Juniper Networks Design Security

This course is targeted specifically for those who have a solid understanding of operation and configuration and are looking to enhance their skill sets by learning the principles of security design.

After successfully completing this course, you should be able to:

Identify high level security challenges with different design architectures.

Explain the value of implementing security solutions in any network design.

Perform the steps necessary to identify customer security requirements.

Explain what is required to define the scope of the security design.

Identify the data required to perform a data analysis of the customer's existing network and use that information in the design.

Describe traditional security practices used to secure a network.

Explain the added capabilities that next generation firewalls provide.

Explain the evolution of modern security models.

Describe intelligent networks.

Explain how Software-Defined Secure Networking improves security in network design.

Explain the need for centralized Security Management.

Describe the benefits of automating security.

Describe how security works in a virtualized environment.

Explain the benefits of service chaining.

Describe network virtualization with VMware NSX.

Describe the benefits of HA with security devices.

Discuss how to handle asymmetric traffic with security devices.

Describe different options for SRX chassis cluster deployments.

Describe the main security concerns for the campus and the branch networks.

Explain end-to-end security concepts.

Describe security functions at different network layers.

Explain network authentication and access control concepts.

Describe common campus and branch network security design examples.

Describe security considerations for the enterprise WAN.

Explain when to use IPsec and NAT in the enterprise WAN.

Explain virtual router applications for the enterprise WAN.

Discuss security best practices in the enterprise WAN.

Describe security in the service provider WAN.

Discuss security best practices for the service provider WAN.

Discuss the security requirements and design principles of the data center.

Describe the security elements of the data center.

Describe network security implementation options in the data center.

Discuss network security functionality in the data center.

• Section 1 : Course Introduction
• Section 3 : Assessing Security in Network Design

  Lessons

  • Overview
  • Customer Security Requirements
  • Customer Scope
  • Data Analysis
• Section 4 : Traditional Security Architectures

  Lessons

  • Traditional Security Practices
  • NAT
  • IPsec VPNs
  • Next Generation Firewalls
  • Unified Threat Management

  Labs

  • Designing a Traditional Security Architecture
• Section 5 : Modern Security Principles

  Lessons

  • Modern Security Models
  • Designing an Intelligent Network
  • Use Cases
  • Modularity in Security Design

  Labs

  • Designing for Security Intelligence
• Section 8 : Virtualizing Security

  Lessons

  • Security in a Virtualized Environment
  • Virtual SRX
  • Security with SDN and NFV
  • Container SRX
  • Network Virtualization with VMware NSX

  Labs

  • Virtualizing Security
• Section 9 : Providing High Availability in Security Design

  Lessons

  • Benefits of High Availability with Security Devices
  • Implementing Physical High Availability
  • Assymmetrical Traffic Handling
  • SRX Chassis Clustering

  Labs

  • High Availability
• Section 10 : Securing the Campus and Branch

  Lessons

  • Campus and Branch Security: An Overview
  • Network Segmentation and Perimeter Security
  • Application-Level Security
  • Access Control and Authentication
  • Layer 2 Security Functions
  • Case Studies and Example Architectures

  Labs

  • Designing for Campus and Branch Security
• Section 11 : Securing the Enterprise WAN

  Lessons

  • Security in the Enterprise WAN: An Overview
  • Best Practices and Considerations
  • Case Studies and Example Architectures

  Labs

  • Designing for Enterprise WAN Security
• Section 12 : Securing the Service Provider WAN

  Lessons

  • Security in the Service Provider WAN: An Overview
  • Best Practices and Considerations
  • Case Studies and Example Architectures

  Labs

  • Designing for Service Provider WAN Security
• Section 13 : Securing the Data Center

  Lessons

  • Overview of Data Center Security
  • Security Elements
  • Network Security in the Data Center
  • Network Security Functions in the Data Center

  Labs

  • Securing the Data Center