پکیج تخصصی تربیت کارشناس خبره شبکه

اهداف

در این پکیج دوره هایی که برای رسیدن به موقعیت شغلی مربوطه لازم است و توالی گذراندن آنها مد نظر قرار گرفته و علاوه بر آن، از نقاط اشتراک این دوره ها نیز جهت کنار هم چیده شدن آنها نیز استفاده شده است.

افراد پس از گذراندن این پکیج قابلیت کار در سمت شغلی مرتبط با پک را داشته و با دانش کاربردی و کافی برای آینده ای مطمئن وارد بازار کار خواهند شد.

پیش نیاز

آشنای ابتدایی با کامپیوتر

سرفصل ها

Network +

Microsoft (MCSA 2016)

VirtualizationVMware VCP

Cisco (CCNA R&S,CCNA Security,CCNA Voice,)

Mikrotik (MTCNA)

Linux Fundamental

Storage +

Internet Accounting (Kerio Control)

 CCNA R & S:

• Introduction to Computer Networking Concepts
• The TCP/IP and OSI Networking Models
• Fundamentals of LANs
• Fundamentals of WANs
• Fundamentals of IP Addressing and Routing
• Fundamentals of TCP/IP Transport, Applications, and Security
• Ethernet LAN Switching Concepts
• Operating Cisco LAN Switches
• Ethernet Switch Configuration
• Ethernet Switch Troubleshooting
• Wireless LANs
• IP Addressing and Subnetting
• Operating Cisco Routers
• Routing Protocol Concepts and Configuration
• Troubleshooting IP Routing
• WAN Concepts
• WAN Configuration
• Virtual LANs
• Spanning Tree Protocol
• Troubleshooting LAN Switching
• IP Routing
• VLSM and Route Summarization
• IP Access Control Lists
• Troubleshooting IP Routing
• Routing Protocol Theory
• OSPF
• EIGRP
• Troubleshooting Routing Protocol
• Point-to-Point WANs
• Virtual Private Networks
• Network Address Translation
• IP V6

 CCNA Security:

    (Implementing Cisco Network Security Exam (IINS) (210-260

1.0 Security Concepts

1.1  Common security principles

1.1.a Describe confidentiality, integrity, availability (CIA)

1.1.b Describe SIEM technology

1.1.c Identify common security terms

1.1.d Identify common network security zones

1.2 Common security threats

1.2.a Identify common network attacks

1.2.b Describe social engineering

1.2.c Identify malware

1.2.d Classify the vectors of data loss/exfiltration

1.3 Cryptography concepts

1.3.a Describe key exchange

1.3.b Describe hash algorithm

1.3.c Compare and contrast symmetric and asymmetric encryption

1.3.d Describe digital signatures, certificates, and PKI

1.4 Describe network topologies

1.4.a Campus area network (CAN)

1.4.b Cloud, wide area network (WAN)

1.4.c Data center

1.4.d Small office/home office (SOHO)

1.4.e Network security for a virtual environment

2.0 Secure Access

2.1  Secure management

2.1.a Compare in-band and out-of band

2.1.b Configure secure network management

2.1.c Configure and verify secure access through SNMP v3 using an ACL

2.1.d Configure and verify security for NTP

2.1.e Use SCP for file transfer

2.2 AAA concepts

2.2.a Describe RADIUS and TACACS+ technologies

2.2.b Configure administrative access on a Cisco router using TACACS+

2.2.c Verify connectivity on a Cisco router to a TACACS+ server

2.2.d Explain the integration of Active Directory with AAA

2.2.e Describe authentication and authorization using ACS and ISE

2.3 802.1X authentication

2.3.a  Identify the functions 802.1X components

2.4 BYOD

2.4.a Describe the BYOD architecture framework

2.4.b Describe the function of mobile device management (MDM)

 

3.0 VPN

3.1  VPN concepts

3.1.a Describe IPsec protocols and delivery modes (IKE, ESP, AH, tunnel mode, transport mode)

3.1.b Describe hairpinning, split tunneling, always-on, NAT traversal

3.2 Remote access VPN

3.2.a Implement basic clientless SSL VPN using ASDM

3.2.b Verify clientless connection

3.2.c Implement basic AnyConnect SSL VPN using ASDM

3.2.d Verify AnyConnect connection

3.2.e Identify endpoint posture assessment

3.3 Site-to-site VPN

3.3.a Implement an IPsec site-to-site VPN with pre-shared key authentication on Cisco routers and ASA firewalls

3.3.b Verify an IPsec site-to-site VPN

 

4.0 Secure Routing and Switching

4.1 Security on Cisco routers

4.1.a Configure multiple privilege levels

4.1.b Configure Cisco IOS role-based CLI access

4.1.c Implement Cisco IOS resilient configuration

4.2 Securing routing protocols

4.2.a Implement routing update authentication on OSPF

4.3 Securing the control plane

4.3.a Explain the function of control plane policing

4.4 Common Layer 2 attacks

4.4.a Describe STP attacks

4.4.b Describe ARP spoofing

4.4.c Describe MAC spoofing

4.4.d Describe CAM table (MAC address table) overflows

4.4.e Describe CDP/LLDP reconnaissance

4.4.f Describe VLAN hopping

4.4.g Describe DHCP spoofing

4.5 Mitigation procedures

4.5.a Implement DHCP snooping

4.5.b Implement Dynamic ARP Inspection

4.5.c Implement port security

4.5.d Describe BPDU guard, root guard, loop guard

4.5.e Verify mitigation procedures

4.6 VLAN security

4.6.a Describe the security implications of a PVLAN

4.6.b Describe the security implications of a native VLAN

 

5.0 Cisco Firewall Technologies

5.1  Describe operational strengths and weaknesses of the different firewall technologies

5.1.a Proxy firewalls

5.1.b Application firewall

5.1.c Personal firewall

5.2 Compare stateful vs. stateless firewalls

5.2.a Operations

5.2.b Function of the state table

5.3 Implement NAT on Cisco ASA 9.x

5.3.a Static

5.3.b Dynamic

5.3.c PAT

5.3.d Policy NAT

5.3 e Verify NAT operations

5.4 Implement zone-based firewall

5.4.a Zone to zone

5.4.b Self zone

5.5 Firewall features on the Cisco Adaptive Security Appliance (ASA) 9.x

5.5.a Configure ASA access management

5.5.b Configure security access policies

5.5.c Configure Cisco ASA interface security levels

5.5.d Configure default Cisco Modular Policy Framework (MPF)

5.5.e Describe modes of deployment (routed firewall, transparent firewall)

5.5.f Describe methods of implementing high availability

5.5.g Describe security contexts

5.5.h Describe firewall services

 

 

5.0 Cisco Firewall Technologies

5.1  Describe operational strengths and weaknesses of the different firewall technologies

5.1.a Proxy firewalls

5.1.b Application firewall

5.1.c Personal firewall

5.2 Compare stateful vs. stateless firewalls

5.2.a Operations

5.2.b Function of the state table

5.3 Implement NAT on Cisco ASA 9.x

5.3.a Static

5.3.b Dynamic

5.3.c PAT

5.3.d Policy NAT

5.3 e Verify NAT operations

5.4 Implement zone-based firewall

5.4.a Zone to zone

5.4.b Self zone

5.5 Firewall features on the Cisco Adaptive Security Appliance (ASA) 9.x

5.5.a Configure ASA access management

5.5.b Configure security access policies

5.5.c Configure Cisco ASA interface security levels

5.5.d Configure default Cisco Modular Policy Framework (MPF)

5.5.e Describe modes of deployment (routed firewall, transparent firewall)

5.5.f Describe methods of implementing high availability

5.5.g Describe security contexts

5.5.h Describe firewall services

 

6.0 IPS

6.1 Describe IPS deployment considerations

6.1.a Network-based IPS vs. host-based IPS

6.1.b Modes of deployment (inline, promiscuous - SPAN, tap)

6.1.c Placement (positioning of the IPS within the network)

6.1.d False positives, false negatives, true positives, true negatives

6.2 Describe IPS technologies

6.2.a Rules/signatures

6.2.b Detection/signature engines

6.2.c Trigger actions/responses (drop, reset, block, alert, monitor/log, shun)

6.2.d Blacklist (static and dynamic)

 

7.0 Content and Endpoint Security

7.1  Describe mitigation technology for email-based threats

7.1.a SPAM filtering, anti-malware filtering, DLP, blacklisting, email encryption

7.2 Describe mitigation technology for web-based threats

7.2.a Local and cloud-based web proxies

7.2.b Blacklisting, URL filtering, malware scanning, URL categorization, web application filtering, TLS/SSL decryption

7.3  Describe mitigation technology for endpoint threats

7.3.a Anti-virus/anti-malware

7.3.b Personal firewall/HIPS

7.3.c Hardware/software encryption of local data

 CCNA Collaboration:

 

 

 

Implementing Cisco Collaboration Devices (210-060)

1.0 Describe the Characteristics of a Cisco Unified Communications Solution

1.1 Describe the Cisco Unified Communications components and their functions

1.2 Describe call signaling and media flows

1.3 Describe quality implications of a VoIP network

2.0 Provision End Users and Associated Devices

2.1 Describe user creation options for Cisco Unified Communications Manager and Cisco Unified Communications Manager Express

2.2 Create or modify user accounts for Cisco Unified Communications Manager

2.3 Create or modify user accounts for Cisco Unified Communications Manager Express using the GUI

2.4 Create or modify endpoints for Cisco Unified Communications Manager

2.5 Create or modify endpoints for Cisco Unified Communications Manager Express using the GUI

2.6 Describe how calling privileges function and how calling privileges impact system features

2.7 Create or modify directory numbers

2.8 Enable user features and related calling privileges for extension mobility, call coverage, intercom, native presence, and unified mobility remote  destination configuration

2.9 Enable end users for Cisco Unified IM and Presence

2.10 Verify user features are operational

3.0 Configure Voice Messaging and Presence

3.1 Describe user creation options for voice messaging

3.2 Create or modify user accounts for Cisco Unity Connection

3.3 Describe Cisco Unified IM and Presence

3.4 Configure Cisco Unified IM and Presence

4.0 Maintain Cisco Unified Communications System

4.1 Generate CDR and CMR reports

4.2 Generate capacity reports

4.3 Generate usage reports

4.4 Generate RTMT reports to monitor system activities

4.5 Monitor voicemail usage

4.6 Remove unassigned directory numbers

4.7 Perform manual system backup

5.0 Provide End User Support

5.1 Verify PSTN connectivity

5.2 Define fault domains using information gathered from end user

5.3 Troubleshoot endpoint issues

5.4 Identify voicemail issues and resolve issues related to user mailboxes

5.5 Describe causes and symptoms of call quality issues

5.6 Reset single devices

5.7 Describe how to use phone applications

سرفصل MCSA2016:

 

 (70-740)Installation, Storage, and computer with Windows Server 2016

 

Install Windows Servers in host and compute environments
Implement storage solutions
Implement Hyper-V
Implement Windows containers
Implement high availability
Maintain and monitor server environments

 

(70-741)Networking with Windows Server 2016

 

Implement Domain Name System (DNS)
Implement DHCP
Implement IP Address Management (IPAM)
Implement network connectivity and remote access solutions
Implement core and distributed network solutions
Implement an advanced network infrastructure

 

(70-742)Identity with Windows Server 2016

(Install and configure Active Directory Domain Services (AD DS
Manage and maintain AD DS
Create and manage Group Policy
(Implement Active Directory Certificate Services (AD CS
Implement identity federation and access solutions

سرفصل MTCNA :

About  MikroTik

First time accessing the router

Router OS command line interface (CLI)

Router OS CLI principles

Initial configuration (Internet access)

Upgrading Router OS

Router identity

Manage Router OS logins

Manage Router OS services

Managing configuration backups

Resetting a Router OS device

Reinstalling a Router OS device (Netinstall)

Router OS license levels

Sources of additional information

DHCP server and client

Address Resolution Protocol (ARP)

Bridging overview

Bridge wireless networks

Routing overview

Static routing

802.11a/b/g/n/ac Concepts

Setup a simple wireless link

Wireless Security and Encryption

Monitoring Tools

Firewall principles

Firewall Filter in action

Basic Address-List

Source NAT

Destination NAT

 

• سرفصل Virtualization :

•  

 

Virtualized Data Cente

Creating Virtual Machines

VMware vCenter Server

Configuring and Managing Virtual. Networks

Configuring and Managing Virtual Storage.

Virtual Machine Management

Access and Authentication Control

Resource Management and Monitoring

 

 

 Storage :

Evaluate storage architectures and key data center elements in classic, virtualized environments

Explain physical and logical components of a storage infrastructure including storage subsystems, RAID, and intelligent storage systems.

Describe storage networking technologies such as FC SAN, IP SAN, FCoE, NAS, and object-based and unified storage

Articulate business continuity solutions—backup and replication, plus archive for managing fixed content

 

 

 Linux Network Administration

معرفی سرویس های لینوکس

پیاده سازی تنظیمات ابتدایی شبکه در سیستم عامل لینوکس

پیاده سازی تنظیمات پیشرفته شبکه در سیستم عامل لینوکس

در لینوکس DHCP راه اندازی سرویس

راه اندازی سرویس DNS در لینوکس

راه اندازی سرویس Apachi در لینوکس

 Kerio Control :

• Using Dashboard in Kerio Control
• Configuring the Kerio Control web interface
• Configuring network interfaces
• Configuring L2TP tunnel
• Configuring VLANs
• Changing MAC addresses of network interfaces
• Configuring Kerio VPN server
• Configuring Kerio VPN tunnel
• Configuring traffic rules
• Configuring IP address translation
• Configuring traffic rules – exclusions
• Troubleshooting traffic rules
• Configuring policy routing
• Configuring bandwidth management
• Configuring the Content Filter
•  
• Configuring HTTP cache
• Filtering web content by word occurrence
• Using Kerio Control Web Filter
• Using DHCP module
• Using the DNS module
• Configuring a routing table
• Configuring statistics and reports
• Configuring system settings date, time, time zone and server name
• Saving configuration to FTP server
• Managing user accounts
• Setting access rights in Kerio Control
• Connecting Kerio Control to directory service
• User authentication
• Using RADIUS server in Kerio Control
• Creating user groups in Kerio Control
• Configuring IP address groups
• Creating time ranges in Kerio Control
• Configuring URL groups
• Monitoring active hosts
• Monitoring VPN clients
• Monitoring alert messages
• Monitoring user statistics

زمان بندی