Linux Engineer

Prerequisite: LPIC-1 training or certification

Course Duration:  24 hours
                                3 days training
                                10am - 6pm

Course Schedule: Monday - Friday
                                Every Saturday
                                Every Sunday

Inclusion (face-to-face training): Morning & Afternoon snack
                                                            Lunch Meal
                                                            Certificate of completion
                                                            Training handout
                                                            Review material for exam
                                                            Free flowing coffee

Inclusion (Online Training):  Certificate of completion
                                                     Training handout (soft copy)
                                                     Review material for exam

Day 1

200.1 Measure and Troubleshoot Resource Usage
• iostat
• netstat
• w
• top
• sar
• processes blocked on I/O
• blocks out
• vmstat
• pstree, ps
• Isof
• uptime
• swap
• blocks in

200.2 Predict Future Resource Needs
• Use monitoring and measurement tools to monitor IT infrastructure usage.
• Predict capacity break point of a configuration
• Observe growth rate of capacity usage
• Graph the trend of capacity usage
• Awareness of monitoring solutions such as Icinga2, Nagios, collectd, MRTG and Cacti

201.1 Kernel Components
• /usr/src/linux/
• /usr/src/linux/Documentation/
• zImage
• bzImage
• xz compression

201.2 Compiling a kernel
• mkinitrd
• mkinitramfs
• make
• make targets (all, config, xconfig, menuconfig, gconfig, oldconfig, mrproper, zImage, bzImage, modules, modules_install, rpm-pkg, binrpm-pkg, deb-pkg)
• gzip
• bzip2
• module tools
• /usr/src/linux/.config
• /lib/modules/kernel-version/
• depmod
• dkms

201.3 Kernel runtime management and troubleshooting
• /lib/modules/kernel-version/modules.dep
• module configuration files in /etc/
• /proc/sys/kernel/
• /sbin/depmod
• /sbin/rmmod
• /sbin/modinfo
• /bin/dmesg
• /sbin/lspci
• /usr/bin/lsdev
• /sbin/lsmod
• /sbin/modprobe
• /sbin/insmod
• /bin/uname
• /usr/bin/lsusb
• /etc/sysctl.conf, /etc/sysctl.d/
• /sbin/sysctl
• udevmonitor
• udevadm monitor
• /etc/udev/

202.1 Customizing SysV-init system startup
• /
• /etc/systemd/
• /run/systemd/
• systemctl
• systemd-delta
• /etc/inittab
• /etc/init.d/
• /etc/rc.d/
• chkconfig
• update-rc.d
• init and telinit

Day 2

202.2 System Recovery
• mount
• fsck
• inittab, telinit and init with SysV init
• The contents of /boot/, /boot/grub/ and /boot/efi/
• EFI System Partition (ESP)
• GRUB
• grub-install
• efibootmgr
• UEFI shell
• initrd, initramfs
• Master boot record
• systemctl

202.3 Alternate Bootloaders
• syslinux
• extlinux
• isolinux.bin
• isolinux.cfg
• isohdpfx.bin
• efiboot.img
• pxelinux.0
• pxelinux.cfg/
• uefi/shim.efi
• uefi/grubx64.efi 203.1 Operating the Linux filesystem
• /etc/fstab
• /etc/mtab
• /proc/mounts
• mount and umount
• blkid
• sync
• swapon
• swapoff

203.2 Maintaining a Linux filesystem
• mkfs (mkfs.*)
• mkswap
• fsck (fsck.*)
• tune2fs, dumpe2fs and debugfs
• btrfs, btrfs-convert
• xfs_info, xfs_check, xfs_repair, xfsdump and xfsrestore
• smartd, smartctl

203.3 Creating and configuring filesystem options
• /etc/auto.master
• /etc/auto. [dir]
• mkisofs
• cryptsetup

204.1 Configuring RAID
• mdadm.conf
• mdadm
• /proc/mdstat
• partition type 0xFD

204.2 Adjusting Storage Device Access
• hdparm, sdparm
• nvme
• tune2fs
• fstrim
• sysctl
• /dev/hd*, /dev/sd*, /dev/nvme*
• iscsiadm, scsi_id, iscsid and iscsid.conf
• WWID, WWN, LUN numbers

204.3 Logical Volume Manager
• /sbin/pv*
• /sbin/lv*
• /sbin/vg*
• mount
• /dev/mapper/
• lvm.conf

205.1 Basic networking configuration
• ip
• ifconfig
• route
• arp
• iw
• iwconfig
• iwlist

Day 3

205.2 Advanced Network Configuration and Troubleshooting
• ip
• ifconfig
• route
• arp
• ss
• netstat
• lsof
• ping, ping6
• nc
• tcpdump
• nmap

205.3 Troubleshooting Network Issues
• ip
• ifconfig
• route
• ss
• netstat
• /etc/network/, /etc/sysconfig/network-scripts/
• ping, ping6
• traceroute, traceroute6
• mtr
• hostname
• System log files such as /var/log/syslog, /var/log/messages and the systemd journal
• dmesg
• /etc/resolv.conf
• /etc/hosts
• /etc/hostname, /etc/HOSTNAME
• /etc/hosts.allow, /etc/hosts.deny206.1 Make and install programs from source
• /usr/src/
• gunzip
• gzip
• bzip2
• xz
• tar
• configure
• make
• uname
• install
• patch

206.2 Backup operations
• /bin/sh
• dd
• tar
• /dev/st* and /dev/nst*
• mt
• rsync

206.3 Notify users on system-related issues
• /etc/issue
• /etc/issue.net
• /etc/motd
• wall
• /sbin/shutdown
• Systemctl

Topic 207: Domain Name Server
• /etc/named.conf
• /var/named/
• /usr/sbin/rndc
• kill
• host
• dig

207.2 Create and maintain DNS zones
• /var/named/
• zone file syntax
• resource record formats
• named-checkzone
• named-compilezone
• masterfile-format
• dig
• nslookup
• host 

Day 4

207.3 Securing a DNS server
• /etc/named.conf
• /etc/passwd
• DNSSEC
• dnssec-keygen
• dnssec-signzone

208.1 Implementing a web server
• access logs and error logs
• .htaccess
• httpd.conf
• mod_auth_basic, mod_authz_host and mod_access_compat
• htpasswd
• AuthUserFile, AuthGroupFile
• apachectl, apache2ctl
• httpd, apache2

208.2 Apache configuration for HTTPS
• Apache2 configuration files
• /etc/ssl/, /etc/pki/
• openssl, CA.pl
• SSLEngine, SSLCertificateKeyFile, SSLCertificateFile
• SSLCACertificateFile, SSLCACertificatePath
• SSLProtocol, SSLCipherSuite, ServerTokens, ServerSignature, TraceEnable 208.3 Implementing a proxy server
• squid.conf
• acl
• http_access

208.4 Implementing Nginx as a web server and a reverse proxy
• /etc/nginx/
• nginx

209.1 SAMBA Server Configuration
• smbd, nmbd, winbindd
• smbcontrol, smbstatus, testparm, smbpasswd, nmblookup
• samba-tool
• net
• smbclient
• mount.cifs
• /etc/samba/
• /var/log/samba/

209.2 NFS Server Configuration
• /etc/exports
• exportfs
• showmount
• nfsstat
• /proc/mounts
• /etc/fstab
• rpcinfo
• mountd
• portmapper

210.1 DHCP configuration
• dhcpd.conf
• dhcpd.leases
• DHCP Log messages in syslog or systemd journal
• arp
• dhcpd
• radvd
• radvd.conf

210.2 PAM authentication
• /etc/pam.d/
• pam.conf
• nsswitch.conf
• pam_unix, pam_cracklib, pam_limits, pam_listfile, pam_sss
• sssd.conf

Day 5

210.3 LDAP client usage
• ldapsearch
• ldappasswd
• ldapadd
• ldapdelete

210.4 Configuring an OpenLDAP server
• slapd
• slapd-config
• LDIF
• slapadd
• slapcat
• slapindex
• /var/lib/ldap/

211.1 Using e-mail servers
• Configuration files and commands for postfix
• /etc/postfix/
• /var/spool/postfix/
• sendmail emulation layer commands
• /etc/aliases
• mail-related logs in /var/log/

211.2 Managing E-Mail Delivery
• Conditions and comparison operators
• keep, fileinto, redirect, reject, discard, stop
• Dovecot vacation extension 211.3 Managing Remote E-Mail Delivery
• /etc/dovecot/
• dovecot.conf
• doveconf
• doveadm

212.1 Configuring a router
• /proc/sys/net/ipv4/
• /proc/sys/net/ipv6/
• /etc/services
• iptables
• ip6tables

212.2 Securing FTP servers
• vsftpd.conf
• important Pure-FTPd command line options

212.3 Secure shell (SSH)
• ssh
• sshd
• /etc/ssh/sshd_config
• /etc/ssh/
• Private and public key files
• PermitRootLogin, PubKeyAuthentication, AllowUsers, PasswordAuthentication, Protocol

212.4 Security tasks
• telnet
• nmap
• fail2ban
• nc
• iptables

212.5 OpenVPN
• /etc/openvpn/
• openvpn