Central & Eastern Cohort: Cybersecurity Resilience Workshop -Track 2: Securing campus networks and IT assets

From KENET Training
Revision as of 13:02, 26 February 2026 by Admin (talk | contribs) (TimeTable)
Jump to: navigation, search

KENET is pleased to invite you to the Cybersecurity Resilience Workshop - Track 2. This track focuses on the architectural resilience of campus networks through advanced traffic control and infrastructure hardening. Participants will master the deployment of Access Control Lists (ACLs) and Firewalls while executing a secure IPv6 transition using Dual-Stack strategies.

The training will be held from February 23rd to February 27th, 2026, at the Abai Lodges and Spa in Kirinyaga.

Objective

By the end of the program, attendees will be able to secure critical IT assets—including switches, servers, and wireless controllers—through robust filtering and configuration auditing. The ultimate goal is to build a high-performance, segmented environment where security policies remain consistent across both legacy and modern protocols, backed by proactive monitoring and logging.

Who Should Attend?

This course is designed for Cybersecurity specialists, Network engineers and network administrators.

Prerequisites

1. Laptop for the sessions with Wi-Fi capability 2. Intermediate to expert knowledge of TCP/IP networks, IP Addressing and firewalls.

Course content

Note: All lab manuals and slides can be found in the [Workshop Resource Folder] at the bottom of this page.

Trainers

List of Training Team Members
Full Name Initials (Inst.) Role Organization
Nyanjau Kimani NK Program Manager KENET
Alfred Kipruto AKip Quality Assurance KENET
Zeinab Mzungu ZM Logistics & Support KENET
Caroline Gachuhi CG Registration & Support KENET
Anne Inapat AI Trainer KENET
Barrack Otieno BO Trainer ISOC/ICANN
Kevin Chege KC Trainer/Lab ISOC
Kelvin Kariuki KK Trainer MMU
Geoffrey Luora GL Trainer KENET
Samuel Macharia SK Trainer KENET

Participants

TimeTable

Master Schedule: Track 2: Securing Campus Network Infrastructure and IT Assets
Time Day 1 (Joint) Day 2 Day 3 Day 4 Day 5
**07:00** **Welcome and registrations** Sessions start at 08:00
**08:00** **Introductions & Objectives (JOINT)** (AKip) Recap Recap Recap Recap
**08:20** **Housekeeping (JOINT)** (ZM/Akip) **Module 1:** Concepts on Campus Network Design (KK) **Module 4:** Dual Stack concepts and planning (BO) [6] **Module1:** Wireless Networks & Security -802.1X (KK) **Module 8:** Monitoring & Troubleshooting (KK/BO)
**08:35** (08:35 - 09:00 Joint Session) (Contd) (Contd) (Contd) (Contd)
**09:00** **ICANN Grant Funded Project Overview (JOINT)** (AKip/NK/BO) [1 ][[1.2] **Module 1:** DISCUSSION on Respective existing institutional campus network diagrams (KK/GL) Module 4:LAB (Configuring dual stack on switches and routers) (BO/GL) **Module 1:**eduroam (SK) **Module 8:** DEMO (Monitoring Devices & Troubleshooting tools) (KK/BO)
**10:00** Tea break (10:00 – 10:30)
**10:30** **Lab Environment & Topology Walkthrough (Lab Support)** (KC) [1.3] **Module 1:** VLANS LAB (KK) **Module 7:** Authentication & Authorization (BO) [7] **Module7:** Network Encryption (BO) **Best Practices on Campus network and security (GL)
**11:30** **Module 1: Intro to IP Addressing & Routing (JOINT)** (KK) [2 **Module 1:** Routing LAB (KK) **Module 7:** LAB (Installation of AAA software TACACS+) (BO) **Module 7:**LAB (Connecting remote sites; establish VPN connections and L2 tunnels) (BO) **Assessment -section 1 MCQs** (CG)
**12:30** **Module 1: DNS and its roles (JOINT)** (Akoech) [3] (Contd) (Contd) (Contd) Assessment -section 2 - LAB (BO/KK/GL)
**13:00** Lunch break - Break into respective rooms after lunch Lunch break
**14:00** **Module 1:** Continuation on IP addressing- introducing routing and switching for v4 and v6 (KK) [2] **Module2:** IPv4 and IPv6 Security Landscape (GL) [4] & **Module3: ** Transitioning to IPv6 Strategy (GL) [5] **Module7:** Dual Stack Firewalling & Blocking Traffic (BO) [8] & LAB (ACLs on switches and Routers) LAB (Firewall policies on switches, routers) and pFsense LAB (iptables and ipv6 tables on RADIUS or TACACS+ server) (GL/BO) **Module8:** Network Management & Asset Verification (GL) & **DEMO using lldp/cdp to identify connected devices (GL/BO) **Module 5:** Compliance and DPA 2019 -security&safeguards (BO) [https://training.kenet.or.ke/images/2/2a/Data_protection_Overview_Kenet.pdf 12 **Vote of Thanks (Guest Speaker)
**16:00** **Recap** **Recap** **Recap** **Recap** (16:00 - 16:30 Final Wrap)
**16:30** **Tea break and Day End** **Tea break and Day End** **Tea break and Day End** **Tea break and Day End** **Certificate Award** **Post-Training Survey**

Workshop Resources

Track 2: Network Security & IPv4, IPv6 Security

JOINT Sessions

Additional Resources from NSRC -a KENET Training Partner

Session Photos

Retrieved from "http://training.kenet.or.ke/index.php?title=Central_%26_Eastern_Cohort:_Cybersecurity_Resilience_Workshop_-Track_2:_Securing_campus_networks_and_IT_assets&oldid=1744"