DNS & BIND Leap Ahead
Comprehensive, hands-on walkthrough of the DNS protocol and BIND software, including DNS Cookies, Response Policy Zones (RPZ), Response Rate Limiting (RRL) and dnstap.
Course description
DNS & BIND Leap Ahead is an advanced DNS & BIND course, held completely online and designed to deepen and widen the fundamentals of running a BIND 9 domain name server. It is built on the DNS & BIND Jump Start course, and participants are required to complete that course before starting this more advanced one.
Intended for students wanting to become professional DNS administrators, during the course every participant will be able to learn the ins and outs of running a fully-equipped and secure DNS server for themselves, a business, or on the Internet.
Syllabus
— New terminology used in DNS & BIND
— Building the authoritative DNS server
— A quick look at DNSSEC
— DNSSEC signing and validation
— Minimal ANY
— Empty zones
— Building a DNSSEC validating DNS Resolver
— EDNS
— 'Dig'ing deeper
— DNS resolver best practices
— Getting information (statistics, query logging, dnstap, CHAOS)
— DNS cookies
— Cryptography in DNS
— DNSSEC 'inline'-signing
— Transaction Signatures (TSIG)
— Dynamic updates (Plus NOTIFY & IXFR)
— Response rate limiting in BIND
— Adding and removing zones with RNDC
— Firewalls and DNS
— Response Policy Zones (RPZ)
— Automatic DNS provisioning with Catalog-Zones
— BIND 9 views
Prerequisites
Participants for this course need to know how to operate the Unix command line (shell) and have Unix/Linux administration knowledge. Basic knowledge of Internet network protocols IPv6 and IPv4 is required.
Materials required
Participants are responsible for the equipment used to access the course. (Computer and internet connection.)
A computer with a physical keyboard is strongly recommended.
Other information
This is a DNS&BIND training, Men&Mice products are not included in the course. If product training is required, options are available.