Who should attend
- Individuals responsible for implementing, monitoring, and troubleshooting Junos security components.
Certifications
This course is part of the following Certifications:
Prerequisites
- Strong level of TCP/IP networking and security knowledge.
- Attend the Introduction to the Junos Operating System (IJOS), !Junos Routing Essentials (JRE), and Junos Security (JSEC) courses prior to attending this class.
Course Objectives
- Describe the various forms of security supported by the Junos OS.
- Implement features of the AppSecure suite, including AppID, AppFW, and AppTrack.
- Configure custom application signatures.
- Describe Junos security handling at Layer 2 versus Layer 3.
- Implement Layer 2 transparent mode security features.
- Demonstrate understanding of Logical Systems (LSYS).
- Implement address books with dynamic addressing.
- Compose security policies utilizing ALGs, custom applications, and dynamic addressing.
- Use Junos debugging tools to analyze traffic flows and identify traffic processing patterns
- Describe and implement Junos routing instance types used for virtualization.
- Describe and configure route sharing between routing instances using logical tunnel interfaces.
- Describe and implement static, source, destination, and dual NAT in complex LAN environments.
- Describe and implement variations of persistent NAT.
- Describe and implement Carrier Grade NAT (CGN) solutions for IPv6 NAT, such as NAT64, NAT46, and DS-Lite.
Course Content
This course will teach you how to configure and monitor security features of the advanced Junos operating system with coverage of IPsec deployments, virtualization, AppSecure, advanced Network Address Translation (NAT) deployments, and Layer 2 security. The course utilizes Juniper Networks SRX Series Services Gateways for the hands-on component and is based on Junos OS Release 12.1R1.9.