Building Blocks Technologies

Training Services
Course Develsopment Services
Training Instruction Services Consulting Services

Services

Technology Training: Communications Courses: TCP/IP: Secure Routing

Course Objectives:

Upon completion of this course the student will be able to:

  • Define a Virtual Private Network
  • Articulate how the Internet Protocol is implemented in a network
  • Describe how routers and routing protocols operate
  • Differentiate the popular VPN architectures
  • Compare and contrast the protocols, technologies, and products that are used in a VPN solution
  • Describe the operation of different tunnelling protocols

Course Type:

The course is taught in class with an instructor. This course is two days in length.

Prerequisite:

Our "Networking Foundations: Fundamentals Level I" and "TCP/IP: Fundamentals" are highly recommended or an understanding of networks, security, and data communications

Audience:

Individuals that need a broad knowledge to support switched and routed networks. Individuals that need to design elegant, accurate IP networks.

Course Description:

This course introduces the student to the concept of creating a secure Intranet. Through a series of discussions and exercises the student will gain knowledge of TCP/IP, routing and IPSec protocols. The course wraps up with a case study where the students will work in teams to examine and design a solution. This solution is then presented to the class.

Course Outline:

Introduction

  • The development of networking
  • The architecture today
  • Communication models
  • OSI Overview
  • TCP/IP Overview
  • VPN Applications
  • Remote Access
  • LAN-to-LAN
  • Corporate Intranets
  • Intranet/Extranet connection

TCP/IP Protocol Overview

  • Overview of IP Addressing
  • Architecture
  • Class of Address
  • Example of Addressing
  • Special Addresses
  • Addressing and Networks
  • Introduction to Subnetting
  • Simple Subnets
  • Complex subnets
  • Variable Length Subnets
  • IP Addressing Design

Network Security Concepts

  • Issues and Risks
  • Authentication
  • Access control
  • Confidentiality
  • Data integrity
  • Non-repudiation
  • Spoofing
  • Man-in-the-Middle
  • Session Hijacking

General Encryption

  • Basics of Cryptography
  • Cryptographic Techniques
  • Block mode vs. Bit Mode
  • Electronic Code Book
  • Cipher Block Chaining
  • Cipher Feedback
  • Output Feedback
  • The RSA model
  • The Diffie-Hellman algorithm
  • Encryption and Digital Certificates
  • PKI architecture

VPN Tunnelling Overview

  • Tunnelling Operation
  • Examples of Tunnelling
  • LAN-to-LAN tunnelling
  • Tunnelling over IP
  • Routing Issues
  • VPN and Proxy Servers
  • VPN and Firewalls
  • VPN and Routers
  • Routers vs. a VPN Device
  • Compulsory vs. Voluntary Tunnels
  • Tunnelling models
  • Service Provider to Service Provider
  • Enterprise to Service Provider
  • Enterprise to Enterprise

IP Routing

  • Define Routing
  • The Need to Route
  • Operation of a Router
  • Types of Routing and Routes
  • RIP/OSPF
  • Network Design

Secure Routing

  • What is at Risk?
  • Techniques for secure routing
  • IPsec architecture
  • Transit vs. Tunnel Mode
  • Authentication Header Services
  • Authentication Header Encoding
  • Encapsulating Security Payload
  • Security Associations
  • Internet Key Exchange (IKE)
  • ISAKMP overview
  • Modes and Phases
  • Issues in IPsec implementation
  • Layer 2 Tunnelling Overview
  • Layer 2 vs. Layer 3 Tunnelling

Conclusion