Screenos Cookbook
, by Brunner, Stefan
- ISBN: 9780596510039 | 0596510039
- Cover: Paperback
- Copyright: 2/1/2008
Written by key people on the ScreenOS development team and supported by the product's developer, Juniper Networks, this Cookbook focuses on troubleshooting secure networks that run series-5 ScreenOS firewall appliances. With scores of recipes that address a wide range of security problems, provide step-by-step solutions, and include discussions of why the recipes work, this book helps administrators set up and keep ScreenOS systems on track.
Stefan Brunner has been a technology consultant for more than 15
years, helping enterprises to leverage technology for their business
model and deploy technology solutions. Stefan is the lead architect
in Juniper Networks' Service Layer Technology Professional Services
group. Prior to Juniper, Stefan worked with NetScreen Technologies as
a network security consultant. Stefan holds an MBA in innovations
research and technology management from Ludwig-Maximilians-University
of Munich, and a certificate degree in telecommunications engineering
from the University of California at Berkeley. He lives with his wife
and daughter in the Hill Country of Austin, Texas.
Vik Davar has been working in the IT field for more than 15 years,
holding positions in financial services firms and technology
companies including Juniper Networks and Goldman Sachs. Vik is the
president of 9 Networks, an IT services company. He has a master's
degree in electrical engineering from Columbia University and a
bachelor's degree in electrical engineering from The Cooper Union in
New York City. He is also a CISSP and CCIE# 8377. He lives in New
Jersey with his wife and two children.
David Delcourt has worked in the data communications industry for the
past 13 years for enterprise equipment vendors including Cabletron
Systems and NetScreen Technologies. He has held a variety of
positions, including advanced TAC engineer, technical trainer, and
product manager at Cabletron Systems, and senior security consultant
at NetScreen Technologies. He is currently the security practice
manager in Professional Services for Juniper Networks, supporting the
Americas. He lives in New Hampshire with his wife and daughter, and
their two dogs and two cats.
Ken Draper has spent the past 20 years in the networking industry,
and has focused on security solutions for the past 11 years. He is
CISSP certification #22627 and holds numerous other certifications.
Ken has worked at such networking equipment manufacturers as
Infotron, Gandalf, Synoptics, Bay Networks, Nortel, NetScreen, and
now Juniper Networks. He has more than six years of experience with
ScreenOS and large-scale security solutions, he has held a variety of
technical engineering positions including systems engineer and
solutions architect, and he is currently a Juniper Networks
consulting engineer specializing in the large-scale virtual private
network (VPN), firewall, intrusion prevention, and centralized
management markets. Ken lives outside Dallas with his wife and two
dogs.
Joe Kelly has been involved in data networking for more than 12
years, focusing on the realms of network security and routing. He
started his career in the service provider space at IDT Corporation,
where he held roles in network operations and engineering. After IDT,
he spent time with various network service providers in engineering
and architectural capacities. In 2001, Joe joined NetScreen
Technologies as a senior systems engineer in the Financial and
Service Provider verticals, where he specialized in high- availability, high-performance networks. Joe joined Juniper Networks
in 2004 with the acquisition of NetScreen, and he is currently the
technical lead on the Global Banking and Finance team. He lives in
New Jersey with his beautiful wife, Jacqueline, and his three
children, Hannah, Ben, and Tristan.
Sunil Wadhwa has been in the data networking industry for more than
13 years, focusing on systems, network routing, and security in
enterprise and service provider organizations. He started his career
in India at GTL Limited and SAP India, and then held a variety of
roles in technical support, network operations, and engineering. He
moved to the United States and worked with E4E as a network
consultant for routing and security, and then joined Juniper Networks
as an advanced technical support engineer for firewall/VPN products.
He currently leads the Advance Technical Support team for Juniper
Networks, supporting enhanced services products. He lives in
California with his beautiful wife, Lavanya, and little angel
daughter, Sneha.
| ScreenOS Cookbookó | |
| Credits | |
| Glossary | |
| Preface | |
| Audience Assumptions | |
| This Book Makes Conventions Used in This Book | |
| Using Code Examples Safari-˝ Books | |
| Online Comments and Questions | |
| Acknowledgments | |
| ScreenOS CLI, Architecture, and Troubleshooting | |
| Introduction | |
| ScreenOS Architecture | |
| Troubleshoot ScreenOS | |
| Firewall Configuration and Management | |
| Introduction | |
| Use TFTP to Transfer Information to and from the Firewall | |
| Use SCP to Securely Transfer Information to and from the Firewall | |
| Use the Dedicated MGT Interface to Manage the Firewall | |
| Control Access to the Firewall | |
| Manage Multiple ScreenOS Images for Remotely Managed Firewalls | |
| Manage the USB Port on SSG | |
| Wireless | |
| Introduction | |
| Use MAC Filtering | |
| Configure the WEP Shared Key | |
| Configure the WPA Preshared Key | |
| Configure WPA Using 802.1x with IAS and Microsoft Active Directory | |
| Configure WPA with the Steel-Belted Radius Server and Odyssey Access Client | |
| Separate Wireless Access for Corporate and Guest Users | |
| Configure Bridge Groups for Wired and Wireless Networks | |
| Route Mode and Static Routing | |
| Introduction | |
| View the Routing Table on the Firewall | |
| View Routes for a Particular Prefix | |
| View Routes in the Source-Based Routing Table | |
| View Routes in the Source Interface-Based Routing Table | |
| Create Blackhole Routes | |
| Create ECMP Routing | |
| Create Static Routes for Gateway Tracking | |
| Export Filtered Routes to Other Virtual Routers | |
| Change the Route Lookup Preference | |
| Create Permanent Static Routes | |
| Transparent Mode | |
| Introduction | |
| Enable Transparent Mode with Two Interfaces | |
| Enable Transparent Mode with Multiple Interfaces | |
| Configure a VLAN Trunk | |
| Configure Retagging | |
| Configure Bridge Groups | |
| Manipulate the Layer 2 Forwarding Table | |
| Configure the Management Interface in Transparent Mode | |
| Configure the Spanning Tree Protocol (STP) | |
| Enable Compatibility with HSRP and VRRP Routers | |
| Configure VPNs in Transparent Mode | |
| Configure VSYS with Transparent Mode | |
| Leveraging IP Services in ScreenOS | |
| Intro ction | |
| Set the Time on the Firewall | |
| Set the Clock with NTP | |
| Check NTP Status | |
| Configure the Device's Name Service | |
| View DNS Entries on a Device | |
| Use Static DNS to Provide a Common Policy for Multiple Devices | |
| Configure the DNS Proxy for Split DNS | |
| Use DDNS on the Firewall for VPN Creation | |
| Configure the Firewall As a DHCP Cl | |
| Table of Contents provided by Publisher. All Rights Reserved. |
What is included with this book?
The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.
The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.
Please wait while the item is added to your bag...
×
Digital License
You are licensing a digital product for a set duration. Durations are set forth in the product description, with "Lifetime" typically meaning five (5) years of online access and permanent download to a supported device. All licenses are non-transferable.
More details can be found here.