Home Junos Security – JNCIP

JNCIP

Download PDF

Request for Demo Lecture

    The JNCIP examination has a course structure that includes:

    1. Application-Aware Security Services: Description of the operation, functionality, and concepts of AppSecure, AppID, AppSecure traffic processing, AppFW, AppTrack, AppQoS, AppDos and monitoring, configuration, and troubleshooting of various modules in AppSecure.
    2. Virtualisation: Description of the operation, functionality and concepts of the various components of virtualization on the SRX Series Services Gateways, RIB groups, Logical systems, routing instances, Intra-LSYS as well as Inter-LSYS communication and demonstration of knowledge of monitoring, configuration and troubleshooting the various elements in terms of virtualization.
    3. Advanced NAT: Description of the operation, functionality and concepts of NAT, destination NAT, NAT traffic processing, Static NAT, Persistent NAT, Source NAT, NAT traversal, double NAT, DNS doctoring, routing, IPv6 NAT (Carrier-grade NAT) – NAT64, NAT444, NAT46, DS-Lite, NAT and FBF, and demonstration of knowledge of monitoring, configuration and troubleshooting of advanced level of NAT implementations.
    4. Advanced IPSec VPNs: Description of the operation, functionality and concepts of the different IPSec VPN implementations, site-to-site VPNs, Group VPNs, VPNs and NAT, PKI for IPSec VPNs as well as VPNs and dynamic gateways. In addition to this, a demonstration of knowledge of monitoring, configuration and troubleshooting of various advanced IPSec VPN implementations will also be sought from students.
    5. Intrusion Prevention: Description of the operation, functionality and concepts of Intrusion Prevention System in Junos for SRX Series Services Gateways, IPS rule bases and rules, IPS packet inspection process, attack detection based on the signature, spoofing, flooding attacks, fingerprinting and reconnaissance scans, network settings, scan prevention, attack database, etc.
    6. Transparent Mode: Description of the operation, functionality and concepts of the various transparent mode implementations, VLAN translation, High availability, IRB, spanning tree traffic processing, Layer 2 security, etc
    7. Troubleshooting: Demonstration of knowledge of troubleshooting Junos OS security issues, SNMP, Flow analysis, tracing, policy flow, show commands, packet capture.