System Setup and Initial Configuration section includes the concepts and components of ScreenOS software Security architecture components, Knowledge of basic elements of ScreenOS software Interfaces, configure and monitor interfaces, and the concepts and functionality of virtual systems (vsys) which further includes vsys interfaces and zones, Inter-vsys routing, Profiles, and CPU resource management.
Layer 3 Operations section includes the concepts and functionality of Layer 3 operations (IPv4 and IPv6) and knowledge of how to configure which further include Routing lookup flow, Virtual routers, Static and default routing, Dynamic routing - RIP, OSPF, BGP, Considerations for routing over VPNs, Route optimization and aggregation, Route redistribution; access lists and route maps, Source-based vs. policy-based routing, IPv6 modes, and this section also include monitor and troubleshoot Layer 3 operations (IPv4 and IPv6).
Security Policies section involves the concepts and functionality of security policies Zones and policies, and knowledge to configure, monitor and troubleshoot security policies which further includes Address books and address groups, Services and service groups, Policy verification, Policy troubleshooting - debug, get session.
NAT, this topic includes the concepts and functionality of NAT, and knowledge to configure, monitor and troubleshoot NAT which also include Policy-based NAT Dynamic IP addresses (DIP), Reach ability/Routing, VIP and MIP, NAT verification, NAT troubleshooting - debug, get session, and traffic logs.
IPsec VPNs section of this JN0-533, Juniper Networks Certified Specialist FWV (JNCIS-FWV) exam includes the concepts and functionality of IPsec VPNs Secure VPN, and knowledge to configure, monitor and troubleshoot IPsec VPNs.
High Availability topic includes the concepts and requirements for high availability (HA) in a ScreenOS firewall/VPN environment, and knowledge to configure, monitor and troubleshoot HA this includes HA link, Cluster settings, Interfaces, VSD settings, RTO synchronization, Tracking and monitoring, Redundant interface, HA verification, HA monitoring for VPNs - IKE heartbeats, dead peer detection, HA troubleshooting - debug, get interface, get nsrp stats.
Attack Prevention section involves the purpose, configuration and operation of Screens, the purpose, configuration and operation of deep inspection (DI), and the purpose, configuration and operation of Unified Threat Management (UTM).
System Administration, Management and Monitoring section which is the last section includes knowledge to manage and monitor a ScreenOS firewall/VPN environment which further includes File management, Password recovery, Licensing, Logs, Syslog, SNMP, Alarms, and Counters.
The recommended training courses for this JN0-533, Juniper Networks Certified Specialist FWV (JNCIS-FWV) exam include Configuring Juniper Networks Firewall/IPSec VPN Products, Integrating Juniper Networks Firewalls and VPNs into High-Performance Networks, Advanced Juniper Networks IPSec VPN Implementations, and Attack Prevention with Juniper Networks Firewalls.
Further the additional resources for this JN0-533, Juniper Networks Certified Specialist FWV (JNCIS-FWV) exam include ScreenOS documentation, KB21496 -which deals with troubleshoot BGP issues, KB19321 - OSPF route flapping, KB15690 - which include how to enable the NSRP dynamic route synchronization features and last but not the least is the real world hand-on experience which is very important for clearing this exam.
ليست هناك تعليقات:
إرسال تعليق