JUNOS for Security

Main Menu
HOME TRAINING Cyber Forensics EnCase I EnCase II EnCase III Cisco Associate Level CCNA CCNA Security CCNA Voice CCNA Wireless CCDA Professional Level CCNP New CCDP CCIP CCNP CCSP CCVP Expert Level CCIE Routing & Switching CCIE Security CCIE Voice CCIE Service Provider CCDE Juniper JUNOS Routing M-Series & T-Series JNCIA-M JNCIS-M Enterprise Routing JNCIA-ER JNCIS-ER JUNOS Security Enterprise Switching JNCIA-EX E-Seires JNCIA-E JNCIS-E Firewall/VPN JNCIA-FWV JNCIS-FWV IDP JNCIA-IDP SSL VPN JNCIA-SSL JNCIS-SSL DX Application WX Application UAC Microsoft MCP MCSA 2003 MCSE 2003 MCITP Server Admin MCITP Enterprise Admin Checkpoint CCSA CCSE Nokia Checkpoint (IPSO) Nortel Checkpoint (NSF) IT Management ITILv3 CISA CISSP EC-Council CEH ENSA CHFI EDRP CompTIA A+ Network+ Security+ Wireless (Planet3) CWNA CWTS CWSP CWNP Certification Package Routing Switching Firewall Prevention System Voice Hacking Virtualization VMware Workstation VMware ESX Videos CONSULTING Assist Services Network Design Implementation Services Network Security Penetration Testing IT Security Audit Network Operations BOOTCAMP Juniper Bootcamp Cisco Bootcamp CCNP Bootcamp CCSP Bootcamp CCVP Bootcamp Checkpoint NMAP Microsoft ITILv3 Bootcamp COMPANY INFO Company Trainer Profile Work Culture Leadership Infrastructure CAREER Working With Junisys Hot Jobs CONTACT US FORUM LAB Rack Rental Online LAB

Main Menu

Live Chat

Login Form
Username Password Remember Me Forgot your password? Forgot your username? Create an account

Student Talk

Student Talk

NEWS

JUNOS for Security

JUNOS for Security Platforms (24hrs)

Course Overview

This three-day course provides students with the skills for configuration, operation, and implementation of JUNOS security platforms in a typical network environment. This course is based on JUNOS Software version 9.5R1.8.

Through demonstrations and hands-on labs, students will gain experience in configuring and monitoring JUNOS Software for JUNOS security platforms.

Objectives

After successfully completing this course, you should be able to:

* Describe traditional routing and security and the current trends in internetworking;
* Provide an overview of JUNOS security platforms and software architecture;
* Describe the logical packet flow and session creation performed by JUNOS security platforms;
* Describe, configure, and monitor zones;
* Describe, configure, and monitor security policies;
* Describe, configure, and monitor firewall user authentication;
* Describe various types of network attacks;
* Configure and monitor SCREEN options to prevent network attacks;
* Explain, implement, and monitor NAT on JUNOS security platforms;
* Explain the purpose and mechanics of IPsec VPNs;
* Implement and monitor policy-based and route-based IPsec VPNs;
* Utilize and update the IDP signature database on JUNOS security platforms;
* Configure and monitor IDP policy with policy templates; and
* Describe, configure, and monitor high availability chassis clusters.

Intended Audience

This course benefits operators of SRX Series Services Gateways. These operators include network engineers, administrators, support personnel, and reseller support personnel.

Course Level

This is an intermediate-level course.

Prerequisites

Students should have basic networking knowledge and an understanding of the OSI model and the TCP/IP protocol suite. Students should also either attend the Introduction to JUNOS Software (IJS) and JUNOS Routing Essentials (JRE) courses prior to attending this class, or have equivalent experience with JUNOS Software.

Course Contents

Course Introduction

Introduction to JUNOS security platforms

* Traditional Routing
* Traditional Security
* Breaking the Tradition
* JUNOS Software Architecture

Zones

* The Definition of Zones
* Zone Configuration
* Monitoring Security Zones

Security Policies

* Security Policy Overview
* Policy Components
* Verifying Policy Operation
* Policy Scheduling and Rematching
* Policy Case Study

Firewall User Authentication

* Firewall User Authentication Overview
* Pass-Through Authentication
* Web Authentication
* Client Groups
* Using External Authentication Servers
* Verifying Firewall User Authentication

SCREEN Options

* Multilayer Network Protection
* Stages and Types of Attacks
* Using JUNOS Software SCREEN Options
* Applying and Monitoring SCREEN Options

Network Address Translation

* NAT Overview
* Destination NAT Operation and Configuration
* Source NAT Operation and Configuration
* Proxy ARP
* Monitoring and Verifying NAT Operation

IPsec VPNs

* VPN Types
* Secure VPN Requirements
* IPsec Details
* Configuration of IPsec VPNs
* IPsec VPN Monitoring

Introduction to Intrusion Detection and Prevention

* Introduction to JUNOS Software IDP
* IDP Policy Components and Configuration
* Attack and Signature Database
* Case Study: Applying the Recommended IDP Policy
* Monitoring IDP Operation

High Availability Clustering

* High Availability Overview
* Chassis Cluster Components
* Chassis Cluster Operation
* Chassis Cluster Configuration
* Chassis Cluster Monitoring