Junos Intrusion Prevention System Functionality (JIPS)

Kursbeschreibung Kurstermine Detaillierter Kursinhalt
 

Zielgruppe

This course benefits individuals responsible for configuring and monitoring the IPS aspects of SRX Series devices.

Voraussetzungen

  • Basic networking knowledge, an understanding of the Open Systems Interconnection (OSI) reference model and an understanding of the TCP/IP protocol suite.
  • Attend the Introduction to the Junos Operating System (IJOS) course, the !JP-JRE course, and the Junos Security (JSEC) course, or you must have equivalent experience prior to attending this class.

Kursziele

This two-day course is designed to provide an introduction to the Intrusion Prevention System (IPS) feature set available on the Juniper Networks SRX Series Services Gateway. The course covers concepts, ideas, and terminology relating to providing intrusion prevention using the SRX Series platform. Hands-on labs offer students the opportunity to configure various IPS features and to test and analyze those functions. This course is based on the Junos operating system Release 12.1X44-D10.4.

After successfully completing this course, you should be able to:
  • Explain the terms and concepts related to intrusion prevention.
  • Describe general types of intrusions and network penetration steps.
  • Explain how scanning can be used to gather information about target networks.
  • Define and describe the terminology that comprises Juniper Networks IPS functionality.
  • Describe the basic functions and features available on the SRX Series platform that provide IPS functionality.
  • Describe how to access the SRX Series Services Gateways with IPS functionality for configuration and management.
  • Describe the steps that the IPS engine takes when inspecting packets.
  • Configure the SRX Series Services Gateways for IPS functionality.
  • Describe the components of IPS rules and rulebases.
  • Configure an IPS exempt rule.
  • Explain the types of signature-based attacks.
  • Configure a custom signature attack object.
  • Describe the uses of custom signatures and how to configure them.
  • Describe commonly used evasion techniques and how to block them.
  • Explain the mechanisms available on the SRX Series Services Gateway to detect and block DoS and DDoS attacks.
  • Configure screens to block IP spoofing and SYN flooding.
  • Describe additional security flow protection mechanisms.
  • Demonstrate how the SRX Series device performs TCP SYN checking.
  • Explain the STRM capabilities for capturing, logging, and reporting network traffic.
  • Describe the logging and reporting capabilities available for SRX IP functionality within STRM.

Classroom Training

Dauer 2 Tage

Preis (exkl. MwSt.)
  • Deutschland: 1.800,- €
  • Schweiz: Fr. 2.100,-
inkl. Verpflegung
Verpflegung umfasst:

  • Kaffee, Tee, Saft, Wasser, Cola
  • Gebäck und Süßigkeiten
  • Belegte Brötchen
  • Frisches Obst
  • Mittagessen in einem der naheliegenden Restaurants

Gilt nur bei Durchführung durch Fast Lane. Termine, die von unseren Partnern durchgeführt werden, beinhalten ggf. ein abweichendes Verpflegungsangebot.


Digitale Kursunterlagen Termine und Buchen
Online Training

Dauer 2 Tage

Preis (exkl. MwSt.)
  • Deutschland: US$ 1.900,-
Digitale Kursunterlagen Termine und Buchen
 
Zum Buchen bitte auf den Ortsnamen klickenKurstermine
Fast Lane wird alle garantierten Termine unabhängig von der Teilnehmerzahl durchführen. Ausgenommen sind höhere Gewalt oder andere unvorhersehbare Ereignisse (wie z.B. Unfall, Krankheit des Trainers), die eine Kursdurchführung unmöglich machen.
Dies ist ein Instructor-led Online Training, das über WebEx in einer VoIP Umgebung durchgeführt wird. Sollten Sie Fragen zu einem unserer Online-Kurse haben, können Sie uns jederzeit unter +49 (0)40 25334610 oder per E-Mail an info@flane.de kontaktieren.
Deutschland
18.05. - 19.05.2017 Frankfurt Garantietermin!
Schweiz
16.11. - 17.11.2017 Zürich
Österreich
16.11. - 17.11.2017 Wien (iTLS)