Skip to main Content

Configuring Juniper Networks Firewall/IPsec VPN Products

  • Course Code CJFV
  • Duration 3 days

Additional Payment Options

  • GTC 23 inc. VAT

    GTC, Global Knowledge Training Credit, please contact Global Knowledge for more details

Public Classroom Price

$2,099.00

excl. VAT

Request Group Training Add to Cart

Course Delivery

This course is available in the following formats:

  • Company Event

    Event at company

  • Public Classroom

    Traditional Classroom Learning

  • Virtual Learning

    Learning that is virtual

Request this course in a different delivery format.

Course Overview

Top

This course is the first in the ScreenOS curriculum. It is a three-day, instructor-led course that focuses on configuration of the ScreenOS firewall/virtual private network (VPN) products in a variety of situations, including basic administrative access, routing, firewall policies and policy options, attack prevention features, address translation, and VPN implementations. This course is based on ScreenOS version 6.2.

Course Schedule

Top

Target Audience

Top

This course is designed for:

  • Network engineers, support personnel, reseller support, and others responsible for implementing Juniper Networks firewall products.

Course Objectives

Top

Upon completing this course, the learner will be able to meet these overall objectives:

  • After successfully completing this course, you should be able to:
  • Explain the ScreenOS security architecture.
  • Configure administrative access and options.
  • Back up and restore configuration and ScreenOS files.
  • Configure a ScreenOS device in transparent, route, Network Address Translation (NAT), and IP version 6 (IPv6) modes.
  • Discuss the applications of multiple virtual routers.
  • Configure the ScreenOS firewall to permit and deny traffic based on user defined policies.
  • Configure advanced policy options.
  • Identify and configure network designs for various types of network address translation.
  • Configure policy-based and route-based VPN tunnels.

Course Content

Top
ScreenOS Concepts, Terminology, and Platforms
  • Security Device Requirements
  • ScreenOS Security Architecture
  • Juniper Networks Platforms

Initial Connectivity

  • System Components
  • Establishing Connectivity
  • Verifying Connectivity

Device Management

  • Management
  • Recovery

Layer 3 Operations

  • Need for Routing
  • Configuring Layer 3
  • Verifying Layer 3
  • Loopback Interface
  • Interface-Based NAT

Basic Policy Configuration

  • Functionality
  • Policy Configuration
  • Common Problems
  • Global Policy
  • Verifying Policies

Policy Options

  • Overview
  • Logging
  • Counting
  • Scheduling
  • User Authentication

Address Translation

  • Scenarios
  • NAT-src
  • NAT-dst
  • VIP Addresses
  • MIP Addresses

VPN Concepts

  • Concepts and Terminology
  • IP Security

Policy-Based VPNs

  • Configuration
  • Verifying Operations

Route-Based VPNs

  • Concepts and Terminology
  • Configuring VPNs
  • Verifying Operations

IPv6

  • IPv6 Concepts
  • Configuration
  • Verifying IPv6 Operations

Course Prerequisites

Top

The knowledge and skills that a learner must have before attending this course are as follows:

  • The Internet;
  • Networking concepts; and
  • Terms including TCP/IP, bridging, switching, and routing.

Test Certification

Top

Recommended as preparation for:

  • JN0-533 - Juniper Networks Certified Specialist FWV (JNCIS-FWV)

CJFV is one of four courses required to achieve the JNCIS-FWV Certification