ha failover with dynamic routing ospf
dear all, i have srx1400 HA Chassis cluster. i have problem with device backup. i try reboot the device backup (node1) and why the traffik is interupt 5 minute.i see led interface device primary is...
View ArticleRoute Traffic to different next-hop on basis of NATted IP
Hi, I have a scenario, in which I am connected to two different ISPs with different public IP. I am doing NATting of my Private IPs to Public IPs from two ISP. I want to route traffic to related ISP,...
View ArticleRoute Based VPN
Hi All, I'm currently trying to build a VPN between my SRX345 cluster and a 3rd party service (Azure) It's transpired the 3rd party will only use a route based VPN and I had prepared for a policy based...
View ArticleMigrating SRX100H2 to SRX300
Dear Community, I would like to seek help on how to start migrating SRX100H2 to SRX320Is there a rough guide, or even better, a step by step guide on how to migrate the configuration over? Any advise...
View ArticleIP Phones Restarting with Juniper SRX1400
I have a new configuration for SRX1400 in Head Office and there is VPN connections with three Branches (A, B and C) witch have Cisco IP Teleohony Branch A: CUCM 10Branch B: Call Manager ExpressBranch...
View ArticleNCP Client - Phase 1 error
Hi, While I am troubleshooting this error, I thought I would ask for help here too as someone may know the resolution: I am configuring an SRX1500 and the NCP Client and am getting the following error...
View ArticleRoute based VPNs have disappearing static routes when IKE/VPN activate
SRX 345 running JUNOS 15.1X49-D130.6New system with two route-based VPNs configured. The static routes disappear when IKE / IPSec are active. When IKE / IPSec are deactivated the static routes...
View ArticleBGP send subnets from interfaces
Hi everyone, I'm trying to setup some BGP routes between my Ubiquiti EdgeLite and SRX210. I have the BGP connection established, but I don't see any routes being advertised from the SRX towards the...
View ArticleSizing an SRX5800 (SPCs and IOCs)
Hallo, I believe with the new powerful SPCs, which have 4 SPUs, we do not require separate (NPCs), like we used to do on the old SRXs?Do we have a guiding procedure on how many SPCs to load on an...
View ArticleUTM - Content Filter not working
Hello guys, I got this config below but it doesn't seem to work. Anything i'm missing, or any ideas? Thank you for any help. utm { feature-profile { web-filtering { type juniper-local; juniper-local {...
View ArticleIssue with a DSL firmware on SRX branch device
Greetings, I need the firmware for the DSL modem. I have access to the JunOS load, and it does not seem to include the updated firmware. For example:VBCEFS03@VBCEFS03> show version Hostname:...
View ArticleMac client disconnects from dynamic vpn after a few minutes
I have an issue with mac Sirerra and High Sierra clients disconnecting from dynamic vpn connected to an SRX 220H2.Everything seems fine until between five and ten minutes after connecting when the...
View ArticleSRX - Want to configure L3 dot1q trunk port + access ports into trunked vlans.
My current setup has an SRX with a link into an aggregation switch via a single trunk port. I would like to configure and use the other interfaces on the SRX as layer2 access ports that can be in the...
View ArticleClik here to view.
Port Forward SRX550
I just want taweb to accessible in public (https://122.2.32.4:4811).I tried this config but didn't work. please help.set security zones security-zone LAN1 address-book address taweb 10.10.10.10/32set...
View ArticleClik here to view.
Custom App Friewall app
Hello, I'd like to create an app that would allow me to block https url. I run ssl-proxy and it works, as I can see substituted ssl certificate (my srx1500 does the susbstitution). But the rule won't...
View ArticleGRE tunnel implementation to Zscaler using multi tunnels and failover between...
Hi In our environment we are using Zscaler as our Cloud Proxy provider.To connect to Zscaler we use a Juniper SRX1500 Cluster having 4xGRE tunnel in the Primary group and 4xGRE tunnel in the Backup...
View ArticleClik here to view.
[Help] Disable Allowed host-inbound traffic
Can someone help me to disable telnet ssg http from accessing in public.Seeing alot of connections connected to my SRX. I wanted to blocked those.
View ArticleSRX340 with Filter-Based Forwarding Issue
Hi All, One of our office have two Internal subnets which are 192.168.150.x/24 and 172.16.18.x/24.Both subnets are going to the same MPLS network without NAT to reach the Internet and other site...
View Articlesame IP subnet network communication through srx300
Hi, Here is 2 buildings with same IP subnet but different gateway. We need to connect SRX300 in between 2 building and exchange data between certain nodes(node IP are diffrent at both location). we...
View ArticleShrew VPN Connection issue
Hi, I have already read and utilised KB22074I have the NCP Client working but the organisation I work for want to test a free VPN Client. The only one I can find is Shrew VPN. I have configured as per...
View Article