Integrating Juniper Firewall/VPNs Into High-Performance Networks (IFVH)

Course Number:



Course Duration:
3 days


This course assumes that students have successfully completed the Configuring Juniper Firewall/VPNs (CJFV) course and the Network and Security Manager Fundamentals (NSMF) course or have equivalent experience with ScreenOS. Specifically, students need to be familiar with configuration of:

  • Ethernet
  • Transparent bridging
  • TCP/IP operations
  • IP addressing
  • Basic IPSec VPN deployments
Course Objectives:
  • Configure virtual systems, including standard, IP-based and transparent mode
  • Configure OSPF, routing redistribution and optimization
  • Configure BGP, EBGP and IBGP connectivity
  • Implement source-based and policy-based routes
  • Configure multi-cast operations, including IGMP and PIM-SM
  • Configure virtual systems (vsys) and manage resources
  • Configure high availability (NSRP) in static routing and dynamic routing environments
  • Configure traffic management and ingress/egress policies
  • Verify operations and troubleshoot all configurations
Course Outline:
  • Course Introduction


  • ScreenOS Basics Review
    • Concepts Review
    • Configuration Review


  • Interior Gateway Protocols
    • RIP Operations
    • OSPF Operations
    • OSPF Configuration
    • Verification and Troubleshooting
    • Route Redistribution
    • Route Optimization


  • BGP
    • BGP Operations
    • EBGP Configuration
    • Verification and Troubleshooting
    • IBGP Configuration
    • BGP Connectivity


  • Advanced Static Routing
    • Source-Based Routing
    • Policy-Based Routing
    • Destination Routing


  • Multicast
    • Multicast Overview
    • IGMP Operations
    • IGMP Configuration
    • PIM-SM Operations
    • PIM-SM Configuration
    • Multi-cast Policies


  • Virtual Systems
    • Vsys Operations and Concepts Configuring
    • Vsys Using Interface Classification
    • Vsys Resource Management
    • Inter-Vsys Routing
    • Address Translation


  • Redundancy
    • NSRP Terms and Concepts
    • Configuring NSRP Active/Passive
    • Configuring NSRP Active/Active, VSD-Less Cluster and NSRP-Lite
    • Tuning Failover Performance
    • VRRP Support
    • Redundant Interfaces


  • Traffic Management
    • Need for Traffic Management
    • Egress Traffic Shaping
    • Ingress Policing
    • DSCP Marking


  • Appendix A: Virtual Systems Variations
    • Vsys with IP Classification
    • Transparent Mode Vsys

Related Posts

About Us

IT Training, Agile Ways of Working and High Impact Talent Development Strategies

Let Us Come to You!

Classes recently delivered in: Atlanta, Boston, Chicago, Columbus, Dallas, Detroit, Indianapolis, Jerusalem, London, Milan, New York, Palo Alto, Phoenix, Pittsburgh, Portland, Raleigh, San Antonio, San Diego, San Francisco, San Jose, Seattle, Springfield, Mass., St. Louis, Tampa and more!