Course 10-150-149 060941 - Northeast Wisconsin Technical College Outline of Instruction

Course Information

Description	10-150-149 NETWORK MONITORING ...this course provides the opportunity for the learner to develop the knowledge, skills, process and understanding of protocol analysis at the packet level focusing on network performance, real-time monitoring of network traffic, and the configuration of Intrusion Detection Systems to continually monitor network traffic for security anomalies. (Prerequisite: 10-150-163, IT: Network: Cisco 1)
Total Credits	2

Description

10-150-149 NETWORK MONITORING ...this course provides the opportunity for the learner to develop the knowledge, skills, process and understanding of protocol analysis at the packet level focusing on network performance, real-time monitoring of network traffic, and the configuration of Intrusion Detection Systems to continually monitor network traffic for security anomalies. (Prerequisite: 10-150-163, IT: Network: Cisco 1)

Total Credits

Configure packet capture software on a monitoring station.
Create filters in packet capture software to display specific types of communication.
Implement various methods of capturing network traffic.
Capture packets based on mid-level network protocols such as TCP, UDP, and ICMP.
Capture packets based on typical network applications such as HTTP, FTP, DNS, and others.
Create a baseline of network traffic that is considered normal in a given environment.
Use packet capture software to monitor network traffic for deviations from normal baseline traffic.
Configure intrusion detection software (IDS) to continuously monitor network traffic for deviations from normal network traffic.
Create IDS rules to alert network administrators when specific network traffic is observed.