IFVH – Integrating Juniper Firewall/VPNs into High-Performance Networks

Duration:   3 Days
Price:   $2795.00
Test Level:    0
Certifications:   JNCIS-FWV
Exams:   JNO-532

 
Course Overview
The three-day intermediate-level IFVH course focuses on the ScreenOS features that are typically required in large-scale networks, including dynamic routing, virtual systems, traffic shaping, and high availability. Upon completing this course, students should be able to return to work and successfully install, configure, and verify that a ScreenOS-based device is interoperating in the network as desired.

Through demonstrations and hands-on labs, students gain experience in configuring, testing, and troubleshooting these features in hands-on labs. By the end of this course, students will be able to configure Juniper Firewall/VPN appliances and systems that support the virtualization feature set, including sub-interfaces and virtual systems. Students will also be able to configure NSRP in both active/passive and active/active deployments.

Course Objective

  • Configure virtual systems, including standard, IP-based, and transparent mode
  • Configure OSPF, Routing Redistribution and Optimization
  • Configure BGP, EBGP and IBGP Connectivity
  • Implement Source-Based and Policy Based Routes
  • Configure Multicast operations, including IGMP and PIM-SM
  • Configure Virtual Systems (vsys) and Managing Resources
  • Configure high availability (NSRP) in static routing and dynamic routing environments
  • Configure traffic management and Ingress/Egress Policies
  • Verify operations and troubleshoot all configurations

Course Outline
Day 1

Chapter 1: Course Introduction

Chapter 2: ScreenOS Basics Review

  • Concepts Review
  • Configuration Review

Chapter 3: Interior Gateway Protocols

  • RIP Operations
  • OSPF Operations
  • OSPF Configuration
  • Verification and Troubleshooting
  • Route Redistribution
  • Route Optimization

Chapter 4: BGP

  • BGP Operations
  • EBGP Configuration
  • Verification and Troubleshooting
  • IBGP Configuration

BGP Connectivity

Day 2

Chapter 5: Advanced Static Routing

  • Source-Based Routing
  • Policy-Based Routing
  • Destination Routing

Chapter 6: Multicast

  • Multicast Overview
  • IGMP Operations
  • IGMP Configuration
  • PIM-SM Operations
  • PIM-SM Configuration
  • Multicast Policies

Chapter 7: Virtual Systems

  • Vsys Operations and Concepts
  • Configuring Vsys Using Interface Classification
  • Vsys Resource Management
  • Inter-Vsys Routing
  • Address Translation

Day 3

Chapter 8: Redundancy

  • NSRP Terms and Concepts
  • Configuring NSRP Active/Passive
  • Configuring NSRP Active/Active, VSD-Less Cluster, and NSRP-Lite
  • Tuning Failover Performance
  • VRRP Support
  • Redundant Interfaces

Chapter 9: Traffic Management

  • Need for Traffic Management
  • Egress Traffic Shaping
  • Ingress Policing
  • DSCP Marking

Appendix A: Virtual Systems Variations

  • Vsys with IP Classification
  • Transparent Mode Vsys

All courses are available as open-enrollment Classroom events, instructor-led Live Virtual Classes, REAL-ILT™ or as custom Onsite Training for up to 16 students.

Prerequisites
This course assumes that students have successfully completed the Configuring Juniper Firewall/VPNs (CJFV) course and the Network & Security Manager Fundamentals (NSMF) course, or have equivalent experience with ScreenOS. Specifically, students need to be familiar with configuration of:

  • Ethernet
  • Transparent Bridging
  • TCP/IP Operations
  • IP Addressing
  • Basic IPSec VPN deployments