Advanced Juniper Security Course Overview:

This four-day course extends beyond the existing Juniper Security (JSEC) program, providing a deeper dive into Junos security, next-generation security features, and ATP support software. Through practical demonstrations and hands-on labs, participants will gain expertise in configuring and monitoring advanced Junos OS security features, including comprehensive coverage of advanced logging and reporting, next-generation Layer 2 security, and advanced anti-malware using Juniper ATP On-Prem and SecIntel. The course utilizes Juniper Networks SRX Series Services Gateways for the hands-on training component. It is based on Junos OS Release 20.1R1.11, Junos Space Security Director 19.4, and Juniper ATP On-Prem version 5.0.7.

Intended Audience:

• Individuals responsible for configuring and monitoring devices running the Junos OS

Learning Objectives of Advanced Juniper Security:

• Demonstrate understanding of concepts covered in the prerequisite Juniper
  Security courses.
• Describe the various forms of security supported by the Junos OS.
• Describe the Juniper Connected Security model.
• Describe Junos security handling at Layer 2 versus Layer 3.
• Implement next generation Layer 2 security features.
• Demonstrate understanding of Logical Systems (LSYS).
• Demonstrate understanding of Tenant Systems (TSYS).
• Implement virtual routing instances in a security setting.
• Describe and configure route sharing between routing instances using logical
  tunnel interfaces.
• Describe and discuss Juniper ATP and its function in the network.
• Describe and implement Juniper Connected Security with Policy Enforcer in a
  network.
• Describe firewall filters use on a security device.
• Implement firewall filters to route traffic.
• Explain how to troubleshoot zone problems.
• Describe the tools available to troubleshoot SRX Series devices.
• Describe and implement IPsec VPN in a hub-and-spoke model.
• Describe the PKI infrastructure.
• Implement certificates to build an ADVPN network.
• Describe using NAT, CoS and routing protocols over IPsec VPNs.
• Implement NAT and routing protocols over an IPsec VPN.
• Describe the logs and troubleshooting methodologies to fix IPsec VPNs.
• Implement working IPsec VPNs when given configuration that are broken.
• Describe Incident Reporting with Juniper ATP On-Prem device.
• Configure mitigation response to prevent spread of malware.
• Explain SecIntel uses and when to use them.
• Describe the systems that work with SecIntel.
• Describe and implement advanced NAT options on the SRX Series devices.
• Explain DNS doctoring and when to use it.
• Describe NAT troubleshooting logs and techniques.