Text Size:        

• What's New
• JUNOS Enterprise Routing: A Practical Guide to JUNOS Software and Enterprise Certification
  by Doug Marschke, Harry Reynolds
• 

---

• M/T-series Study Guides

• Additional Information
• Video—JNTCP Overview
• JNTCP Datasheet598 KB
• JNTCP Logo Guidelines542 KB
• Technical Certification Program Quick Reference Guide152 KB
• Learn About Access to Certified JTAC Engineers108 KB

Resources - JNCIS-ES Exam Objectives (Exam: JN0-330)

This list is intended to provide a general view of the skill set required to successfully complete the specified certification exam. Topics listed are subject to change.

• Architecture of JUNOS Software with Enhanced Services
• Zone-based segmentation and monitoring
• SCREENs
• Security Policies
• Campus Interconnectivity - NAT
• Campus Interconnectivity - IPSec VPN
• HA
• Interface Configuration and Monitoring
• Routing
• System Services

Architecture of JUNOS Software with Enhanced Services

• Compare and contrast JUNOS Software with Enhanced Services and traditional routing
• Describe major components of JUNOS Software with Enhanced Services
• Contrast session and flow
• Compare and contrast packet flow of the first and consecutive packets of a flow
• Name elements used in session recognition.
• Describe session management process

Zone-based segmentation and monitoring

• Describe the purpose of a zone
• Identify the relationship between zones assignments, interfaces, and routing instances
• Define zone types supported by JUNOS Software with Enhanced Services
• Compare and contrast security and functional zones
• List and identify the steps necessary to configure zones
• Compare and contrast router's behavior resulting from various configurations, when handling transit packets and packets destined to various interfaces of the router.
• Demonstrate understanding of configuration precedence significance of various zone knobs.
• Describe the traffic behavior based on a sample zone configuration

SCREENs

• Identify advantages of using SCREENs
• Compare and contrast reconnaissance, DoS, and suspicious packets attacks
• Identify best practices to be used when implementing SCREENs
• Configure SCREENs with necessary parameters based on threats

Security Policies

• Identify the purpose of a security policy
• Define the purpose of security policy configuration components
• Configure appropriate JUNOS Enhanced Services security policies actions
• Describe the purpose of an address book
• Based on policy configurations, compare and contrast scheduled and non-scheduled policies
• Based on policy configurations, describe the impact of security policy changes on session in progress
• Identify and explain the importance of policy ordering in the configuration file
• Identify and explain the importance of firewall and Web authentication

Campus Interconnectivity - NAT

• Identify uses of NAT and PAT
• Compare and contrast NAT/PAT types supported by JUNOS Software with Enhanced Services
• Compare and contrast interface-based destination NAT and policy-based destination NAT
• Compare and contrast source NAT using reverse mapping and source pool mechanisms
• Identify types of NAT used, based on various NAT configurations
• Describe the router's behavior when using configuration file with source pool NAT and PAT

Campus Interconnectivity - IPSec VPN

• Correlate between major security concerns and solutions
• Compare and contrast symmetric and asymmetric key encryption
• Describe the DH key exchange process
• List methods for IPSec VPN setup
• List specifics of Security Associations
• Describe the IKE phases functionality and purpose
• Compare and contrast policy-based and route-based IPSec implementations
• Configure route-based and policy-based IPSec VPNs

HA

• Describe JSRP cluster functionality
• Identify JSRP-specific interfaces and their functions

Interface Configuration and Monitoring

• Identify valid options for interface names, logical unit and protocol families within the JUNOS software
• Identify MLPPP configuration options
• Identify configuration options of VRRP
• Identify MLPPP and VRRP monitoring options
• Describe the information contained within the show interfaces extensive command

Routing

• Describe route preferences
• Given a routing table and packet header, identify the route that will be used for a particular packet.
• Describe JUNOS software routing policy design considerations including: import and export, when to define routing policies, components of a routing policy (terms, match criteria, actions), default routing policy actions, and how routing policies are evaluated.
• Describe the configuration of Static Routes
• Describe OSPF area types and router types
• Describe charecteristics of link-state routing protocols

System Services

• Describe system logging and tracing
• Configure a router to allow system services (SSH, Telnet, etc.)
• Configure user authentication
• Identify configuration and monitoring options for DHCP