Overview
This course uses the Junos J-Web, CLI, Junos Space, and other user interfaces to introduce students to the concept of Juniper Connected Security. Key topics include tasks for advanced security policies, application layer security using the AppSecure suite, IPS rules and custom attack objects, Security Director management, Sky ATP management, JATP management, JSA management, Policy Enforcer management, JIMS management, Juniper Sky Enterprise usage, vSRX and cSRX usage, SSL Proxy configuration, and SRX chassis clustering configuration and troubleshooting.
Duration 5 days.
You can find current trainings on training calendar page.
Training Prerequisites
- Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/ IP protocol suit.
- Successful completion of the Introduction to Juniper Security (IJSEC) course
Training Contents
-Course Introduction
-CLI Overview
- User Interface Options
- Command-Line Interface
- Initial Configuration
- Interface Configuration
-Advanced Security Policy
- Session Management
- Junos ALGs
- Policy Scheduling
- Policy Logging
-Application Security Theory
- Application ID
- Application Signatures
- App Track
- App Firewall
- App QoS
- App QoE
-Application Security Implementation
- AppTrack Implementation
- AppFW Implementation
- AppQos Implementation
- APBR Implementation
-Intrusion Detection and Prevention
- IPS Overview
- IPS Policy
- Attack Objects
- IPS Configuration
- IPS Monitoring
-Security Director
- Overview
- Security Director Objects
- Security Director Policy Management
-Sky ATP Implementation
- Architecture and Key Components
- Features and Benefits
- Configuration
- Compromised Hosts
- Command and Control
- File Scanning
- E-mail Scanning
- Geo IP
- Security Policy Integration
- Troubleshooting
-Policy Enforcer
- Policy Enforcer Concepts
- Configuration Options
- Policy Enforcer Installation
-JATP Overview
- Traffic Inspection
- Threat Detection
- Threat Analysis
- JATP Architecture
-JATP Implementation
- Data Collectors
- Configure SmartCore Analytics Engine
- Log Ingestion
- Incident Management
- SRX Threat Prevention
- Third Party Support for Threat Prevention
- Reporting
-Juniper Secure Analytics
- JSA Overview
- Data Collection
-JIMS
- JIMS Overview
- JIMS Integration
-vSRX and cSRX
- vSRX Overview
- vSRX Supported Features
- vSRX Use Cases
- cSRX Overview
-SSL Proxy
- SSL Proxy Overview
- SSL Concepts
- SSL Proxy Configurations
- Troubleshooting
-Cluster Concepts
- Chassis Cluster Concepts
- Chassis Cluster Operation
-Chassis Cluster Implementation
- Chassis Cluster Configuration
- Chassis Cluster Advanced Options
-Chassis Cluster Troubleshooting
- Chassis Cluster Case Studies
- Troubleshooting Examples
Training Objectives
- Identify security challenges in today’s networks.
- Identify products that are incorporated into the Juniper Connected Security solution.
- Explain the value of implementing security solutions.
- Explain how Juniper Connected Security solves the cyber security challenges of the future.
- Explain SRX Series session management.
- Explain Junos ALG functions and when to use them.
- Describe policy logging on the SRX series device.
- Explain security policy scheduling.
- Describe application security theory.
- Explain application signature usage in AppID.
- Describe the AppTrack service.
- Describe the AppFW service.
- Describe the AppQoS service.
- Configure security policies using the AppSecure suite of services.
- Explain unified security policies.
- Describe IPS signatures.
- Configure an IPS policy using pre-defined templates.
- Describe how to update the IPS attack object database.
- Describe IPS rules and rule bases.
- Configure custom attack objects.
- Describe Junos Space and Security Director.
- Configure policy management using Security Director.
- Describe Security Director objects.
- Explain the different licensing options for Sky ATP
- List Sky ATP’s features and benefits.
- Configure Sky ATP profiles and enroll an SRX Series device.
- Configure file scanning on Sky ATP.
- Configure Sky ATP to scan email
- Configure GeoIP on Sky ATP.
- Describe the JATP features and benefits
- List the JATP device options.
- Explain the JATP architecture.
- List third- party support options for JATP.
- Explain JATP SmartCore analytics processes.
- Describe Policy Enforcer configuration options.
- Describe Policy Enforcer integration with Sky ATP.
- Configure Policy Enforcer to block lateral malware movement.
- Explain Juniper Secure Analytics features and benefits.
- Describe JSA log collection.
- Describe JSA network flow collection.
- Describe the JSA Offense Management workspace.
- Explain the JSA Risk Manager features.
- Configure JSA to collect network and log collection.
- Explain the features of JIMS.
- Describe JIMS integration into the current AD network.
- Describe the Sky Enterprise service and how it can save resources.
- Explain the Sky Enterprise monitoring service.
- Explain the vSRX Series device benefits.
- Describe use cases for the vSRX.
- Explain the cSRX Series device benefits.
- Describe use cases for the cSRX.
- Describe SSL Proxy Concepts.
- Explain Forward and Reverse Proxy and the limitations of each.
- Configure both Forward and Reverse Proxy.
- Troubleshoot SSL Proxy configurations.
- Explain how to cluster the SRX Series.
- Describe chassis cluster interfaces.
- Explain advanced chassis clustering options.
- Configure chassis clustering on the vSRX.
- Troubleshoot chassis clustering on the vSRX.
Who should attend?
Operators of Juniper Networks security solutions, including network engineers, administrators, support, personnel, and resellers.
- Overview
- Prerequisites
- Contents
- Objectives
- Audience
Overview
This course uses the Junos J-Web, CLI, Junos Space, and other user interfaces to introduce students to the concept of Juniper Connected Security. Key topics include tasks for advanced security policies, application layer security using the AppSecure suite, IPS rules and custom attack objects, Security Director management, Sky ATP management, JATP management, JSA management, Policy Enforcer management, JIMS management, Juniper Sky Enterprise usage, vSRX and cSRX usage, SSL Proxy configuration, and SRX chassis clustering configuration and troubleshooting.
Duration 5 days.
You can find current trainings on training calendar page.
Training Prerequisites
- Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/ IP protocol suit.
- Successful completion of the Introduction to Juniper Security (IJSEC) course
Training Contents
-Course Introduction
-CLI Overview
- User Interface Options
- Command-Line Interface
- Initial Configuration
- Interface Configuration
-Advanced Security Policy
- Session Management
- Junos ALGs
- Policy Scheduling
- Policy Logging
-Application Security Theory
- Application ID
- Application Signatures
- App Track
- App Firewall
- App QoS
- App QoE
-Application Security Implementation
- AppTrack Implementation
- AppFW Implementation
- AppQos Implementation
- APBR Implementation
-Intrusion Detection and Prevention
- IPS Overview
- IPS Policy
- Attack Objects
- IPS Configuration
- IPS Monitoring
-Security Director
- Overview
- Security Director Objects
- Security Director Policy Management
-Sky ATP Implementation
- Architecture and Key Components
- Features and Benefits
- Configuration
- Compromised Hosts
- Command and Control
- File Scanning
- E-mail Scanning
- Geo IP
- Security Policy Integration
- Troubleshooting
-Policy Enforcer
- Policy Enforcer Concepts
- Configuration Options
- Policy Enforcer Installation
-JATP Overview
- Traffic Inspection
- Threat Detection
- Threat Analysis
- JATP Architecture
-JATP Implementation
- Data Collectors
- Configure SmartCore Analytics Engine
- Log Ingestion
- Incident Management
- SRX Threat Prevention
- Third Party Support for Threat Prevention
- Reporting
-Juniper Secure Analytics
- JSA Overview
- Data Collection
-JIMS
- JIMS Overview
- JIMS Integration
-vSRX and cSRX
- vSRX Overview
- vSRX Supported Features
- vSRX Use Cases
- cSRX Overview
-SSL Proxy
- SSL Proxy Overview
- SSL Concepts
- SSL Proxy Configurations
- Troubleshooting
-Cluster Concepts
- Chassis Cluster Concepts
- Chassis Cluster Operation
-Chassis Cluster Implementation
- Chassis Cluster Configuration
- Chassis Cluster Advanced Options
-Chassis Cluster Troubleshooting
- Chassis Cluster Case Studies
- Troubleshooting Examples
Training Objectives
- Identify security challenges in today’s networks.
- Identify products that are incorporated into the Juniper Connected Security solution.
- Explain the value of implementing security solutions.
- Explain how Juniper Connected Security solves the cyber security challenges of the future.
- Explain SRX Series session management.
- Explain Junos ALG functions and when to use them.
- Describe policy logging on the SRX series device.
- Explain security policy scheduling.
- Describe application security theory.
- Explain application signature usage in AppID.
- Describe the AppTrack service.
- Describe the AppFW service.
- Describe the AppQoS service.
- Configure security policies using the AppSecure suite of services.
- Explain unified security policies.
- Describe IPS signatures.
- Configure an IPS policy using pre-defined templates.
- Describe how to update the IPS attack object database.
- Describe IPS rules and rule bases.
- Configure custom attack objects.
- Describe Junos Space and Security Director.
- Configure policy management using Security Director.
- Describe Security Director objects.
- Explain the different licensing options for Sky ATP
- List Sky ATP’s features and benefits.
- Configure Sky ATP profiles and enroll an SRX Series device.
- Configure file scanning on Sky ATP.
- Configure Sky ATP to scan email
- Configure GeoIP on Sky ATP.
- Describe the JATP features and benefits
- List the JATP device options.
- Explain the JATP architecture.
- List third- party support options for JATP.
- Explain JATP SmartCore analytics processes.
- Describe Policy Enforcer configuration options.
- Describe Policy Enforcer integration with Sky ATP.
- Configure Policy Enforcer to block lateral malware movement.
- Explain Juniper Secure Analytics features and benefits.
- Describe JSA log collection.
- Describe JSA network flow collection.
- Describe the JSA Offense Management workspace.
- Explain the JSA Risk Manager features.
- Configure JSA to collect network and log collection.
- Explain the features of JIMS.
- Describe JIMS integration into the current AD network.
- Describe the Sky Enterprise service and how it can save resources.
- Explain the Sky Enterprise monitoring service.
- Explain the vSRX Series device benefits.
- Describe use cases for the vSRX.
- Explain the cSRX Series device benefits.
- Describe use cases for the cSRX.
- Describe SSL Proxy Concepts.
- Explain Forward and Reverse Proxy and the limitations of each.
- Configure both Forward and Reverse Proxy.
- Troubleshoot SSL Proxy configurations.
- Explain how to cluster the SRX Series.
- Describe chassis cluster interfaces.
- Explain advanced chassis clustering options.
- Configure chassis clustering on the vSRX.
- Troubleshoot chassis clustering on the vSRX.
Who should attend?
Operators of Juniper Networks security solutions, including network engineers, administrators, support, personnel, and resellers.