Каталог курсов

Курсы Juniper

JSEC. Программное обеспечение JUNOS для оборудования безопасности (JSEC)

 
Код курса  Код: EDU-JUN-JSEC    Заявка  Предварительная запись    Продолжительность  Кол-во часов: 40 , Кол-во дней: 5


This five-day course covers the configuration, operation, and implementation of SRX.  Series Services Gateways in a typical network environment. Key topics within this course include: security zones, security policies, Network Address Translation (NAT), IPsec VPNs, and chassis clustering.
Through demonstrations and hands-on labs, students will gain experience in configuring the Junos OS and monitoring device operations of Junos security devices. This course uses Juniper Networks SRX Series Services Gateways for the primary hands-on component.
This course is based on Junos OS Release 17.4R1.16 and the vSRX virtual appliance

OBJECTIVES
• Describe traditional routing and security.
• Provide an overview of SRX Series Services Gateway devices and the Junos OS software architecture.
• Describe the logical packet flow and session creation performed by SRX Series Services Gateway devices.
• Describe, configure, and monitor zones.
• Describe, configure, and monitor security policies.
• Troubleshoot security zones and policies.
• Describe, configure, and monitor NAT, as implemented on Junos security platforms.
• Explain the purpose and mechanics of IP Security (IPsec) virtual private networks (VPNs).
• Implement and monitor route-based IPsec VPNs.
• Implement and monitor Hub-and-Spoke VPNs, Group VPNs, and ADVPNs.
• Troubleshoot IPsec VPNs.
• Describe, configure, and monitor chassis clusters.
• Troubleshoot chassis clusters.

RECOMMENDED NEXT COURSE
Advanced Junos Security (AJSEC)

COURSE CONTENT

Day 1
COURSE INTRODUCTION
Introduction to Junos Security
• Traditional Routing and Security
• Architecture Overview of Junos Security

Devices
• Logical Packet Flow through Junos Security
Devices
• J-Web Overview

Zones and Screen Options
• Zones Overview
• Zone Configuration
• Monitoring Security Zones
• Configuring Screen Options
• Screen Options Case Study
LAB 1: Zones and Screen Options

Advanced Security Policy
• Session Management
• Junos ALGs
• Policy Scheduling
• Logging
• Advanced Security Policy
Lab 3: Advanced Policy Options

Security Policies
• Security Policy Overview
• Policy Components
• Security Policy Configuration in J-Web
• Policy Case Study (CLI)
• Policy Case Study (J-Web)
LAB 2: Security Policies

Day 2
Troubleshooting Zones and Policies
• General Troubleshooting for Junos Devices
• Troubleshooting Tools
• Troubleshooting Zones and Policies
• Zone and Policy Case Studies

Lab 4: Troubleshooting Security Zones and Policies

Network Address Translation
• NAT Overview
• Source NAT
• Destination NAT
• Static NAT
• Proxy ARP
Lab 5: Network Address Translation


Advanced NAT
• Persistent NAT
• DNS Doctoring
• IPv6 with NAT
• Advanced NAT Scenarios
• Troubleshooting NAT
Lab 6: Advanced NAT

Day 3
IPsec VPN Concepts
• VPN Types
• Secure VPN Requirements
• IPsec Tunnel Establishment
• IPsec Traffic Processing

IPsec VPN Implementation
• IPsec VPN Configuration
• IPsec VPN Case Study
• Proxy IDs and Traffic Selectors
• Monitoring IPsec VPNs
Lab 7: Implementing IPsec VPNs

Hub-and-Spoke VPNs
• Hub-and-Spoke VPN Overview
• Hub-and-Spoke Configuration and Monitoring
Lab 8: Hub-and-Spoke VPNs

Group VPNs
• Group VPN Overview
• Group VPN Configuration and Monitoring
Lab 9: Group VPNs

Day 4
PKI and ADVPNs
• Public Key Infrastructure Overview
• PKI Configuration
• ADVPN Overview
• ADVPN Configuration and Monitoring
Lab 10: PKI and ADVPNs

Advanced IPsec
• NAT with IPsec
• Class of Service with IPsec
• Best Practices
• Routing OSPF over IPsec
• IPsec with Overlapping Addresses
• IPsec with Dynamic Gateway IP Addresses
Lab 11: Advanced IPsec VPN Solutions

Troubleshooting IPsec
• IPsec Troubleshooting Overview
• Troubleshooting IKE Phase 1 and 2
• IPsec Logging
• IPsec Case Studies
Lab 12: Troubleshooting IPsec

Chassis Cluster Concepts
• Chassis Clustering Overview
• Chassis Cluster Components
• Chassis Cluster Operation

Day 5
Chassis Cluster Implementation
• Chassis Cluster Configuration
• Advanced Chassis Cluster Options
Lab 14: Implementing Chassis Clusters

Troubleshooting Chassis Clusters
• Troubleshooting Chassis Clusters
• Chassis Cluster Case Studies
Lab 14: Troubleshooting Chassis Clusters

SRX Series Hardware
• Branch SRX Platform Overview
• Mid-Range SRX Platform Overview
• High-End SRX Platform Overview
• SRX Traffic Flow and Distribution
• SRX Interfaces

Virtual SRX
• Virtualization Overview
• Network Virtualization and SDN
• Overview of the Virtual SRX
• Deployment Scenarios
• Integration with AWS 


Ссылка курса обучения
Назад в раздел

Свежие новости

11.09.2019 MUK CLOUD | Приглашение на серию практических вебинаров Microsoft
Учебный центр Группы компании MUK совместно с Microsoft приглашает Вас принять участие в серии практических бесплатных вебинарах Microsoft

29.08.2019 Анонс авторизованного курса «NetWorker Implementation and Management»

21.08.2019 Deep dive with MUK Training Center schedule 2019
Ближайшее расписание Учебного центра МУК

19.08.2019 NetApp workshop: Основы администрирования систем на базе систем ONTAP 9|04-05.09.2019
Учебный центр МУК приглашает всех желающих стать участниками NetApp воршопа под названием «Основы администрирования систем на базе систем ONTAP 9», который будет проходить 04-05 сентября 2019 году