Juniper Networks Certified Internet Professional (JNCIP)

The Juniper Networks Certified Internet Professional (JNCIP) certification validates advanced knowledge and skill to configure and troubleshoot common networking scenarios. The JNCIP certification acts as a prerequisite for attempting the JNCIE-level lab exam.

Juniper Networks Certified Internet Professional Security (JNCIP-SEC)

The Juniper Networks Certified Internet Professional Security (JNCIP-SEC) certification validates advanced knowledge and skills in security technologies, related platform configuration and troubleshooting. This certification course is exclusively designed for network professionals like network engineers, technical support personnel, reseller support engineers, and others responsible for implementing and/or maintaining the Juniper Networks products.

  • To understand
    • Junos security handling at Layer 2 versus Layer 3
    • Junos OS processing of Application Layer Gateways (ALG)
    • Junos tools for troubleshooting Junos security implementatios
  • To implement
    • address books with dynamic addressing
    • virtual routing-instances
    • policy-based routing
    • NAT traversal
    • optimized chassis clustering
    • dynamic VPNs
  • To describe, implement and monitor
    • the reporting capabilities available for IPS functionality
    • static, source, destination, and dual Network Address Translation (NAT)
    • Group VPNs in an enterprise environment
    • Dynamic VPNs in an enterprise environment
  • To describe
    • some IPsec VPN best practices for the Enterprise
    • the steps that the IPS engine uses when inspecting packets
    • the components of IPS rules and rulebases
    • the use of custom signatures and how to configure them
  • To utilize
    • IPsec VPN tunnels with OSPF
    • a sound methodology for troubleshooting Junos security issues
  • To define
    • types of intrusions and network penetration attacks
    • the types of signature-based attacks
  • To use
    • scanning to gather information about target networks
    • Junos debugging tools to analyze traffic flows and identify traffic processing patterns and problems
  • To configure
    • screens to block various scan types
    • denial of service (DoS) and distributed denial of service (DDoS) attacks
    • screens to block DoS and DDoS attacks
  • Alter the Junos default behavior of ALG and application processing
  • Compose security policies utilizing ALGs, custom applications, and dynamic addressing for various scenarios
  • Become familiar with the successful troubleshooting of common Junos Security issues
  • Differentiate and configure standard point-to-point virtual private network (VPN) tunnels, hub-and-spoke VPNs, and group VPNs
  • Monitor the operations of the various IP Security (IPsec) VPN implementations

Course outline

  • Advanced Security Policy
  • Virtualization
  • Advanced NAT
  • High Availability
  • Advanced IPsec
  • Introduction to Junos Intrusion Prevention System (IPS)
  • IPS Initial Configuration
  • IPS Attack Objects
  • Scanning and Reconnaissance
  • Blocking Attacks
  • Troubleshooting and Reporting


Strong knowledge in TCP/IP networking and security
Students should also attend the following course prior to attending this class:

Junos Security Skills Camp (JSEC, AJSEC):

Two authorized Juniper courses, Junos Security (JSEC) and Advanced Junos Security (AJSEC) provides students with hands-on experience in implementing, configuring, and monitoring Junos OS for SRX Series devices, covering Security zones, Security policies, Intrusion detection and prevention (IDP), Network Address Translation (NAT), IP Security (IPsec) deployments, Virtualization and Layer 2 security with SRX Series Services Gateways.


The JNCIP-SEC certification exam code JN0-632 is a written exam conducted at Pearson VUE and Prometric testing centers worldwide. The question paper contains 70 multiple choice questions. The duration of the examination is 120 minutes immediately after which the result is made available.


The JNCIP-SEC certification is valid for two years. To renew the validity, you must pass the current version of the JNCIP-SEC exam.

Lab Facilities

A division of Josiah Group – with interests in finance, gaming, technology, training, etc. Josiah technology was initiated to meet the current and future demand for technology and networking professionals.

Our Channel Partners

Symantec Microsoft Trend Symantec Microsoft Trend Symantec Microsoft Microsoft
Online Application
Scholarship Form


Josiah congratulates successful graduates: Win Josiah scholarships

Alumni Testimonials

Student Testimonials

Quick contact

Valid Name please
Valid E-mail please!
Valid Phone please
Valid Message please

Subscribe Newsletter