Proposed Workshop Agenda

Dates: March 14-18, 2011 (Monday-Friday)
Instructor Team

  • Alain Aina, NSRC
  • Hervey Allen, NSRC
  • Brian Candler, NSRC
  • Kevin Chege, KENET
  • Ron Milford, GRNOC/Indiana University
  • Dale Smith, NSRC/UO Network Services
  • Carlos Vicente, NSRC

Organizers

  • Aminu Ibrahim, ng ICT Forum
  • Steve Huter, NSRC

Time Schedule

Schedule
Session I 0830-1030
Break 1030-1100
Session II 1100-1300
Lunch 1300-1400
Session III 1400-1600
Break 1600-1630
Session IV 1630-1800

Agenda

Initial Outline

Monday
------
1. Welcome and Introductions
2. Introduction to Campus Network Design
3. Hierarchical design building blocks
   - IP address management 
4. Quality of Service (QoS)
   - SLAs (Service Level Agreements)
5. Physical Cabling Infrastructure
 
Tuesday
-------
1. In-building Network Design
2. In-building Network Design, Best Practices continued
3. Lab (Afternoon)


Wednesday
---------
1. Campus routing infrastructure - Layer 3
2. Campus Routing Protocols
3. Lab (Afternoon)


Thursday
--------
1. BGP and Border Routing Concepts 
2. Lab (Afternoon)


Friday
------
1. Security brainstorm
   - Crypto intro
   - Lab: ssh public key practical

2. Introduction to Kerberos+LDAP.

   Practical:
   - kinit and use it to login to another machine, e.g. NOC.
   - join student servers into class Kerberos+LDAP domain.

3. Kerberos KDC

   Practical: build a KDC and add users. Set up Kerberos auth for Apache.

4. Cookbook of security tools
   - firewalls between VLANs and VRFs
   - anti-spoofing filtering
   - E-mail A/V filtering
   - outbound SMTP blocking, rate limiting, and transparent proxying
   - graphing, baselining
   - netflow
   - TLS
   - IPSEC
   - WPA2 PSK and PEAP
   - 802.1x
   - RADIUS
   - OPIE
   - token based authentication (e.g. cryptocard, yubikey)
   - active scanning, e.g. nmap, nessus
   - IDS (which one?)

   Politics of Security vs. Business as Usual
   Bandwidth Management Issues
   Demos

Last modified 8 years ago Last modified on Dec 7, 2010, 10:19:00 AM