Juniper – JSEC – Junos Security

Description

Overview:

This five-day course uses the Junos J-Web, CLI, Junos Space, and other user interfaces to introduce students to the concept of Juniper Connected Security. Key topics include tasks for advanced security policies, application layer security using the AppSecure suite, IPS rules and custom attack objects, Security Director management, Sky ATP management, JATP management, JSA management, Policy Enforcer management, JIMS management, Juniper Sky Enterprise usage, vSRX and cSRX usage, SSL Proxy configuration, and SRX chassis clustering configuration and troubleshooting.

Through demonstrations and hands-on labs, students will gain experience in configuring and monitoring the Junos OS and monitoring basic device operations.

Prerequisite(s):

• Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/ IP protocol suite; and
• Successful completion of the Introduction to Junos Security (IJSEC) course.

Audience:

The course benefits operators of SRX Series devices. These operators include network engineers, administrators, support personnel, and reseller support personnel.

Outline:

Lesson 1: Course Introduction

Lesson 2: CLI Overview

• User Interface Options
• Command-Line Interface
• Initial Configuration
• Interface Configuration
• Lab 1: CLI Overview

Lesson 3: Advanced Security Policy

• Session Management
• Junos ALGs
• Policy Scheduling
• Policy Logging
• Lab 2: Advanced Security Policy

Lesson 4: Application Security Theory

• Application ID
• Application Signatures
• App Track
• App Firewall
• App QoS
• App QoE

Lesson 5: Application Security Implementation

• AppTrack Implementation
• AppFW Implementation
• AppQos Implementation
• APBR Implementation
• Lab 3: Application Security

Lesson 6: Intrusion Detection and Prevention

• IPS Overview
• IPS Policy
• Attack Objects
• IPS Configuration
• IPS Monitoring
• Lab 4: Implementing IPS

Lesson 7: Security Director

• Overview
• Security Director Objects
• Security Director Policy Management
• Lab 5: Security Director

Lesson 8: Sky ATP Implementation

• Architecture and Key Components
• Features and Benefits
• Configuration
• Compromised Hosts
• Command and Control
• File Scanning
• E-mail Scanning
• Geo IP
• Security Policy Integration
• Troubleshooting
• Lab 6: Sky ATP Implementation

Lesson 9: Policy Enforcer

• Policy Enforcer Concepts
• Configuration Options
• Policy Enforcer Installation
• Lab 7: Policy Enforcer

Lesson 10: JATP Overview

• Traffic Inspection
• Threat Detection
• Threat Analysis
• JATP Architecture

Lesson 11: JATP Implementation

• Data Collectors
• Configure SmartCore Analytics Engine
• Log Ingestion
• Incident Management
• SRX Threat Prevention
• 3rd Party support for Threat Prevention
• Reporting
• Lab 8: JATP

Lesson 12: Juniper Secure Analytics (JSA)

• JSA Overview
• Data Collection
• Log Analytics
• Threat Analytics
• Vulnerability Management
• Risk Management
• Lab 9: JSA

Lesson 13: JIMS

• JIMS Overview
• JIMS Integration
• Lab 10: JIMS

Lesson 14: vSRX and cSRX

• vSRX Overview
• vSRX Supported Features
• vSRX Use Cases
• cSRX Overview
• Lab 11: vSRX Installation

Lesson 15: SSL Proxy

• SL Proxy Overview
• SSL Concepts
• SSL Proxy Configurations
• Troubleshooting
• Lab 12: SSL Proxy

Lesson 16: Cluster Concepts

• Chassis Cluster Concepts
• Chassis Cluster Operation

Lesson 17: Chassis Cluster Implementation

• Chassis Cluster Configuration
• Advanced Chassis Advanced Concepts
• Lab 13: Chassis Cluster Implementation

Lesson 18: Chassis Cluster Troubleshooting

• Chassis Cluster Case Studies
• Troubleshooting Examples
• Lab 14: Chassis Cluster Troubleshooting