Introduction to Juniper Security

Introduction to Juniper SecurityIJSECJPJuniper NetworksJP-IJSEC21.AAfter successfully completing this course, you should be able to: <ul> <li>Identify high-level security challenges in today’s networks.</li><li>Identify products that are incorporated into the Juniper Connected Security solution.</li><li>Explain the value of implementing security solutions.</li><li>Explain how Juniper Connected Security solves the cyber security challenges of the future.</li><li>Explain the SRX Series devices and the added capabilities that next-generation firewalls provide.</li><li>Explain traffic flows through the SRX Series devices.</li><li>List the different security objects and how to create them.</li><li>Describe interface types and perform basic interface configuration tasks.</li><li>Describe the initial configuration for an SRX Series device.</li><li>Explain security zones.</li><li>Describe screens and their use.</li><li>Explain address objects.</li><li>Describe services and their use.</li><li>Describe the purpose for security policies on an SRX Series device.</li><li>Describe zone-based policies.</li><li>Describe global policies and their use.</li><li>Explain unified security policies.</li><li>Configure unified security policies with the J-Web user interface.</li><li>Describe IDP signatures.</li><li>Configure an IDP policy using predefined templates with the J-Web user interface.</li><li>Describe the use and configuration of the integrated user firewall feature.</li><li>Describe the UTM security services</li><li>List the available UTM services on the SRX Series device.</li><li>Configure UTM filtering on a security policy with the J-Web user interface.</li><li>Explain Sky ATP’s use in security.</li><li>Describe how Sky ATP and SRX Series devices operate together in blocking threats.</li><li>Describe NAT and why it is used.</li><li>Explain source NAT and when to use it.</li><li>Explain destination NAT and when to use it.</li><li>Explain static NAT and its uses.</li><li>Describe the operation and configuration the different types of NAT.</li><li>Identify various types of VPNs.</li><li>Describe IPsec VPNs and their functionality.</li><li>Describe how IPsec VPNs are established.</li><li>Describe IPsec traffic processing.</li><li>Configure IPsec VPNs with the J-Web user interface.</li><li>Describe and configure proxy IDs and traffic selectors with the J-Web user interface.</li><li>Monitor IPsec VPNs with the J-Web user interface.</li><li>Describe the J-Web monitoring features.</li><li>Explain the J-Web reporting features.</li><li>Describe the Sky Enterprise service and how it can save resources.</li><li>Explain the functionality of Junos Space Security Director.</li></ul><ul> <li>Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/ IP protocol suite.</li></ul>The primary audiences for this course are the following: <ul> <li>Operators of Juniper Networks security solutions, including network engineers, administrators, support personnel, and resellers.</li></ul><h4>Day 1</h4> Module 1: COURSE INTRODUCTION Module 2: Juniper Security Concept <ul> <li>Security Challenges</li><li>Security Design Overview</li><li>Juniper Connected Security</li></ul>Module 3: Juniper Connected Security – SRX Series Devices <ul> <li>Connected Security</li><li>Interfaces</li><li>Initial Configuration</li></ul> LAB 1: Initial Configuration Module 4: Security Objects <ul> <li>Security Zone Objects</li><li>Security Screen Objects</li><li>Security Address Objects</li><li>Security Services Objects</li></ul> LAB 2: Creating Security Objects with J-Web Module 5: Security Policies <ul> <li>Security Policy Overview</li><li>Zone-Based Policies</li><li>Global Security Policies</li><li>Application Firewall with Unified Security Policies</li></ul> LAB 3: Creating Security Policies with J-Web Module 6: Security Services – IDP and User Firewall <ul> <li>IDP Security Services</li><li>Integrated User Firewall</li></ul> LAB 4: Adding IDP and User Firewall Security Services to Security Policies <h4>Day 2</h4> Module 7: Security Services – UTM <ul> <li>Content Filtering</li><li>Web Filtering</li><li>Antivirus</li><li>Antispam</li></ul> LAB 5: Adding UTM Security Services to Security Policies Module 8: Juniper Connected Security – Sky AT <ul> <li>Sky ATP Overview</li><li>Blocking Threats</li></ul> Lab 6: Demonstrating Sky ATP Module 9: Network Address Translation <ul> <li>NAT Overview</li><li>Source NAT</li><li>Destination NAT</li><li>Static NAT</li></ul> Lab 7: Implementing Network Address Translation <h4>Day 3 </h4> Module 10: IPsec VPN Concepts <ul> <li>VPN Types</li><li>Secure VPN Requirements</li><li>IPsec Tunnel Establishment</li><li>IPsec Traffic Processing</li></ul>Module 11: Site-to-Site VPNs <ul> <li>IPsec Configuration</li><li>IPsec Site-to-Site Tunne</li></ul> Lab 8: Implementing Site-to-Site IPsec VPNs Module 12: Monitoring and Reporting <ul> <li>J-Web monitoring options</li><li>J-Web Reporting options</li></ul> Lab 9: Using Monitoring and Reporting Appendix A: SRX Series Hardware Appendix D: Sky Enterprise Services Appendix B: Virtual SRX Appendix EJunos Space Security Director Appendix CCLI PrimeAfter successfully completing this course, you should be able to: - Identify high-level security challenges in today’s networks. - Identify products that are incorporated into the Juniper Connected Security solution. - Explain the value of implementing security solutions. - Explain how Juniper Connected Security solves the cyber security challenges of the future. - Explain the SRX Series devices and the added capabilities that next-generation firewalls provide. - Explain traffic flows through the SRX Series devices. - List the different security objects and how to create them. - Describe interface types and perform basic interface configuration tasks. - Describe the initial configuration for an SRX Series device. - Explain security zones. - Describe screens and their use. - Explain address objects. - Describe services and their use. - Describe the purpose for security policies on an SRX Series device. - Describe zone-based policies. - Describe global policies and their use. - Explain unified security policies. - Configure unified security policies with the J-Web user interface. - Describe IDP signatures. - Configure an IDP policy using predefined templates with the J-Web user interface. - Describe the use and configuration of the integrated user firewall feature. - Describe the UTM security services - List the available UTM services on the SRX Series device. - Configure UTM filtering on a security policy with the J-Web user interface. - Explain Sky ATP’s use in security. - Describe how Sky ATP and SRX Series devices operate together in blocking threats. - Describe NAT and why it is used. - Explain source NAT and when to use it. - Explain destination NAT and when to use it. - Explain static NAT and its uses. - Describe the operation and configuration the different types of NAT. - Identify various types of VPNs. - Describe IPsec VPNs and their functionality. - Describe how IPsec VPNs are established. - Describe IPsec traffic processing. - Configure IPsec VPNs with the J-Web user interface. - Describe and configure proxy IDs and traffic selectors with the J-Web user interface. - Monitor IPsec VPNs with the J-Web user interface. - Describe the J-Web monitoring features. - Explain the J-Web reporting features. - Describe the Sky Enterprise service and how it can save resources. - Explain the functionality of Junos Space Security Director.- Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/ IP protocol suite.The primary audiences for this course are the following: - Operators of Juniper Networks security solutions, including network engineers, administrators, support personnel, and resellers.Day 1 Module 1: COURSE INTRODUCTION Module 2: Juniper Security Concept - Security Challenges - Security Design Overview - Juniper Connected Security Module 3: Juniper Connected Security – SRX Series Devices - Connected Security - Interfaces - Initial Configuration LAB 1: Initial Configuration Module 4: Security Objects - Security Zone Objects - Security Screen Objects - Security Address Objects - Security Services Objects LAB 2: Creating Security Objects with J-Web Module 5: Security Policies - Security Policy Overview - Zone-Based Policies - Global Security Policies - Application Firewall with Unified Security Policies LAB 3: Creating Security Policies with J-Web Module 6: Security Services – IDP and User Firewall - IDP Security Services - Integrated User Firewall LAB 4: Adding IDP and User Firewall Security Services to Security Policies Day 2 Module 7: Security Services – UTM - Content Filtering - Web Filtering - Antivirus - Antispam LAB 5: Adding UTM Security Services to Security Policies Module 8: Juniper Connected Security – Sky AT - Sky ATP Overview - Blocking Threats Lab 6: Demonstrating Sky ATP Module 9: Network Address Translation - NAT Overview - Source NAT - Destination NAT - Static NAT Lab 7: Implementing Network Address Translation Day 3 Module 10: IPsec VPN Concepts - VPN Types - Secure VPN Requirements - IPsec Tunnel Establishment - IPsec Traffic Processing Module 11: Site-to-Site VPNs - IPsec Configuration - IPsec Site-to-Site Tunne Lab 8: Implementing Site-to-Site IPsec VPNs Module 12: Monitoring and Reporting - J-Web monitoring options - J-Web Reporting options Lab 9: Using Monitoring and Reporting Appendix A: SRX Series Hardware Appendix D: Sky Enterprise Services Appendix B: Virtual SRX Appendix EJunos Space Security Director Appendix CCLI Prime3 days2250.001900.001900.001900.002250.002700.002250.002250.00