Protecting Your Network with Open Source Software

Learn how to protect your network for free with open-source tools and these network-security tutorials from expert Jungwoo Ryoo.

Introduction

• Protect your network with free software
• What you should know
• Set up environment

1. Understanding Open-Source Software

• What is open-source software?
• Open-source software in networking
• Open-source solutions in cybersecurity
• Open-source vs. commercial software
• Costs and savings

2. Firewalls

• What is a firewall?
• Host firewalls
• Network firewalls
• Static packet filtering vs. stateful packet inspection

3. Hosts as a Router

• Netfilter and iptables
• Setting up a host firewall using iptables
• Automating Netfilter configuration
• Understanding hosts as routers
• Adding a network adapter
• Testing the second adapter
• Setting up IP forwarding
• Changing Netfilter settings
• Testing the router

4. Hosts as a Firewall

• Setting up hosts as a network firewall
• Setting up a web server
• Port forwarding
• Testing port forwarding
• Understanding one-legged DMZ
• Understanding true DMZ
• Understanding an application proxy firewall
• Setting up Squid

5. Packet Analysis

• What is packet analysis?
• ARP poisoning example
• Packet capturing with Wireshark
• Exploring Wireshark advanced features
• Wireshark hands-on

6. Intrusion Detection Systems (IDS) and Vulnerability Assessment

• What is an IDS?
• Introducing Snort
• Snort as a packet sniffer
• Snort as an IDS: Establishing rules
• Snort as an IDS: Detecting pings
• What is a network vulnerability assessment?
• Nessus
• Network scanning with Nessus

7. Logging and Monitoring

• Logging
• Syslog-ng
• Log forwarding: Part 1
• Log forwarding: Part 2
• Kiwi
• SNMP

Conclusion

• Next steps and additional resources