TP.HCM – 13/01/2015 – Chứng chỉ quản trị hạ tầng mạng

Mục tiêu:     
Sau khi hoàn tất khóa học, học viên có khả năng:
    – Cung cấp kỹ năng thiết kế, lắp đặt, hạ tầng mạng tổng thể của cơ quan, doanh nghiệp.
    – Am hiểu về các thiết bị mạng của và các thiết bị Non-.
    –  Đủ kiến thức thi đạt chứng chỉ Quốc tế của Cisco.

Điều kiện đăng ký học:

    Có kiến thức về Nhập môn Quản trị & An ninh mạng.

Phương tiện và điều kiện học tập:

    Chương trình đào tạo tiên tiến và luôn được cập nhật mới
    Đội ngũ giảng viên có trình độ, chuyên môn cao, có nhiều năm kinh nghiệm làm việc trong môi trường thực tế và được cấp chứng nhận quốc tế bởi các tổ chức hàng đầu trong lĩnh vực CNTT trong và ngoài nước: Microsoft, Cisco, Sun,…
    Cơ sở vật chất hiện đại, tiện nghi: máy cấu hình mạnh, mạng cáp quang FTTH tốc độ cao, máy chiếu, LCD,…
    Thực hành trực tiếp trên các thiết bị mạng và hệ thống máy chủ hiện đại.
    Tham gia diễn đàn hỗ trợ kiến thức trực tuyến của TTTH (http://forum.t3h.vn)

Thời gian  học :

    Thời gian học:  135 giờ

Nội dung:
Môn 01: CCNA-X 200-120
 1.      Operation of IP Data Networks

    Recognize the purpose and functions of various network devices such as routers, switches, bridges and hubs
    Select the components required to meet a given network specification
    Identify common applications and their impact on the network
    Describe the purpose and basic operation of the protocols in the OSI and TCP/IP models
    Predict the data flow between two hosts across a network
    Identify the appropriate media, cables, ports, and connectors to connect Cisco network devices to other network devices and hosts in a LAN

2.      LAN Switching Technologies

    Determine the technology and media access control method for Ethernet networks
    Identify basic switching concepts and the operation of Cisco switches
        Collision Domains
        Broadcast Domains
        Ways to switch
            Store
            Forward
            Cut through
        CAM Table
    Configure and verify initial switch configuration including remote access management
        hostname
        mgmt ip address
        ip default-gateway
        local user and password
        enable secret password
        console and VTY logins
        exec-timeout
        service password encryption
        copy run start
    Verify network status and switch operation using basic utilities such as
        ping
        telnet
        SSH
    Describe how VLANs create logically separate networks and the need for routing between them
        Explain network segmentation and basic traffic management concepts
    Configure and verify VLANs
    Configure and verify trunking on Cisco switches
        dtp (topic)
        auto-negotiation
    Identify enhanced switching technologies
        RSTP
        PVSTP
        Etherchannels
    Configure and verify PVSTP operation
        Describe root bridge election
        Spanning tree mode

3. IP Addressing (IPv4/IPv6)

    Describe the operation and necessity of using private and public IP addresses for IPv4 addressing
    Identify the appropriate IPv6 addressing scheme to satisfy addressing requirements in a LAN/WAN environment
    Identify the appropriate IPv4 addressing scheme using VLSM and summarization to satisfy addressing requirements in a LAN/WAN environment
    Describe the technological requirements for running IPv6 in conjunction with IPv4
        dual stack
    Describe IPv6 addresses
        global unicast
        multicast
        link local
        unique local
        eui 64
        auto-configuration

4. IP Routing Technologies

    Describe basic routing concepts
        packet forwarding
        router lookup process
        Process Switching/Fast Switching/CEF
    Configure and verify utilizing the CLI to set basic Router configuration
        hostname
        local user and password
        enable secret password
        console & VTY logins
        exec-timeout
        service password encryption
        interface IP Address
            loopback
        banner
        motd
        copy run start
    Configure and verify operation status of a device interface
        Serial
        Ethernet
    Verify router configuration and network connectivity using
        ping
            extended
        traceroute
        telnet
        SSH
        sh cdp neighbors
    Configure and verify routing configuration for a static or default route given specific routing requirements
    Differentiate methods of routing and routing protocols
        Static vs. dynamic
        Link state vs. distance vector
        next hop
        ip routing table
        Passive Interfaces (how they work)
        Admin distance
        split horizon
        metric
    Configure and verify OSPF
        Benefit of single area
        Configure OSPv2
        Configure OSPv3
        Router ID
        Passive Interface
        Discuss multi-area OSPF
        Understand LSA types and purpose
    Configure and verify interVLAN routing (Router on a stick)
        sub interfaces
        upstream routing
        encapsulation
    Configure SVI interfaces
    Manage Cisco IOS Files
        Boot Preferences
        Cisco IOS Images (15)
        Licensing
            Show license
            Change license
    Configure and verify EIGRP (single AS)
        Feasible Distance/Feasible Successors/Administrative distance
        Feasibility condition
        Metric composition
        Router ID
        Auto summary
        Path Selection
        Load Balancing
            Unequal
            Equal

5. IP Services

    Configure and verify DHCP (IOS Router)
        Configuring router interfaces to use DHCP
        DHCP options (Basic overview and functionality)
        Excluded addresses
        Lease time
    Describe the types, features, and applications of ACLs
        standard (editing and sequence numbers)
        extended
        named
        numbered
        Log option
    Configure and verify ACLs in a network environment
        named
        numbered
        Log option
    Identify the basic operation of NAT
        purpose
        pool
        static
        1 to 1
        overloading
        source addressing
        one way NAT
    Configure and verify NAT for given network requirements
    Configure and verify NTP as a client
    Recognize High availability (FHRP)
        VRRP
        HSRP
        GLBP
    Configure and verify syslog
        Utilize syslog output
    Describe SNMP v2 and v3.

6. Network Device Security

    Configure and verify network device security features
        Device password security
        Enable secret vs. enable
        Transport
            disable telnet
            SSH
        VTYs
        physical security
        service password
        Describe external authentication methods
    Configure and verify Switch Port Security
        Sticky MAC
        MAC address limitation
        static/dynamic
        violation modes
            err disable
            shutdown
            protect restrict
        Shutdown unused ports
        err disable recovery
        Assign unused ports in unused VLANs
        Putting Native VLAN to other than VLAN 1
    Configure and verify ACLs to filter network traffic
    Configure and verify ACLs to limit telnet and SSH access to the router

7.  Troubleshooting

    Troubleshoot and correct common problems associated with IP addressing and host configurations
    Troubleshoot and resolve VLAN problems
        Identify that VLANs are configured
        Verify port membership correct
        Correct IP address configured
    Troubleshoot and resolve trunking problems on Cisco switches
        Verify correct trunk states
        Verify correct encapsulation configured
        Correct VLANs allowed
    Troubleshoot and resolve ACL issues
        Verify statistics
        Verify permitted networks
        Verify direction
            Interface
    Troubleshoot and resolve Layer 1 problems
        Framing
        CRC
        Runts
        Giants
        Dropped packets
        Late collisions
        Input/output errors
    Identify and correct common network problems
    Troubleshoot and resolve spanning tree operation issues
        Verify root switch
        Verify priority
        Verify mode is correct
        Verify port states
    Troubleshoot and resolve routing issues
        Verify routing is enabled (sh ip protocols)
        Verify routing table is correct
        Verify correct path selection
    Troubleshoot and resolve OSPF problems
        Verify neighbor adjacencies
        Verify hello and dead timers
        Verify OSPF area
        Verify interface MTU
        Verify network types
        Verify neighbor states
        Review OSPF topology table
    Troubleshoot and resolve EIGRP problems
        Verify neighbor adjacencies
        Verify AS number
        Verify load balancing
        Split horizon
    Troubleshoot and resolve interVLAN routing problems
        Verify connectivity
        Verify encapsulation
        Verify subnet
        Verify native VLAN
        Port mode trunk status
    Troubleshoot and resolve WAN implementation issues
        Serial interfaces
        Frame relay
        PPP
    Monitor NetFlow statistics
    TS EtherChannel problems

8. WAN Technologies

    Identify different WAN Technologies
        Metro ethernet
        VSAT
        Cellular 3g/4g
        MPLS
        T1/E1
        ISDN
        DSL
        Frame relay
        Cable
        VPN
    Configure and verify a basic WAN serial connection
    Configure and verify a PPP connection between Cisco routers
    Configure and verify frame relay on Cisco routers
    Implement and troubleshoot PPPoE

Môn 02: Implementing Cisco IP Switched Networks
1.  Implement VLAN Based Solution, Given a Network Design and a Set of Requirements

    Determine network resources needed for implementing a VLAN based solution on a network
    Create a VLAN based implementation plan
    Create a VLAN based verification plan
    Configure switch-to-switch connectivity for the VLAN based solution
    Configure loop prevention for the VLAN based solution

2. Implement a Security Extension of a Layer 2 Solution, Given a Network Design and a Set of Requirements

    Determine network resources needed for implementing a Security solution
    Create a implementation plan for the Security solution
    Create a verification plan for the Security solution
    Configure port security features
    Configure general switch security features
    Configure private VLANs
    Configure VACL and PACL
    Verify the Security based solution was implemented properly using show and debug commands
    Document results of Security implementation and verification

3. Implement Switch Based Layer 3 Services, Given a Network Design and a Set of Requirements

    Determine network resources needed for implementing a Switch based Layer 3 solution
    Create an implementation plan for the Switch based Layer 3 solution
    Create a verification plan for the Switch based Layer 3 solution
    Configure routing interfaces
    Configure Layer 3 Security
    Verify the Switch based Layer 3 solution was implemented properly using show and debug commands
    Document results of Switch based Layer 3 implementation and verification

Môn 03: Implement Cisco ASA Firewall
1. Firewall Introduction

    Introduction
    The firewall model: Dual-homed hosts, Screened hosts, Screened Subnet

2. Introducing the Cisco ASA Firewall

    Introduction
    How to connect to the device using the Console Cable
    Configure devices using Cisco ASDM (Cisco Adaptive Security Device Manager)

3. Configuring NAT on Cisco ASA Firewall

    Allow all computers to access the Internet outside.
    Allow the machine from the Internet can access network services in a local network.

4. The packet control devices Firewall

    Set up rules to control packet in the internal network to external network.
    Monitor system logs on firewall.

Môn 04: Implement Draytek Network Load Balancing
1. Introduction to Network Load Balancing Router

    Introduction
    The types of devices that support Load Balancing.

2. Deploying Network Load Balancing Router for networks

    Build deployment model
    Configuring Load Balancing feature on the device
    Check characteristics of Load Balancing.

3. Several other features of the Load Balancing Router

    Configuration control packets on the device.
    Configure dynamic IP address allocation
    Configure VPN on the device (IPSec VPN, SSL VPN)
    Control and monitor the bandwidth of the device.
    Configure the routing device.

Chứng chỉ – Bằng cấp:
Chứng chỉ “Quản trị hạ tầng mạng” của Trung Tâm Tin Học ĐH Khoa Học Tự Nhiên Tp.HCM
Thông tin liên hệ:

Phòng Tư vấn và ghi danh:
227 Nguyễn văn Cừ, quận 5, TPHCM; ĐT: 8 304 971 – 8 351 056 (ext.: 221 / 222)
357 Lê Hồng Phong, quận 10, TPHCM; ĐT: 6680 7477 (ext: 202)

Bài viết liên quan