Unable to verify the SRX345 device includes VPN license
Hi, somebody can help me knowing if an SRX345 has the Remote Access VPN Service active. I can´t see this license in the output of Show system license. Thanks
View ArticleOSPF with dual GRE/IPSec tunnels, tunnel preference help
I have a number of remote Juniper SRX sites that connect back to a data center. At the data center there are two Cisco routers. The SRX is configured with IPSec tunnels to both routers. OSPF is being...
View ArticleVRRP failover testing
I have two SRX 550 in which VRRP method of failover is configured. Our client is saying for failover testing to check setup is working fine.Can anybody help me how to perform failover testing ? Thanks...
View ArticleClik here to view.
DCE-RPC not working
Hello I'm confused wether this is an SRX issue or microsoft issue ..We have three networks :2xLAN: 172.19.224/226SQL: 172.21.25.10 Between the first two LANs and the SQL is two SRX devices , configured...
View ArticleSRX 340 occasional panic
Hi! We're getting occasional panics and are out of thoughts. It started suddenly and we opened RMA and got replacement 340. Let me shed some lights - before it was running half a year without problem....
View ArticleSecurity Director don't delivery correct schema configuration for SDSN
uff... sometimes with security director is difficult :-|Here my case.I've update the DMI schema from JunosSPACE 17.2 R1, in order to perfectly match my vSRX17.3R1.10. The problem is that meanwhile I'm...
View ArticleFirewall srx 340 issues
Hello, i have trunk the fibre port (ge-0/0/15)of srx 340 firewall. However , the same donot work. Any suggestions
View ArticleNAT via snmp
Good Day,Has anyone setup or know how NAT graphing can be achieved with the use of SNMP. Some detail that can be extracted using SNMP for example, pool utilization, number of translation and current...
View ArticleSRX boot error CHASSISD_IOCTL_FAILURE
hello, I have a SRX 550 wiout any module in it. when we boot it, we have this message poping at the start : CHASSISD_IOCTL_FAILURE: readpcireg: ioctl failed for PCIOCREAD (Operation not supported by...
View ArticleImport certificate from Active Directory
Dear all,I have googled how to import certificate which exported from AD to SRX devices for SSL-proxy but no luck.Hope I can have some advises here. Thank you so much!Tuan
View Article"Could not get stats from pfe" on the SRX Chassis Cluster
Hi all,Can any one have any idea about why the following messages are occuring on the SRX chassis cluster and how to troubleshooting to understand about why they are generated? ifinfo:...
View ArticleLogical interface and Site-to-Site VPN
Hi I am trying to configure a VPN from Azure to the SRX. I have an aggregated interface labelled as ae2 that is utilised as the gateway interface. This interface has 2 x IP addresses assigned to it.......
View ArticleSRX4100 missed heartbeats in cluster
Dear Members, We are experiencing a weird problem with our HA configurations. The nodes are just installed and configured with basic HA configuration. The problem is the node tranists to disabled state...
View ArticleSRX-5400 express path
Hi, we seem to hit the performance bottle neck of SRX-5400 cluster without explictly configuring express-path, the chassis has one 10x10GE IOC II and one SPC II card, the 3 SPU CPU on SPC card will...
View ArticleClik here to view.
multiple IKE using same gateway?
Hi all, Can we establish multiple IKE using one gateway on SRX345? Below is my config. The peer unit is Strongswan. The issue is the user2 cannot establish. Even i disconnect user1 the user2 still...
View ArticleSRX1400 a new installation
Dear all, I have a new SRX1400 configuration, after i finish configuration i connect a Laptop interface to ge 0/0/0 , but i cannot reach ge 0/0/0 IP Address from my Laptop and also cannot reach my...
View ArticleDefine and separate traffic by Policy
Hi, I will try and explain this as best as possible..... RADIUS --> SRX1(Radius-VR) --> SRX1(Customer-VR) --> CORE --> LNS --> LAC --> CPE The RADIUS could also access the internet...
View ArticleSRX550 VPN to AWS using "unnumbered" feature
We are using a SRX550 for a VPN to AWS. The AWS VPN generated config for SRX's template [JUNOS 9.3 or higher] assumes each tunnel has its own public IP, thus needing BGP for failover. All of our...
View Articlemysterious global address-book
I don't see any global address book when I do:[edit security]root@r1# show address-book r20 { address 20 10.20.1.0/24; attach { zone r20; } }But when I try to commit I get an error about there being a...
View ArticleTraffic stopped all of a sudden!
Today we have encountered an interesting problem; the SRX3400 (Software Version: 12.1X46-D25.7) device has stopped all traffic going through its all ports. We could not understand why it happened as...
View Article