Course Overview
This two-day course provides students with the knowledge required to manage Juniper security devices with the Juniper® Security Director Cloud portal. Students will gain in-depth knowledge of how to work with Security Director Cloud, including the deployment of security policies, Network Address Translation (NAT) policies, and advanced security features.
The course has nine modules that are focused on Juniper Security Director Cloud concepts and on creating and managing security policies using Juniper Security Director Cloud. Through demonstrations and hands-on labs, students will gain experience with the features of Juniper Security Director Cloud.
This course is based on Juniper Security Director Cloud Release 23.2. The labs use vSRX devices running Junos OS Release 23.2R1.13.
Who should attend
This course benefits individuals responsible for managing security configurations on Juniper security devices using Juniper Security Director Cloud
Prerequisites
- Basic networking knowledge
- Understanding of the OSI reference model and the TCP/IP protocol suite
- Understanding of the session-based Layer 4 through Layer 7 firewall concepts
- Basic Junos operating system (OS) knowledge including device management, routing, and security policy
- Completion of the Juniper Security (JSEC) course, or equivalent experience
Course Objectives
- Describe the features and functionalities of Juniper Security Director Cloud.
- Manage security devices using Juniper Security Director Cloud.
- Describe the security policies of Juniper Security Director Cloud.
- Demonstrate deploying IPsec VPNs.
- Implement NAT policies.
- Deploy and manage IPS, Content Security, and Decrypt Profiles with Juniper Security Director Cloud.
- Explain how Juniper ATP Cloud features are implemented in Juniper Security Director Cloud.
- Use the monitoring tools in Juniper Security Director Cloud.
Course Content
Course Introduction
Introduction to Juniper Security Director Cloud
- Describe the features of Juniper Security Director Cloud
- Discuss the Juniper Security Director Cloud UI
- Describe Juniper Security Director Cloud subscriptions
Lab 1: Introduction to Juniper Security Director Cloud
Device Management
- Adopt security devices to Juniper Security Director Cloud through the CLI
- Adopt security devices to Juniper Security Director Cloud through ZTP
- Manage device subscriptions
- Configure device settings
- Deploy configuration templates
- Manage software images
- Install security packages
Lab 2: Adopting SRX Devices
Deploying Security Policies
- Explain the purpose of security policies
- Explain security objects
- Describe the Security Policy workspace
- Configure a security policy
- Manage security policies
Lab 3: Provisioning Security Policies
Deploying IPsec VPNs
- Describe how to create and manage IPsec VPNs using Juniper Security Director Cloud
- Describe how to import IPsec VPNs using Juniper Security Director Cloud
Lab 4: Provisioning IPsec VPNs
Deploying NAT Policies
- Describe NAT
- Describe how to configure NAT policies in Juniper Security Director Cloud
Lab 5: Deploying NAT
IPS, Content Security and Decrypt Profiles
- Explain how to manage IPS
- Describe how to manage Content Security
- Describe how to manage Decrypt Profiles
Lab 6: Provisioning IPS, Content Security and Decrypt Profiles
ATP Features in Juniper Security Director Cloud
- Describe how ATP Cloud provides functionality to Juniper Security Director Cloud
- Enroll SRXs to Juniper ATP Cloud
- Configure allowlists and blocklists
- Configure and apply SecIntel profiles
- Configure and apply anti-malware profiles
Lab 7: Implementing Advanced Threat Prevention
Monitoring Tools in Juniper Security Director Cloud
- Navigate the logging workspace
- Configure alerts
- Monitor ATP functions
- Define and generate reports
- Monitor tunnel status
Lab 8: Monitoring and Reporting with Juniper Security Director Cloud