Security Onion 301 (for version 16.04)

Best Practices for Distributed Deployments with Security Onion 16.04 (Legacy)

In this class, we'll create a Security Onion distributed deployment consisting of a master server, one or more storage nodes, and one or more forward nodes. Please note that 60 days of access is granted to the material and we'll be using the Security Onion ISO image.

This course briefly covers the following topics:

  • configuring master-only and remote node installations
  • creating a minimal stripped-down installation using Ubuntu Server (no GUI) and the Security Onion PPA
  • automating sensor configuration using sosetup.conf
  • verifying services are running
  • managing your entire sensor grid using salt
  • installing updates on the entire sensor grid
  • collecting logs from network infrastructure devices using syslog
  • collecting logs from endpoints using the OSSEC agent

  • You can see the full curriculum by clicking the down arrow under the Class Curriculum section.

    Prerequisites: Security Onion 101 and 201 are recommended prerequisites for 301.

    Upon completing the class, attendees will receive a Certificate of Completion.

    Please note that pricing is per student. If you have multiple students attending the training in one conference room, please register each student individually.

    Your Instructor

    Doug Burks
    Doug Burks

    Doug Burks started Security Onion in 2008 to provide a comprehensive platform for intrusion detection, network security monitoring, and log management. Today, Security Onion is being used by organizations around the world to help monitor and defend their networks. In 2014, Doug started Security Onion Solutions LLC to help those organizations by providing commercial support and training. Onsite training started in 2014 and online training was added in 2015. Doug is a CEO, public speaker, teacher, former president of the Greater Augusta ISSA, and co-founder of BSides Augusta, but what he really likes the most is catching bad guys.

    Frequently Asked Questions

    What if I am unhappy with the course?
    We would never want you to be unhappy! If you are unsatisfied with your purchase, contact us in the first 30 days and we will give you a full refund.
    How long will I have access to the class?
    You will have access to the class for 60 days from the date of purchase.
    Will I get an invoice or receipt for my purchase?
    You will automatically get a receipt for your purchase and it will include all the information that you need for tax purposes.

    Get started now!