APNIC Academy Training

Background

The APNIC Academy is offering two training workshops during APRICOT 2025 over 4 days in parallel from Wednesday 19th to Saturday 22nd February.

These workshops are:

1. Network Automation Workshop
2. Network Security Workshop

Workshop participants must attend all 4 days of their chosen Workshop. It is not possible to change topics once the Workshop has started.

Network Automation Workshop

Synopsis

The objective of this tutorial is to introduce Network Automation using a combination of theory and hands-on-labs. At the conclusion, the participants should have agood understanding of what Network Automation is, and how it can be applied in their environments.

Target Audience

Engineers, Network Managers and Operators, who are interested in Network Automation and want to gain an understanding of how to utilise various tools to improvenetwork consistency.

Pre-requisites

It is assumed that participants have a basic understanding of:

• Network operations, Internet technologies, OSI reference model and TCP/IP.
• Basic command line (CLI) skills (Linux and at least 1 Router Operating System).

We strongly recommend the following Academy courses be completed before the start of the tutorial:

• Routing Fundamentals: Routing Fundamentals Course
• Linux Virtual Lab: Hands-on Virtual Labs

Course Outline

• Introduction to Automation
• The 3 W’s of Automation
• Introduction to Salt
• Introduction to YAML and Jinja
• Configuration Management using Salt
• Salt States: Advanced Configuration Management
• Parsing Output Using TextFSM
• The Salt Event Bus
• Napalm Logs
• The Salt Reactor
• Salt Rest API
• Building a Device inventory
• Extending Salt in your own environment

Other Requirements

• Participants are advised to bring their own laptop or desktop computers with high-speed internet access and administrative access to system. It is alsorecommended that computers have Intel i5 or i7 processor, >=8GB of RAM and 30GB of free hard disk space.
• Software: SSH Client, Telnet Client (PuTTy)
• Confirm Secure SHell (SSH) is allowed from the office or home network to access the lab infrastructure. Test SSH connectivity, try to connect to route-views.routeviews.org. For example, from the CLI type: ssh rviews@route-views.routeviews.org
• Attendees must have an APNIC Academy login account. If you don't have one already, you can create an account for free at https://academy.apnic.net/
• Please test the speed of your Internet connection to the servers where the Virtual Machines (VMs) are hosted at the Learn on Demand data centres, using thespeed test tool at https://www.learnondemandsystems.com/speedtest/

Maximum number of attendees

30 participants per workshop

Network Security Workshop

Synopsis

Security is a broad topic that affects many aspects relating to end-users, applications, and infrastructure. The objective of this workshop is to examine key concepts, protocols, policies, and practices to protect data and assets from potential attacks or abuse. This workshop will cover network infrastructure security with a focus on establishing robust, stable networks with secure routing. This workshop will also discuss security operations and examine common security incidents/breaches, countermeasures and mitigation tools.

Target Audience

This course is targeted to network managers and operators, engineers and policy makers who are interested in network security and want to gain an understanding of security operations. The topics covered range from basic to intermediate level that aims to educate and challenge participants.

Pre-requisites

It is assumed that participants have a basic understanding of:

• Network operations, Internet technologies, OSI reference model and TCP/IP.
• Basic command line (CLI) skills.

We strongly recommend the following Academy courses be completed before the start of the workshop:

• Linux Virtual Lab
• Cybersecurity Fundamentals
• Routing Basics:

The following Academy courses may be completed before the start of the workshop:

• Network Security Fundamentals

Course Outline

• Network Security Fundamentals
• Device & Infrastructure Security
• Packet Analysis
• Intrusion Detection
• DDoS Attacks and Countermeasures
• BGP Route Hijack, Leak Detection & Prevention
• IPv6 Security
• DNS Security
• Secure Internet Routing
• Log Management & Flow Monitoring
• Security Operations & Monitoring
• Vulnerability Assessment and Penetration Testing
• Honeypots and Honeynet

Other Requirements

• Participants are advised to bring their own laptop or desktop computers with high-speed internet access and administrative access to system. It is also recommended that computers have Intel i5 or i7 processor, >=8GB of RAM and 30GB of free hard disk space.
• Software: SSH Client, Telnet Client (PuTTy)
• Confirm Secure SHell (SSH) is allowed from the office or home network to access the lab infrastructure. Test SSH connectivity, try to connect to routeviews.routeviews.org. For example, from the CLI type: ssh rviews@route-views.routeviews.org
• Attendees must have an APNIC Academy login account. If you don't have one already, you can create an account for free at https://academy.apnic.net/
• Please test the speed of your Internet connection to the servers where the Virtual Machines (VMs) are hosted at the Learn on Demand data centres, using the speed test tool at https://www.learnondemandsystems.com/speedtest/

Maximum number of attendees

40 participants per workshop