Cloud+
Cloud technology makes new opportunities and job roles. By enhancing your current skill set to include cloud computing, enhancing proficient in delivering applications and files over the Internet. With information technology on the move to the cloud, stay in front of the pack; make sure you have the cloud services skills you need to endure to be the IT professional.
This course analyzes the advantages of moving to the cloud and outlines the detailed skill sets IT professional will want to acquire. It describes what the cloud offers and how it applies to and impacts existing infrastructure, including issues such as data control, integrity, cost, and security.
Audience
System, Network engineers and cloud providers.
Prerequisites
Basic knowledge of Networking, Virtualization and System administration.
Duration:
PartTime : 60 Days (2 hrs./day)
FullTime : 30 Days ( 4 hrs./day)
Course Outline:
Compare and contrast cloud services:
- SaaS (according to NIST)
- IaaS (according to NIST)
- CaaS (according to NIST)
- PaaS (according to NIST)
- XaaS (according to NIST)
- DaaS (according to NIST)
- BPaaS
- Accountability and responsibility based on service models
Explain object storage concepts:
- Object ID
- Metadata
- Data/blob
- Extended metadata
- Policies
- Replicas
- Implement central web authorizationAccess control
Given a scenario, perform virtual resource migration:
- Establish requirements
- Maintenance scheduling
- Reasons
- Storage migration
- Online vs. offline migrations
- Physical to Virtual (P2V)
- Virtual to Virtual (V2V)
- Virtual to Physical (V2P)
Compare and contrast various storage technologies:
- Network Attached Storage (NAS)
- Direct Attached Storage (DAS)
- Storage Area Network (SAN)
- Different access protocols
- Protocols and applications
- Management differences
Given a scenario, implement appropriate network configurations:
- NAT
- PAT
- Subnetting/Supernetting
- VLAN and VLAN tagging
- Network port configurations
- Switching and routing in physical and virtual environments
Explain common network protocols, ports, and topologies:
- Trunk ports
- Port binding/aggregation
- Common ports
- Common protocols
- Types of networks
Given a scenario, appropriately allocate physical (host) resources using best practices:
- Memory
- CPU
- Storage and network allocation
- Entitlement/quotas (shares)
- Reservations
- Licensing
- Resource pooling
Explain network security concepts, tools, and best practices:
- ACLs
- VPNs
- IDS/IPS hardware/software-based firewalls
- DMZ
- Review / audit logs
- Attacks
Identify access control methods:
- Role-based administration
- Mandatory access controls
- Discretionary access controls
- Multifactor authentication
- Single sign-on
- Federation
Compare and contrast disaster recovery methods and concepts:
- Redundancy
- Failover
- Geographical diversity
- Failback
- Replication
- Site mirroring
- Hot site
- Cold site
- Warm site
- Backup and recovery
- Archiving and offsite storage
- Replication types
- RTO
- RPO
- MTBF
- MTTR
- Mission critical requirements
Given a scenario, diagnose, remediate and optimize physical host performance:
- Disk performance
- Disk tuning
- Disk latency
- Swap disk space
- I/O tuning
- Performance management and monitoring tools
- Establish baseline and create documentation with appropriate tools
- Hypervisor configuration best practices
- Impact of configuration changes to the virtual environment
- Common issues
Compare and contrast cloud delivery models and services:
- Private
- Public
- Hybrid
- Community
- On-premise vs. Off-premise hosting
- Accountability and responsibility based on delivery models
- Security differences between models
- Functionality and performance validation based on chosen delivery model
- Orchestration platforms
Explain the differences between hypervisor types:
- Type I and Type II
- Proprietary vs. open source
- Consumer vs. enterprise use
Explain the benefits of virtualization in a cloud environment:
- Shared resources
- Elasticity
- Network and application isolation
- Infrastructure consolidation
- Virtual datacenter creation
Explain storage configuration concepts:
- Disk types
- Tiering
- RAID levels
- File system types
Explain the importance of network optimization:
- WAN
- LAN
- MAN
- Bandwidth
- Latency
- Compression
- Caching
- Load balancing
- Devices on the same subnet
Explain common hardware resources and features used to enable virtual environments:
- BIOS/firmware configurations
- Minimum memory capacity and configuration
- Number of CPUs
- Number of Cores
- NICs quantity, speeds, and configurations
- Internal hardware compatibility
- HBAs
- Storage media
Explain storage security concepts, methods, and best practices:
- Obfuscation
- Access Control Lists
- Zoning
- LUN masking
- User and host authentication
- Review/audit logs
Implement guest and host hardening techniques:
- Disabling unneeded ports and services
- User credentials
- Host-based/software firewalls
- Antivirus software
- Patching
- Deactivating default accounts
Explain common performance concepts as they relate to the host and the guest:
- IOPS
- Read vs. write files
- File system performance
- Metadata performance
- Caching
- Bandwidth
- Throughput (bonding/teaming)
- Jumbo frames
- Network latency
- Hop counts
- QoS
- Multpathing
- Load balancing
- Scaling
Deploy solutions to meet availability requirements:
- Fault tolerance
- Multipathing
- Load balancing
Summarize cloud characteristics and terms:
- Elasticity
- On-demand self serve/just in time service
- Pay-as-you-grow
- Chargeback
- Ubiquitous access
- Metering resource pooling
- Multitenancy
- Cloud bursting
- Rapid deployment
- Automation
Install, configure, and manage virtual machines and devices:
- Creating, importing, and exporting template and virtual machines
- Install guest tools
- Snapshots and cloning
- Image backups vs. file backups
- Virtual NIC
- Virtual disks
- Virtual switches
- VLAN
- VSAN
Compare and contrast virtual components used to construct a cloud environment:
- Virtual network components
- Shared memory
- Virtual CPU
- Storage Virtualization
Execute storage provisioning:
- Creating LUNs
- Creating network shares
- Zoning and LUN masking
- Multipathing
- Implications of adding capacity to a NAS and SAN
Given a scenario, troubleshoot basic network connectivity issues:
- Tools
- Review documentation and device configuration settings
- Review system logs
Given a scenario, implement and use proper resource monitoring techniques:
- Protocols
- Alert methods
- Establish baselines and thresholds
- Automated responses to specific events
- Examine processes usage / resource usage
Given a scenario, use appropriate tools for remote access:
- Remote hypervisor access
- RDP
- SSH
- Console port
- HTTP
Compare contrast different encryption technologies and methods:
- PKI
- IPSEC
- SSL/TLS
- Ciphers
- Encryption for data in transit and encryption for data at rest
Explain policies and procedures as they relate to a cloud environment:
- Network and IP planning/documentation
- Configuration standardization and documentation
- Change management best practices
- Configuration management
- Capacity management
- Systems life cycle management
- Maintenance windows
Implement appropriate testing techniques when deploying cloud services:
- Test replication
- Test latency
- Test bandwidth
- Test load balancing
- Test application servers
- Test storage
- Test application delivery
- Service performance testing and application performance testing
- Penetration testing
- Vulnerability assessment
- Separation of duties during testing