book

Linux for Networking Professionals

Name: Linux for Networking Professionals
Author: Rob VandenBrink
ISBN: 9781800202399

by Rob VandenBrink

November 2021

Beginner

528 pages

11h 44m

English

Packt Publishing

Read now

Unlock full access

Linux for Networking Professionals
ContributorsAbout the authorAbout the reviewer
Preface
Who this book is forWhat this book coversTo get the most out of this bookDownload the color imagesDownload the example code files Conventions usedGet in touchShare Your Thoughts
Section 1: Linux Basics
Chapter 1: Welcome to the Linux Family
Why Linux is a good fit for a networking teamWhy is Linux important?The history of LinuxMainstream data center Linux Red HatOracle/Scientific LinuxSUSEUbuntuBSD/FreeBSD/OpenBSDSpecialty Linux distributionsOpen source firewallsKali LinuxSIFTSecurity OnionVirtualizationLinux and cloud computingPicking a Linux distribution for your organizationSummaryFurther reading
Chapter 2: Basic Linux Network Configuration and Operations – Working with Local Interfaces
Technical requirementsWorking with your network settings – two sets of commandsDisplaying interface IP informationDisplaying routing informationIPv4 addresses and subnet masksSpecial-purpose addressesPrivate addresses – RFC 1918Assigning an IP address to an interfaceAdding a routeAdding a route using legacy approachesDisabling and enabling an interfaceSetting the MTU on an interfaceMore on the nmcli commandSummaryQuestionsFurther reading
Section 2: Linux as a Network Node and Troubleshooting Platform
Chapter 3: Using Linux and Linux Tools for Network Diagnostics
Technical requirementsNetwork basics – the OSI modelLayer 2 – relating IP and MAC addresses using ARPMAC address OUI valuesLayer 4 – how TCP and UDP ports workLayer 4 – TCP and the three-way handshakeLocal port enumeration – what am I connected to? What am I listening for?Remote port enumeration using native toolsRemote port and service enumeration – nmapNMAP scriptsAre there limits to Nmap?Wireless diagnostic operationsSummaryQuestionsFurther reading
Chapter 4: The Linux Firewall
Technical requirementsConfiguring iptablesiptables from a high levelThe NAT tableThe mangle tableOrder of operations in iptablesConfiguring nftablesnftables basic configurationUsing include filesRemoving our Firewall ConfigurationSummaryQuestionsFurther reading
Chapter 5: Linux Security Standards with Real-Life Examples
Technical requirementsWhy do I need to secure my Linux hosts?Cloud-specific security considerationsCommonly encountered industry-specific security standardsThe Center for Internet Security critical controlsGetting a start on CIS critical security controls 1 and 2OSQuery – critical controls 1 and 2, adding in controls 10 and 17The Center for Internet Security benchmarksApplying a CIS benchmark – securing SSH on LinuxSELinux and AppArmorSummaryQuestionsFurther reading
Section 3: Linux Network Services

Chapter 6: DNS Services on Linux
Technical requirementsWhat is DNS?Two main DNS server implementationsAn organization's "internal" DNS server (and a DNS overview)An internet-facing DNS serverCommon DNS implementationsBasic installation: BIND for internal useBIND: Internet-facing implementation specificsDNS troubleshooting and reconnaissance DoHDoTknot-dnsutilsImplementing DoT in NmapDNSSEC SummaryQuestionsFurther reading
Chapter 7: DHCP Services on Linux
How does DHCP work?Basic DHCP operationDHCP requests from other subnets (forwarders, relays, or helpers)DHCP optionsSecuring your DHCP servicesRogue DHCP serverRogue DHCP clientInstalling and configuring a DHCP serverBasic configurationStatic reservationsSimple DHCP logging and troubleshooting in everyday useSummaryQuestionsFurther reading
Chapter 8: Certificate Services on Linux
Technical requirementsWhat are certificates?Acquiring a certificateUsing a certificate – web server exampleBuilding a private Certificate AuthorityBuilding a CA with OpenSSLRequesting and signing a CSRSecuring your Certificate Authority infrastructureLegacy tried-and-true adviceModern adviceCA-specific risks in modern infrastructuresCertificate TransparencyUsing CT for inventory or reconnaissanceCertificate automation and the ACME protocolOpenSSL cheat sheetSummaryQuestionsFurther reading
Chapter 9: RADIUS Services for Linux
Technical requirementsRADIUS basics – what is RADIUS and how does it work?Implementing RADIUS with local Linux authenticationRADIUS with LDAP/LDAPS backend authenticationNTLM authentication (AD) – introducing CHAPUnlang – the unlanguageRADIUS use-case scenariosVPN authentication using user ID and passwordAdministrative access to network devicesRADIUS configuration for EAP-TLS authenticationWireless network authentication using 802.1x/EAP-TLSWired network authentication using 802.1x/EAP-TLSUsing Google Authenticator for MFA with RADIUSSummaryQuestionsFurther reading
Chapter 10: Load Balancer Services for Linux
Technical requirementsIntroduction to load balancingRound Robin DNS (RRDNS)Inbound proxy – Layer 7 load balancingInbound NAT – Layer 4 load balancingDSR load balancingLoad balancing algorithmsServer and service health checksDatacenter load balancer design considerationsDatacenter network and management considerationsBuilding a HAProxy NAT/proxy load balancerBefore you start configuring – NICs, addressing, and routingBefore you start configuring – performance tuning Load balancing TCP services – web servicesSetting up persistent (sticky) connectionsImplementation noteHTTPS frontendingA final note on load balancer securitySummaryQuestionsFurther reading
Chapter 11: Packet Capture and Analysis in Linux
Technical requirementsIntroduction to packet capturing – the right places to lookCapturing from either endSwitching the monitoring portIntermediate in-line hostNetwork tap Malicious packet capture approachesPerformance considerations when capturingCapturing toolstcpdumpWiresharkTSharkOther PCAP toolsFiltering captured trafficWireshark capture filters (capturing your home network traffic)tcpdump capture filters – VoIP phones and DHCPMore capture filters – LLDP and CDPCollecting files from a packet captureTroubleshooting an application – capturing a VoIP telephone callWireshark display filters – separating specific data in a captureSummaryQuestionsFurther reading
Chapter 12: Network Monitoring Using Linux
Technical requirementsLogging using SyslogLog size, rotation, and databasesLog analysis – finding "the thing"Alerts on specific eventsSyslog server example – SyslogThe Dshield projectNetwork device management using SNMPSNMP NMS deployment example – LibreNMSSNMPv3Collecting NetFlow data on LinuxWhat is NetFlow and its "cousins" SFLOW, J-Flow, and IPFIX?Flow collection implementation conceptsConfiguring a router or switch for flow collectionAn example NetFlow server using NFDump and NFSenSummaryQuestionsFurther readingCommonly used SNMP OIDs
Chapter 13: Intrusion Prevention Systems on Linux
Technical requirementsWhat is an IPS?Architecture options – where does an IPS fit in your data center?IPS evasion techniquesDetecting a WAFFragmentation and other IPS evasion methodsClassic/network-based IPS solutions – Snort and SuricataSuricata IPS exampleConstructing an IPS rulePassive traffic monitoringPassive monitoring with P0F – exampleZeek example – collecting network metadataSummaryQuestionsFurther reading
Chapter 14: Honeypot Services on Linux
Technical requirementsHoneypot overview – what is a honeypot, and why do I want one?Deployment scenarios and architecture – where do I put a honeypot?Risks of deploying honeypotsExample honeypotsBasic port alerting honeypots – iptables, netcat, and portspoofOther common honeypotsDistributed/community honeypot – the Internet Storm Center's DShield Honeypot ProjectSummaryQuestionsFurther reading
Assessments
Chapter 2 – Basic Linux Network Configuration and Operations – Working with Local InterfacesChapter 3 – Using Linux and Linux Tools for Network DiagnosticsChapter 4 – The Linux FirewallChapter 5 – Linux Security Standards with Real-Life ExamplesChapter 6 – DNS Services on LinuxChapter 7 – DHCP Services on LinuxChapter 8 – Certificate Services on LinuxChapter 9 – RADIUS Services for LinuxChapter 10 – Load Balancer Services for LinuxChapter 11 – Packet Capture and Analysis in LinuxChapter 12 – Network Monitoring Using LinuxChapter 13 – Intrusion Prevention Systems on LinuxChapter 14 – Honeypot Services on Linux
Why subscribe?
Other Books You May EnjoyPackt is searching for authors like youShare Your Thoughts

Overview

Dive into the world of enterprise Linux networking with 'Linux for Networking Professionals'. This comprehensive book equips you with the practical skills to leverage Linux for network configurations, troubleshooting, and security in a professional setting. With real-world examples and step-by-step guides, you'll master efficient Linux-based solutions for your networking challenges.

What this Book will help me do

Master the fundamentals of Linux networking, from selecting the appropriate distribution to configuring core network services.
Gain proficiency in deploying and managing Linux firewalls for robust network security.
Develop the skills necessary to run and secure DNS, DHCP, and other pivotal enterprise network services.
Learn to utilize Linux as a platform for monitoring, logging, and addressing network activity.
Acquire knowledge to implement Linux as a defensive tool against common network vulnerabilities through IPS and honeypot solutions.

Author(s)

Rob VandenBrink, an experienced IT professional specializing in network and system administration, brings his extensive knowledge of Linux and networking to this book. Drawing upon years of hands-on experience, he presents practical insights and actionable guidance for networking in professional environments. Rob is dedicated to sharing his expertise to empower readers with the tools and understanding needed in the modern IT landscape.

Who is it for?

This book is ideal for networking professionals, IT administrators, and system operators who are familiar with the basics of networking and are looking to expand their expertise into Linux-based environments. It is also suitable for Windows professionals transitioning to Linux or those managing cross-platform network services. Readers aiming to better secure and optimize enterprise networks through practical Linux applications will find this book immensely valuable.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781800202399

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills