Protecting Your Network with Open Source Software
2h 36mIntermediate2021-04-01
Authors

Jungwoo Ryoo
Teaches IT, cybersecurity, and risk analysis at Penn State
Course details
Network protection is vital to organizations big and small, but it doesn't have to be an expensive proposition. Learn how to protect your network with open-source tools, and do it completely free. Jungwoo Ryoo shows how to set up firewalls, investigate network traffic with a packet analyzer, detect threats and malicious activity with an intrusion-detection system, and enable network logging and monitoring. Start here for a low-cost route to a more secure network.
Skills covered
NessusTenableWiresharkCross-Platform DevelopmentMobile DevelopmentNetwork SecurityCybersecurityOpen SourceOne-Off
Concepts
0. Introduction
- 01 - Protect your network with free software
- 02 - What you should know
- 03 - Set up environment
1. Understanding Open-Source Software
- 04 - What is open-source software
- 05 - Open-source software in networking
- 06 - Open-source solutions in cybersecurity
- 07 - Open-source vs. commercial software
- 08 - Costs and savings
2. Firewalls
- 09 - What is a firewall
- 10 - Host firewalls
- 11 - Network firewalls
- 12 - Static packet filtering vs. stateful packet inspection
3. Hosts as a Router
- 13 - Netfilter and iptables
- 14 - Setting up a host firewall using iptables
- 15 - Automating Netfilter configuration
- 16 - Understanding hosts as routers
- 17 - Adding a network adapter
- 18 - Testing the second adapter
- 19 - Setting up IP forwarding
- 20 - Changing Netfilter settings
- 21 - Testing the router
4. Hosts as a Firewall
- 22 - Setting up hosts as a network firewall
- 23 - Setting up a web server
- 24 - Port forwarding
- 25 - Testing port forwarding
- 26 - Understanding one-legged DMZ
- 27 - Understanding true DMZ
- 28 - Understanding an application proxy firewall
- 29 - Setting up Squid
5. Packet Analysis
- 30 - What is packet analysis
- 31 - ARP poisoning example
- 32 - Packet capturing with Wireshark
- 33 - Exploring Wireshark advanced features
- 34 - Wireshark hands-on
6. Intrusion Detection Systems (IDS) and Vulnerability Assessment
- 35 - What is an IDS
- 36 - Introducing Snort
- 37 - Snort as a packet sniffer
- 38 - Snort as an IDS - Establishing rules
- 39 - Snort as an IDS - Detecting pings
- 40 - What is a network vulnerability assessment
- 41 - Nessus
- 42 - Network scanning with Nessus
7. Logging and Monitoring
- 43 - Logging
- 44 - Syslog-ng
- 45 - Log forwarding - Part 1
- 46 - Log forwarding - Part 2
- 47 - Kiwi
- 48 - SNMP
Conclusion
- 49 - Next steps and additional resources
Related courses
- Protecting Your Network with Open-Source Software
- Linux: Email Services
- Wireshark: Network Troubleshooting
- Complete Guide to Linux Security: Protecting Your Linux Server Environment
- Linux: Web Services
- Linux Security and Hardening Essential Training
- Linux: BIND and DNS
- 5G Security in Depth: A Hands-On Approach to Securing RAN, Core, and Telco Cloud
Related learn paths
- Explore a Career in Computer Forensics
- Network Administration: Build Core Skills for Network Management and Security
- Become an Arduino Developer
- Become an IT Security Specialist
- Explore a Career in IT Support
- The Top Skills IT Professionals Have Right Now
- Wireshark: Network Traffic Analysis
- Become an Ethical Hacker