Juniper Advanced Junos Security - AJSEC

This five-day course, which is designed to build off the current Junos Security (JSEC) offering, delves deeper into Junos security and next-generation security features. Through demonstrations and hands-on labs, you will gain experience in configuring and monitoring the advanced Junos OS security features with advanced coverage of virtualization, AppSecure, advanced logging and reporting, next generation Layer 2 security, user firewall, next generation advanced anti-malware with Sky ATP, next generation security intelligence with software-defined secure networks. This course uses Juniper Networks SRX Series Services Gateways for the hands-on component. This course is based on Junos OS Release 15.1X49-D90.7 and Junos Space Security Director 16.2.

Students should have a strong level of TCP/IP
networking and security knowledge. Students
should also attend the Introduction to the Junos
Operating System (IJOS) and Junos Security
(JSEC) courses prior to attending this class.

JNCIP-SEC exam topics are based on the content of the recommended instructor-led training courses, as well as the additional resources.

• Demonstrate understanding of concepts covered in the prerequisite Junos Security course.
• Describe the various forms of security supported by the Junos OS.
• Implement features of the AppSecure suite, including AppID, AppFW, AppTrack, AppQoS, and SSL Proxy.
• Configure custom application signatures.
• Describe Junos security handling at Layer 2 versus Layer 3.
• Implement next generation Layer 2 security features.
• Demonstrate understanding of Logical Systems (LSYS).
• Describe Junos routing instance types used for virtualization.
• Implement virtual routing instances in a security setting.
• Describe and configure route sharing between routing instances using logical tunnel interfaces.
• Describe and discuss Sky ATP and its function in the network.
• Describe and configure UTM functions.
• Discuss IPS and its function in the network.
• Implement IPS policies.
• Describe and implement SDSN and Policy Enforcer in a network.
• Describe the purpose of SSL proxy.
• Implement client-protection SSL proxy.
• Implement server-protection SSL proxy.
• Describe and implement user role firewall in a network.
• Demonstrate the understanding of user firewall.