Call : (+91) 968636 4243
Mail : info@EncartaLabs.com
EncartaLabs

Advanced Junos Security (AJSEC)

( Duration: 4 Days )

The Juniper Advanced Junos Security (AJSEC) training course provides skills in configuring and monitoring the advanced Junos OS security features with coverage of advanced logging and reporting, next-generation Layer 2 security, and next-generation advanced anti-malware with Juniper ATP On-Prem and Sectel.

By attending Juniper Advanced Junos Security (AJSEC) workshop, delegates will learn to:

  • Describe the various forms of security supported by the Junos OS.
  • Describe the Juniper Connected Security model.
  • Describe Junos security handling at Layer 2 versus Layer 3.
  • Implement next generation Layer 2 security features.
  • Demonstrate understanding of Logical Systems (LSYS).
  • Demonstrate understanding of Tenant Systems (TSYS).
  • Implement virtual routing instances in a security setting.
  • Describe and configure route sharing between routing instances using logical tunnel interfaces.
  • Describe and discuss Juniper ATP and its function in the network.
  • Describe and implement Juniper Connected Security with Policy Enforcer in a network.
  • Describe firewall filters use on a security device.
  • Implement firewall filters to route traffic.
  • Explain how to troubleshoot zone problems.
  • Describe the tools available to troubleshoot SRX Series devices.
  • Describe and implement IPsec VPN in a hub-and-spoke model.
  • Describe the PKI infrastructure.
  • Implement certificates to build an ADVPN network.
  • Describe using NAT, CoS and routing protocols over IPsec VPNs.
  • Implement NAT and routing protocols over an IPsec VPN.
  • Describe the logs and troubleshooting methodologies to fix IPsec VPNs.
  • Implement working IPsec VPNs when given configuration that are broken.
  • Describe Incident Reporting with Juniper ATP On-Prem device.
  • Configure mitigation response to prevent spread of malware.
  • Explain Sectel uses and when to use them.
  • Describe the systems that work with Sectel.
  • Describe and implement advanced NAT options on the SRX Series devices.
  • Explain DNS doctoring and when to use it.
  • Describe NAT troubleshooting logs and techniques.

  • Strong level of TCP/IP networking and security knowledge
  • Attend a training on Junos Security (JSEC) or equivalent practical experience.

This Juniper Advanced Junos Security (AJSEC) class benefits individuals responsible for implementing, monitoring, and troubleshooting Juniper security components.

COURSE AGENDA

1

Day 1

  • Junos Layer 2 Packet Handling and Security Features
    • Transparent Mode Security
    • Secure Wire
    • Layer 2 Next Generation Ethernet Switching
    • MACsec
  • Firewall Filters
    • Using Firewall Filters to Troubleshoot
    • Routing Instances
    • Filter-Based Forwarding
  • Troubleshooting Zones and Policies
    • General Troubleshooting for Junos Devices
    • Troubleshooting Tools
    • Troubleshooting Zones and Policies
    • Zone and Policy Case Studies
2

Day 2

  • Hub-and-Spoke VPN
    • Overview
    • Configuration and Monitoring
  • Advanced NAT
    • Configuring Persistent NAT
    • Demonstrate DNS doctoring
    • Configure IPv6 NAT operations
    • Troubleshooting NAT
  • Logical and Tenant Systems
    • Overview
    • Administrative Roles
    • Differences Between LSYS and TSYS
    • Configuring LSYS
    • Configuring TSYS
3

Day 3

  • PKI and ADVPNs
    • PKI Overview
    • PKI Configuration
    • ADVPN Overview
    • ADVPN Configuration and Monitoring
  • Advanced IPsec
    • NAT with IPsec
    • Class of Service with IPsec
    • Best Practices
    • Routing OSPF over VPNs
  • Troubleshooting IPsec
    • IPsec Troubleshooting Overview
    • Troubleshooting IKE Phase 1 and 2
    • IPsec Logging
    • IPsec Case Studies
4

Day 4

  • Juniper Connected Security
    • Security Models
    • Enforcement on Every Network Device
  • Sectel
    • Security Feed
    • Encrypted Traffic Analysis
    • Use Cases for Sectel
  • Advanced Juniper ATP On-Prem
    • Collectors
    • Private Mode
    • Incident Response
    • Deployment Models
  • Automated Threat Mitigation
    • Identify and Mitigate Malware Threats
    • Automate Security Mitigation

Encarta Labs Advantage

  • One Stop Corporate Training Solution Providers for over 6,000 various courses on a variety of subjects
  • All courses are delivered by Industry Veterans
  • Get jumpstarted from newbie to production ready in a matter of few days
  • Trained more than 50,000 Corporate executives across the Globe
  • All our trainings are conducted in workshop mode with more focus on hands-on sessions

View our other course offerings by visiting https://www.encartalabs.com/course-catalogue-all.php

Contact us for delivering this course as a public/open-house workshop/online training for a group of 10+ candidates.

Top
Notice
X