1-800-THE-TREE (1-800-843-8733)
TRAINING YOU CAN TRUST
 
 

Controlling Network Access: Hands-On

 
Course: 941   Type: Hands-On Training   Duration: 4 Days
 
 

You Will Learn How To

  • Secure enterprise networks using access control tools and best practices
  • Deploy advanced filtering techniques to add state and support Quality of Service (QoS)
  • Block attack traffic using intrusion prevention systems (IPS) and application-level firewalls
  • Detect, mitigate and limit the impact of zero-day attacks with IPS
  • Deny rogue and untrusted computer access with network access control (NAC) and 802.1x authentication
  • Ensure secure communication with IPsec and SSL/TLS VPNs

Course Benefits

As enterprises expand, networks are exposed to increasing amounts of traffic that can pose a threat to mission-critical data. The ability to control internal and external access is vital in establishing a secure architecture. In this course, you gain the practical skills and knowledge required to perform information assurance that protects data integrity and maintains organizational credibility.

Who Should Attend

This course is valuable for network and security administrators, engineers, architects and others who design, implement or manage access control within the enterprise. Knowledge of networking and security fundamentals at the level of Course 468, "System and Network Security Introduction," is assumed.

Hands-On Training

Through an evolving case study, you gain practical experience securing the enterprise by applying access control methodology that incorporates industry best practices. Exercises include:
  • Configuring routers and switches to support advanced filtering
  • Hardening perimeter devices
  • Deploying a Web-application firewall
  • Implementing a network-based IPS to mitigate or stop simulated attacks
  • Filtering protocols and Web-based content
  • Defeating zero-day attacks with host-based IPS
  • Applying NAC solutions
  • Securing remote access with VPN technology

Related Courses

  

Upcoming Dates

Dec 2 - 5, 2008
 Washington, DC (Rockville, MD)
Jan 6 - 9, 2009
 Los Angeles
Jan 13 - 16, 2009
 Ottawa
Jan 20 - 23, 2009
 New York
Jan 27 - 30, 2009
 Toronto
Feb 3 - 6, 2009
 Washington, DC (Alexandria, VA)
Feb 10 - 13, 2009
 Chicago (Schaumburg)
Feb 17 - 20, 2009
 Washington, DC (Reston, VA)
Mar 3 - 6, 2009
 Washington, DC (Rockville, MD)
Apr 21 - 24, 2009
 Los Angeles
Apr 21 - 24, 2009
 Ottawa
Apr 28 - May 1, 2009
 New York
Apr 28 - May 1, 2009
 Toronto
May 12 - 15, 2009
 Washington, DC (Alexandria, VA)
May 26 - 29, 2009
 Washington, DC (Reston, VA)

For complete schedule, please visit www.learningtree.com
 
http://www.learningtree.com/courses/941pf.htm
 
 
1-800-THE-TREE (1-800-843-8733)
TRAINING YOU CAN TRUST
 
 

Controlling Network Access: Hands-On

 
Course: 941   Type: Hands-On Training   Duration: 4 Days
 
 
Course 941 Content
 

Establishing a Secure Framework

Building a robust enterprise

  • Investigating security model components
  • Validating your organization's security policy
  • Quantifying risk to determine access controls

Deploying TCP/IP

  • Identifying network protocols
  • Blueprinting encapsulation
  • Analyzing headers to classify packets

Fortifying the Perimeter

Best practices for device configuration

  • Securing access to devices
  • Hardening routers and switches

Applying advanced filtering techniques

  • Prioritizing network traffic
  • Classifying traffic to achieve Quality of Service (QoS)
  • Ingress and egress filtering
  • Providing state with context-based access controls

Mitigating threats using port security

  • Preventing address spoofing
  • Containing resource starvation

Strengthening Gateway Defense

Traffic filtering methods

  • Stateless vs. stateful packet filters
  • Application proxies
  • Web application firewalls: Profense, mod_security

Differentiating firewall architectures

  • Refining the topology
  • Setting a security perimeter
  • Combining components to give defense in depth

Managing access

  • Safeguarding application servers
  • Supporting DMZ services

Implementing Network Intrusion Prevention

Decoding traffic using protocol analyzers

  • Fingerprinting Operating Systems
  • Interpreting malicious traffic
  • Establishing thresholds and boundaries

Curtailing the network threat

  • Inspecting network traffic for abnormal activity
  • Leveraging intrusion prevention technologies
  • Correlating signature- and anomaly-based events

Filtering Content

Essential proxy principles

  • Constructing proxy controls
  • Assessing proxy operations

Strategizing content filter deployment

  • Preventing malicious Web-based content
  • Validating Ajax and SOAP messages

Protecting the Infrastructure

Surveying the network

  • Defensive techniques with an offensive mindset
  • Dissecting an attack methodology

Shielding against zero-day exploits

  • Defeating attacks with host-based intrusion prevention
  • Processing system calls and system-level access

Network Access Control (NAC)

Establishing an effective NAC

  • Identifying NAC requirements
  • Partitioning and segmenting zones
  • Neutralizing rogue clients

Enforcing user identity-based controls

  • Guest, contractors and others
  • Maintaining awareness of who is on your network

Controlling and securing authentication

  • Implementing 802.1x port access control
  • Pruning ports to deter intrusion

Securing Remote Access

Building Virtual Private Networks (VPNs)

  • Tunneling with IPsec and SSL/TLS
  • Developing secure communications

Supporting remote users

  • Site-to-site vs. client-to-site
  • Avoiding pitfalls of split tunneling

The Future of Access Control

  • Screening complex protocols
  • Expanding de-perimeterization across the enterprise
 
http://www.learningtree.com/courses/941pf.htm
 
 
1-800-THE-TREE (1-800-843-8733)
TRAINING YOU CAN TRUST
 
 

Controlling Network Access: Hands-On Tuition

 
Course: 941   Type: Hands-On Training   Duration: 4 Days
 
 

Course Tuition
$ 2,790 Standard Tuition
Tuition with a Savings Plan
$ 1,800 10-Day Pass
$ 1,670 Training Passport
$ 1,700 Premium-Pass
$ 2,200 Voucher 10-Pack
$ 2,515 Alumni Gold Discount
$ 2,484 Government Discount
 

 

Your Course Tuition Entitles You To...

  • Class participation
  • Team workshops
  • Use of in-class hands-on equipment
  • Comprehensive course materials
  • Morning and afternoon refreshments
  • Course Completion Certificate awarding Continuing Education Units
  • FREE participation in Professional Certification
  • FREE participation in College Credit programs (including related exams)
  
 

Tuition Savings Plans

Training Passport
  • 3 courses in 12 months
  • As little as $1,670 per course
  • Savings as much as 40%
  • Only $5,000
Premium Pass
  • 4 courses in 24 months
  • As little as $1,700 per course
  • Save as much as 45%
10-Day Pass
  • A NEW way to save on training
  • 10 days of training for one person
  • Save as much as $990 per course
  • Only $4,500
Training Vouchers
  • Save as much as $990 per course
  • Fully transferable
  • As low as $2,200 per course
Alumni Gold Discount Attend your first course and you'll receive a personalized Alumni Gold Discount card, entitling you to save as much as $305 on each course you take within the following 12 months. Take just one course each year and you'll be entitled to ongoing discounts...year after year!

Your Guarantee of Satisfaction

Unless you feel 100% satisfied that Learning Tree delivered even more than you expected, there is no fee for your course attendance. Our Guarantee of Quality lets you experience the value of the course--and then pay only if you feel the course was well worth the tuition.

Enrolling is Easy and Flexible!

Enroll by phone or online. If your plans change, just let us know and, without a fee, you can transfer to another course or cancel your enrollment. Pay after you've taken the course, and then only if you are 100% satisfied.
 
http://www.learningtree.com/courses/941pf.htm