205 Networking Configuration: Difference between revisions
No edit summary |
No edit summary |
||
| Line 9: | Line 9: | ||
* Utilities to configure and manipulate ethernet network interfaces | * Utilities to configure and manipulate ethernet network interfaces | ||
* Configuring wireless networks | * Configuring wireless networks | ||
Routing through a host: | |||
<pre> | <pre> | ||
EXTIF=eth0 | EXTIF=eth0 | ||
iptables -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE | iptables -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE | ||
iptables -L -v -n | |||
echo 1 > /proc/sys/net/ipv4/ip_forward | |||
sudo nano /etc/sysctl.conf | |||
sysctl -p | |||
apt-get install iptables-persistent | |||
</pre> | </pre> | ||
Latest revision as of 10:52, 5 May 2025
205.1 Basic networking configuration
Weight 3
Candidates should be able to configure a network device to be able to connect to a local, wired or wireless, and a wide-area network. This objective includes being able to communicate between various subnets within a single network.
Key Knowledge Areas
* Utilities to configure and manipulate ethernet network interfaces * Configuring wireless networks
Routing through a host:
EXTIF=eth0 iptables -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE iptables -L -v -n echo 1 > /proc/sys/net/ipv4/ip_forward sudo nano /etc/sysctl.conf sysctl -p apt-get install iptables-persistent
/sbin/route
/sbin/ifconfig
/sbin/ip
ip route get 23.6.118.140
/usr/sbin/arp
/sbin/iwconfig
205.2 Advanced Network Configuration and Troubleshooting
Weight 4
Candidates should be able to configure a network device to implement various network authentication schemes. This objective includes configuring a multi-homed network device, configuring a VPN client and resolving communication problems.
Key Knowledge Areas
* Utilities to manipulate routing tables * Utilities to configure and manipulate ethernet network interfaces * Utilities to analyse the status of the network devices * Utilities to monitor and analyse the TCP/IP traffic * OpenVPN
/sbin/route
/sbin/ifconfig
/bin/netstat
/bin/ping
/usr/sbin/arp
/usr/sbin/tcpdump
/usr/sbin/lsof
/usr/bin/nc
/sbin/ip
/etc/openvpn/*
openvpn
nmap
wireshark
205.3 Troubleshooting network issues
Weight 5
Candidates should be able to identify and correct common network setup issues, to include knowledge of locations for basic configuration files and commands.
Key Knowledge Areas
* Location and content of access restriction files * Utilities to configure and manipulate ethernet network interfaces * Utilities to manage routing tables * Utilities to list network states. * Utilities to gain information about the network configuration * Methods of information about the recognised and used hardware devices * System initialisation files and their contents (SysV init process)
/sbin/ifconfig
/sbin/route
/bin/netstat
/etc/network || /etc/sysconfig/network-scripts/
System log files such as /var/log/syslog & /var/log/messages
/bin/ping
/etc/resolv.conf
/etc/hosts
/etc/hosts.allow & /etc/hosts.deny
/etc/hostname | /etc/HOSTNAME
/bin/hostname
/usr/sbin/traceroute
/usr/bin/dig
/bin/dmesg
/usr/bin/host
Weight 1
Candidates should be able to notify the users about current issues related to the system.
Key Knowledge Areas
* Automate communication with users through logon messages. * Inform active users of system maintenance