Book Store
Search Classes
Partner Program
About Us
Contact Information
Site Map

Is TrainingCity Right for your Team?

Talk directly to our satisfied references!  Call today for details

I highly recommend TrainingCity for training services. I took a workshop for one week for training on VoIP technologies. After taking the course, I knew enough about the technology to set up my own VoIP system at home, and am qualified to get a VoIP job.

TrainingCity's course is organized, the topics are covered thoroughly and they have deep knowledge of the subject. In addition, my instructor was very personable and kept the class interested. I plan on taking future courses with TrainingCity. Yvonne Young March 26, 2007

Detailed Course Outline
DNS Hands ON Workshop with DNSSEC
Course: 802
Duration: 4 Days
View Schedule
Course Outline
Suggested Prerequisites
Suggested Follow-Ons
Learn the fundamentals of DNS in this Hands ON, lab focused course. Setup and configure BIND9 Servers. Finally understand DNS terms like Primary/Secondary vs. Master/Slave Servers. Work with Zone Files & build RRs. Work with IPv6 AAAA Records, SIP SRV Records & much more. Lots of real world Hands on DNSSEC. Work with real, live test sites to understand KSK & ZSK. Get the facts of Encryption & Authentication algorithums.
TCP/IP Fundamentals Overview
  • Overview of DNS related IETF RFC History
  • Example of basic DNS operation
  • Quick refresher on TCP/IP Stack & IPv4 operation
  • TCP vs UDP: Why do we need both?
  • Port Numbers / Socket Concept Refresher
  • Why use UDP for DNS when TCP is more reliable: Understanding the DNS Server operation
  • DHCP Basics & Introduction to DDNS concept
Introduction to Domain Name System
  • The DNS protocol: Inside the DNS Header, Query & Answer Basics
  • System Domain & Internet Domain Namespaces
  • Delegation
  • Nameservers and Zones
  • Resolvers, Resolution, & Caching
  • Useful tools, DIG, NSLOOKUP, RNDC
Understanding the Concept of Domains & Getting in the "Zone"
  • Concept of a Zone explained
  • Forward/Reverse Zones
  • Parent and child domains
  • Sub domain delegation
  • Understanding Resource Records (RRs)
  • A/AAAA Records
  • Pseudo Resource Records
  • Glue Records
Server Architecture
  • Concept of Server resilience
  • Load Balancing Consideration
  • DNS Master/Slave and other servers
  • BND Caching & Caching Only Servers
  • Negative Caching
  • Forwarding
BIND Install & Configuration
  • DNS implementations & installation overview
  • BIND 4.x, 8.x, 9.x
  • Windows (NT - Server 2008)
  • Install BIND on Linux
  • Lab 5.1: Install & Configure BIND on Linux
General IT Security Considerations
  • Understanding IT Security
  • Encryption vs. Authentication: Core Concepts
  • What does it mean to Authenticate vs. Encrypt Information
  • Authentication Concepts
  • Symmetric vs. Asymmetric Encryption Cryptography
  • PKI
DNS Security
  • Threat Analysis RFC3833
  • DNS Security Extensions
  • RFC 4033 - DNS Security Introduction and Requirements
  • RFC 4034 - Resource Records for the DNS Security Extensions
  • RFC 4035 - Protocol Modifications for the DNS Security Extensions
  • Zone signing, Zone Transfers using TSIG, SIG(0) and TKEY
  • DS RRs
Advanced DNS Topics
  • DNS and IPv6
  • AAAA RR & PTR / DNAME RR Latest developments & trends
  • IPv6 DNS issues
  • IPv6 DNS RFC Review (RFC 1886, RFC 2874, RFC 3363, etc)
  • IPv6 reverse delegation
  • DDNS Operation
  • Using DDNS for forward & reverse maps
Hands On Training
Lab 1.1: Install and confgure Wireshark
Lab 1.2: Capture TCP/IP Traffic including ICMP
Lab 2.1: Capture and analyze DNS Traffic
Lab 5.1: Install BIND9 Servers
Lab 5.2: Hands ON Intro to Dig tool
Lab 6.1: Capture IPSec ESP & AH traffic
Lab 7.1: Advanced DIG for DNSSEC
Lab 7.2: Use Open Source DNSSEC Analysis Tools
Lab 8.1: Capture AAAA Records