Juniper Networks Certified Internet Associate - Firewall/VPN

Designed for experienced networking professionals with beginner to intermediate knowledge of Juniper Firewall/VPN products and ScreenOS software, this written exam verifies the candidate's basic understanding of Internet and security technology and related device configuration. JNCIA-FWV exam topics are based on the content of the Configuring Juniper Networks Firewall/IPSec VPN Products instructor-led training course. This exam is NOT a prerequisite for the JNCIS-FWV certification.

Administering Firewall / VPN Devices

• Identify device components/functions
• Describe packet flow through device
• Describe initial configuration requirements/commands
• Configure local management options
• Configure external management devices (syslog, dns, snmp, etc.)
• Upgrade device software
• Manage configuration files (including configuration rollback)
• Discuss interface types/layer 1 & 2 configuration requirements

Layer 2 / Transparent Mode Operations

• Describe characteristics & operations of transparent mode
• Configure transparent mode

Layer 3 Operations

• Configure static routes
• Verify routing operations
• Configure L3 interfaces (including loopback)
• Describe NAT and route mode operations
• Configure NAT and route modes

Policy Configuration

• Configure address book entries & address groups.
• Configure service parameters & service groups.
• Configure basic policies.
• Configure multi-cell.
• Explain & verify policy operations.
• Configure logging
• Configure schedules
• Configure authentication
• Configure counters

Address Translation

• Distinguish between NAT options
• Configure NAT-src (including DIPs)
• Configure NAT-dst
• Configure MIPs
• Configure VIPs
• Verify address translation

VPNs

• List basic VPN requirements
• Describe IPSec operations (Phase 1/2, Diffie-Hellman, ESP/AH, etc.)
• Configure policy-based VPNs
• Validate VPN operations
• Differentiate route-based and policy-based VPNs
• Describe tunnel interface operations
• Configure route-based VPNs
• Validate VPN operations

60 multiple-choice questions

90 minute exam