MikroTik Security Engineer with LABS
What you'll learn
- Configuring Port Knocking on MikroTik router
- Disable unnecessary protocol on the MikroTik Router
- Configure user management to allow particular users to login into the MikroTik Router
- Protect the MikroTik Router from Brute force attacks
- Protect the MikroTik router from DHCP starvation attacks
- Protect the MikroTik router from rogue DHCP servers using DHCP Snooping
- Protect the MikroTik router from ICMP flood attack
- Protoct the MikroTik router from all type of DOS attacks
- Understand how packet flow works in MikroTik routers
- Understand and configure PPTP tunnelling
- Understand and configure L2TP/IPSEC tunnelling
- Understand and configure IPSEC VPN tunnelling
- Understand how to configure Firewall rule using RAW table
- Configure Firewall protection against TCP SYN attacks
- Configure Firewall Protection against UDP attacks and prevention
- Understand and configure Certificates in MikroTik routers to secure connections to the router
- Configure Bridge filtering
- Configure the MikroTik Router to prevent all type of ports scan
- Understand the different type of Chains in the MikroTik Firewall
- Prevent MNDP attacks using the MikroTik Firewall
- Understand and configure SSTP tunnelling protocol with certificates
- Understand IPSEC IKEv1 & IKEv2
- Configure IPSEC site to site
- Have at least MikroTik MTCNA level
- Understand basic networking topics such as TCP/IP, OSI Layer, etc
- Have a good knowledge in MikroTik
***This course is not officially sponsored by MikroTik and not an authorized course by MikroTik. We are neither affiliated with nor endorsed by MikroTik. We respect the Trademarks of the mentioned company and institution.***
As a network engineer, you have always a concern to protect your network from outside cyber attacks. This is most of the the time a challenge when it comes to deploy a security plan to your network.
MikroTik has an extensive firewall feature that can protect your network from all different types of Cyber attacks. The goal of this course is to show you all different steps using real LAB scenarios of how to protect your MikroTik router(s) from any type of cyber attacks and do not let hackers to compromise your network.
This course is based on the MikroTik MTCSE syllabus. So by taking this course, you will cover all the topics of the MikroTik MTCSE track and you will be ready for the exam.
In this course, I will issue cyber attacks to my MikroTik router to see what are the weaknesses available on the router and then show you how you can protect it. All the course will be based on Hands-on LABS that you can re-do them yourself after following this course.
In this course, I will discuss about all security concerns in MikroTik and how to protect your router(s). Some example of the topics that will be explained are:
• Attacks, mechanisms and services
• The most common threats
• RouterOS security deployment
• Packet flow, firewall chains
• Stateful firewall
• RAW table
• SYN flood mitigation
• RouterOS default configuration
• Best practices for management access
• Detecting an attack to critical infrastructure services
• Bridge filter
• Advanced options in firewall filter
• ICMP filtering
• MNDP attacks and prevention
• DHCP: rogue servers, starvation attacks and prevention
• TCP SYN attacks and prevention
• UDP attacks and prevention
• ICMP Smurf attacks and prevention
• FTP, telnet and SSH brute-force attacks and prevention
• Port scan detection and prevention
• Introduction to cryptography and terminology
• Encryption methods • Algorithms - symmetric, asymmetric
• Public key infrastructure (PKI)
• Port knocking
• Secure connections (HTTPS, SSH, WinBox)
• Default ports for the services
In addition of all those security topics, there is one module which explain about the VPN tunneling and will contain the following topics:
• Introduction to IPsec
• L2TP + IPsec
• SSTP with certificates
This course is ideal for Network engineers, technicians and students wanting to deploy and secure MikroTik device based networks. The content of this course is very rich and it has a lot of hands-on LABs so you are more familiar about the types of attacks and how to protect your MikroTik routers from them.
So, are you looking to become a MikroTik Security Professional and be ready for the MTCSE exam? If yes, please do not wait to enroll to my course.
Who this course is for:
- Students and engineers interested to understand how to deploy security in MikroTik
- Students and engineers who wants to be prepared for the MikroTik MTCSE exam
Hello everyone. My name is Maher Haddad with a very long experience in the IT sector. I hold a Bachelor in Computer Communications and a Master in Computer science.
I work as a trainer and I hold the following certificates: CCNA, CCNA Security, CCNA Voice, CCDA, CCNP R&S, CCDP, Microsoft MCP, Microsoft MCSA , MikroTik MTCNA & MTCRE, MTCWE, MTCUME, MTCTCE, MTCINE, MTCSE, Huawei HCNA, CWTS, LigoWave NFT engineer, LigoWave DLB Engineer, Fortinet NSE1, Fortinet NSE2, GVF Level1, GVF level2, GVF Level3 and much more.....
My experience in IT goes to year 2003 and I have been working all my life for international Internet Service Providers (ISP's) in different countries in the world.
You can visit my Facebook page as well as my YouTube channel where I set a lot of online labs.
I hope you will enjoy watching my courses.