咨询热线:    40000-53353(全国)    0571-28976118(浙江)    
 

瞻博网络认证的互联网初级专家(JNCIS–SEC) 预约试听

 

课程长度:4天/24小时

课程描述:

瞻博网络认证的互联网初级专家(JNCIS–SEC)认证面向有经验的网络专业人士,他们具有瞻博网络SRX系列设备Junos软件的中级知识,该书面考试主要考查考生对安全技术的了解情况,以及是否具备相关的平台配置和故障排查技能。JNCIS-SEC认证的有效期为两年。只要通过当前版本的JNCIS-SEC考试或通过JNCIP-SEC考试就能获得重新认证。


Junos Security (JSEC) 面向安全平台的Junos

课程长度:3天/18小时

课程描述:This three-day course covers the configuration, operation, and implementation of SRX Series Services Gateways in a typical network environment. Key topics within this course include security technologies such as security zones, security policies, intrusion detection and prevention (IDP), Network Address Translation (NAT), and high availability clusters, as well as details pertaining to basic implementation, configuration, and management.

Through demonstrations and hands-on labs, students will gain experience in configuring and monitoring the Junos OS and monitoring device operations. This course uses Juniper Networks SRX Series Services Gateways for the hands-on component, but the lab environment does not preclude the course from being applicable to other Juniper hardware platforms running the Junos OS. This course is based on Junos OS Release 12.1R1.9.


课程目标:

After successfully completing this course, you should be able to:
Describe traditional routing and security and the current trends in internetworking.
Provide an overview of SRX Series devices and software architecture.
Describe the logical packet flow and session creation performed by SRX Series devices.
Describe, configure, and monitor zones.
Describe, configure, and monitor security policies.
Describe, configure, and monitor firewall user authentication.
Describe various types of network attacks.
Configure and monitor Screen options to prevent network attacks.
Explain, implement, and monitor NAT, as implemented on Junos security platforms.
Explain the purpose and mechanics of IP Security (IPsec) virtual private networks (VPNs).
Implement and monitor policy-based and route-based IPsec VPNs.
Utilize and update the IDP signature database.
Configure and monitor IDP policy with policy templates.
Describe, configure, and monitor high availability chassis clusters.


培训对象:

This course benefits operators of SRX Series devices. These operators include network engineers, administrators, support personnel, and reseller support personnel.


学员基础:

Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/IP protocol suite. Students should also attend the Introduction to the Junos Operating System (IJOS) course and the Junos Routing Essentials (JRE) course, or have equivalent experience prior to attending this class.


课程内容:
Day 1
Chapter 1: Course Introduction
Chapter 2: Introduction to Junos Security
Traditional Routing
Traditional Security
The Junos OS Architecture
Chapter 3: Zones
The Definition of Zones
Zone Configuration
Monitoring Security Zones
Lab 1: Configuring and Monitoring Zones
Chapter 4: Security Policies
Security Policy Overview
Junos ALGs
Policy Components
Verifying Policy Operation
Policy Scheduling and Rematching
Policy Case Study
Lab 2: Security Policies


Day 2
Chapter 5: Firewall User Authentication
Firewall User Authentication Overview
Pass-Through Authentication
Web Authentication
Client Groups
Using External Authentication Servers
Verifying Firewall User Authentication
Lab 3: Configuring Firewall Authentication
Chapter 6: Screen Options
Multilayer Network Protection
Stages and Types of Attacks
Using Junos Screen Options—Reconnaissance Attack Handling
Using Junos Screen Options—Denial of Service Attack Handling
Using Junos Screen Options—Suspicious Packets Attack Handling
Applying and Monitoring Screen Options
Lab 4: Implementing Screen Options
Chapter 7: Network Address Translation
NAT Overview
Source NAT Operation and Configuration
Destination NAT Operation and Configuration
Static NAT Operation and Configuration
Proxy ARP
Monitoring and Verifying NAT Operation
Lab 5: Network Address Translation


Day 3
Chapter 8: IPsec VPNs
VPN Types
Secure VPN Requirements
IPsec Details
Configuration of IPsec VPNs
IPsec VPN Monitoring
Lab 6: Implementing IPsec VPNs
Chapter 9: Introduction to Intrusion Detection and Prevention
Introduction to Junos IDP
IDP Policy Components and Configuration
Signature Database
Case Study: Applying the Recommended IDP Policy
Monitoring IDP Operation
Lab 7: Implementing IDP
Chapter 10: High Availability Clustering Theory
High Availability Overview
Chassis Cluster Components
Advanced Chassis Cluster Topics
Chapter 11: High Availability Clustering Implementation
Chassis Cluster Operation
Chassis Cluster Configuration
Chassis Cluster Monitoring
Lab 8: Implementing High Availability Techniques
Appendix A: SRX Series Hardware and Interfaces
Branch SRX Platform Overview
High End SRX Platform Overview
SRX Traffic Flow and Distribution
SRX Interfaces


Junos Unified Threat Management (JUTM) Junos统一威胁管理

课程长度:1天/6小时

课程描述:

This one-day course includes detailed coverage of Web filtering, antivirus (AV), antispam, and content filtering. Through demonstrations and hands-on labs, students will gain experience in configuring and monitoring the Unified Threat Management (UTM) features of the Junos operating system. This course is based on the Junos OS Release 11.4R1.6.

 

课程目标:

After successfully completing this course, you should be able to:
Describe the challenges that branch offices present to network managers.
List the major features that UTM offers.
Explain how each major feature addresses the challenges of the branch office.
List the SRX Series Services Gateways hardware devices on which UTM is available.
Describe the UTM features that require specific licenses.
Define terms used in the creation of effective antispam UTM policies.
Describe the process by which UTM examines traffic for spam.
Describe the overall process of configuring an antispam UTM policy.
Describe the kinds of information available from the device when it has detected spam.
Describe how the AV process examines traffic.
Describe the differences between full file-based AV versus express AV.
Describe the settings that are required for configuring AV protection.
Explain how these settings affect scanning performance and effectiveness.
Describe options available for scanning supported protocols.
List the general steps required to configure AV.
Describe the statistical information available to verify AV functionality.
Describe content and Web filtering and their purpose.
List and describe each of the parameters used when configuring Web and content filtering.
Describe in general terms the steps necessary to configure web and content filtering.
Monitor Web and content filtering. 


培训对象:

This course benefits individuals responsible for implementing and monitoring the UTM features available on branch SRX Services Gateways and J Series Services Routers.


学员基础:

Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) model and the TCP/IP protocol suite. Students should also have working knowledge of security policies.
Students should also attend the Introduction to the Junos Operating System (IJOS), Junos Routing Essentials (JRE), and Junos Security (JSEC) courses prior to attending this class.


培训内容:
Chapter 1: Course Introduction
Chapter 2: UTM Overview
Branch Office Challenges
UTM Feature Overview
Design Basics
Hardware Support
Licensing of Features
Lab 1: Connecting to the Lab Equipment and Testing Connectivity
Chapter 3: Antispam
Antispam Terminology
Overview of Antispam Process
UTM Policy Overview
Configuration Steps
Monitoring Antispam
Lab 2: Configuring an Antispam Policy
Chapter 4: Full File-Based and Express Antivirus
Antivirus Terminology
Overview of Antivirus Process
AV Operation
Full File-based AV Configuration
Express AV Configuration
Monitoring AV
Lab 3: Antivirus Configuration and Testing
Chapter 5: Content and Web Filtering
Overview and Terminology
Configuration
Verification and Monitoring
Lab 4: Configuring Content and Web Filtering

........