{"course":{"productid":2893,"modality":1,"active":true,"language":"fr","title":"Advanced Juniper Security","productcode":"AJSEC","vendorcode":"JP","vendorname":"Juniper Networks","fullproductcode":"JP-AJSEC","courseware":{"has_ekit":true,"has_printkit":false,"language":"en"},"url":"https:\/\/portal.flane.ch\/course\/juniper-ajsec","objective":"<p>After successfully completing this course, you should be able to:<\/p>\n<ul>\n<li>Describe Layer 2 security features.<\/li><li>Discuss ways to use packet-based security.<\/li><li>Describe how to troubleshoot zones and policies.<\/li><li>Describe how to implement a hub-and-spoke VPN.<\/li><li>Discuss advanced NAT capabilities.<\/li><li>List the ways that the SRX Series firewall may be virtualized.<\/li><li>Describe how to implement an Auto Discovery VPN (ADVPN) setup.<\/li><li>List options using IPsec to accomplish advanced configurations.<\/li><li>Discuss how to troubleshoot IPsec VPNs.<\/li><li>Describe how to route traffic based on the application.<\/li><li>Describe how to secure VXLAN traffic within the network.<\/li><li>Implement multinode high availability.<\/li><li>Discuss how to mitigate network threats automatically.<\/li><\/ul>","essentials":"<ul>\n<li>Strong skill level in TCP\/IP, Layer 2 Ethernet, security policies, and security concepts<\/li><li>General understanding of stateful firewalls, NAT, and IPsec<\/li><li>Recommended, but not required:\n<ul>\n<li>Completion of the <span class=\"cms-link-marked\"><a class=\"fl-href-prod\" href=\"\/swisscom\/fr\/course\/juniper-ijos\"><svg role=\"img\" aria-hidden=\"true\" focusable=\"false\" data-nosnippet class=\"cms-linkmark\"><use xlink:href=\"\/css\/img\/icnset-linkmarks.svg#linkmark\"><\/use><\/svg>Introduction to the Junos Operating System <span class=\"fl-prod-pcode\">(IJOS)<\/span><\/a><\/span> and <span class=\"cms-link-marked\"><a class=\"fl-href-prod\" href=\"\/swisscom\/fr\/course\/juniper-jsec\"><svg role=\"img\" aria-hidden=\"true\" focusable=\"false\" data-nosnippet class=\"cms-linkmark\"><use xlink:href=\"\/css\/img\/icnset-linkmarks.svg#linkmark\"><\/use><\/svg>Juniper Security <span class=\"fl-prod-pcode\">(JSEC)<\/span><\/a><\/span> courses<\/li><li>Experience with packet captures<\/li><\/ul><\/li><\/ul>","audience":"<p>Individuals responsible for implementing, monitoring, and troubleshooting Juniper security components. This course also helps you prepare for the JNCIP-SEC certification<\/p>","contents":"<ul>\n<li>Junos Layer 2 Packet Handling and Security Features<\/li><li>Packet-Based Security<\/li><li>Troubleshooting Zones and Policies<\/li><li>Hub-and-Spoke VPN<\/li><li>Advanced NAT<\/li><li>Logical and Tenant Systems<\/li><li>PKI and ADVPNs<\/li><li>Advanced IPsec<\/li><li>Troubleshooting IPsec<\/li><li>Advanced Policy-Based Routing<\/li><li>EVPN-VXLAN Security<\/li><li>Multinode High Availability<\/li><li>Automated Threat Mitigation<\/li><\/ul>","outline":"<h5>Junos Layer 2 Packet Handling and Security Features<\/h5><ul>\n<li>Explain transparent mode security operations<\/li><li>Define secure wire implementation<\/li><li>Describe MACsec uses<\/li><\/ul><p>Lab 1: Implementing Layer 2 Security<\/p>\n<h5>Packet-Based Security<\/h5><ul>\n<li>Explain routing instances<\/li><li>Describe filter-based forwarding<\/li><\/ul><p>Lab 2: Implementing Packet-Based Security<\/p>\n<h5>Troubleshooting Zones and Policies<\/h5><ul>\n<li>Describe troubleshooting tools available in Junos OS<\/li><li>Discuss troubleshooting of security zones and security policies<\/li><li>Examine troubleshooting case studies<\/li><\/ul><p>Lab 3: Troubleshooting Zones and Policies<\/p>\n<h5>Hub-and-Spoke VPN<\/h5><ul>\n<li>Describe the hub-and-spoke VPN topology<\/li><li>Configure hub-and-spoke VPNs<\/li><\/ul><p>Lab 4: Implementing Hub-and-Spoke VPNs<\/p>\n<h5>Advanced NAT<\/h5><ul>\n<li>Explain the difference between address persistence and persistent NAT<\/li><li>Describe DNS doctoring<\/li><li>Describe advanced NAT scenarios<\/li><li>Discuss NAT troubleshooting<\/li><\/ul><p>Lab 5: Implementing Advanced NAT<\/p>\n<h5>Logical and Tenant Systems<\/h5><ul>\n<li>Describe logical systems<\/li><li>Describe tenant systems<\/li><\/ul><p>Lab 6: Implementing Tenant Systems<\/p>\n<h5>PKI and ADVPNs<\/h5><ul>\n<li>Describe PKI<\/li><li>Configure PKI for Junos security devices<\/li><li>Describe how ADVPNs function<\/li><li>Configure and monitor ADVPNs<\/li><\/ul><p>Lab 7: Implementing ADVPNs<\/p>\n<h5>Advanced IPsec<\/h5><ul>\n<li>Explain NAT interoperability with IPsec<\/li><li>Describe the CoS feature with IPsec VPNs<\/li><li>Explain IPsec best practices<\/li><li>Configure OSPF over IPsec<\/li><li>Configure IPsec with overlapping addresses<\/li><li>Configure IPsec with dynamic gateway IP addresses<\/li><\/ul><p>Lab 8: Implementing Advanced IPsec Solutions<\/p>\n<h5>Troubleshooting IPsec<\/h5><ul>\n<li>Describe general troubleshooting for IPsec VPNs<\/li><li>Discuss how to troubleshoot IKE Phase 1 and Phase 2<\/li><li>Configure and analyze logging for IPsec VPNs<\/li><li>Examine IPsec troubleshooting case studies<\/li><\/ul><p>Lab 9: Troubleshooting IPsec VPNs<\/p>\n<h5>Advanced Policy-Based Routing<\/h5><ul>\n<li>Define advanced policy-based routing<\/li><li>Configure advanced policy-based routing<\/li><li>Explain application quality of experience<\/li><\/ul><p>Lab 10: Implementing APBR<\/p>\n<h5>EVPN-VXLAN Security<\/h5><ul>\n<li>Describe the EVPN-VXLAN protocols<\/li><li>Explain VXLAN tunnel security<\/li><li>Configure security on VXLAN tunnels<\/li><\/ul><p>Lab 11: Securing Traffic Between Data Centers<\/p>\n<h5>Multinode High Availability<\/h5><ul>\n<li>Identify the benefits of high availability and security<\/li><li>Explain the use of multinode high availability<\/li><li>Identify multinode high availability modes<\/li><li>Discuss services redundancy groups<\/li><\/ul><p>Lab 12: Implementing Multinode HA<\/p>\n<h5>Automated Threat Mitigation<\/h5><ul>\n<li>Explain Automated Threat Mitigation<\/li><li>Discuss Juniper Connected Security third-party integrations<\/li><li>Discuss Juniper Connected Security multicloud integrations<\/li><li>Discuss the Secure Enterprise use case<\/li><\/ul>","summary":"<p>This four-day course provides students with the knowledge to configure and monitor advanced Junos OS security features for enterprise, campus, and service provider applications. Key topics include advanced Junos OS security features with coverage of advanced reporting, next-generation Layer 2 security, next-generation advanced features, Ethernet VPN&ndash;Virtual Extensible LAN (EVPN-VXLAN) security, advanced policy-based routing, virtualization features, advanced IPsec VPNs, advanced Network Address Translation (NAT) features, and multinode high availability.<\/p>\n<p>Through demonstrations and hands-on labs, students will gain experience with the features of SRX Series devices and vSRX Series devices.<\/p>\n<p>This course is based on Junos OS Release 23.2R1.13.<\/p>","objective_plain":"After successfully completing this course, you should be able to:\n\n\n- Describe Layer 2 security features.\n- Discuss ways to use packet-based security.\n- Describe how to troubleshoot zones and policies.\n- Describe how to implement a hub-and-spoke VPN.\n- Discuss advanced NAT capabilities.\n- List the ways that the SRX Series firewall may be virtualized.\n- Describe how to implement an Auto Discovery VPN (ADVPN) setup.\n- List options using IPsec to accomplish advanced configurations.\n- Discuss how to troubleshoot IPsec VPNs.\n- Describe how to route traffic based on the application.\n- Describe how to secure VXLAN traffic within the network.\n- Implement multinode high availability.\n- Discuss how to mitigate network threats automatically.","essentials_plain":"- Strong skill level in TCP\/IP, Layer 2 Ethernet, security policies, and security concepts\n- General understanding of stateful firewalls, NAT, and IPsec\n- Recommended, but not required:\n\n- Completion of the Introduction to the Junos Operating System (IJOS) and Juniper Security (JSEC) courses\n- Experience with packet captures","audience_plain":"Individuals responsible for implementing, monitoring, and troubleshooting Juniper security components. This course also helps you prepare for the JNCIP-SEC certification","contents_plain":"- Junos Layer 2 Packet Handling and Security Features\n- Packet-Based Security\n- Troubleshooting Zones and Policies\n- Hub-and-Spoke VPN\n- Advanced NAT\n- Logical and Tenant Systems\n- PKI and ADVPNs\n- Advanced IPsec\n- Troubleshooting IPsec\n- Advanced Policy-Based Routing\n- EVPN-VXLAN Security\n- Multinode High Availability\n- Automated Threat Mitigation","outline_plain":"Junos Layer 2 Packet Handling and Security Features\n\n\n- Explain transparent mode security operations\n- Define secure wire implementation\n- Describe MACsec uses\nLab 1: Implementing Layer 2 Security\n\nPacket-Based Security\n\n\n- Explain routing instances\n- Describe filter-based forwarding\nLab 2: Implementing Packet-Based Security\n\nTroubleshooting Zones and Policies\n\n\n- Describe troubleshooting tools available in Junos OS\n- Discuss troubleshooting of security zones and security policies\n- Examine troubleshooting case studies\nLab 3: Troubleshooting Zones and Policies\n\nHub-and-Spoke VPN\n\n\n- Describe the hub-and-spoke VPN topology\n- Configure hub-and-spoke VPNs\nLab 4: Implementing Hub-and-Spoke VPNs\n\nAdvanced NAT\n\n\n- Explain the difference between address persistence and persistent NAT\n- Describe DNS doctoring\n- Describe advanced NAT scenarios\n- Discuss NAT troubleshooting\nLab 5: Implementing Advanced NAT\n\nLogical and Tenant Systems\n\n\n- Describe logical systems\n- Describe tenant systems\nLab 6: Implementing Tenant Systems\n\nPKI and ADVPNs\n\n\n- Describe PKI\n- Configure PKI for Junos security devices\n- Describe how ADVPNs function\n- Configure and monitor ADVPNs\nLab 7: Implementing ADVPNs\n\nAdvanced IPsec\n\n\n- Explain NAT interoperability with IPsec\n- Describe the CoS feature with IPsec VPNs\n- Explain IPsec best practices\n- Configure OSPF over IPsec\n- Configure IPsec with overlapping addresses\n- Configure IPsec with dynamic gateway IP addresses\nLab 8: Implementing Advanced IPsec Solutions\n\nTroubleshooting IPsec\n\n\n- Describe general troubleshooting for IPsec VPNs\n- Discuss how to troubleshoot IKE Phase 1 and Phase 2\n- Configure and analyze logging for IPsec VPNs\n- Examine IPsec troubleshooting case studies\nLab 9: Troubleshooting IPsec VPNs\n\nAdvanced Policy-Based Routing\n\n\n- Define advanced policy-based routing\n- Configure advanced policy-based routing\n- Explain application quality of experience\nLab 10: Implementing APBR\n\nEVPN-VXLAN Security\n\n\n- Describe the EVPN-VXLAN protocols\n- Explain VXLAN tunnel security\n- Configure security on VXLAN tunnels\nLab 11: Securing Traffic Between Data Centers\n\nMultinode High Availability\n\n\n- Identify the benefits of high availability and security\n- Explain the use of multinode high availability\n- Identify multinode high availability modes\n- Discuss services redundancy groups\nLab 12: Implementing Multinode HA\n\nAutomated Threat Mitigation\n\n\n- Explain Automated Threat Mitigation\n- Discuss Juniper Connected Security third-party integrations\n- Discuss Juniper Connected Security multicloud integrations\n- Discuss the Secure Enterprise use case","summary_plain":"This four-day course provides students with the knowledge to configure and monitor advanced Junos OS security features for enterprise, campus, and service provider applications. Key topics include advanced Junos OS security features with coverage of advanced reporting, next-generation Layer 2 security, next-generation advanced features, Ethernet VPN\u2013Virtual Extensible LAN (EVPN-VXLAN) security, advanced policy-based routing, virtualization features, advanced IPsec VPNs, advanced Network Address Translation (NAT) features, and multinode high availability.\n\nThrough demonstrations and hands-on labs, students will gain experience with the features of SRX Series devices and vSRX Series devices.\n\nThis course is based on Junos OS Release 23.2R1.13.","skill_level":"Intermediate","version":"23.a","duration":{"unit":"d","value":4,"formatted":"4 jours"},"pricelist":{"List Price":{"CH":{"country":"CH","currency":"CHF","taxrate":8.1,"price":5250},"DE":{"country":"DE","currency":"EUR","taxrate":19,"price":4000},"AT":{"country":"AT","currency":"EUR","taxrate":20,"price":4000},"IL":{"country":"IL","currency":"ILS","taxrate":17,"price":13880},"GR":{"country":"GR","currency":"EUR","taxrate":null,"price":2500},"MK":{"country":"MK","currency":"EUR","taxrate":null,"price":2500},"HU":{"country":"HU","currency":"EUR","taxrate":20,"price":2500},"UA":{"country":"UA","currency":"EUR","taxrate":20,"price":4000},"SI":{"country":"SI","currency":"EUR","taxrate":20,"price":4000},"SK":{"country":"SK","currency":"EUR","taxrate":null,"price":4000}}},"lastchanged":"2025-09-05T10:45:24+02:00","parenturl":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-courses","nexturl_course_schedule":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-course-schedule\/2893","source_lang":"fr","source":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-course\/juniper-ajsec"}}