Get in Touch

Course Outline

VPN Fundamentals and Architecture

  • VPN types: remote access, site-to-site, client-to-site
  • VPN protocols comparison: WireGuard, OpenVPN, IPsec, SSTP
  • Cryptographic foundations: symmetric and asymmetric encryption
  • PKI and certificate management for VPNs
  • Network architecture considerations for enterprise VPNs

WireGuard Protocol Deep Dive

  • WireGuard design principles and architecture
  • Cryptokey routing and endpoint management
  • WireGuard vs traditional VPNs: performance and simplicity
  • Protocol security analysis and formal verification
  • Platform support and client availability

OpenVPN Architecture and Modes

  • OpenVPN protocol overview: SSL/TLS-based VPN
  • TUN vs TAP device modes
  • UDP vs TCP transport considerations
  • Layer 2 and Layer 3 VPN configurations
  • OpenVPN cipher and HMAC configuration
  • Legacy enterprise support requirements

WireGuard Server Deployment

  • Linux kernel module installation and configuration
  • WireGuard-tools and wg-quick utility
  • Key generation and distribution strategies
  • Server configuration: interfaces, peers, routing
  • Multiple network support and routing tables
  • High availability and load balancing setup

OpenVPN Server Deployment

  • OpenVPN package installation
  • Server configuration file creation
  • Easy-RSA PKI setup and certificate generation
  • TLS key generation for control channel security
  • Client configuration templates
  • Service integration and startup configuration

Client Configuration Management

  • WireGuard client setup: Linux, Windows, macOS, mobile
  • OpenVPN client configuration: OpenVPN Connect, Tunnelblick
  • Configuration file generation and distribution
  • QR code configuration for mobile devices
  • Split tunneling configuration
  • DNS leak prevention and configuration

Authentication and Authorization

  • Certificate-based authentication (WireGuard and OpenVPN)
  • LDAP/Active Directory integration with OpenVPN
  • RADIUS authentication for enterprise integration
  • Two-factor authentication integration (TOTP, hardware tokens)
  • OAuth and SAML integration options
  • Role-based access control implementation

Site-to-Site VPN Configuration

  • Hub-and-spoke vs full mesh topologies
  • WireGuard site-to-site with persistent keepalive
  • OpenVPN site-to-site with shared keys and certificates
  • Dynamic routing over VPN tunnels (BGP, OSPF)
  • Failover and redundancy patterns
  • NAT traversal and firewall traversal

Advanced WireGuard Features

  • wg-easy and web-based management tools
  • WireGuard with containers and Kubernetes
  • WireGuard road warrior setup with roaming clients
  • Pre-shared keys for additional security
  • WireGuard in restricted network environments
  • Multi-hop and cascading configurations

Advanced OpenVPN Features

  • OpenVPN Access Server overview
  • Client-specific configuration and CCD files
  • Push configurations and routes to clients
  • Irwins system and floating IPs
  • Bridging and Ethernet over IP configurations
  • Compression and performance tuning
  • Plugins and scripting

Network Security and Firewall Integration

  • Firewall rules for VPN servers
  • iptables/nftables integration
  • Traffic filtering and access control policies
  • Kill switch implementation for clients
  • Intrusion detection on VPN traffic
  • DDoS protection for VPN endpoints

Monitoring and Logging

  • WireGuard status and peer monitoring
  • OpenVPN status and log analysis
  • Connection tracking and user activity
  • Prometheus/Grafana integration for VPN metrics
  • Alerting on connection anomalies
  • SIEM integration for security monitoring

Scalability and High Availability

  • Load balancing VPN connections
  • Active-passive and active-active HA configurations
  • Session persistence and reconnection handling
  • Geo-distributed VPN servers
  • Capacity planning and performance testing
  • Disaster recovery strategies

Management and Automation Tools

  • Automated user provisioning and deprovisioning
  • Configuration management (Ansible, Puppet, Chef)
  • API-based management solutions
  • Self-service portals for certificate management
  • Policy-based deployment automation

Troubleshooting and Maintenance

  • Common WireGuard issues and solutions
  • OpenVPN troubleshooting methodology
  • Connection debugging and packet capture
  • Performance bottleneck identification
  • Certificate and key management lifecycle
  • Upgrade procedures and backward compatibility

Migration from Commercial VPNs

  • Assessment of commercial VPN replacement candidates
  • Migration planning and phased cutover
  • User training and documentation
  • Hybrid operation during transition
  • Rollback strategies
  • Lessons learned and best practices

Summary and Deployment Checklist

  • Production deployment checklist
  • Security hardening best practices
  • Documentation requirements
  • Ongoing maintenance considerations

Requirements

  • Understanding of TCP/IP networking and subnetting
  • Experience with Linux system administration
  • Knowledge of PKI and certificate concepts
  • Familiarity with firewall and routing concepts
  • Basic understanding of encryption and cryptographic principles

Audience

  • Network Security Engineers
  • System Administrators managing remote access
  • DevOps Engineers building secure infrastructure
  • IT Administrators responsible for workforce connectivity
 21 Hours

Number of participants


Price per participant

Open Training Courses require 5+ participants.

Testimonials (2)

communication, knowledge from experience, solve problems,

Marcin Walewski - Intel Technology Poland Sp. z o.o.
Course - OpenStack Bootcamp

The virtual desktop in a browser feature was kind of neat.

Mikael Karlsson - Polystar OSIX
Course - OpenStack Architecture and Troubleshooting

Upcoming Courses

Enterprise VPN: Self-Hosted WireGuard and OpenVPN

2026-05-25 10:00
21 hours
Jungang-Dong Center
₩ 7500000 (Online)
₩ 15000000 (Classroom)

Enterprise VPN: Self-Hosted WireGuard and OpenVPN

2026-06-08 10:00
21 hours
Seoul - Gran Seoul
₩ 7500000 (Online)
₩ 15000000 (Classroom)

Enterprise VPN: Self-Hosted WireGuard and OpenVPN

2026-06-22 10:00
21 hours
Seoul Center 1
₩ 7500000 (Online)
₩ 15000000 (Classroom)

Enterprise VPN: Self-Hosted WireGuard and OpenVPN

2026-07-06 10:00
21 hours
Jungang-Dong Center
₩ 7500000 (Online)
₩ 15000000 (Classroom)

Enterprise VPN: Self-Hosted WireGuard and OpenVPN

2026-07-20 10:00
21 hours
Seoul - Gran Seoul
₩ 7500000 (Online)
₩ 15000000 (Classroom)

Related Courses

Developing Applications for ONOS

 21 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at intermediate-level SDN developers and network engineers who wish to develop custom applications on the ONOS platform to address specific network challenges and enhance SDN capabilities.

By the end of this training, participants will be able to:

  • Understand the architecture and core components of ONOS.
  • Set up a development environment for ONOS applications.
  • Create, test, and deploy ONOS applications for managing SDN networks.
  • Integrate ONOS applications with external systems and APIs.
  • Troubleshoot and optimize ONOS applications for performance and scalability.
Read more...

Developing Applications with OpenDaylight

 14 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at intermediate-level SDN developers and software engineers who wish to learn how to build custom SDN applications using OpenDaylight APIs and YANG models to enhance network functionality and scalability.

By the end of this training, participants will be able to:

  • Understand the architecture and components of OpenDaylight.
  • Use OpenDaylight APIs to build SDN applications.
  • Create and manage YANG models for network customization.
  • Deploy, test, and debug custom applications in an OpenDaylight environment.
  • Integrate OpenDaylight with external systems and network devices.
Read more...

Linux for Network Engineers

 14 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at network engineers who wish to use Linux for network engineering.

By the end of this training, participants will be able to:

  • Set up Linux services for networking.
  • Replace switches with Linux switches.
  • Use Linux commands to manage processes.
  • Configure an SDN to automate network maintenance.
Read more...

ONAP for Network Orchestration and Automation

 28 Hours

In this instructor-led, live training in South Korea (online or onsite), participants will learn how to use ONAP to automate networking services.

By the end of this training, participants will be able to:

  • Understand, install and configure the various components in the ONAP ecosystem.
  • Carry out real-time, policy-driven orchestration and automation of physical and virtual network functions.
  • Design, create, orchestrate, and monitor VNFs, SDNs and other network services.
  • Efficiently manage the entire networking lifecycle using a software-driven approach.
  • Develop, deploy, and scale a network using the latest open source technologies and practices.
Read more...

ONOS Fundamentals: Deploying Scalable SDN Solutions

 14 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at beginner-level networking professionals and IT administrators who wish to understand the foundational concepts of ONOS, its architecture, and its deployment for scalable SDN solutions.

By the end of this training, participants will be able to:

  • Understand the role of ONOS in software-defined networking (SDN).
  • Describe the architecture and core components of ONOS.
  • Install and configure ONOS on a Linux-based system.
  • Set up a basic SDN network using ONOS.
  • Explore ONOS features for managing and scaling network infrastructure.
Read more...

ONOS for Network Engineers: Managing SDN Environments

 21 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at intermediate-level network engineers, DevOps teams, and SDN developers who wish to understand and manage SDN environments using ONOS effectively.

By the end of this training, participants will be able to:

  • Understand the architecture and components of ONOS.
  • Install and configure ONOS in a lab environment.
  • Explore the capabilities of ONOS for managing SDN environments.
  • Deploy, manage, and troubleshoot SDN networks using ONOS.
Read more...

ONOS in Production: Deployment and Optimization

 21 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at intermediate-level IT architects and network managers who wish to deploy and optimize ONOS in production environments, ensuring scalability, performance, and reliability.

By the end of this training, participants will be able to:

  • Understand the architecture and core features of ONOS for production use.
  • Deploy ONOS in a production environment using best practices.
  • Configure clustering, redundancy, and fault tolerance in ONOS.
  • Monitor, troubleshoot, and optimize ONOS deployments for scalability and performance.
  • Integrate ONOS with existing network infrastructure and tools.
  • Plan and execute a successful ONOS upgrade process.
Read more...

Introduction to OpenDaylight: Understanding SDN Fundamentals

 14 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at beginner-level network engineers and IT professionals who wish to gain a foundational understanding of SDN concepts, learn about the architecture of OpenDaylight, and perform basic installation and configuration tasks.

By the end of this training, participants will be able to:

  • Understand the principles and benefits of software-defined networking (SDN).
  • Explore the architecture and components of OpenDaylight.
  • Install and configure OpenDaylight on a Linux system.
  • Integrate OpenDaylight with networking devices.
  • Execute basic OpenDaylight operations and commands.
Read more...

OpenDaylight for Network Automation

 14 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at beginner-level network engineers and IT administrators who wish to learn fundamental OpenDaylight concepts, understand its role in network automation, and begin automating network configurations and operations.

By the end of this training, participants will be able to:

  • Understand the role of OpenDaylight in software-defined networking (SDN).
  • Install and configure OpenDaylight on a Linux-based system.
  • Explore the OpenDaylight architecture and core features.
  • Create basic automated network configurations using OpenDaylight.
  • Monitor and manage networks using OpenDaylight controllers.
Read more...

OpenDaylight for Network Engineers

 14 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at intermediate-level network engineers and DevOps teams who wish to deploy, configure, and manage SDN solutions using the OpenDaylight platform.

By the end of this training, participants will be able to:

  • Understand OpenDaylight's architecture, components, and role in SDN ecosystems.
  • Install and configure OpenDaylight for various network scenarios.
  • Develop and deploy network flows using OpenDaylight controllers.
  • Integrate OpenDaylight with SDN-enabled devices and existing networks.
  • Troubleshoot and optimize OpenDaylight deployments for real-world use cases.
Read more...

OpenDaylight in Production: Scaling and Optimizing SDN Deployments

 14 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at intermediate-level IT architects, network administrators, and engineers who wish to deploy OpenDaylight in production environments, optimize its performance for large-scale use, and troubleshoot common issues in SDN deployments.

By the end of this training, participants will be able to:

  • Deploy OpenDaylight in production environments for scalable SDN solutions.
  • Optimize the performance of OpenDaylight deployments to handle high traffic volumes.
  • Troubleshoot and resolve common issues in SDN deployments.
  • Monitor and maintain OpenDaylight environments for long-term stability.
  • Scale OpenDaylight deployments to meet growing network demands.
Read more...

OpenStack Architecture and Troubleshooting

 14 Hours

The aim of this course is twofold - gain solid knowledge about OpenStack architecture and acquire profound troubleshooting skills. In the architecture part you will learn how to design the hardware for the public and private cloud, prepare high-availability control plane, choose proper size of the flavours, and safely overcommit cloud resources, among other things. Getting knowledge about the internals of Neutron (Networking Service) is another essential part in OpenStack architecture. Next the participant will be introduced into methods of troubleshooting issues in OpenStack clusters starting from general tips, through network troubleshooting up to caveats of main OpenStack services. Around 75% of the course comprises of hands-on workshops in the real OpenStack training environment.

Read more...

OpenStack Bootcamp

 28 Hours

The course is a comprehensive training on OpenStack. It starts with the introduction to the system, then through hands-on workshops it gives practical knowledge on managing private clouds based on OpenStack, finally troubleshooting and advanced, architectural topics are present. The goal of this course is to familiarize with the OpenStack ecosystem as well as to give a strong background for further expansion and refinement of the OpenStack clouds. The course comprises all topics necessary to accomplish the Certificate OpenStack Administrator exam. 75% of the course is based on hands-on workshop in the real OpenStack training environment.

Read more...

P4 Programming

 21 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at networking engineers and developers who wish to configure, execute and manage programmable networking resources using P4.

By the end of this training, participants will be able to:

  • Learn the fundamentals of the P4 language.
  • Program network devices.
  • Set up a server for traffic management.
  • Compile and execute a P4 program to control plane applications.
  • Manage network congestion using monitoring and debugging methods.
Read more...

Related Categories

Networking
Networking