AJSE - AJSEC - Advanced Junos Security (AJSEC)

This five-day course, which is designed to build off of the current Junos Security (JSEC) offering, delves deeper into Junos security.

Through demonstrations and hands-on labs, you will gain experience in configuring and monitoring the advanced Junos OS security features with advanced coverage of virtualization, AppSecure, advanced Network Address Translation (NAT) deployments, Layer 2 security, and Sky ATP. This course uses Juniper Networks SRX Series Services Gateways for the hands-on component. This course is based on Junos OS Release 15.1X49-D70.3 and Junos Space Security Director 16.1.

Instructor did a great job, from experience this subject can be a bit dry to teach but he was able to keep it very engaging and made it much easier to focus. Student
Excellent presentation skills, subject matter knowledge, and command of the environment. Student
Instructor was outstanding. Knowledgeable, presented well, and class timing was perfect. Student

Click here to print this page »

Prerequisites


Students should have a strong level of TCP/IP networking and security knowledge. Students should also attend the Introduction to the Junos Operating System (IJOS) and Junos Security (JSEC) courses prior to attending this class.

Detailed Class Syllabus


Chapter 1: Course Introduction


Course Introduction

Chapter 2: Junos Layer 2 Packet Handling and Security Features


Transparent Mode Security
Secure Wire
Layer 2 Next Generation Ethernet Switching
MACsec
Lab 2: Implementing Layer 2 Security

Chapter 3: Virtualization


Virtualization Overview
Routing Instances
Logical Systems
Lab 3: Implementing Junos Virtual Routing

Chapter 4: AppSecure Theory


AppSecure Overview
AppID Overview
AppID Techniques
Application System Cache
Custom Application Signatures

Chapter 5: AppSecure Implementation


AppTrack
AppFW
AppQoS
APBR
SSL Proxy
Lab 4: Implementing AppSecure

Chapter 6: Working with Log Director


Log Director Overview
Log Director Components
Installing and setting up Log Director
Clustering with the Log Concentrator VM
Administrating Log Director
Lab 5: Deploying Log Director

Chapter 7: Sky ATP Theory


Sky ATP Overview
Monitoring Sky ATP
Analysis and Detection of Malware

Chapter 8: Sky ATP Implementation


Configuring Sky ATP
Installing Sky ATP
Analysis and detection of Malware
Infected Host Case Study
Lab 6: Instructor Led Sky ATP Demo

Chapter 9: Implementing UTM


UTM Overview
AntiSpam
AntiVirus
Content and Web Filtering
Lab 7: Implementing UTM

Chapter 10: Introduction to IPS


IPS Overview
Network Asset Protection
Intrusion Attack Methods
Intrusion Prevention Systems
IPS Inspection Walkthrough

Chapter 11: IPS Policy and Configuration


SRX IPS Requirements
IPS Operation Modes
Basic IPS Policy Review
IPS Rulebase Operations
Lab 8: Implementing Basic IPS Policy

Chapter 12: SDSN


SDSN Overview
SDSN Components
SDSN Configuration
Policy Enforcer Troubleshooting
SDSN Use Cases
Lab 9: Implementing SDSN

Chapter 13: Enforcement, Monitoring, and Reporting


User Role Firewall and Integrated User Firewall Overview
User Role Firewall Implementation
Monitoring User Role Firewall
Integrated User Firewall Implementation
Monitoring Integrated User Firewall
Lab 10: Configure User Role Firewall and Integrated User Firewall

Chapter 14: Troubleshooting Junos Security


Troubleshooting Methodology
Troubleshooting Tools
Identifying IPsec Issues
Lab 11: Performing Security Troubleshooting Techniques