USD ($)
$
United States Dollar
$
Canada Dollar
Euro Member Countries
£
Egypt Pound
Your cart is empty
Empty notifications
Login Register
Advanced Junos Security

Advanced Junos Security

in Juniper
(0 Ratings)
Created by NexaEdu

About this course

Course Overview

This four-day course, which is designed to build off the current Juniper Security (JSEC) offering, delves deeper into Junos security, next-generation security features, and ATP supporting software. Through demonstrations and hands-on labs, you will gain experience in configuring and monitoring the advanced Junos OS security features with advanced coverage of advanced logging and reporting, next generation Layer 2 security, next generation advanced anti-malware with Juniper ATP On-Prem and SecIntel. This course uses Juniper Networks SRX Series Services Gateways for the hands-on component.  This course is based on Junos OS Release 20.1R1.11, Junos Space Security Director 19.4, Juniper ATP On-Prem version 5.0.7. 

 

Target Audience

  • This course benefits individuals responsible for implementing, monitoring, and troubleshooting Juniper security components.

 

Course Objectives

  • Demonstrate understanding of concepts covered in the prerequisite Juniper Security courses.
  • Describe the various forms of security supported by the Junos OS.
  • Describe the Juniper Connected Security model.
  • Describe Junos security handling at Layer 2 versus Layer 3.
  • Implement next generation Layer 2 security features.
  • Demonstrate understanding of Logical Systems (LSYS).
  • Demonstrate understanding of Tenant Systems (TSYS).
  • Implement virtual routing instances in a security setting.
  • Describe and configure route sharing between routing instances using logical tunnel interfaces.
  • Describe and discuss Juniper ATP and its function in the network.
  • Describe and implement Juniper Connected Security with Policy Enforcer in a network.
  • Describe firewall filters use on a security device.
  • Implement firewall filters to route traffic.
  • Explain how to troubleshoot zone problems.
  • Describe the tools available to troubleshoot SRX Series devices.
  • Describe and implement IPsec VPN in a hub-and-spoke model.
  • Describe the PKI infrastructure.
  • Implement certificates to build an ADVPN network.
  • Describe using NAT, CoS and routing protocols over IPsec VPNs.
  • Implement NAT and routing protocols over an IPsec VPN.
  • Describe the logs and troubleshooting methodologies to fix IPsec VPNs.
  • Implement working IPsec VPNs when given configuration that are broken.
  • Describe Incident Reporting with Juniper ATP On-Prem device.
  • Configure mitigation response to prevent spread of malware.
  • Explain SecIntel uses and when to use them.
  • Describe the systems that work with SecIntel.
  • Describe and implement advanced NAT options on the SRX Series devices.
  • Explain DNS doctoring and when to use it.
  • Describe NAT troubleshooting logs and techniques.

Course Content

Day 1

1 COURSE INTRODUCTION

 2 Junos Layer 2 Packet Handling and Security Features

  • Transparent Mode Security
  • Secure Wire
  • Layer 2 Next Generation Ethernet Switching
  • MACsec

 LAB 1: Implementing Layer 2 Security

  3 Firewall Filters

  • Using Firewall Filters to Troubleshoot
  • Routing Instances
  • Filter-Based Forwarding

 LAB 2: Implementing Firewall Filters

4 Troubleshooting Zones and Policies

  • General Troubleshooting for Junos Devices
  • Troubleshooting Tools
  • Troubleshooting Zones and Policies
  • Zone and Policy Case Studies

 LAB 3: Troubleshooting Zones and Policies

Day 2  

 5 Hub-and-Spoke VPN

  • Overview
  • Configuration and Monitoring

 LAB 4: Implementing Hub-and-Spoke VPNs

6 Advanced NAT

  • Configuring Persistent NAT
  • Demonstrate DNS Doctoring
  • Configure IPv6 NAT Operations
  • Troubleshooting NAT

 LAB: 5: Implementing Advanced NAT Features

7 Logical and Tenant Systems

  • Overview
  • Administrative Roles
  • Differences Between LSYS and TSYS
  • Configuring LSYS
  • Configuring TSYS

    LAB 6: Implementing TSYS

Day 3  

 8 PKI and ADVPNs

  • PKI Overview
  • PKI Configuration
  • ADVPN Overview
  • ADVPN Configuration and Monitoring

 LAB 7: Implementing ADVPNs

9 Advanced IPsec

  • NAT with IPsec
  • Class of Service with IPsec
  • Best Practices
  • Routing OSPF over VPNs

 LAB 8: Implementing Advanced IPsec Solutions

10 Troubleshooting IPsec

  • IPsec Troubleshooting Overview
  • Troubleshooting IKE Phase 1 and 2
  • IPsec Logging
  • IPsec Case Studies

 LAB 9: Troubleshooting IPsec

Day 4

11 Juniper Connected Security

  • Security Models
  • Enforcement on Every Network Device

12 SecIntel

  • Security Feed
  • Encrypted Traffic Analysis
  • Use Cases for SecIntel

LAB 10: Implementing SecIntel

13 Advanced Juniper ATP On-Prem

  • Collectors
  • Private Mode
  • Incident Response
  • Deployment Models

LAB 11: Implementing Advanced ATP On-Prem

14 Automated Threat Mitigation

  • Identify and Mitigate Malware Threats
  • Automate Security Mitigation

LAB 12: Identifying and Mitigating Threats

A Group VPNs

  • Overview
  • Implementing Group VPNs

Course Prerequisites

  • Strong level of TCP/IP networking and security knowledge
  • Complete the Juniper Security (JSEC) course prior to attending this class
Recommended prerequisites:
  • IJSEC - Introduction to Junos Security
  • JSEC - Junos Security

Comments (0)

0
0 Reviews
Content quality (0)
Instructor skills (0)
Purchase worth (0)
Support quality (0)

Reviews (0)

Content quality
Instructor skills
Purchase worth
Support quality
$700
5 Days money back guarantee
This Live class includes:
Reminder
Favorite
Share

Live class specifications

Enrolled:
Unlimited
Duration:
4 days

Report course

Please describe about the report short and clearly.

Share

Share course with your friends

https://nexaedu.net/course/AJSEC
telegram Telegram whatsapp Whatsapp facebook Facebook twitter Twitter

Buy with points

Your privacy matters

Cookies and similar technologies are used on our sites to personalize content and ads. You can find further details and change your personal settings below. By clicking OK, or by clicking any content on our sites, you agree to the use of these cookies and similar technologies.

GDPR

When you visit any of our websites, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and manage your preferences. Please note, that blocking some types of cookies may impact your experience of the site and the services we are able to offer.

  • These cookies are necessary for our website to function properly and cannot be switched off in our systems. They are usually only set in response to actions made by you that amount to a request for services, such as setting your privacy preferences, logging in or filling in forms, or where they’re essential to providing you with a service you have requested. You cannot opt out of these cookies. You can set your browser to block or alert you about these cookies, but if you do, some parts of the site will not then work. These cookies do not store any personally identifiable information.
  • These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site, which helps us optimize your experience. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not be able to use your data in this way.
  • These cookies enable the website to provide enhanced functionality and personalization. They may be set by us or by third-party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
  • These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.