This three-day course discusses edge security concepts for the service provider network. It discusses security for 5G networks on the main GPRS interfaces. Key topics include deploying an SRX Series device in different parts of the service provider network, implementing carrier-grade NAT, distributed denial of service (DDoS), malware inspection, command-and-control (C&C) prevention, IPsec tunnels, 5G security, control plane hardening, and BGP hardening. Additional topics include deploying MX-SPC3 card, configuring and verifying IPsec VPNs, and carrier-grade NAT, with unified services framework on MX Series platforms.
Students will gain experience in configuring, testing, and troubleshooting Junos OS through demonstrations and hands-on labs. This course is based on Junos OS 21.1R1.11.
Additional objectives for self-study:
DAY 1
1. Course Introduction
2. Security Challenges for Service Providers
3. Juniper Networks Solutions for Service Providers
4. Stateful Firewalls
Lab 1: Configure stateful firewalls
5. 5G Architecture
6. DDoS Protection
Lab 2: DDoS Protection
DAY 2
7. Carrier-Grade NAT
Lab 3: CGNAT
8. Juniper Connected Security for Service Providers
Lab 4: Implementing Juniper Connected Security
9. IPsec Overview
Lab 5: Implementing IPsec VPN
10. Scaling IPsec
Lab 6: Configuring AutoVPN
DAY 3
11. GPRS and GTP
12. SCTP
13. Securing the Control Plane
Lab 7: Configure Control Plane Protections
14. Securing the BGP Protocol
Lab 8: Configure BGP protections
SELF-STUDY MODULES
15. SPC3 for MX Series Platforms
16. IPsec VPN with SPC3 on MX Series Platforms
17. CGNAT with SPC3 on MX Series Platforms
18. Troubleshooting MX-SPC3
Individuals responsible for implementing, monitoring, and troubleshooting Juniper security components
This three-day course discusses edge security concepts for the service provider network. It discusses security for 5G networks on the main GPRS interfaces. Key topics include deploying an SRX Series device in different parts of the service provider network, implementing carrier-grade NAT, distributed denial of service (DDoS), malware inspection, command-and-control (C&C) prevention, IPsec tunnels, 5G security, control plane hardening, and BGP hardening. Additional topics include deploying MX-SPC3 card, configuring and verifying IPsec VPNs, and carrier-grade NAT, with unified services framework on MX Series platforms.
Students will gain experience in configuring, testing, and troubleshooting Junos OS through demonstrations and hands-on labs. This course is based on Junos OS 21.1R1.11.
Additional objectives for self-study:
DAY 1
1. Course Introduction
2. Security Challenges for Service Providers
3. Juniper Networks Solutions for Service Providers
4. Stateful Firewalls
Lab 1: Configure stateful firewalls
5. 5G Architecture
6. DDoS Protection
Lab 2: DDoS Protection
DAY 2
7. Carrier-Grade NAT
Lab 3: CGNAT
8. Juniper Connected Security for Service Providers
Lab 4: Implementing Juniper Connected Security
9. IPsec Overview
Lab 5: Implementing IPsec VPN
10. Scaling IPsec
Lab 6: Configuring AutoVPN
DAY 3
11. GPRS and GTP
12. SCTP
13. Securing the Control Plane
Lab 7: Configure Control Plane Protections
14. Securing the BGP Protocol
Lab 8: Configure BGP protections
SELF-STUDY MODULES
15. SPC3 for MX Series Platforms
16. IPsec VPN with SPC3 on MX Series Platforms
17. CGNAT with SPC3 on MX Series Platforms
18. Troubleshooting MX-SPC3
Individuals responsible for implementing, monitoring, and troubleshooting Juniper security components