I passed the JNCIP-SEC, and now I want to pursue the JNCIE-SEC. From what I have learned, so far, the lab will use SRX240 and run 11.1 JunOS. I've loaded up 11.1 on my three SRX210H routers.
Here are the objectives from the JNCIE-SEC Juniper page:
Exam topics MAY include:
Complex policy implementations, including anti-virus scanning, and URL filtering
IPS, IPSec VPNs, including PKI, hub-and-spoke, transparent mode, dynamic, and overlapping address designs;
HA
Troubleshooting of policy, routing, and IPSec VPNs
Traffic management
Advanced management configurations
VLANs
Aggregated Ethernet.
Interface Configuration, Routing, and Redundancy
Interface zone assignment and IP configuration
VLANS
IGP configuration and operations
BGP configuration and operations
HA, Active/Passive, Active/Active
Redundant and aggregate interfaces
Bandwidth management
DHCP client/server
Administrative Configuration
Secure management
External services (syslog, RADIUS, DNS, NTP, SNMP)
Multiple administrators
Licensing
Firmware upgrade
Security
Basic and advanced address/service-based policies
Deep Inspection
Anti-virus scanning
Content filtering
Anti-spam filtering
SCREEN implementations
User authentication
IPS
VPNs
Site-to-site IPSec VPNs
Remote client VPNs
Addressing complexity (dynamic addressing, fixed remote assignment, overlapping addressing)
Custom IKE proposals
Certificates
Dynamic routing over VPNs
No comments:
Post a Comment