Talk to a Training Advisor
Availability (sort by: location | date)
Request availability by clicking a date. Europe / International
|
 |
About this class This course is a bundle of the following courses: - CJFV - Configuring Juniper Networks Firewall/IPSec VPN Products
- AJVI - Advanced Juniper Networks IPSec VPN Implementations
- IFVH - Integrating Juniper Networks Firewalls/VPNs into High-Performance Networks
- APJF - Attack Prevention with Juniper Networks Firewalls
This training may be available onsite; please contact us if you are interested. Who will the lesson benefit? This course is intended for network engineers, support personnel, reseller support, and others responsible for implementing Juniper Networks firewall products. What delegates will learn CJFV - After successfully completing this course, you should be able to: - Explain the Juniper Networks security architecture.
- Configure administrative access and options.
- Backup and restore configuration and ScreenOS files.
- Configure a Juniper Networks device in transparent, route, and NAT modes.
- Discuss the applications of multiple virtual routers.
- Configure the Juniper Networks firewall to permit and deny traffic based on user defined policies.
- Configure advanced policy options.
- Identify and configure network designs for various types of network address translation.
- Configure policy-based and route-based VPN tunnels.
AJVI - After successfully completing this course, you should be able to: - Configure LAN-to-LAN IPSec VPNs in various configurations.
- Configure VPN redundancy.
- Configure dynamic routing using IPSec VPNs.
- Configure remote access IPSec connectivity including group IKE and shared IKE.
- Configure GRE tunnels.
IFVH - After successfully completing this course, you should be able to: - Configure virtual systems, including standard, IP-based, and transparent mode.
- Configure dynamic routing protocols, including OSPF and BGP.
- Configure multicast operations, including IGMP and PIM-SM.
- Configure high availability in both static routing and dynamic routing environments.
- Configure traffic shaping features.
- Verify operations and troubleshoot all previous configurations.
APJF - After successfully completing this course, you should be able to: - Configure attack prevention features, including: SCREEN options; Deep Inspection; and Antivirus scanning.
- Configure URL filtering.
- Configure antispyware, antispam, and antiphishing filters.
What prerequisites are required This course assumes that students have basic networking knowledge and experience in the following: - The Internet;
- Networking concepts; and terms including Ethernet, TCP/IP, bridging, switching, and routing.
Contents of this classCJFV - Configuring Juniper Networks Firewall/IPSec VPN Products Chapter 1: Course Introduction Chapter 2: ScreenOS Concepts, Terminology, and Platforms - Security Device Requirements
- ScreenOS Security Architecture
- Juniper Networks Platforms
Chapter 3: Initial Connectivity - System Components
- Establishing Connectivity
- Verifying Connectivity
- Lab 1: Initial Configuration
Chapter 4: Device Management - Management
- Recovery
- Lab 2: Device Administration
Chapter 5: Layer 3 Operations - Need for Routing
- Configuring Layer 3
- Verifying Layer 3
- Loopback Interface
- Interface-Based NAT
- Lab 3: Layer 3 Operations
Chapter 6: Basic Policy Configuration - Functionality
- Policy Configuration
- Common Problems
- Global Policy
- Verifying Policies
- Lab 4: Basic Policy Configuration
Chapter 7: Policy Options - Overview
- Logging
- Counting
- Scheduling
- User Authentication
- Lab 5: Policy Options
Chapter 8: Address Translation - Scenarios
- NAT-src
- NAT-dst
- VIP Addresses
- MIP Addresses
- Lab 6: Address Translation
Chapter 9: Transparent Mode (Optional) - Description
- Configuration
- Verifying Operations
- Lab 7: Transparent Mode
Chapter 10: VPN Concepts - Concepts and Terminology
- IP Security
Chapter 11: Policy-Based VPNs - Configuration
- Verifying Operations
- Lab 8: Policy-Based VPNs
Chapter 12: Route-Based VPNs - Concepts and Terminology
- Configuring VPNs
- Verifying Operations
- Lab 9: Route-Based VPNs
Appendix A: Additional Features AJVI - Advanced Juniper Networks IPSec VPN Implementations Chapter 1: Course Introduction Chapter 2: ScreenOS VPN Basics Review - VPN Review
- Verifying Operations
- VPN Monitor
- Lab 1: VPN Review
Chapter 3: VPN Variations - Dynamic Peers
- Transparent Mode
- Overlapping Addresses
- Lab 2: VPN Variations
Chapter 4: Hub-and-Spoke VPNs - Concepts
- Policy-Based Hub-and-Spoke
- Route-Based, with No Policy, and NHTB
- Route-Based with Policy
- Centralized Control
- Auto Connect-Virtual Private Networks
- Lab 3: Hub-and-Spoke VPNs
Chapter 5: Routing over VPNs - Routing Overview
- Configuring RIP
- Configuring OSPF
- Case Studies
- Lab 4: Dynamic Routing
Chapter 6: Using Certificates - Concepts and Terminology
- Configuring Certificates and Certificate Support
- Configuring VPNs with Certificates
- Lab 5: Using Certificates
Chapter 7: Redundant VPN Gateways (Optional) - Redundant VPN Gateways
- Other Options
- Demo: Redundant VPN Gateways
Chapter 8: Generic Routing Encapsulation (Optional) Chapter 9: Dial-Up IPSec VPNs - Basic Dial-up Configuration
- Group IKE ID
- XAUTH and Shared IKE ID
Appendix A: NetScreen-Remote - NetScreen-Remote Overview
- Basic Dial-Up A-9
- XAUTH/Shared IKE ID
- Demo: Dial-Up VPNs
- Lab 6: Dial-Up VPNs
IFVH - Integrating Juniper Networks Firewalls/VPNs into High-Performance Networks Chapter 1: Course Introduction Chapter 2: ScreenOS VPN Basics Review - Concepts Review
- Configuration Review
- Lab 1: ScreenOS Basics Review
Chapter 3: OSPF - OSPF Operations
- OSPF Configuration
- Verification and Troubleshooting
- Lab 2: Part 1-Configuring OSPF
- Route Redistribution
- Lab 2: Part 2-Configuring Redistribution
- Route Optimization
- Lab 2: Part 3-Optimizing Routing Tables
Chapter 4: BGP - BGP Operations
- EBGP Configuration
- Filtering on Per-Peer Basis
- Verification and Troubleshooting
- IBGP Configuration
- BGP Connectivity
- Lab 3: Configuring BGP
Chapter 5: Advanced Static Routing - Source-Based Routing
- Policy-Based Routing
- Destination Routing
- Lab 4: Configuring Advanced Static Routes
Chapter 6: Multicast - IGMP Operations
- IGMP Configuration
- PIM-SM Operations
- PIM-SM Configuration
- Multicast Policies
- Lab 5: Configuring Multicast Support
Chapter 7: Virtual Systems - VSYS Operations and Concepts
- Configuring VSYS Using Interface Classification
- Lab 6: Part 1-Creating a VSYS
- VSYS Resource Management
- Inter-VSYS Routing
- Lab 6: Part 2-Inter-VSYS Routing
- Lab 6: Part 3-Route Export
- Lab 6: Part 4-Address Translation
Chapter 8: Redundancy - NSRP Terms and Concepts
- Configuring NSRP Active/Passive
- Configuring NSRP Active/Active, VSD-Less Cluster, and NSRP-Lite
- Tuning Failover Performance
- Redundant Interfaces
- Demo: NSRP
Chapter 9: Traffic Management - Need for Traffic Management
- Egress Traffic Shaping
- Ingress Policing
- DSCP Marking
Appendix A: Virtual Systems Variations - VSYS with IP Classification
- Transparent Mode VSYS
APJF - Attack Prevention with Juniper Networks Firewalls Chapter 1: Course Introduction Chapter 2: ScreenOS Basics Review - Concepts Review
- Configuration Review
- Lab 1: ScreenOS Basics Review
Chapter 3: SCREEN Options - Multilayer Network Protection
- Types of Attacks
- SCREEN Options Configuration
- SCREEN Best Practices
- Lab 2: SCREEN Options Configuration
Chapter 4: Deep Inspection - Deep Inspection Overview
- Attack Database Configuration
- Policy Configuration
- Logging and Monitoring
- Lab 3: Deep Inspection Configuration
Chapter 5: Antivirus - Antivirus Operations
- Internal Scanning-HTTP Operations
- Antivirus Configuration-Kaspersky
- Antivirus Configuration-ICAP
- Verifying Operations
- Lab 4: Antivirus Configuration
Chapter 6: Web Filtering - Web-Filtering Options
- Web-Filtering Configuration
- Verifying Operations
- Lab 5: Configuring Web Filtering
Chapter 7: Antispam - Antispam Concepts
- Antispam Configuration
- Verifying Operations
- Lab 6: Antispam Configuration
|
