Course Overview
TOPThis five-day course uses the Junos J-Web, CLI, Junos Space, and other user interfaces to introduce students to the concept of Juniper Connected Security. Key topics include tasks for advanced security policies, application layer security using the AppSecure suite, IPS rules and custom attack objects, Security Director management, Sky ATP management, JATP management, JSA management, Policy Enforcer management, JIMS management, Juniper Sky Enterprise usage, vSRX and cSRX usage, SSL Proxy configuration, and SRX chassis clustering configuration and troubleshooting.
Through demonstrations and hands-on labs, students will gain experience in configuring and monitoring the Junos OS and monitoring basic device operations.
Course Level
Junos Security (JSEC) is an intermediate-level course.
Scheduled Classes
TOPOutline
TOPDay 1
Chapter 1: Course Introduction
Chapter 2: CLI Overview
- User Interface Options
- Command-Line Interface
- Initial Configuration
- Interface Configuration
Chapter 3: Advanced Security Policy
- Session Management
- Junos ALGs
- Policy Scheduling
- Policy Logging
Chapter 4: Application Security Theory
- Application ID
- Application Signatures
- App Track
- App Firewall
- App QoS
- App QoE
Chapter 5: Application Security Implementation
- AppTrack Implementation
- AppFW Implementation
- AppQos Implementation
- APBR Implementation
Chapter 6: Intrusion Detection and Prevention
- IPS Overview
- IPS Policy
- Attack Objects
- IPS Configuration
- IPS Monitoring
Day 2
Chapter 7: Security Director
- Overview
- Security Director Objects
- Security Director Policy Management
Chapter 8: Sky ATP Implementation
- Architecture and Key Components
- Features and Benefits
- Configuration
- Compromised Hosts
- Command and Control
- File Scanning
- E-mail Scanning
- Geo IP
- Security Policy Integration
- Troubleshooting
Chapter 9: Policy Enforcer
- Policy Enforcer Concepts
- Configuration Options
- Policy Enforcer Installation
Day 3
Chapter 10: JATP Overview
- Traffic Inspection
- Threat Detection
- Threat Analysis
- JATP Architecture
Chapter 11: JATP Implementation
- Data Collectors
- Configure SmartCore Analytics Engine
- Log Ingestion
- Incident Management
- SRX Threat Prevention
- 3rd Party support for Threat Prevention
- Reporting
Chapter 12: Juniper Secure Analytics (JSA)
- JSA Overview
- Data Collection
- Log Analytics
- Threat Analytics
- Vulnerability Management
- Risk Management
Day 4
Chapter 13: JIMS
- JIMS Overview
- JIMS Integration
- Lab 10: JIMS
Chapter 14: vSRX and cSRX
- vSRX Overview
- vSRX Supported Features
- vSRX Use Cases
- cSRX Overview
Chapter 15: SSL Proxy
- SSL Proxy Overview
- SSL Concepts
- SSL Proxy Configurations
- Troubleshooting
Day 5
Chapter 16: Cluster Concepts
- Chassis Cluster Concepts
- Chassis Cluster Operation
Chapter 17: Chassis Cluster Implementation
- Chassis Cluster Configuration
- Chassis Cluster Advanced Options
Chapter 18: Chassis Cluster Troubleshooting
- Chassis Cluster Case Studies
- Troubleshooting Examples
Appendix A: Juniper Sky Enterprise
Appendix B: SRX Series Hardware and Interfaces
Prerequisites
TOPThe following are the prerequisites for this course:
- Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/ IP protocol suite; and
- Successful completion of the Introduction to Junos Security (IJSEC) course.
Who Should Attend
TOPThe primary audiences for this course are the following: Operators of Juniper Networks security solutions, including network engineers, administrators, support personnel, and resellers.
