabilities and Exposures (CVE)
Topic 7C: Signatures
Topic 7D: Normal Traffic Signatures
Topic 7E: Abnormal Traffic Signatures

Lesson 8: Performing a Risk Analysis
Topic 8A: Concepts of Risk Analysis
Topic 8B: Methods of Risk Analysis
Topic 8C: The Process of Risk Analysis
Topic 8D: Techniques to Minimize Risk
Topic 8E: Continuous Risk Assessment

Lesson 9: Creating a Security Policy
Topic 9A: Concepts of Security Policies
Topic 9B: Policy Design
Topic 9C: Policy Contents
Topic 9D: An Example Policy
Topic 9E: Incident Handling and Escalation Procedures
Topic 9F: Partner Policies

Appendix A: Trojan Port Numbers
Trojan Port Numbers

Appendix B: Security-related RFCs
Security-related Request for Comments

Appendix C: A Case Study
Understanding Denial of Service

Appendix D: Network Defense and Countermeasures Exam Objectives
Exam Objectives

COURSES :: SERVICES :: CERTIFICATIONS :: GOVERNMENT :: PURCHASE INFO :: ABOUT US :: CONTACT US
Copyright © 2005 Infotec, All rights reserved.