Solaris Operating System Network Intrusion Detection (SC-345)
The Solaris Operating System Network Intrusion Detection course provides students with the knowledge and skills necessary to perform the advanced administration skills required to firewall, monitor, log, identify and respond to network security breaches.
Skills Gained
Upon completion of this course, students should be able to:
Identify and protect against design flaws in standard networking protocols (such as TCP, UDP, IP, ICMP, SSL, SSH, HTTP and ARP)
List possible ways that an intruder can gather information about a server or a whole network
Describe all types of network based security attacks like SYN/ACK attack, man-in-the-middle attack, ARP spoofing, session hijacking and Buffer Overflow attacks
Install a Network Intrusion Detection System and a host based firewall
Identify, in real time, a network security breach and respond
Who Can Benefit
Students who can benefit from this course are experienced system administrators who are tasked with protecting Sun Solaris systems in a non-trusted environment such as the Internet or a LAN environment with multiple unknown/untrusted users.
Prerequisites
To succeed fully in this course, students should be able to:
Install, configure, and maintain a Solaris product line server
Configure a Solaris NIC for LAN and Internet access
Have a firm understanding of the TCP/IP protocol stack and IP routing
Configure Solaris logging daemons like syslog
Install open source utilities like tcpdump and libpcap
Code:
SC-345
Length:
5 days
Type:
Instructor-Led
Certified By:
Sun Microsystems
Tuition:
$3,500 / $2,975 GSA GOV.
This course is taught by Certified Sun Microsystems instructors. There is a difference. Learn More
This course is in the following categories. Click the categories to find similar courses and topics of interest.
Identify the difference between host based and network based IDS
Discuss different types of IDS implementation: hybrid NIDS and honeypots
Describe core components of a NIDS using the snort NIDS
Compile and install the snort NIDS
Module 10 - Advanced NIDS Configuration
Discuss advanced snort features like "real time response" and snort log monitors
Install a database (mysql) to log snort alerts
Install the graphical user interfaces (GUI) Demarc and ACID to better interpret snort logs by querying the snort database
Generate outside attacks that trigger snort alerts
Interpret GUI snort monitors to identify attack
Module 11 - Writing snort rules
Describe the different components of a snort rule
Configure different snort rule options
Write custom snort rules to watch for specific traffic patterns
Execute attacks against custom snort rules and interpret GUI snort monitors to identify attacks
Module 12 - Solaris Routing
List requirements for a Solaris host to be a router
Implement a Solaris host as a router
Use the ndd utility to secure a Solaris router
Module 13 - Solaris Firewalls
Describe different types of Solaris firewalls: application firewalls and packet filters
Identify two of the most common Solaris firewall products: Sunsceen Lite and IPfilter
Learn firewall policy basics
Write firewall rules for network or host based firewalls
Install an IPfilter firewall on a Solaris host
Module 14 - Solaris Network (NAT) and Port Translation (PAT)
Describe NAT and PAT concepts
Implement NAT to secure a private network behind a Solaris firewall
When you take a certified course with ExitCertified, you are learning from
the creators of the products you use. Our commitment to your IT
community, along with our authorization to deliver certified courses,
ensures you receive a premium training experience.
