This link has been bookmarked by 2 people . It was first bookmarked on 19 Oct 2007, by Wisely.
-
19 Oct 07
-
-
- The Anatomy of an Ethernet Frame
Explanation of the structure of data on a network.
- ARP and The Ethernet Header
Closer examination of the header and the means of identifying the sender and recipient of a data frame.
- What is CSMA/CD and how does it work?
How Ethernet handles traffic from multiple sources and how it resolves collisions. Also, how CSMA can be of use in network monitoring.
- Understanding Full and Half-Duplex Ethernet
Builds on the CSMA/CD subsection. Explains Ethernet cabling, how full and half-duplex mode differ, and how they are related to collision detection.
- Measuring Ethernet Performance
Explanation of different metrics for determining performance on an Ethernet network, and how each is affected by the others.
Understanding Ethernet
This section will review how networked systems move data from point A to point B. The focus in this section is exactly what is happening behind the scenes and along the network cabling. It is assumed that the reader understands the basics of networking, such as how to assign a valid network address to a device. - The Anatomy of an Ethernet Frame
-
- Working with Subnet Masks
How a host determines if another system is local or not; decoding IP addresses into their binary equivalents; Class A, B, and C IP addresses and default subnet masks.
- Intro to Variable Length Subnet Masking
How to use subnet masks to divide networks to change the number of subnets and hosts.
- Advanced Variable Length Subnet Masking
Builds on the Intro to VLSM subsection. Discusses ways of using VLSM to ensure that address space is used in the most efficient way.
Working with TCP/IP
This section will discuss various aspects of IP addressing, and how addresses are divided into network and host sections via subnet masking. Does not assume knowledge of the previous sections. - Working with Subnet Masks
-
- Domain Name Services
DNS hierarchy; BIND; nslookup; different record types used in DNS; troubleshooting DNS problems; Start of Authority; how a name request gets passed along the DNS "food chain."
- Active vs. Passive FTP
Explanation of File Transfer Protocol, one of the most difficult protocols to understand with respect to how servers and clients talk to each other; differences between active and passive FTP and the implications of each with respect to security.
Working with TCP/IP Services
This section discusses two major TCP/IP services: Domain Name Services (DNS), which handle the relationship between domain names and IP addresses, and File Transfer Protocol (FTP), which is used for moving files via the Internet. Does not assume knowledge of the previous sections. - Domain Name Services
-
Bridging, Switching and Layer 2 Traffic Control [HTML]
Discussion of the hardware used to control traffic at Layer 2 (the data link layer) of the OSI model. Explanation of the differences between bridges, switches, and hubs, and when to use each. Reader should be familiar with the basic concepts described in the Understanding Ethernet section. -
Routing-101 [HTML]
What OSI Layer 3 defines and how traffic is processed at this layer; well-known ports and sockets in TCP/IP and IPX/SPX; NetBIOS and NetBEUI; static routing with IP; distance vector, link state, and protocol-independent routing. Reader should be familiar with the basic concepts described in the Working with TCP/IP section.
Introduction to Intrusion Detection Systems [HTML]
What an IDS is and what its limitations are; how it differs from a firewall; different ways of configuring an IDS for your network. Reader should be familiar with the basic concepts described in the Understanding Ethernet section, specifically the Anatomy of an Ethernet Frame subsection, as well as the basics of subnet masking. -
Network Decoys [HTML] [MS PowerPoint]
Network Decoys act on our behalf to provide incorrect or confusing information to attackers so that future attacks are less effective or slower than they would have been. -
Automated Firewalls with Mason [HTML] [MS PowerPoint]
This presentation covers some basic concepts in packet filtering, an iterative approach to creating firewall rules, and a tool that uses that approach to create a packet filtering firewall on the Linux operating system. -
Basic Linux/System Security [HTML] [MS PowerPoint]
The Basic Linux/System Security Presentation outlines points crucial for Security Administrators. Important topics covered: Physical Security, Principle of Least Privilege, Passwords, Open Ports, Encrypted Network Connections, IDS, and more. -
The Lifecycle of a Worm [HTML] [MS PowerPoint]
A worm is a computer program that will break into a machine, and then use that machine as a staging area for breaking into more machines. In this presentation the authors have drawn upon their own experience and analysis of the Ramen Worm to illustrate their findings. Important topics include: Buffer Overflows, Insecure Programs, Tool Development, Ramenfind Tool and more -
Early Detection of Internet Worms [MS PowerPoint]
What is a worm? How do most worms work? Some points covered: Modeling Worm Propagation, Overview of ICMP Destination Unreachable messages and observing patterns. -
Linux Worm Forensics Presentation [HTML] [MS PowerPoint]
The Linux Worm Forensics Presentation outlines the process for analyzing a Linux worm to include detection, capture, program and script analysis, write-up, writing a removal tool, and dissemination. -
SSH Operation Presentation [HTML] [MS PowerPoint]
This presentation covers SSH operation, port forwarding, X Windows forwarding, and the installation and use of SSH keys. Attendees will have the background needed to start using ssh and ssh keys to encrypt terminal sessions, X applications, and other types of TCP traffic.
-
Would you like to comment?
Join Diigo for a free account, or sign in if you are already a member.