Scribd
Upload
166 views

Management Network Diagram: Student Virtual Environment

Uploaded by

catalin ion
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
166 views

Management Network Diagram: Student Virtual Environment

Uploaded by

catalin ion
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 10

Management Network Diagram

fxp0 (on all student devices)

Virtual Desktop Console and


VNC Connections
vSRX-1

Physical
Desktops

Hypervisor
Virtual Switch
Management Addressing
vSRX-VR
vSRX-1 172.25.11.1
Student vSRX-VR 172.25.11.3
Virtual Environment

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Initial System Configuration

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Security Objects

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Creating Security Policies

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Security Services – IPS

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Security
Services – Integrated User Firewall
ge-0/0/6 AD Server
vSRX-VR 172.16.1.253
172.16.1.1/24
ge-0/0/2
172.18.1.2/24

Client
172.16.1.100
ge-0/0/0 Trust Zone
172.18.1.1/24

vSRX-1

ge-0/0/1
172.16.10.1/24
Server Zone

Server
172.16.10.100

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Implementing UTM

Internet

Client
Untrust Zone 172.16.1.100

ge-0/0/0
172.18.1.1/30

vSRX-1

ge-0/0/4
172.16.10.1/24
Server Zone

Server
172.16.10.100

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Implementing NAT

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Implementing IPsec

Internet 172.29.10. IPsec IPsec


2
Gateway Host
10.10.203.10

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.


Lab Network Diagram: Monitoring and Reporting

Internet

Internet Host
172.31.15.1

untrust zone

vSRX-1
ge-0/0/1 ge-0/0/2
trust zone (.1) (.1) DMZ zone

10.10.101.0/24 10.10.102.0/24

Trust (.10) vSRX-VR (.10) DMZ

© 2019 Juniper Networks, Inc. All Rights Reserved.

You might also like