Skip Navigation Links

Course Length:
5 Days
Course Description:
This course is the official courseware for the Security Certified Program SC0-451 certification exam. The Tactical Perimeter Defense course is designed to provide network administrators and certification candidates with hands-on tasks on the most fundamental perimeter security technologies. The network perimeter is often the first line of defense in an organization’s network, and this course covers the issues with which every administrator must be familiar.
Who Should Attend:
This course is for network administrators and certification candidates.
Benefits of Attendance:
Upon completion of this course, students will be able to:
  • Describe the core issues of building a perimeter network defense system.
  • Investigate the advanced concepts of the TCP/IP protocol suite.
  • Secure routers through hardening techniques and configure Access Control Lists.
  • Design and configure multiple firewall technologies.
  • Examine and implement IPSec and Virtual Private Networks.
  • Design and configure an Intrusion Detection System.
  • Secure wireless networks through the use of encryption systems.
Prerequisites:
To ensure your success, we recommend that you have CompTIA’s Security+ certification, or have equivalent experience. This course assumes that the reader has fundamental working knowledge of networking concepts, and foundational security knowledge.
Course Outline:
  • Lesson 1: Network Defense Fundamentals
    1. Network Defense
    2. Defensive Technologies
    3. Objectives of Access Control
    4. The Impact of Defense
    5. Network Auditing Concepts
  • Lesson 2: Advanced TCP/IP
    1. TCP/IP Concepts
    2. Analyzing the Three-way Handshake
    3. Capturing and Identifying IP Datagrams
    4. Capturing and Identifying ICMP Messages
    5. Capturing and Identifying TCP Headers
    6. Capturing and Identifying UDP Headers
    7. Analyzing Packet Fragmentation
    8. Analyzing an Entire Session
  • Lesson 3: Routers and Access Control Lists
    1. Fundamental Cisco Security
    2. Routing Principles
    3. Removing Protocols and Services
    4. Creating Access Control Lists
    5. Implementing Access Control Lists
    6. Logging Concepts
  • Lesson 4: Designing Firewalls
    1. Firewall Components
    2. Create a Firewall Policy
    3. Rule Sets and Packet Filters
    4. Proxy Server
    5. The Bastion Host
    6. The Honeypot
  • Lesson 5: Configuring Firewalls
    1. Understanding Firewalls
    2. Configuring Microsoft ISA Server 2006
    3. IPTables Concepts
    4. Implementing Firewall Technologies
  • Lesson 6: Implementing IPSec and VPNs
    1. Internet Protocol Security
    2. IPSec Policy Management
    3. IPSec AH Implementation
    4. Combining AH and ESP in IPSec
    5. VPN Fundamentals
    6. Tunneling Protocols
    7. VPN Design and Architecture
    8. VPN Security
    9. Configuring a VPN
  • Lesson 7: Designing an Intrusion Detection System
    1. The Goals of an Intrusion Detection System
    2. Technologies and Techniques of Intrusion Detection
    3. Host-based Intrusion Detection
    4. Network-based Intrusion Detection
    5. The Analysis
    6. How to Use an IDS
    7. What an IDS Cannot Do
  • Lesson 8: Configuring an IDS
    1. Snort Foundations
    2. Snort Installation
    3. Snort as an IDS
    4. Configuring Snort to Use a Database
    5. Running an IDS on Linux
  • Lesson 9: Securing Wireless Networks
    1. Wireless Networking Fundamentals
    2. Wireless LAN (WLAN) Fundamentals
    3. Wireless Security Solutions
    4. Wireless Auditing
    5. Wireless Trusted Networks