Juniper SRX Series
O'Reilly Media, Inc, USA (Verlag)
978-1-4493-3896-1 (ISBN)
While their earlier book, Junos Security, covered the SRX platform, this book focuses on the SRX Series devices themselves. You'll learn how to use SRX gateways to address an array of network requirements—including IP routing, intrusion detection, attack mitigation, unified threat management, and WAN acceleration. Along with case studies and troubleshooting tips, each chapter provides study questions and lots of useful illustrations.
- Explore SRX components, platforms, and various deployment scenarios
- Learn best practices for configuring SRX’s core networking features
- Leverage SRX system services to attain the best operational state
- Deploy SRX in transparent mode to act as a Layer 2 bridge
- Configure, troubleshoot, and deploy SRX in a highly available manner
- Design and configure an effective security policy in your network
- Implement and configure network address translation (NAT) types
- Provide security against deep threats with AppSecure, intrusion protection services, and unified threat management tools
Brad Woodberg is a Product Line Engineer at Juniper Networks. He is JNCIE-M, JNCIE-SEC, JNCIS-FWV, JNCIS-SSL, JNCIA-IDP, JNCIA-EX, JNCIA-UAC, CCNP R&S and holds a bachelor's degree in computer engineering from Michigan State University. Before joining Juniper Networks, he spent four and a half years working at a Juniper reseller where he designed, deployed, supported, and managed computer networks worldwide with equipment from a variety of vendors. In addition to being a co-author of Junos Security, he is a coauthor of Juniper Net- works NetScreen and SSG Firewalls and Juniper Networks Secure SSL VPN, both published by Syngress.
Rob Cameron is a Director of Product Line Engineering for the Security division at Juniper Networks. In his 10-plus-year career, he has held positions as a security reseller, service provider engineer, and security consultant. For the past five years, he has worked for Juniper Networks as a systems engineer, a data center architect, and a technical marketing engineer. He is the primary author of the books Junos Security, Configuring NetScreen Firewalls and Configuring NetScreen and SSG Firewalls, both published by Syngress. He is also a contributing author of Security Interviews Exposed and the Best Damn Firewall Book Period, Second Edition (also published by Syngress), and has been a technical reviewer for any number of professional publications.
Chapter 1 Welcome to the SRX
Evolving into the SRX
The SRX Series Platform
Deployment Solutions
Summary
Study Questions
Chapter 2 SRX Series Product Lines
Branch SRX Series
Data Center SRX Series
Summary
Study Questions
Chapter 3 SRX GUI Management
J-Web: Your On-Box Assistant
Centralized Management
Summary
Study Questions
Chapter 4 SRX Networking Basics
Interfaces
Zones
Basic Protocols
Routing Instances
Flow Mode and Packet Mode
Sample Deployment
Summary
Study Questions
Chapter 5 System Services
System Services Operation on the SRX
Management Services
SNMP Management
Networking Services
SRX Logging and Flow Records
Best Practices
Troubleshooting and Operation
Summary
Study Questions
Chapter 6 Transparent Mode
Transparent Mode Overview
Configuring Transparent Mode
Troubleshooting and Operation
Sample Deployments
Summary
Study Questions
Chapter 7 High Availability
Understanding High Availability in the SRX
Getting Started with High Availability
Deployment Concepts
Preparing Devices for Deployment
Integrating the Cluster into Your Network
Fault Monitoring
Troubleshooting and Operation
Sample Deployments
Summary
Study Questions
Chapter 8 Security Policies
Packet Flow
Security Policy Criteria and Precedence
Security Policy Precedence
Security Policy Components in Depth
Best Practices
Troubleshooting and Operation
Sample Deployment
Summary
Study Questions
Chapter 9 Network Address Translation
The Need for NAT
Junos NAT Fundamentals
Junos NAT Components
Junos NAT in Practice
Best Practices
Troubleshooting and Operation
Sample Deployment
Summary
Study Questions
Chapter 10 IPsec VPN
VPN Architecture Overview
IPsec VPN Concepts Overview
IKE Negotiations
Flow Processing and IPsec VPNs
SRX VPN Types
Other SRX VPN Components
Selecting the Appropriate VPN Configuration
IPsec VPN Configuration
Best Practices
Troubleshooting and Operation
Sample Deployments
Summary
Study Questions
Chapter 11 Screens and Flow Options
A Brief Review of Denial-of-Service Attacks
Screen Theory and Examples
Best Practices
Troubleshooting and Operation
Sample Deployment
Summary
Study Questions
Chapter 12 AppSecure Basics
AppSecure Component Overview
Deploying AppSecure
Best Practices
Troubleshooting and Operation
Sample Deployments
Summary
Study Questions
Chapter 13 Intrusion Prevention
The Need for IPS
How Does IPS Work?
Configuring IPS Features on the SRX
Deploying and Tuning IPS
Best Practices
Troubleshooting and Operation
Sample Deployments
Summary
Study Questions
Chapter 14 Unified Threat Management
Shifting Threats
UTM, IPS, or Both?
UTM Licensing
UTM Components
Best Practices
Troubleshooting and Operation
Sample Deployments
Summary
Study Questions
Colophon
| Erscheint lt. Verlag | 23.7.2013 |
|---|---|
| Zusatzinfo | black & white illustrations, black & white tables, figures |
| Verlagsort | Sebastopol |
| Sprache | englisch |
| Maße | 178 x 233 mm |
| Gewicht | 1590 g |
| Einbandart | kartoniert |
| Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
| ISBN-10 | 1-4493-3896-8 / 1449338968 |
| ISBN-13 | 978-1-4493-3896-1 / 9781449338961 |
| Zustand | Neuware |
| Informationen gemäß Produktsicherheitsverordnung (GPSR) | |
| Haben Sie eine Frage zum Produkt? |
aus dem Bereich
