The transport of important data over the Internet is nothing new for most enterprises-just like the hint that this entails dangers. To protect data from attacks of both spare-time and professional hackers, it pays to apply the high-performance IP Security protocol, in short IPsec. The abundance of options provided by IPsec unfortunately causes numerous problems in practical application. Troubleshooting is made more difficult, since the major part of the communication is performed in encrypted mode. After the course, participants will have a good understanding of IPsec and the involved encryption and authentication procedures. They will be able to plan the introduction of IPsec for different operating systems, to implement the protocol., and to delimit failures.
Course Contents
• Architecture: IPsec, IKE, and ISAKMP
• Encapsulating Security Payload (ESP) and Authentication Header (AH)
• Tunnel Mode and Transport Mode
• Symmetrical and Asymmetrical Encryption (AES, 3DES, RSA, ...)
• Key Exchange with Diffie-Hellman
• Data Integrity and Keyed Hash (MD5, SHA-1)
• Digital Signature and Certificates
• PKI and CA
• Security Associations and Negotiation of Security Parameters
• Implementation of IPsec under Various Operating Systems
Detailed Table of Contents
In hands-on exercises, the course offers the option to configure IPsec connections between various platforms and to perform troubleshooting.
In this course of the ExperTeach Networking series, each student will receive the comprehensive ExperTeach course documentation.
Target Group
The course addresses network administrators and technicians who have the task to protect their corporate data traffic via Virtual Private Networks (VPNs) with IPsec.
Knowledge Prerequisites
Participants should have a solid know-how of IP and should have had first experience with security topics.
IPSY
