AJSE - AJSEC - Advanced Junos Security (AJSEC)

This five-day course, which is designed to build off of the current Junos Security (JSEC) offering, delves deeper into Junos security.

Through demonstrations and hands-on labs, you will gain experience in configuring and monitoring the advanced Junos OS security features with advanced coverage of virtualization, AppSecure, advanced Network Address Translation (NAT) deployments, Layer 2 security, and Sky ATP. This course uses Juniper Networks SRX Series Services Gateways for the hands-on component. This course is based on Junos OS Release 15.1X49-D70.3 and Junos Space Security Director 16.1.

Student Testimonials

Instructor did a great job, from experience this subject can be a bit dry to teach but he was able to keep it very engaging and made it much easier to focus. Student
Excellent presentation skills, subject matter knowledge, and command of the environment. Student
Instructor was outstanding. Knowledgeable, presented well, and class timing was perfect. Student

Click here to print this page »


Students should have a strong level of TCP/IP networking and security knowledge. Students should also attend the Introduction to the Junos Operating System (IJOS) and Junos Security (JSEC) courses prior to attending this class.

Detailed Class Syllabus

Chapter 1: Course Introduction

Course Introduction

Chapter 2: Junos Layer 2 Packet Handling and Security Features

Transparent Mode Security
Secure Wire
Layer 2 Next Generation Ethernet Switching
Lab 2: Implementing Layer 2 Security

Chapter 3: Virtualization

Virtualization Overview
Routing Instances
Logical Systems
Lab 3: Implementing Junos Virtual Routing

Chapter 4: AppSecure Theory

AppSecure Overview
AppID Overview
AppID Techniques
Application System Cache
Custom Application Signatures

Chapter 5: AppSecure Implementation

SSL Proxy
Lab 4: Implementing AppSecure

Chapter 6: Working with Log Director

Log Director Overview
Log Director Components
Installing and setting up Log Director
Clustering with the Log Concentrator VM
Administrating Log Director
Lab 5: Deploying Log Director

Chapter 7: Sky ATP Theory

Sky ATP Overview
Monitoring Sky ATP
Analysis and Detection of Malware

Chapter 8: Sky ATP Implementation

Configuring Sky ATP
Installing Sky ATP
Analysis and detection of Malware
Infected Host Case Study
Lab 6: Instructor Led Sky ATP Demo

Chapter 9: Implementing UTM

UTM Overview
Content and Web Filtering
Lab 7: Implementing UTM

Chapter 10: Introduction to IPS

IPS Overview
Network Asset Protection
Intrusion Attack Methods
Intrusion Prevention Systems
IPS Inspection Walkthrough

Chapter 11: IPS Policy and Configuration

SRX IPS Requirements
IPS Operation Modes
Basic IPS Policy Review
IPS Rulebase Operations
Lab 8: Implementing Basic IPS Policy

Chapter 12: SDSN

SDSN Overview
SDSN Components
SDSN Configuration
Policy Enforcer Troubleshooting
SDSN Use Cases
Lab 9: Implementing SDSN

Chapter 13: Enforcement, Monitoring, and Reporting

User Role Firewall and Integrated User Firewall Overview
User Role Firewall Implementation
Monitoring User Role Firewall
Integrated User Firewall Implementation
Monitoring Integrated User Firewall
Lab 10: Configure User Role Firewall and Integrated User Firewall

Chapter 14: Troubleshooting Junos Security

Troubleshooting Methodology
Troubleshooting Tools
Identifying IPsec Issues
Lab 11: Performing Security Troubleshooting Techniques