Certification
Resources - JNCIS-ER Exam Objectives (Exam: JN0-350)
This list is intended to provide a general view of the skill set required to successfully complete the specified certification exam. Topics listed are subject to change.
- JUNOS Policy
- BGP for Enterprises
- IGP Conversion
- Layer 2 Services
- Layer 3 Services Overview
- Stateful Firewall and NAT/PAT
- IPSec VPNs
- Class of Service
- Branch Office Connectivity
- Router Management
JUNOS Policy
- Identify two major kinds of policy
- Identify policy components (terms, match conditions, actions, policy chains)
- Identify points where routing policy may be applied
- Describe the processing of routing policies
- Evaluate the result of a given routing policy
- Identify points where stateless packet filters (firewall filters) may be applied
- Describe the processing of stateless packet filters
- Evaluate the result of a given stateless packet filter
BGP for Enterprises
- Explain the use of BGP
- Differentiate between iBGP and eBGP sessions
- Configure an iBGP full-mesh topology
- Configure eBGP sessions
- Identify BGP attributes that can be modified using policies
- Implement a BGP policy for routing traffic over multiple ISP connections
IGP Conversion
- Explain the purpose and effect of route preferences
- Identify IGP transition strategies and choose the correct strategy
- Configure mutual route redistribution between two networks
- Describe multi-area OSPFconfiguration and operation
- Describe RIP configuration and operation
Layer 2 Services
- Configure MLPPP
- Configure Layer 2 services to optimize voice traffic
Layer 3 Services Overview
- Configure and apply an interface-style service set
- Configure a next-hop-style service set
- Identify the match direction given a network diagram
Stateful Firewall and NAT/PAT
- Describe the differences between stateful firewalls and stateless packet filters
- Describe NAT and PAT
- Describe the functions of Application Layer Gateways
- Configure a stateful firewall via the CLI
- Monitor stateful firewall
- Configure NAT and PAT via the CLI
- Monitor NAT and PAT via the CLI
IPSec VPNs
- Explain the uses of VPNs
- Explain IPSec VPN processing on M-series and J-series routers
- Explain the two modes of IPSec
- Configure an IPSec VPN via the CLI
- Configure a route-based GRE tunnel (over IPSec) via the CLI
- Configure and view IKE debugging information
- Monitor IPSec VPNs
Class of Service
- Describe the uses of CoS
- Explain CoS processing on M-series and J-series routers
- Identify the ways traffic can be classified
- Explain the purpose of bulk aggregates
- Explain the use of policers
- Describe how traffic is mapped to queues
- Configure the mapping of forwarding classes to queues based on a CoS design
- Explain the operation of a scheduler
- Configure a scheduler to service queues based on a CoS design
- Monitor a CoS implementation
Branch Office Connectivity
- Describe branch-office connectivity options
- Configure DTE frame-relay connectivity
- Explain the need for CoS for branch office connectivity
- Configure CoS for a branch office connection based on a CoS design
Router Management
- Configure a stateless packet filter to protect the Routing Engine
- Configure AAA based on a set of criteria
- Identify protocols running on the router
- Determine router performance with show commands
- Interpret tracing and debugging information from the router
- Describe commands used to gather information for JTAC assistance
