JSE - Junos Security (JSEC)

This five-day course covers the configuration, operation, and implementation of SRX Series Services Gateways in a typical network environment. Key topics within this course include security technologies such as security zones, security policies, Network Address Translation (NAT), IP Security (IPsec), and high availability clusters, as well as details pertaining to basic implementation, configuration, management, and troubleshooting.

Through demonstrations and hands-on labs, students will gain experience in configuring and monitoring the Junos OS and monitoring device operations. This course uses Juniper Networks SRX Series Services Gateways and Security Director for the hands-on component. This course is based on Junos OS Release 15.1X49-D70.3 and Junos Space Security Director 16.1.

Student Testimonials

Instructor did a great job, from experience this subject can be a bit dry to teach but he was able to keep it very engaging and made it much easier to focus. Student
Excellent presentation skills, subject matter knowledge, and command of the environment. Student
Instructor was outstanding. Knowledgeable, presented well, and class timing was perfect. Student

Click here to print this page »


Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/IP protocol suite. Students should also attend the Introduction to the Junos Operating System (IJOS) course, or have equivalent experience prior to attending this class.

Detailed Class Syllabus

Chapter 1: Course Introduction

Course Introduction

Chapter 2: Introduction to Junos Security

Traditional Routing
Traditional Security
The Junos OS Architecture

Chapter 3: Zones

The Definition of Zones
Zone Configuration
Monitoring Security Zones
Screen Options
Lab 1: Configuring and Monitoring Zones

Chapter 4: Security Policies

Security Policy Overview
Policy Components
Verifying Policy Operation
Policy Case Study
Lab 2: Security Policies

Chapter 5: Advanced Policy Options

Session Management
Junos ALGs
Policy Scheduling

Chapter 6: Troubleshooting Security Zones and Policies

Troubleshoot Security Zones
Troubleshoot Security Policies
Case Studies
Lab 3: Troubleshooting Security Zones and Policies

Chapter 7: Network Address Translation

NAT Overview
Source NAT Operation and Configuration
Destination NAT Operation and Configuration
Static NAT Operation and Configuration
Proxy ARP
Monitoring and Verifying NAT Operation
Lab 4: Network Address Translation

Chapter 8: Advanced NAT Concepts

NAT Interaction with Policy and ALGs
DNS Doctoring
Cone NAT
Multi-Tenant NAT
IPv4-to-IPv6 NAT
Advanced NAT Scenarios
Lab 5: Advanced NAT Implementations

Chapter 9: IPsec VPN Concepts

VPN Types
Secure VPN Requirements
IPsec Overview
IPsec Details

Chapter 10: IPsec VPN Implementation

Configuration of IPsec VPNs
IPsec VPN Case Studies
Monitoring IPsec VPN
Traffic Selectors
Lab 6: Implementing IPsec VPNs

Chapter 11: Group VPNs

Group VPN Overview
GDOI Protocol
Group VPN Configuration and Monitoring
Lab 7: Implementing Group VPNs

Chapter 12: ADVPNs

ADVPN Overview
ADVPN Member Roles
Shortcut Termination
Routing with ADVPNs
ADVPN Implementation
Lab 8: Implementing ADVPNs

Chapter 13: IPsec VPN Case Studies and Solutions

Routing over VPNs
NAT with IPsec
Enterprise VPN Deployment Best Practices
Lab 9: Implementing Routing over VPN Tunnels and IPsec Best Practices

Chapter 14: Troubleshooting IPsec

IKE Phase 1 Troubleshooting
IKE Phase 2 Troubleshooting
Case Studies
Lab 10: Troubleshooting IPsec

Chapter 15: Virtualized SRX

vSRX Overview
Installation of vSRX
Chassis Clustering
Deployment Scenarios and Use Cases
Automated Deployments Options
AWS Deployment Scenarios

Chapter 16: High Availability Clustering Theory

High Availability Overview
Chassis Cluster Components
Advanced Chassis Cluster Topics

Chapter 17: High Availability Clustering Implementation

Chassis Cluster Configuration
Chassis Cluster Monitoring
Advanced Chassis Cluster Topics
Lab 12: Implementing High Availability Techniques

Chapter 18: Troubleshooting Chassis Clusters

Chassis Cluster Troubleshooting
Case Studies
IDP Policy Components and Configuration
Lab 13: Troubleshooting Chassis Clusters