• Completion of the Configuring Juniper Networks Firewall/IPsec VPN Products (CJFV) course or equivalent experience with ScreenOS software.
• General networking knowledge, including Ethernet, TCP/IP, and routing concepts.

• Configure LAN-to-LAN IP Security (IPsec) VPNs in various configurations.
• Configure VPN redundancy.
• Configure dynamic routing using IPsec VPNs.
• Configure remote access IPsec connectivity including group Internet Key Exchange (IKE) and shared IKE.
• Configure generic routing encapsulation (GRE) tunnels.

Day 1

Chapter 1: Course Introduction

Chapter 2: ScreenOS VPN Basics Review

• VPN Review
• Verifying Operations
• VPN Monitor
• Lab: VPN Review

Chapter 3: VPN Variations

• Dynamic Peers
• Transparent Mode
• Overlapping Addresses
• Lab: VPN Variations

Chapter 4: Hub-and-Spoke VPNs

• Concepts
• Policy-Based Hub-and-Spoke VPNs
• Route-Based Hub-and-Spoke VPNs with No Policy and NHTB
• Route-Based Hub-and_Spoke VPNS with Policy
• Centralized Control Hub-and-Spoke VPNs
• ACVPNs
• Lab: Hub-and-Spoke VPNs

Chapter 5: Routing over VPNs

• Routing Overview
• Configuring RIP
• Configuring OSPF
• Case Studies
• Lab: Dynamic Routing

Day 2

Chapter 6: Using Certificates

• Concepts and Terminology
• Configuring Certificates and Certificate Support
• Configuring VPNs with Certificates
• Lab: Using Certificates

Chapter 7: Redundant VPN Gateways (Optional)

• Redundant VPN Gateways
• Other Options
• Demonstration: Redundant VPN Gateways

Chapter 8: Generic Routing Encapsulation (Optional)

• Configuring GRE

Chapter 9: Dial-Up IPsec VPNs (Optional)

• Basic Dial-Up Configuration
• Group IKE ID
• XAUTH and Shared IKE ID