CentOS Stream: Enterprise Linux Administration and Infrastructure Modernization Training Course

CentOS Stream Architecture and Release Philosophy

• Understanding the CentOS Stream rolling-release model in comparison to point release distributions.
• The relationship between CentOS Stream and Red Hat Enterprise Linux upstream development.
• Naming conventions, stream repositories, and content versioning strategy.
• Selecting and switching between multiple streams for application compatibility.

Installation and Automated Deployment

• Step-by-step walkthrough of the interactive Anaconda graphical and text-based installer.
• Kickstart files for fully automated, unattended installations.
• PXE network boot and TFTP-based network-install workflows.
• Containerized and cloud-init-based provisioning for cloud deployments.
• Partitioning strategies and filesystem selection, including Btrfs and XFS defaults.

Package Management and Module Streams

• Advanced DNF operations, transaction management, and dependency resolution.
• Module streams for flexible software versions and language runtimes.
• Repository configuration, GPG signing verification, and creation of custom repositories.
• Content views and errata tracking for enterprise update management.

System Service Management with systemd

• Understanding systemd targets, units, and dependency graphs.
• Creating, enabling, and debugging custom service units.
• Journal logging, log rotation, and persistent log storage.
• Resource control via systemd slices and resource manager policies.
• Kdump crash dump configuration and kernel panic handling.

Modern Network Configuration

• Essentials of NetworkManager CLI and CUI configuration.
• Interface bonding, bridge, VLAN, and teaming configurations.
• Firewalld rich rules, zones, services, and port forwarding.
• IPv6 routing, firewall rules, and DNS resolution via systemd-resolved.
• Network debugging tools and packet capture techniques.

Container and Pod Infrastructure

• Differences between Podman and Docker: fundamentals of daemonless container workflows.
• Buildah container image creation without a Dockerfile or daemon.
• Rootless container deployment and user namespace mappings.
• Red Hat Universal Base Images and Alpine-based lightweight containers.
• Storage drivers, volume mounts, and inter-container network communication.
• Container lifecycle management and monitoring using skopeo and crun.

Security Hardening

• SELinux enforcing mode configuration, policy management, and audit troubleshooting.
• Firewalld hardened zone design and rule composition.
• SSH hardening, key-based authentication, and bastion host setup.
• Password policies, PAM modules, and privilege escalation via sudo.
• FIPS 140-2/140-3 compliance configuration and validation.
• Kernel live patching and CVE remediation workflows.

Storage and Filesystem Management

• LVM2 logical volume management for dynamic capacity planning.
• Btrfs snapshot, subvolume management, and auto-decompression.
• NFS and Samba file sharing service configuration.
• Multipath I/O for SAN storage redundancy and failover.
• Disk encryption with LUKS and automated unlock via initramfs.

System Monitoring and Kernel Management

• Performance monitoring using sar, top, and perf profiling.
• Debugging with strace, ltrace, and GDB for system services.
• Kernel updates, bootloader configuration, and GRUB2 customization.
• System state management and crash analysis.

Automation and Infrastructure as Code

• Ansible inventory design for CentOS Stream host management.
• Automated patching and compliance drift detection workflows.
• IaC modules for configuration management at scale.
• Provisioning playbooks and deployment orchestration strategies.