Advanced Juniper Networks IPSec VPN Implementations (AJVI)

This two-day, advanced-level course focuses on the wide range of options available when configuring VPNs using Juniper Networks firewall/VPN products. After attending the course, you will learn these various deployments through detailed lectures and hands-on lab exercises.

Course Outline

Day 1

Chapter 1: Course Introduction

Chapter 2: ScreenOS VPN Basics Review

  • VPN Review

  • Verifying Operations

  • VPN Monitor

  • Lab 1: VPN Review


Chapter 3: VPN Variations

  • Dynamic Peers

  • Transparent Mode

  • Overlapping Addresses

  • Lab 2: VPN Variations


Chapter 4: Hub-and-Spoke VPNs

  • Concepts

  • Policy-Based Hub-and-Spoke

  • Route-Based, with No Policy, and NHTB

  • Route-Based with Policy

  • Centralized Control

  • AutoConnect-Virtual Private Networks

  • Lab 3: Hub-and-Spoke VPNs


Chapter 5: Routing over VPNs

  • Routing Overview

  • Configuring RIP

  • Configuring OSPF

  • Case Studies

  • Lab 4: Dynamic Routing


Day 2

Chapter 6: Using Certificates

  • Concepts and Terminology

  • Configuring Certificates and Certificate Support

  • Configuring VPNs with Certificates

  • Lab 5: Using Certificates


Chapter 7: Redundant VPN Gateways (Optional)

  • Redundant VPN Gateways

  • Other Options

  • Demo: Redundant VPN Gateways


Chapter 8: Generic Routing Encapsulation (Optional)

  • Configuring GRE


Chapter 9: Dial-Up IPSec VPNs

  • Basic Dial-up Configuration

  • Group IKE ID

  • XAUTH and Shared IKE ID


Appendix A: NetScreen-Remote

  • NetScreen-Remote Overview

  • Basic Dial-Up A-9

  • XAUTH/Shared IKE ID

  • Demo: Dial-Up VPNs

  • Lab 6: Dial-Up VPNs

Audience

This course is intended for network engineers, network support personnel, and reseller support.