Course Content (Syllabus)
A. Network Security: Network communications security and cryptography (public/private key cryptography, PKI cryptography & certificates), secure communications protocols, IPsec for IPv6, DNSsec, Virtual Private Networks (VPNs), secure data distributing via SSH. Securing unsecure protocols. Network viruses: types, detecting and blocking. Tracing IP and MAC addresses. Segmenting physical LANs to VLANs.
B. High Network Availability: Deployment in layer 1, 2 using optical switching, multiple optical paths and Spanning Tree Protocol. Deployment in layer 3 using multiple standby gateways per VLAN. Deployment in layer 4 using Virtual Machine failover for critical services (DNS). Maintaining offsite backups, data mirroring, network based RAID-1 (DRDB).
C. Quality of Network Services: Prioritizing traffic in low speed links using traffic shaping and policing. Increasing bandwidth using Ethernet bundling, network efficiency metrics, network quality evaluation tools.
D. Network Versatility: Interconnecting LANs over WAN links. VPNs and ADSL tunneling for interconnecting remote LANs. Technologies for setting up point-to-point connections (SHDSL, Metro Ethernet, etc). Computational power as a network service, data multipresence, cloud computing, datacenter failover. Flat routing protocols (DHTs), point-to-point protocols (P2P).
E. Managing Networks: Tools, protocols used, low level advanced troubleshooting - protocol incompatibilities (overcoming using IP MTU, Path MTU discovery, ICMP). IPv6 - transition and new applications.
Keywords
advanced networking, network redundancy, security, encryption, intrusion detection, attack mitigation, firewalling, tunneling, VPN