Junos Intrusion prevention System Functionality
- Course Code JIPS
- Duration 2 days
Course Delivery
Jump to:
Course Delivery
This course is available in the following formats:
-
Company Event
Event at company
-
Public Classroom
Traditional Classroom Learning
-
Virtual Learning
Learning that is virtual
Request this course in a different delivery format.
Course Overview
TopCourse Schedule
TopTarget Audience
TopThis course is designed for:
- Individuals responsible for configuring and monitoring the IPS aspects of SRX Series devices.
Course Objectives
TopUpon completing this course, the learner will be able to meet these overall objectives:
- Describe general types of intrusions and network penetration steps.
- Describe how to access the SRX Series Services Gateways with IPS functionality for configuration and management.
- Configure the SRX Series Services Gateways for IPS functionality.
- Define and describe terminology which comprises Juniper Networks IPS functionality.
- Describe the steps that the IPS engine takes when inspecting packets.
- Describe the components of IPS rules and rulebases.
- Explain the types of signature-based attacks.
- Describe the uses of custom signatures and how to configure them.
- Explain how scanning can be used to gather information about target networks.
- Configure screens to block various scan types.
- Describe commonly used evasion techniques and how to block them.
- Describe denial of service (DoS) and distributed denial of service (DDoS) attacks.
- Explain the mechanisms available on the SRX Series device to detect and block DoS and DDoS attacks.
- Configure screens to block DoS and DDoS attacks.
- Describe the reporting capabilities available for IPS functionality.
- Explain the terms and concepts related to intrusion prevention.
- Describe the basic functions and features available on the SRX Series platform that provide IPS functionality.
- Configure fundamental IPS features and functions on an SRX240 device.
Course Content
TopOverview of IPS Functionality
- Reasons for Network Attacks
- Categories of Attacks
- Anatomy of an Attack
- IPS Mechanisms on SRX Series Devices
Initial Device Configuration
- Deployment Options for IPS Functionality
- Management Options
- Network Settings
- Preparing the SRX Series Device for IPS Features
IPS Terminology and Concepts
- Terminology Overview
- Attack Objects
- IPS Rulebase Details
- Rule Match Conditions
- Rule Actions
- Terminal Rules
- IP Actions
- Notification
- Terminology Review
- IPS Traffic Flow
IPS Attack Objects
- IPS Rules and Rulebases
- Attack Objects
- Custom Signatures
Scanning and Reconnaissance
- Overview of Scanning
- Types of Scans
- Fingerprinting
- IPS Scan Prevention
Blocking Evasion Techniques and Denial of Service
- FIN Scans
- IP Spoofing
- IP Source Routing Options
- DoS and DDoS Attacks
- Mechanisms for Blocking DoS and DDoS
Course Prerequisites
TopThe knowledge and skills that a learner must have before attending this course are as follows:
- Students should have basic networking knowledge, an understanding of the Open Systems Interconnection (OSI) reference model for layered communications and computer network protocol design, and an understanding of the TCP/IP protocol suite.
To gain the prerequisite skills and knowledge, Juniper strongly recommends the knowledge of the following courses:
- Introduction to the Junos Operating System (IJOS)
- Junos Routing Essentials (JRE)
- Junos Security (JSEC)
Test Certification
TopRecommended preparation for:
- JN0-633 - Juniper Networks Certified Internet Professional (JNCIP-SEC)
JIPS is one of the courses required for the Juniper Networks Certified Internet Professional (JNCIP-SEC) Certification
Follow on Courses
Top- Advanced Junos Security (AJSEC)
JIPS and AJSEC are the courses required for the Juniper Networks Certified Internet Professional (JNCIP-SEC) Certification
- #000000
- JIPS
- Junos Intrusion prevention System Functionality
- Security
- JIPS | Junos Intrusion prevention System Functionality | Training Course | Juniper.
- Juniper