JNCIP

Advanced Junos Security


 

Course Introduction

 

AppSecure

  • Overview
  • AppID
  • AppTrack
  • AppFW
  • AppDoS
  • AppTrack
  • AppQoS
  • Lab 1: Implementing AppSecure

Junos Layer 2 Packet Handling and Security Features

  • Transparent Mode Security
  • Layer 2 Ethernet Switching
  • Lab 2: Implementing Layer 2 Security

Virtualization

  • Virtualization Overview
  • Routing Instances
  • Logical Systems
  • Lab 3: Implementing Junos Virtual Routing

Advanced NAT Concepts

  • Operational Review
  • NAT: Beyond Layer 3 and Layer 4 Headers
  • DNS Doctoring
  • IPv6 NAT
  • Advanced NAT Scenarios
  • Lab 4: Advanced NAT Implementations

IPsec Implementations

  • Standard VPN Implementations Review
  • Public Key Infrastructure
  • Hub-and-Spoke VPNs
  • Lab 5: Hub-and-Spoke IPsec VPNs

Enterprise IPsec Technologies: Group and Dynamic VPNs

  • Group VPN Overview
  • GDOI Protocol
  • Group VPN Configuration and Monitoring
  • Dynamic VPN Overview
  • Dynamic VPN Implementation
  • Lab 6: Configuring Group VPNs

IPsec VPN Case Studies and Solutions

  • Routing over VPNs
  • IPsec with Overlapping Addresses
  • Dynamic Gateway IP Addresses
  • Enterprise VPN Deployment Tips and Tricks
  • Lab 7: Implementing Advanced IPsec VPN Solutions

Troubleshooting Junos Security

  • Troubleshooting Methodology
  • Troubleshooting Tools
  • Identifying IPsec Issues
  • Lab 8: Performing Security Troubleshooting Techniques

Appendix A: SRX Series Hardware and Interfaces

  • Branch SRX Platform Overview
  • High End SRX Platform Overview
  • SRX Traffic Flow and Distribution
  • SRX Interfaces

Junos Intrusion Prevention System


 

Course Introduction

 

Introduction to Intrusion Prevention Systems

  • Network Asset Protection
  • Intrusion Attack Methods
  • Intrusion Prevention Systems
  • IPS Traffic Inspection Walkthrough

IPS Policy and Initial Configuration

  • SRX IPS Requirements
  • IPS Operation Modes
  • Basic IPS Policy Review
  • Basic IPS Policy Lab

IPS Rulebase Operations

  • Rulebase Operations
  • IPS Rules
  • Terminal Rules
  • IP Actions
  • Configuring IPS Rulebases Lab

Custom Attack Objects

  • Predefined Attack Objects
  • Custom Attack Objects
  • FineTuning the IPS Policy
  • Custom Signatures Lab

Additional Attack Protection Mechanisms

  • Scan Prevention
  • Blocking Evasion and DoS Attacks Security
  • Flow Protection Mechanisms Security Flow
  • Protection Mechanisms Lab

IPS Logging and Reporting

  • Junos Syslog and Operational Commands
  • STRM IPS Logging
  • IPS Logging Lab