LinuxCBT SLES-11 Edition focuses on the SUSE® Enterprise 11 Linux operating system.

LinuxCBT SLES-11 Edition, is unparalleled in content, depth and expertise. LinuxCBT SLES-11 Edition prepares you or your organization for successfully deploying and managing business-critical SUSE® Enterprise 11-based server solutions.

Let LinuxCBT SLES-11 Edition teach you SUSE® Enterprise 11 Linux skills!

Recommended Prerequisites:

• Open mind & determination to master Linux and related open-source applications
• Basic MS Windows skills
• Basic understanding of networking concepts
• Access to a spare PC to perform all of the installations and exercises

Installation & General Usage - Module 1

• PXE-based, HTTP, SSH and Virtual Installations
  • Discuss system requirements
  • Explain installation phases
  • Prep TFTP server for installation
  • Configure DHCP on Cisco Router to support PXE installation
  • Publish SUSE 11 ISO image on Apache HTTPD server
  • Install SUSE Ent. 11 Server via PXE, HTTP & VNC
  • Implement custom partition scheme
  • Confirm results
  • Discuss requirements for SSH semi-auto install
  • Configure installation process to use SSH
  • Configure automatic installations via AutoYaST & SSH
  • Publish AutoYaST XML file to HTTP-accessible location
  • Commence automatic installation via SSH
  • Discuss virtualization installation requirements
  • Provision VMWare containers for SUSE 11 Enterprise
  • Configure and deploy automatic installation for general virtual hosts
  • Deploy SUSE 11 instance on VMWare using MAC address configuration - uniqueness
  • Perform MAC address installation on physical Dell PowerEdge server
  • Use AutoYaST to provision installation profile
  • Install server using installation profile
  • Evaluate results of various installation methods
• Grand Unified Boot Loader (GRUB) & Boot Problems
  
  • Explore GRUB configuration
  • Explain SUSE Linux System V Init Runlevel (0 - 6) concepts & applications
    
  • Identify key startup files, including scripts (inittab,Sscripts,Kscripts,etc.)
  • Explore single-user mode as a troubleshooting aide
  • Use repair mode to explore startup environment & perform system check
  • Explore rescue system
• X & GNOME
  • Identify default runlevel
  • Configure X environment using YaST
  • Explore the GNOME desktop environment
• Basic GNU/Linux Skills - Command Line Interface (CLI) - BASH
  • Introduction to GNOME Terminal
  • Demonstrate usage of the following useful commands & concepts
  • ls, pwd, cd, cp, mv, rm, mkdir, rmdir, whoami, man, info
  • alias, cat, file, chmod, chown, history
  • Standard in/out, UNIX Pipes, Redirection, Command Chaining
  • ps, df, free, vmstat, top, kill
  • less & more, head & tail, diff
  • which & whereis, w, who
  • Explore BASH configuration files
  • find, locate
  • Use grep and awk to process text files
  • Archival & Compression Utilities: tar, gzip, bzip2, zip
  • Convert Windows text files to Unix format using dos2unix
  • Convert Unix text files to Windows format using unix2dos
• Common Network Clients
  • File Transfer Protocol (FTP) client
  • Install and use LFTP - Sophisticated FTP Client to connect to FTP/HTTP servers
  • Mirror and reverse mirror using LFTP to synchronize data
  • Wget - HTTP/HTTPS/FTP connectivity
  • Explore SSH clients - Discuss features
  • Identify key SSH-client files (.known_hosts, public/private key pairs,etc.)
  • Use Secure Copy Protocol (SCP) to move data between systems non-interactively
  • Use Secure File Transfer Protocol (SFTP) to move data between systems interactively
  • Demonstrate how to generate Public/Private key (RSA/DSA) pairs using ssh-keygen
  • Copy public keys to remote systems using: ssh-copy-id
  • Demonstrate using SSHto authenticate to remote Linux hosts without passwords
  • Authenticate to remote Linux systems using alternate credentials
  • Generate Public Key/Private Key pairs for use with file and E-mail encryption
  • Demonstrate using E-mail client with GNU Privacy Guard (GPG) Open PGP for E-Mail encryption
  • Use ping, netstat, arp, telnet, traceroute, ifconfig - network diagnostics
  • Use dig, host, nslookup, whois name resolution clients
• top

Systems Managment & Configuration - Module 2

• RPM Package Management Tool Concepts & Usage
  • Explain classes of SUSE Linux Packages
  • Query existing packages
  • Identify offline and online package repositories
  • Install packages
  • Upgrade packages
  • Freshen packages
  • Remove packages
  • Identify package membership of files on the SUSE system
• Users, Groups & Permissions
  • User profile implementation logic and concepts - (Bash profile/etc/skel/aliases/PATH/etc.)
  • User and group creation & management concepts - passwd, shadow, group, gshadow files
  • Use lastlog to determine system-access to various terminals
  • Use YaST to create and manage users and groups
  • Use stat to ascertain file information
  • SETUID
  • SETGID - Group collaboration
  • Sticky Bit
  • Discuss and Implement Hard and Symbolic links
• Paritions, File Systems & Volumes (RAID|LVM)
  • Provision additional Swap storage paritions and files
  • Use dd, mkswap & swapon to enable additional Swap storage
  • Identify allocated swap space to the kernel
  • Committ changes to /etc/fstab for persistence
  • Disable swapping with swapoff as necessary
  • Allocate virtual storage for RAID configuration
  • Provision new paritions with YaST
  • Configure RAID 0/1/5/ Volumes
  • Discuss features and benefits of LVM
  • Implement Logical Volume Management (LVM)
  • Evaluate results
• Explore System Logging via SYSLOG-NG and Logrotate
  • Explore Boot log & System Log
    
  • Explanation of syslog facilities & levels
    
  • Discuss SYSLOG-NG features & enhancements
  • Demonstrate syslog administration
    
  • Enable SYSLOG network listener
  • Demonstrate Cisco PIX Firewall to SUSE Linux SYSLOG-NG functionality
    
  • Explore automatic log rotation and customization via Logrotate
    
  • Configure Logrotate to rotate & compress sample log files
• top

Core Networking Services - Module 3

• Network - Physical & Logical Configuration
  • Identify key directories & files for static & dynamic communications
  • Configure Linux client with static TCP/IP parameters for network communication
  • Explore hotplug -> hwup -> ifup logic
  • Use ifconfig to ascertain logical TCP/IP configuration
  • Use hwinfo to ascertain installed hardware
  • Configure Aliased Ethernet Interfaces to faciliate multiple IP addresses
• CRON - System Scheduler
  • Explore Cron Implementation
  • Explain scheduling options
  • Global and scope-based Cron options
  • Schedules jobs to run & examine the output
  • Configure individual Crontab entries
• Implement Network Time Protocol Daemon (NTPD) Client/Server
  • Configure Network Time Protocol (NTP) to perform client/server time synchronization
  • Identify NTP bounded UDP interfaces
  • Synchronize SUSE Enterprise Linux NTP with RedHat Linux Stratum 2 NTP server
  • Synchronize against Stratum 1 NTP servers
• Implement Trivial File Transfer Protocol Daemon (TFTPD) Server
  • Discuss TFTP attributes
  • Implement TFTPD
  • Backup Cisco router configuration via TFTP
  • Backup Cisco firewall configuration via TFTP
  • Use sed to update TFTPD configuration
• Dynamic Host Configuration Protocol (DHCP)
  • Explain DHCP Concepts & Applications
  • Explore DHCP confiuration files
  • Configure DHCP subnet with applicable options
  • Configure DHCP Reservation based on layer-2 address
  • Enable DHCP with DDNS
  • Configure DHCP Failover between SUSE and RedHat Linux Servers
  • Test DHCP Failover with Windows 2003 Host
• Domain Name System (DNS)
  • Explore SUSE DNS configuration via YaST
  • Configure BIND as a caching-only DNS server
  • Implement Master DNS Zone
  • Configure Reverse Zone for local subnet
  • Implement Dynamic Domain Name System (DDNS) Zones (Forward/Reverse)
  • Explain DHCP and DNS update integration options
  • Integrate DHCP with DNS via Encypted Transaction Signatures (TSigs)
  • Evaluate results of BIND configuration using DIG & host
  • Implement DNS sub-domains (Third-level domains)
• FTPD with Very Secure VSFTPD & ProFTPD File Transfer Protocol (FTP) services
  • Implement anonymous FTPD
    
  • Implement user-level FTPD access
    
  • Implement FTPD banners
    
  • Disable anonymous access
    
  • Configure VSFTPD to chroot jail users into their home directories
    
  • Implement bandwidth rate-limiting to control bandwidth usage
    
  • Implement & test banning of unwelcomed anonymous e-mail addresses
    
  • Implement ProFTPD with settings similar to VSFTPD
  • Evaluate results
• Network File System (NFS) Implementation
  
  • Identify key services/daemons
  • Configure NFS Client & Server
    
  • Evaluate NFS connectivity to other Linux hosts
    
• Samba Implementation
  • Explore key Samba clients
  • Explore Samba Configuration files
  • Implement SMBFS integration with SUSE Enterprise Linux File System
    
  • Mount Windows shares seamlessly using Samba File System (SMBFS)
    
  • Configure FSTAB to support repetitive mounts
    
  • Implement secure SMBFS credentials for mounting
    
  • Install Samba Server support
    
  • Install Samba Web-based Administration Tool (SWAT)
    
  • Configure Samba file sharing
    
  • Configure Samba with multiple NETBIOS aliases
  • Install Active Directory on Windows 2003 Server
  • Integrate with Windows Active Directory (AD)
  • Test Samba-to-Windows integration using 'getent' and authentication
  • Implement Windows 2008 Active Directory with Samba
  • Evaluate results
    
• top

Linux Apache MySQL PHP (LAMP) - Module 4

• Apache Web Server Implementation
  
  • Discuss Apache server's features and concepts
  • Install Apache
  • Examine Apache-SUSE HTTPD CONF hierarchy
    
  • Examine various configuration files
  • Configure Virtual Hosts
  • Examine user home directories
  • Discuss the Directory directive
  • Explore redirects
  • Configure .htacess file with directives
  • Configure Name-based Virtual Hosts
  • Explore Apache logging
    
  • Implement Apache logging system per virtual host
    
  • Webalizer Log Analysis software Implementation
    
  • Generate web reports using Webalizer
• MySQL Relational Database Management System
  
  • Install MySQL Relational Database Management System
    
  • Secure access to MySQL
    
  • Explore MySQL monitor shell-based interface
  • Create sample MySQL databases
  • Load external data-set from Linux
  • Load external data-set from Windows
  • Integrate PHP with MySQL
• 
  
• PHPMyAdmin - MySQL Web-based Management Interface
  
  • Install PHPMyAdmin for web-based management of MySQL instances
    
  • Explain & Secure access to PHPMyAdmin
    
  • Explore PHPMyAdmin's interface
    
• SMTP-MTA|IMAP|Squirrel-mail Web-based Mail Interface Implementation
  
  • Explore SMTP-MTA Configuration
  • Explore IMAP Configuration
  • Describe required squirrel mail components for web-mail integration
    
  • Install squirrel mail on SUSE Enterprise Linux system
    
  • Configure Apache virtual directory for squirrel mail integration
    
  • Configure Apache Virtual Host for squirrel mail integration
    
  • Configure BIND DNS services for squirrel mail integration
    
  • Explore squirrel mail's web-based interface
    
• top

Security Implementation Techniques - Module 5

• Apache SSL
  • Discuss features & benefits
  • Configure self-signing server
  • Generate usage certificates for hosted sites
  • Bind SSL keys to hosted sites on various TCP:Ports
  • Start Apache SSL
  • Evaluate results
• Local Security
  • Use YaST to identify and configure key security directives
  • Identify, change and test file permissions policy
  • Peruse and tighten password policy
  • Limit SMTP TCP:Port communications to loopback interface
  • Shut superfluous daemons (services)
  • Explore additional XINETD features
• Upgrade SUSE 10 Enterprise Edition
  • Define upgrade strategy
  • Discuss caveats
  • Provision ISO image on HTTP installation server
  • Perform upgrade via PXE using HTTP & SSH
  • Evaluate results Explore additional XINETD features
• Network Mapper (NMAP)
  • Obtain, compile and install current version of NMAP
  • Identify commonly used NMAP options/switches/parameters
  • Perform default TCP SYN-based ethical scans of local and remote resources
  • Explain typical TCP handshake protocol while using NMAP
  • Examine the results of scans on remote Cisco firewall with debugging mode enabled
  • Perform default TCP Connect-based ethical scans of local and remote resources
  • Examine the results of scans on remote Cisco PIX Firewall with debugging mode enabled
  • Use NMAP to scan using aliased and spoofed IP addresses
  • Peform local ethical scans
  • Identifiy key NMAP configuration files
  • Use NMAP to perform operating system fingerprinting
  • Peform subnet-wide ethical scans
• SuSEFirewall2 (IPTables - Netfilter Linux Kernel-based Firewall)
  • Discuss IPTABLES/Netfilter Concepts
  • Explain IPTABLES default chains/filters and policies
  • Examine TCP/ICMP communications pre-IPTABLES chains
  • Filter traffic based on Layer-4 TCP/UDP (Source/Destination Ports) information
  • Restrict access to various daemons (SSH/FTP/HTTP/etc.)
  • Test connectivity locally and remotely
• top