Introduction:

A VPN is a communications environment in which access is controlled to permit peer connections only within a defined community of interest, and is constructed though some form of partitioning of a common underlying communications medium, where this underlying communications medium provides services to the network on a non-exclusive basis. Virtual private networks have become an essential part of today's business networks, as they provide a cost-effective means of assuring private internal and external communications over the shared Internet infrastructure. Virtual Private Networks: Technologies and Solutions is a comprehensive, practical guide to VPNs. VPN Fundamentals includes VPN concepts and architectures,an in-depth examination of advanced features and functions such as tunneling, authentication, access control, VPN gateways, VPN clients, and VPN network and service management. This course presents the various technology components, concrete solutions, and best practices you need to deploy and manage a highly successful VPN.

Audience:

IT Managers, Security Officers, Network Engineers, Tech Support and anyone who is interested in VPN.

Prerequisites:

Basic Knowledge of TCP/IP and Networking

Customize it:

This 2-3-day VPN course will be customized to your needs and specifications. Eno.com will assist you in identifying those needs and specifications. A word to the wise, there are many vendors of wireless training. They will typically have a broad and general course, one size fits all, already developed and just put your organization’s name on the title slide. This minimizes their effort and time investment. At Eno.com, every course is made to your exact and exacting specifications. We help you ensure what you are getting is what you really need even if at the beginning you weren’t too sure of what that was. We fit the class to your needs. We never fit you into our “standard”, one size fits all, class.

Objectives:

After completing this course, attendees will be able to: Understand IPsec, featuring the Authentication Header, Encapsulating Security Payload, Internet Key Working with PPTP RADIUS Authentication, Authorisation and Accouning (AAA) Layer 2 Tunneling Protocol (L2TP) Client-to-Branch IPSec VPNs Branch-to-Branch IPSec VPNs IPSec Pass-through and NAT Securing wireless networks Firewalls and Packet Filtering Implementing Firewall Security Policies

Course Outline

The roles of VPNs Supporting remote users Linking remote offices Connecting business partners Star and Mesh topologies Trusted versus secure VPNs Overview of VPN Technologies Understanding VPNs layers 2 and 3 Tunnelling Switching MPLS IPSec Essential Security Principles Authentication Privacy Data confidentiality Data integrity Essentials of cryptography Remote Access Authentication PPP, LCP, and NCP operation PPP authentication methods: PAP, CHAP, MS-CHAP, EAP Token-based authentication SecurID Biometrics Kerberos Remote Access Administration RADIUS TACACS+ Introduction to VPNs VPN components VPN concerns and solutions Security Issues Tunneling Protocols Generic routing encapsulation PPTP PPTP, PPP and CHAP MSCHAP, MSCHAPv2 L2F L2TP Cryptographic Protection - Hashing MD5 SHA HMAC integrity checking One-time passwords Cryptographic Protection - Encryption Symmetric: - DES - 3-DES - AES - CBC mode and IVs - Shared secrets Asymmetric: - Exchanging keys with Diffie-Hellman (DH) - Public and private keys - RSA - ECC (Elliptic Curve Cryptosystem) Secure IP (IPSec) IPSec environment AH and ESP Security associations IKE key management Main mode Aggressive mode Quick mode Diffie-Hellman Key Exchange Xauth Securing GRE with IPSec Securing L2TP with IPSec NAT and IPSec UDP wrapping SPI wrapping Implementing VPNs Employing VPN concentrators Integrating firewalls Access control Using VPN-capable routers Dedicated VPN hardware Operating system support for VPN VPN client software Split tunnelling VPN management