Advanced Juniper Networks IPSec VPN Implementations

After successfully completing this course, you should be able to:

• Configure LAN-to-LAN IPSec VPNs in various configurations.
• Configure VPN redundancy.
• Configure dynamic routing using IPSec VPNs.
• Configure remote access IPSec connectivity including group IKE and shared IKE.
• Configure GRE tunnels.

Chapter 1: Course Introduction

Chapter 2: ScreenOS VPN Basics Review

• VPN Review
• Verifying Operations
• VPN Monitor
• Lab 1: Configuring VPNs

Chapter 3: VPN Variations

• Dynamic Peers
• Transparent Mode
• Overlapping Addresses
• Lab 2: VPN Variations

Chapter 4: Hub-and-Spoke VPNs

• Concepts
• Policy-Based Hub-and-Spoke
• Route-Based, with No Policy, and NHTB
• Route-Based with Policy
• Centralized Control
• AutoConnect-Virtual Private Networks
• Lab 3: Hub-and-Spoke VPNs

Chapter 5: Routing over VPNs

• Routing Overview
• Configuring RIP
• Configuring OSPF
• Case Studies
• Lab 4: Routing over VPNs

Chapter 6: Using Certificates

• Concepts and Terminology
• Configuring Certificates and Certificate Support
• Configuring VPNs with Certificates
• Lab 5: Using Certificates

Chapter 7: Redundant VPN Gateways (Optional)

• Redundant VPN Gateways
• Other Options
• Demo: Redundant VPN Gateways

Chapter 8: Generic Routing Encapsulation (Optional)

• Configuring GRE
• Chapter 9: Dial-Up IPSec VPNs
• Basic Dial-up Configuration
• Group IKE ID
• XAUTH and Shared IKE ID

Who should attend

This course is intended for network engineers, network support personnel, and reseller support.

Pre-requisites

Pre-requisites for this course include the following:

• Completion of the Configuring Juniper Networks Firewall/IPSec VPN Products (CJFV) course or equivalent experience with ScreenOS software.
• General networking knowledge including Ethernet, TCP/IP, and routing concepts