KnowledgeStep: Linux for Unix Administrators

Course GL615: Linux for Unix Administrators

Return to Linux Administration Course List

Start Date End Date Price Location Register
No scheduled dates - call for info $  


















The GL615 is an accelerated course combining the topics in the GL250 "Enterprise Linux Systems Administration", and the GL275 "Enterprise Linux Networking Services".

Prerequisites:

Students should already be experienced Unix administrators. Fundamentals such as the Unix command line and how to edit files will not be covered in class. A good understanding of network concepts, the TCP/IP protocol suite, and basic Unix security is also assumed. The accelerated pace of this class makes it more difficult for unprepared students to keep up. Less experienced students are encouraged to instead take the GL120 "Linux Fundamentals", GL250 "Enterprise Linux Systems Administration" or GL275 "Enterprise Linux Networking Services".

Supported Distributions:
Red Hat Enterprise Linux 5
Fedora Core 6
SUSE Linux Enterprise Server 10
SUSE Linux 10.1
Recommended Class Length:
5 days
Detailed Course Outline:
  • Pre-Installation Considerations
    • Pre-Installation Considerations
    • Hardware Compatibility
    • Multi-OS Booting
    • Partition Considerations and Planning
    • Filesystem Considerations
    • Journaled Filesystems
  • Installing RHEL5/FC6
    • Installation Choices
    • Starting Installations from CD/DVD or USB
    • Installing From a Network Server
    • Installing From a Local Hard Drive
    • Install Program Interface
    • Installation Diagnostics
    • Language Selection
    • Keyboard Configuration
    • Automatic Partitioning
    • Partitioning with Disk Druid
    • Installing a Boot Loader
    • Network Configuration
    • Time Zone Configuration
    • root Password Configuration
    • Package Group Selection
    • Installing Packages
    • Install Finished
    • Firstboot
    • Firstboot Firewall Configuration
    • Firstboot SELinux Configuration
    • Firstboot Kernel Crash Dump Configuration
    • Firstboot Date and Time Configuration
    • Firstboot Authentication Configuration
    Lab Tasks
    • Linux Installation [RHEL5 FC6]
  • Installing SLES10/SL10.1
    • Installation Choices
    • CD-ROM/DVD Installation
    • Network Installation
    • SLP for SUSE Installation
    • Local Hard Drive Installation
    • The linuxrc Program
    • Install Program Interface
    • Installation Diagnostics
    • Language Selection
    • Installation Mode
    • Clock and Time Zone
    • Desktop Selection
    • The YaST Installer Design
    • Keyboard Configuration
    • Disk Partitioning
    • Software Package Selection
    • Boot Loader Configuration
    • Confirmation and File Installation
    • Hostname and Domain Name
    • Setting the Root Password
    • Network Configuration
    • SLES Services Configuration
    • Adding a User Account
    • Release Notes
    • Final Installation Hub
    • Installation Complete and AutoYaST "Cloning"
    Lab Tasks
    • SUSE Installation [SLES SL10.1]
  • PC Hardware & Linux
    • Detecting New Hardware Manually
    • Configuring New Hardware with Kudzu
    • Configuring New Hardware with hwinfo
    • PC System Hardware
    • USB Devices and Configuration
    • Linux Device Files
    • Configuring New Hardware
    • Kernel Modules
    • Handling Module Dependencies
    • Configuring the Kernel via /proc/
    • Kernel Hardware Info - /sys/
    • /sys/ Structure
    Lab Tasks
    • PC Hardware and Linux
  • Post-Install System Configuration
    • System Configuration Files
    • Configuration Utilities
    • SUSE Configuration Utilities
    • Managing System Time
    • Managing Network-Wide Time
    • Continual Time Sync with NTP
    • Configuring NTP Clients
    • Managing Software
    • RPM Features, Architecture, and Package Files
    • Working With RPMs
    • Querying and Verifying with RPM
    • Updating the Kernel RPM
    • Intro to Package Management
    • Using the YUM command
    • Uising the RUG command
    • Configuring YUM
    • RUG Services and Catalogs
    • YUM Repositories
    • Popular Yum Repositories
    • Common UNIX Printing System
    • Defining a Printer
    • Kickstart
    • AutoYaST
    • Creating and Using Kickstart Files
    • Creating and Using Auto YaST2 Files
    • Using Kickstart files
    • Using AutoYaST2 files
    • linuxrc Automation
    Lab Tasks
    • NTP Client Configuration
    • Post-Install Configuration
    • YUM
    • RUG
    • Creating a Custom RPM Repository
    • Configuring Print Queues
    • Printer Configuration with system-config-printer
    • Printer Configuration with YaST
    • Automating Installation with Kickstart
    • Automating Installation with Auto YaST
  • Boot Process and SYSV Init
    • Booting Linux on PCs
    • GRUB Configuration
    • Kernel Boot Parameters
    • /sbin/init
    • System Init Styles
    • Linux Runlevels
    • /etc/inittab
    • /etc/rc.sysinit
    • SUSE /etc/init.d/boot
    • /etc/init.d/ and rc#.d/
    • rc
    • Typical SysV Init Script
    • The /etc/rc.local File
    • The /etc/init.d/*.local Files
    • Managing Daemons
    • Controlling Service Startup
    • Shutdown and Reboot
    • Run Level Rosetta Tables
    Lab Tasks
    • Boot Process
    • GRUB Command Line
    • Basic GRUB Security
  • User/Group Administration & NFS
    • User Private Group Scheme
    • User Administration
    • Modifying Accounts
    • Group Administration
    • Password Aging
    • Default User Files
    • Controlling Logins
    • PAM, PAM Services, and PAM Control Statements
    • su and Wheel
    • sudo
    • Manual DS Client Configuration
    • RHEL/FC Graphical DS Client Configuration
    • SLES/SL Graphical DS Client Configuration
    • File Sharing via NFS
    • NFSv4
    • NFS Server Configuration and Clients
    • Implementing NFSv4
    • Automounting Filesystems
    • Post Configuration Comparison Matrix
    Lab Tasks
    • User and Group Administration
    • User Private Groups
    • Using autofs
    • Configure NIS Authentication
    • Using autofs for Home Directories
    • Using LDAP for Centralized User Accounts
    • NFS Server Configuration
  • Filesystem Administration
    • Partition Tables
    • File System Creation
    • Mounting File Systems
    • Filesystem Maintenance
    • Persistent Block Devices
    • udev
    • Resizing Filesystems
    • File Deletion and Undeletion
    • Swap
    • Disk Usage
    • Configuring Disk Quotas
    • Setting Quotas
    • Viewing and Monitoring Quotas
    • Filesystem Attributes
    • File Access Control Lists
    • Manipulating, Viewing, and Backing Up FACLs
    • Backup Hardware
    • Tape Libraries
    • Backup Software and Examples
    • Filesystem Creation and Management
    Lab Tasks
    • Hot Adding Swap
    • Setting User Quotas
    • Using tar and cpio for Backups
    • Using rsync and ssh for Backups
    • Using dump and restore for Backups
    • Creating CD Images for Backups
    • Using Filesystem ACLs
  • LVM & RAID
    • Logical Volume Management
    • Implementing LVM
    • Creating Logical Volumes
    • Manipulating VGs & LVs
    • Advanced LVM Concepts
    • RHEL/FC Graphical LVM Admin Tool
    • SLES/SL Graphical LVM Tool
    • RAID Concepts
    • The mdadm Command
    • mdadm RAID Implementation
    • RAID Monitoring/Control
    • Managing Partitions, LVM and RAID Devices
    Lab Tasks
    • Creating and Managing a RAID-5 Array
    • Creating and Managing LVM Volumes
  • Task Automation & Process Accounting
    • The crontab Command
    • crontab Format
    • /etc/cron.*/ Directories
    • anacron
    • Viewing and Managing Processes
    • Tuning Process Scheduling
    • System Logging
    • /etc/syslog.conf
    • syslog-ng
    • Log Management
    • Log Anomaly Detector
    • Process Accounting
    • Enabling Process Accounting
    • Setting Resource Limits via ulimit
    • Resource Limits with pam_limits.so Module
    • System Status - Memory, I/O, and CPU
    • sar
    • Process Tools
    Lab Tasks
    • Creating and Managing User Cron Jobs
    • Adding System cron Jobs
    • Using BSD Process Accounting
    • Setting Limits with the pam_limits Modules
  • Client Networking
    • Linux Network Interfaces
    • Ethernet Hardware Tools
    • Runtime configuration change
    • Configuring Routing Tables
    • Advanced Configuration
    • Starting and Stopping Interfaces
    • Virtual Interfaces
    • Enabling IPv6
    • Interface Bonding
    • IP Stack Configuration
    • DNS Clients
    • DHCP Clients
    • Configuration Tools
    • YaST Configuration Tool
    • Network Diagnostics and Configuration Tools
    Lab Tasks
    • Basic Client Networking
    • Virtual Interfaces
    • Alias Addresses
    • Configuring Ipv6
  • The X Window System
    • The X Window System
    • X.Org Drivers
    • Configuring X Manually
    • system-config-display
    • sax2 and yast x11
    • Xorg and Fonts
    • The X Font Server
    • Installing Fonts for Modern Applications and Legacy Applications
    • Display Managers and Graphical Login
    • X Access Control
    • Remote X Access (historical/insecure and modern/secure approach)
    • XDMCP
    • Alternative Remote Graphical Protocols
    • Specialized X Servers
    • Enabling the Graphical User Interface
    Lab Tasks
    • Remote X with XDMCP
    • Configure a VNC Server
    • Secure X
  • Security Concepts
    • Tightening Default Security
    • SuSE Security Checker
    • Staying Current
    • Using YOU
    • Security Advisories
    • SELinux Security Framework
    • Choosing an SELinux Policy
    • SELinux Commands and Booleans
    • Graphical SELinux Policy Tools
    • Xinetd and Xinetd Features
    • TCP Wrappers
    • The /etc/hosts.allow & /etc/hosts.deny Files
    • /etc/hosts.{allow,deny} Shortcuts
    • Advanced TCP Wrappers
    • Basic Firewall Activation
    • Netfilter: Stateful Packet Filter Firewall
    • Netfilter Concepts
    • Using the iptables Command
    • Netfilter Rule Syntax
    • Targets
    • Common match_specs
    • Stateless Firewall Example
    • Connection Tracking
    • Stateful Firewall Example
    • (X)INETD and Firewalls
    Lab Tasks
    • Securing xinetd Services
    • Enforcing Security Policy with xinetd
    • Securing Services with TCP Wrappers
    • Securing Services with SuSEfirewall 2
    • Securing Services with Netfilter
  • Linux Kernel Compilation
    • Why Compile?
    • Getting Kernel Source
    • Preparing to Compile
    • Configuring the Kernel
    • Kernel Compile Options and Documentation
    • Distribution Specific Kernel Extensions
    • Compiling the Kernel
    • Compile and Install Modules
    • Installing the Kernel
    • Tips and Tricks
    • Kernel Information
    Lab Tasks
    • Linux Kernel 2.6 Driver Compilation
    • Linux Kernel 2.6 Compilation
  • DNS Concepts
    • Naming Services
    • DNS - A Better Way
    • The Domain Name Space
    • Delegation and Zones
    • Server Roles
    • Resolving Names and IP Addresses
    • BIND Administration
    • rndc Key Configuration
    • Configuring the Resolver
    • Testing Resolution
    Lab Tasks
    • Configuring a Slave Name Server
    • Configure rndc for Secure named Control
  • Configuring BIND
    • BIND Configuration Files
    • named.conf Syntax and Options Block
    • Creating a Site-Wide Cache
    • Zones In named.conf
    • Zone Database File Syntax
    • SOA - Start of Authority
    • A & PTR - Address & Pointer Records
    • NS - Name Server
    • CNAME & MX - Alias & Mail Host
    • Abbreviations and Gotchas
    • $ORIGIN and $GENERATE
    Lab Tasks
    • Configuring BIND Zone Files
  • OpenLDAP Servers
    • OpenLDAP Components
    • Configuring slapd
    • /etc/openldap/ldap.conf Global Parameters
    • Schema Definition
    • OpenLDAP Access Control
    • Backend Types and Configuration
    • Database Configuration
    • Indexes
    • Replicas
    • LDAP Replica Configuration
    • OpenLDAP Configuration Syntax Check
    Lab Tasks
    • Configuring LDAP Directory Services
    • Modifying LDAP Directory Entries
  • Using OpenLDAP
    • Managing slapd
    • Online and Offline LDAP Data Manipulation
    • Native LDAP Authentication and Client Config
    Lab Tasks
    • Configuring LDAP for Secure TLS Access
    • Configuring LDAP Clients and Servers for Directory Authentication
  • Using Apache
    • HTTP Operation
    • Apache History and Status
    • Apache Architecture
    • SSL/HTTPS and Apache
    • Apache Configuration Files
    • httpd.conf
    • Dynamic Shared Objects
    • Adding Modules to Apache
    • Apache Logging
    • Log Analysis
    Lab Tasks
    • Configure Apache
    • Apache Content
  • Virtual Hosting with Apache
    • HTTP Virtual Servers
    • DNS Implications
    • Security Implications
    • IP-based Virtual Host
    • Name-based Virtual Host
    • Port-based Virtual Host
    Lab Tasks
    • Configuring Virtual Hosts
  • Apache Security
    • Delegating Administration
    • Directory Protection
    • Common Uses for .htaccess
    • Symmetric Encryption Algorithms
    • Asymmetric Encryption algorithms
    • Digital Certificates
    • SSL Using mod_ssl.so
    Lab Tasks
    • Using .htaccess Files
    • Using SSL Certificates with Apache
  • Implementing an FTP Server
    • FTP Operation
    • Active Mode FTP
    • Passive Mode FTP
    • WU-FTPD
    • vsftpd
    • Configuring vsftpd
    • Anonymous FTP with vsftpd
    Lab Tasks
    • Configuring vsftpd
  • The Squid Proxy Server
    • Squid Overview, File Layout, and Access Control Lists
    • Applying Squid ACLs
    • Tuning Squid and Configuring Cache Hierarchies
    • Bandwidth Metering
    • Monitoring Squid
    • Proxy Client Configuration
    Lab Tasks
    • Installing and Configuring Squid
    • Squid Cache Manager CGI
    • Proxy Auto Configuration
    • Configure a Squid Proxy Cluster
  • Samba Concepts
    • SMB Network Protocol
    • NetBIOS and NetBEUI
    • NetBIOS Naming
    • Introducing Samba
    • Samba Daemons, Clients, and Utilities
    • Samba Configuration Files
    • The smb.conf File
    Lab Tasks
    • Basic Samba Configuration
  • Using Samba
    • Unis and DOS Permissions
    • Unix and Windows Concepts
    • Name and Case Mangling
    • Sharing Home Directories
    • Sharing Printers
    • Restricting Access
    • Share-Level Access
    • User-Level Access
    • Mapping Users
    • SMB and Passwords
    • The smbpasswd Database
    • User Share Restrictions
    Lab Tasks
    • Configuring Samba
    • Samba Share-Level Access
    • Samba User-Level Access
    • Samba Home Directory Shares
    • Samba Group Shares
  • Sendmail
    • Sendmail Features, Process, Architecture, Components, and Configuration
    • Configuration Files
    • Databases
    • Text Files
    • Network Access
    • Masquerading Sendmail
    • Controlling Access
    • Configuring SMTP AUTH
    • Configuring SMTP START TLS
    Lab Tasks
    • Configuring Sendmail
    • Sendmail Network Configuration
    • Sendmail Virtual Host Configuration
    • Sendmail SMTP AUTH Configuration
    • Sendmail STARTTLS Configuration
  • Postfix
    • Postfix Features, Architecture, Components, and Configuration
    • master.cf
    • main.cf
    • Postfix Map Types
    • Postfix Pattern Matching
    • Advanced Options
    • Virtual Domains
    • Mail Filtering
    • Configuration and Management Commands
    • Postfix Logging
    • Log file Analysis
    • chroot'ing Postfix
    • Postfix and SMTP AUTH
    • SMTP AUTH Server and Clients
    • Postfix Extensions
    • Postfix / TLS
    • TLS Server Configuration
    • Postfix Client Configuration
    • Other TLS Clients
    • Ensuring TLS Security
    Lab Tasks
    • Configuring Postfix
    • Postfix Network Configuration
    • Postfix Virtual Host Configuration
    • Postfix SMTP AUTH Configuration
    • Postfix STARTTLS Configuration
  • IMAP, POP, Spam Filtering & Web Mail
    • Filtering Email
    • procmail
    • SpamAssassin
    • Sendmail Mail Filter (milter)
    • amavisd-new Mail Filtering
    • Accessing Email
    • The POP3 Protocol
    • The IMAP4 Protocol
    • Dovecot POP3/IMAP Server
    • Cyrus IMAP/POP3 Server
    • Cyrus IMAP MTA Integration
    • Cyrus Mailbox Administration
    • Fetchmail
    • SquirrelMail
    Lab Tasks
    • Configuring Procmail & SpamAssassin
    • Configuring Cyrus IMAP
    • Configuring SquirrelMail
  • Troubleshooting
    • Basic Troubleshooting
    • Gathering Information
    • Information from df, mount, and Log Files
    • Information Regarding Network Settings
    • Information from ps, chkconfig, dmesg, w, and netstat
    • Useful Debugging Aids
    • Common Problems
    • Incorrect File Permissions
    • Inability to Boot
    • Corrupt Filesystems
    • Typos in Configuration Files
    • Disks Full?
    • Runaway Processes
    • Shared Libraries
    • Rescue Environment
    • SUSE Rescue Environment
    • System Tools
    Lab Tasks
    • Recovering Damaged MBR
    • Troubleshooting Practice