XC03 Deploying Opportunistic Encryption (1 Day)
In this course the students will learn about configuring large IPsec
privacy systems using Openswan, with the Opportunistic Encryption method
of deployment.
Opportunistic Encryption lends itself to networks which are large, not
necessarily mutually trusting, but require all transactions to be kept
private. This particularly includes: VoIP (SIP), national medical billing
systems, email systems, and instant messaging systems.
In general, VPNs are appropriate only within an enterprise, but not
appropriate when there are multiple enterprises involved.
As Opportunistic Encryption builds upon IPsec and DNS(sec), courses
XC01 and XC02 are typical prerequisites.
At the end of the course the students will be able to configure
and debug multiple location systems where they have access to only one
location.
All work will be done with Openswan.
This is a hands on course.
Prerequisites:
- Linux Systems Administration
- TCP/IP Networking
- Previous experience with IPsec VPNs
- Previous experience with DNS
