Junos Routing and Security Junos Routing and Security for MX/SRX Platforms

The Junos Routing and Security course is a 5-day leader-led event that covers routing and Security aspects of the SRX and MX product. During class, students will be introduced to Junos, Junos Routing commands and Security principles and configuration methods using Junos CLI.

The course provides the foundational knowledge required to configure Juniper SRX devices running the Junos Operating system. Key topics include initial setup of devices, interface configuration basics with configuration examples, secondary system configuration, and the basics of operational monitoring and maintenance of devices running Junos Software. Courses included in this curriculum include:

1. IJOS
2. JRE
3. JSEC

Students will perform device configuration on dedicated lab equipment throughout the 5-day course. Once this course is completed, students have the option to attend the SRX Advanced course, which covers advanced Routing and Security topics.

Course Topics

• Junos Software Fundamentals
• Junos Software CLI
• J-Web GUI
• Initial Configuration
• Interface Configuration
• Secondary System Configuration
• User Configuration and Authentication
• System Logging and Tracing
• Network Time Protocol
• Archiving Configurations
• Simple Network Management Protocol
• Network Utilities
• Static/Dynamic Routing
• Routing Policy and Firewall Filters
• Class of Service
• Traffic Queuing & Scheduling
• Junos Software Architecture
• Zone Configuration
• Monitoring Security Zones
• Security Policies
• Policy Scheduling and Rematching
• Firewall User Authentication
• Pass-Through Authentication
• Web Authentication
• Client Groups
• Using External Authentication Servers
• SCREEN Options
• Multilayer Network Protection
• Network Address Translation
• Source NAT Operation and Configuration
• IPsec VPNs
• Configuration of IPsec VPNs
• Introduction to Junos Software IDP
• IDP Policy Components and Configuration
• Attack and Signature Database
• Implementing IDP
• High Availability Clustering
• Chassis Cluster Configuration

Day 1

IJOS Chapter 1: Course Introduction

IJOS Chapter 2: Junos Operating System Fundamentals

• The Junos OS
• Traffic Processing
• Platforms Running the Junos OS

IJOS Chapter 3: User Interface Options

• User Interface Options
• The Junos CLI: CLI Basics
• The Junos CLI: Operational Mode
• The Junos CLI: Configuration Mode

IJOS Chapter 4: Initial Configuration

• Factory-Default Configuration
• Initial Configuration
• Interface Configuration

IJOS Chapter 5: Secondary System Configuration

• User Configuration and Authentication
• System Logging and Tracing
• Network Time Protocol
• Archiving Configurations
• SNMP

IJOS Chapter 6: Operational Monitoring and Maintenance

• Monitoring Platform and Interface Operation
• Network Utilities
• Maintaining the Junos OS
• Password Recovery

Day Two

JRE Chapter 2: Routing Fundamentals

• Routing Concepts: Overview of Routing
• Routing Concepts: The Routing Table
• Routing Concepts: Routing Instances
• Static Routing
• Dynamic Routing

JRE Chapter 3: Routing Policy and Firewall Filters

• Routing Policy Overview
• Case Study: Routing Policy
• Firewall Filters Overview
• Case Study: Firewall Filters
• Unicast Reverse-Path-Forwarding Checks

JRE Chapter 4: Class of Service

• CoS Overview
• Traffic Classification
• Traffic Queuing
• Traffic Scheduling
• Case Study: CoS

Day 3

JSEC Chapter 2: Introduction to Junos security platforms

• Traditional Routing
• Traditional Security
• Breaking the Tradition
• The Junos OS Architecture

JSEC Chapter 3: Zones

• The Definition of Zones
• Zone Configuration
• Monitoring Security Zones

JSEC Chapter 4: Security Policies

• Overview of Security Policy
• Policy Components
• Verifying Policy Operation
• Policy Scheduling and Rematching
• Policy Case Study

Day 4

JSEC Chapter 5: Firewall User Authentication

• Firewall User Authentication Overview
• Pass-Through Authentication
• Web Authentication
• Client Groups
• Using External Authentication Servers
• Verifying Firewall User Authentication

JSEC Chapter 6: SCREEN Options

• Multilayer Network Protection
• Stages and Types of Attacks
• Using Junos SCREEN Options—Reconnaissance Attack Handling
• Using Junos SCREEN Options—Denial of Service Attack Handling
• Using Junos SCREEN Options—Suspicious Packets Attack Handling
• Applying and Monitoring SCREEN Options

JSEC Chapter 7: Network Address Translation

• NAT Overview
• Source NAT Operation and Configuration
• Destination NAT Operation and Configuration
• Static NAT Operation and Configuration
• Proxy ARP
• Monitoring and Verifying NAT Operation

Day 5

JSEC Chapter 8: IPsec VPNs

• VPN Types
• Secure VPN Requirements
• IPsec Details
• Configuration of IPsec VPNs
• IPsec VPN Monitoring

JSEC Chapter 9: Introduction to Intrusion Detection and Prevention

• Introduction to Junos IDP
• IDP Policy Components and Configuration
• Signature Database
• Case Study: Applying the Recommended IDP Policy
• Monitoring IDP Operation

JSEC Chapter 10: High Availability Clustering

• High Availability Overview
• Chassis Cluster Components
• Chassis Cluster Operation
• Chassis Cluster Configuration
• Chassis Cluster Monitoring

This course is available as open-enrollment Classroom event, instructor-led Live Virtual Class, REAL-ILT™ or as part of a custom Onsite Training for up to 16 students.

Students should have basic networking knowledge and an understanding of the OSI model and the TCP/IP protocol suite.