440-4214/04 – Best Practice in Communication Network II (PKS II)

Gurantor departmentDepartment of TelecommunicationsCredits5
Subject guarantordoc. Ing. Jaroslav Zdrálek, Ph.D.Subject version guarantorIng. Jan Rozhon, Ph.D.
Study levelundergraduate or graduate
Study languageEnglish
Year of introduction2021/2022Year of cancellation
Intended for the facultiesFEIIntended for study typesFollow-up Master
Instruction secured by
LoginNameTuitorTeacher giving lectures
KAP063 Ing. Lukáš Kapičák
NEV05 Ing. Pavel Nevlud
ROZ132 Ing. Jan Rozhon, Ph.D.
ZDR20 doc. Ing. Jaroslav Zdrálek, Ph.D.
Extent of instruction for forms of study
Form of studyWay of compl.Extent
Full-time Graded credit 1+3

Subject aims expressed by acquired skills and competences

The goal of course is to apply theoretical knowledge of computer networks, basic network services with operating system Linux and IPv6 protocol, into practical solutions. The graduate of this course will gain knowledge in the field of monitoring IPv6 networks, authentication and authorization.

Teaching methods

Lectures
Experimental work in labs
Project work

Summary

The course follows on the course Practice in Communication Network I, which students pass out in the Bachelor study. Students are now engaged in advanced networking techniques that are required in medium-sized and larger companies. Among the key themes of the course we can include monitoring and management networks using open-source systems such as Nagios, Zabix and Grafana, as well as authentication mechanisms, especially with the use of LDAP, RADIUS and Kerberos protocol and advanced single sign-on systems, the end of the semester is devoted to systems of services for Presence and Instant Messaging. After graduating of course student has a comprehensive knowledge of network with equipment on Linux platform that are required by service organization and necessary for administrator of large networks.

Compulsory literature:

• JULIAN, Mike. Practical Monitoring: Effective Strategies for the Real World. United States: O'Reilly Media, 2017. ISBN 978-1491957356. • WILSON, Yvonne a Abhishek HINGNIKAR. Solving Identity Management in Modern Applications: Demystifying OAuth 2.0, OpenID Connect, and SAML 2.0. United States: Apress, 2019. ISBN 978-1484250945. • BOCK, Lisa. Identity Management with Biometrics: Explore the latest innovative solutions to provide secure identification and authentication. Great Britain: Packt Publishing, 2020. ISBN 978-1838988388.

Recommended literature:

• NEMETH, Evi, Garth SNYDER, Trent R. HEIN, Ben WHALEY a Dan MACKIN’S. UNIX and Linux System Administration Handbook. 5th edition. Addison-Wesley Professional, 2017. ISBN 978-0134277554. • MINING, Ethem. Kali Linux Hacking: A Complete Step by Step Guide to Learn the Fundamentals of Cyber Security, Hacking, & Penetration Testing. Includes Valuable Basic Networking Concepts. 1th edition. Independently published, 2019. ISBN 978-1672429733.

Way of continuous check of knowledge in the course of semester

• Presentation of projects. • Tests proving theoretical knowledge. • Final test and a practical part at the last exercise.

E-learning

Other requirements

Basic knowledge of Linux and basic network services are required.

Prerequisities

Subject has no prerequisities.

Co-requisities

Subject has no co-requisities.

Subject syllabus:

Lectures: • Special distributions of operating systems, that are suitable to embedded systems with low power consumption, their properties and specifics, appropriate hardware platforms and their comparison. • Reports and logged data from different systems, debugging and optimization of services, Syslog, NTP. • Monitoring and management of networks - RRDtol, SNMP. • Advance tools for network monitoring – Nagios, Zabbix and Grafana. • Observation and generation traffic in IPv6 networks, Netflow, probes, collector, analysis of Netflow statistic. • Virtual tools for different operating systems and back-up in Linux. • LDAP protocol, address services, objects, and attributes, openLDAP. • Authentication using RADIUS and TACACS. • Single sign-on system – SSO, Kerberos. • Advance authentication principles, authentication users between federations with applications SAML • Shibboleth, its architecture, and using. • Request tracker, tool for management and solving problems in network. • XMPP protocol, Instant Messaging and Presence, Jabber. • Practice example installation of advance network. Practices: • Installation and configuration special Linux open-source distributions. Assignment of semester projects. • Installation and configuration of Syslog, local and remote storge of system logs. Installation and configuration of NTP protocol. • Monitoring and management networks by using SNMP protocols. Installation, and configuration RRDtool. • Using advance tools for monitoring and management network by using Nagios, Zabbix and Grafana. • Observation and generation traffic in communication networks by using open-source tools, tcpdump, iptraf, ngrep and scapy. • Installation and configuration of virtual tools – KVM, LXC/LXD, VirtualBox, Xen, Qemu, Wmware. Back-up in Linux, tools tar, dd and rsync. • Installation and configuration open-source tools – OpenLDAP for access to data on file servers. • Installation and configuration single sign-on system. Installation and configuration of Kerberos. • Advance authentication principles by using SAML application, e.g. Simplesamlphp. • Installation and configuration Request Tracker by using Appache and MySQL. • Installation and configuration communication tool – Jabber. • Presentation of semester projects. Projects: Project No. 1. The aim of the project is the collection, processing, and automatic rendering of data from various sensors in the network using a time series database. Project No. 2. The aim of the project is to describe, configure and analyze various authentication and authorization methods in IPv6 networks.

Conditions for subject completion

Full-time form (validity from: 2021/2022 Winter semester)
Task nameType of taskMax. number of points
(act. for subtasks)
Min. number of points
Graded credit Graded credit 100  51
Mandatory attendence parzicipation: To obtain the credit, it is necessary to obtain at least 51 points.

Show history

Occurrence in study plans

Academic yearProgrammeField of studySpec.ZaměřeníFormStudy language Tut. centreYearWSType of duty
2022/2023 (N0612A140005) Information and Communication Security P English Ostrava 1 Optional study plan
2022/2023 (N0714A060021) Communication and Information Technology KIT P English Ostrava 2 Compulsory study plan
2021/2022 (N0612A140005) Information and Communication Security P English Ostrava 1 Optional study plan
2021/2022 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology P English Ostrava 2 Compulsory study plan
2021/2022 (N2647) Information and Communication Technology (2612T059) Mobile Technology P English Ostrava 2 Compulsory study plan

Occurrence in special blocks

Block nameAcademic yearForm of studyStudy language YearWSType of blockBlock owner
V - ECTS - mgr. 2022/2023 Full-time English Optional 401 - Study Office stu. block