Scribd
Upload
179 views

Management Network Diagram: Student Virtual Environment

Uploaded by

catalin ion
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
179 views

Management Network Diagram: Student Virtual Environment

Uploaded by

catalin ion
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 10

Management Network Diagram

fxp0 (on all student devices)

Virtual Desktop Console and


VNC Connections
vSRX-1

Physical
Desktops

Hypervisor
Virtual Switch
Management Addressing
vSRX-VR
vSRX-1 172.25.11.1
Student vSRX-VR 172.25.11.3
Virtual Environment

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Initial System Configuration

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Security Objects

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Creating Security Policies

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Security Services – IPS

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Security
Services – Integrated User Firewall
ge-0/0/6 AD Server
vSRX-VR 172.16.1.253
172.16.1.1/24
ge-0/0/2
172.18.1.2/24

Client
172.16.1.100
ge-0/0/0 Trust Zone
172.18.1.1/24

vSRX-1

ge-0/0/1
172.16.10.1/24
Server Zone

Server
172.16.10.100

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Implementing UTM

Internet

Client
Untrust Zone 172.16.1.100

ge-0/0/0
172.18.1.1/30

vSRX-1

ge-0/0/4
172.16.10.1/24
Server Zone

Server
172.16.10.100

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Implementing NAT

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Implementing IPsec

Internet 172.29.10. IPsec IPsec


2
Gateway Host
10.10.203.10

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Monitoring and Reporting

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.

You might also like