CMvGW : Configuring and Monitoring the vGW Virtual Gateway

  • Duration: 2 days
  • Test Level: 0
  • Certifications: No Certification
  • Price: $1400
  • Exams: No Exam
This two-day course is designed to provide students with intermediate knowledge of the Juniper Networks vGW Virtual Gateway product. Students will be provided an overview of the vGW system with detailed coverage of its components, design, and interface. Students will learn how the system is deployed and operates and will be provided configuration and monitoring examples. Through demonstrations and hands-on labs, students will gain experience in configuring and monitoring the vGW Virtual Gateway product. This course uses the vGW Virtual Gateway system for the hands-on component. This course is based on the vGW Release 5.0.c-2-11.

After successfully completing this course, you should be able to:

Identify the need for securing virtualized environments.
Describe the purpose of the Security Design vGW and Security VM.
Describe the vGW Web user interface (UI).
Explain the different installation types and perform an installation of the               vGW software.
Describe and manipulate the vGW dashboard interface.
Describe and manipulate the Main module and understand basic alerts and             events.
Describe the Network module and perform analysis of VM-to-VM traffic             flow.
Explain vGW’s four-tier firewall policy model, policy groups, and rules                 precedence.
Explain smart groups and static groups and build multitier firewall policies           that use them.
Explain the purpose of introspection and compliance.
Configure enforcer profiles and compliance rule sets.
Describe and manipulate the IDS module.
Create firewall policy that offloads traffic to the intrusion detection service           (IDS) engine.
List and describe the AntiVirus module scan types.
Configure AntiVirus scanner configs and install the vGW endpoint                         application.
Create reports using the Reports module.
Describe high availability and fault tolerance as they pertain to vGW.
List and describe methods to increase scalability within vGW.
List some methods for troubleshooting various components that make up               vGW.
Build log collections.
Perform a backup and restore of the vGW product.
List and describe interoperability with Juniper Networks SRX Series                     Services Gateways and third-party tools such as syslog and NetFlow.
Describe the Cloud software development kit (SDK).

Day 1

Chapter 1: Course Introduction

Chapter 2: Product Overview

Securing Virtualized Data Centers
vGW and VMware Essentials
vGW Overview and Architecture

Chapter 3: Installation and Uninstallation

Installation Types and Best Practices
OVF Packages and Deployment
Configuring Initial vGW Settings
Updating vGW
Uninstalling vGW
Lab 1: Installation

Chapter 4: Main Module and Network Module

Main Module
Network Module
Lab 2: Interface Basics 

Chapter 5: Firewall Module

Firewall Model Overview
Policy Tiers and Structure
Designing and Implementing Policy
Groups—Smart and Static
Lab 3: Firewall

Day 2

Chapter 6: Introspection Module

Introspection Overview
Image Enforcement
Configuring Enforcer Profiles
Introspection Scans and Scheduling
Lab 4: Introspection

Chapter 7: Compliance Module

Compliance Module Overview
Creating and Managing Compliance Rules
Lab 5: Compliance

Chapter 8: IDS Module

IDS Overview
IDS Module and Analyzing IDS Activity
Creating Custom IDS Signatures
Lab 6: IDS

Chapter 9: AntiVirus Module

Antivirus in Virtual Environments
vGW AntiVirus Overview
vGW AntiVirus Module
Quarantine Management

Chapter 10: Reports Module

Reports Module Overview
Configuring Reports
Lab 7: Reports

Appendix A: Advanced Concepts

High Availability
Fault Tolerance
Performance Optimization and Scalability
Lab 8: Advanced Concepts

Appendix B: Maintenance and Troubleshooting

Troubleshooting and Monitoring
Log Collections
Backup and Restore
Lab 9: Maintenance

Appendix C: Interoperability

Interoperability with the SRX Series Device
Interoperability with the STRM Series Device and Third-Party Tools
Cloud SDK
Lab 10: Interoperability

Students should have experience working with an enterprise-level VMware environment, knowledge of network security concepts (for example, firewalls and IDS), and basic TCP/IP skills.