TN-385: TCP/IP Analysis & Implementation

Course Overview:

This course, TN-385: TCP/IP Analysis & Implementation, provides students with a comprehensive technical introduction to TCP/IP & the interworkings of TCP/IP application to UNIX, Linux and Windows in a network environment. This course begins by providing a comprehensive protocol stack analysis. It continues with extensive hands-on exercises needed to configure TCP/IP on UNIX and Windows based networks.

Attendees to TN-385: TCP/IP Analysis & Implementation will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

A thorough comprehension of each level of the protocol stack
Configuring UNIX & Windows to access internetworks
Configuring & setting up a Cisco router
Properly implementing subnets to avoid ongoing maintenance headaches
Routing & routing protocols, RIP, OSPF, and IGRP
How to troubleshoot a wide range of routing problems
All major TCP/IP application services including: FTP, TELNET, SNMP, NFS, DNS, DHCP, & WINS
How to avoid common internetworking problems
How to troubleshoot TCP/IP networks using protocol analysis techniques – snoop on Sun Workstation & Network Monitor on Windows.
How to design, build, configure, & manage TCP/IP internetworks
Applying a structured methodology for troubleshooting TCP/IP internetworks
ACL's on Cisco routers

Prerequisites:

Students should have good end-user skills in TCP/IP (FTP, TELNET, RLOGON, & MAIL).

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-949: Certified Firewall Analyst Course

Course Overview:

This is a hands-on course that covers many of the concepts of securing the perimeter of an organization. This includes concepts such as intrusion detection, packet filtering, and central logging.

A skills focus enables the student to better absorb the subject matter and perform better on the job. This is not death by power point. The course is aligned with information assurance operators and executing hands-on labs. Lecture and labs walk the student through the knowledge required to truly understand the mechanics of Firewalls.

This course is an excellent precursor to PA-215 Palo Alto Firewall Essentials FastTrack.

Attendees to TN-949: Certified Firewall Analyst Prep will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Duration: 5 days

Course Objectives:

Analyzing Network and Wireless Design
Creating and Auditing a Rulebase
Firewall Assessment and Penetration Testing
Host-Based Detection and DLP
Incident Detection and Analysis
IOS and Router Security
IPv6 and ICMPv6
Log Collection and Analysis
NAT and Proxies
Netfilter IPtables
Network Access Control
Network-Based Intrusion Detection
Packet Filters and Inspection
Packet Fragmentation
Perimeter Concepts and IP Fundamentals
Securing Hosts and Services
TCP/IP Protocols
VPN Design and Auditing
VPN Implementation

Course Prerequisites:

GSEC or equivalent experience
UNIX, Windows, networking and security experience
This is a hands-on skill course requiring comfort with command line interaction and network communications

Comments

Latest comments from students

Liked the class? Then let everyone know!

PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205)

Course Overview: PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) Training Class is a two-day course that teaches students to configure and manage the entire line of Palo Alto Networks next-generation firewalls. Students also will be instructed on the basics of implementing and managing GlobalProtect™ and active/ active high availability. Students will gain an in-depth knowledge of how to optimize their visibility and control of applications, users, and content. This course prepares the student for Palo Alto Networks Certified Network Security Engineer (PCNSE). Through hands-on training, students learn high end skills of how to integrate Palo Alto next-generation firewalls into their network infrastructure. This is not a virtualized theoretical course. This is hands-on, real world instruction, directly relevant to the DoD and Commercial implementations of Palo Alto Networks next-generation firewalls.

Each student is issued a physical Palo Alto firewall and a Cisco layer 3 switch at their desk. Real hardware per student for real experience and real skill development. TechNow provides a very comprehensive client infrastructure that includes Windows, Linux, and multiple packet sniffer agents.

This course sets up the foundation for the three day course PA-243: Palo Alto Networks Firewall Debug and Troubleshoot (EDU-311). The instructor for this course has been a lead in Unix kernel development to implement firewall and intrusion detection technologies. Additionally, the instructor has taught several security appliance products and carries several SANS, ISC2, ISACA, Cisco, Unix, and Windows certifications. Attendees to the PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) Training Course will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 2 days

Course Objectives: Students attending this foundational-level training course will gain an in-depth knowledge of how to configure and manage their Palo Alto Networks firewall. Students also will be instructed on the basics of implementing and managing GlobalProtect™ and active/ active high availability. Students will gain an in-depth knowledge of how to optimize their visibility and control of applications, users, and content.

Day 1

Module 0 – Introduction & Overview
Mod 1: Advanced Interface
- Configuration
- Advanced NAT
- Policy-Based
- Forwarding
- Routing Protocols (OSPF)
Mod 2: App-ID™ –
- Custom Applications
- Defining New Application Signatures
- Application Override
Mod 3: Advanced Content-ID™
- Custom Threat Signatures
- Data Filtering
- DoS Protection
- Botnet Report
Mod 4: Advanced User-ID™
- Terminal Server Agent
- Captive Portal
- XML API

Day 2

Mod 5: Quality of Service
- Configuring Quality of Service
Mod 6: GlobalProtect™
- Implementation of GlobalProtect
- Install and Configure Portal, Gateway, and Agents
Mod 7: Monitoring and Reporting
- Log Forwarding
- SNMP
- Reporting
Mod 8: Active/Active High Availability
- Configuring Active/Active HA

Prerequisites:

PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201)

This course is in no way associated with Palo Alto Networks, Inc.

Comments

Latest comments from students

Like the class? Then let everyone know!

TN-715: Systems Security Certified Practitioner (SSCP)

Course Overview:

Looking to move up in the information security field? If you have at least one year of security experience, you qualify for the Systems Security Certified Practitioner (SSCP) certification, which offers junior security professionals a way to validate their experience and demonstrate competence with (ISC²)®’s seven domains.

Attendees to TN-715: Systems Security Certified Practitioner (SSCP) will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

Access Controls
Security Operations and Administration
Analysis and Monitoring
Cryptography
Networks and Telecommunications
Malicious Code/Malware
Risk, Response, and Recovery

Prerequisites:

One year security experience
Some knowledge of the (ISC²)®’s seven domains

Comments

Latest comments from students

User: boyleb15

Instructor comments: Instructor was very knowledgeable on most items covered during this course. There were some topics he did lack the answer to. Instructor would also get sidetracked easily

User: keginth

Instructor comments: he was phenomenal with test prep and knew the book well

Facilities comments: adequate

Like the class? Then let everyone know!

N-595: VoIP Security Analysis and Design

Course Overview:

As VoIP (Voice-over IP) is integrated into the operations of many missions, it is imperative to understand its security ramifications. In the N-595: VoIP Security Analysis and Design class the objectives are designed for those who are chartered with the responsibility of securing networks and application environments that incorporate VoIP. Topics include how VoIP works, its interactions with the network, its vulnerabilities and mitigations. Focus is on leading open source and proprietary technologies utilizing Asterisk and Cisco and the protocols SIP, H.323, RTP, MGCP, and Skinny. Other protocols such as Nortel's UNIStim will be addressed. As for Cisco, security pieces in the VoIP CallManager servers, Catalyst switches, IOS-based routers, and ASA firewalls, amounts to several different platforms, each with its own management interface and lockdown procedures. Various open source tools including those in BackTrack are used for VoIP attacks. A task list of actions for securing enterprise VoIP is carried out in hands-on labs, performed on Cisco phones, routers, switches, and ASA firewalls.

Attendees to N-595: VoIP Security Analysis and Design will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

VoIP Architecture
VoIP Signaling and media protocols
Common VoIP authentication mechanisms
Common VoIP encryption techniques
VoIP protocol analysis with Wireshark
Maintaining QoS while mitigating DoS
VoXML, XML, and application integration security
Converged network security design and implementation
Impact of NAT and firewalls
SIP, H.323, and MGCP vulnerabilities
VPN, IPsec and SRTP to secure VoIP services
Penetration testing with open source tools
Attacks for Eavesdropping, call redirection, and DoS
Design of hacked firmware virtualization layer
Concise lockdown steps for network hardware and VoIP

Prerequisites:

This is an advanced Information Security Course which requires basic Windows & UNIX competency
Certification or 2 years of experience in these operating systems is highly recommended
As well as an understanding of TCP/IP

Comments

Latest comments from students