CONFIGURING JUNIPER NETWORKS FIREWALL/IPSEC VPN

PRODUCTS (CJFV)

Course Length

3 days

Description
This three-day course provides a broad overview of the firewall and VPN
functions provided by ScreenOS-based products. Key topics include
administrative configuration, Layer 2 and Layer 3 operations, basic and
advanced policy features, network address translation, and VPN configuration
and operations.

Through demonstrations and hands-on labs, students gain experience in

configuring, testing, and troubleshooting features of ScreenOS.

Prerequisites

This course assumes that students have basic networking knowledge and
experience in the following areas:

• Ethernet
• Transparent Bridging
• TCP/IP Operations
• IP Addressing
• Routing

Course Outline

Chapter 1: Course Introduction

Chapter 2: NetScreen Security Concepts – VSYS, Security Zone, Virtual Router,

Policy, Virtual Interface, Packet processing sequence.

WEB • www.training-partners.com EMAIL • help@training-partners.com

CHINA • HONG KONG • INDIA • INDONESIA • KOREA • MALAYSIA • JAPAN • PHILIPPINES • SINGAPORE • TAIWAN • THAILAND • VIETNAM
Chapter 3: Administration - system components, connectivity to the NetScreen,
administrative settings, communication with external management devices,
configuration and software management, disaster recovery procedures

Chapter 4: Transparent Mode – Layer 2 Zone, Layer 2 management, Layer -2

Firewall administration.

Chapter 5: Layer 3 Operation – Static routing, Virtual router operation, Inter

Virtual Router routing, NAT and Route mode, NAPT

Chapter 6: Basic Policy Management – Security policy components, Address

Book, Services, Multiple cell policy objects.

Chapter 7: Advanced Policy Configuration- Firewall Traffic logging and reporting,

Policy-based schedule and user authentication services.

Chapter 8: Attack Prevention configuration at Firewall, DOS/DDOS Screen

features, malicious URL protection, Antivirus integration, URL filtering Integration
and Deep Inspection Firewall.

Chapter 9: Network Address Translation options – NAT-based on source

address, NAT-based on destination address, MIP and VIP.

Chapter 10: VPN Concepts – IPSEC, IKE Process and tunnel establishment.

Chapter 11: Policy-based VPN configuration

Chapter 12: Route-based VPN configuration

Chapter 13: Netscreen Remote VPN Client with Pre-shared key.

Who Should Attend

Network engineers, support personnel, reseller and others responsible for

implementing Juniper Security products. A must for "any level" of engineer
expected to configure ALL Juniper Firewall/VPN devices and pass the JNCIA-
FWV

WEB • www.training-partners.com EMAIL • help@training-partners.com

CHINA • HONG KONG • INDIA • INDONESIA • KOREA • MALAYSIA • JAPAN • PHILIPPINES • SINGAPORE • TAIWAN • THAILAND • VIETNAM