SRX redundant Ethernet interface does not come up.
I configured a redundant Ethernet interface in an SRX1500 cluster using a 10 Gbps interface on both devices. I need to change this reth to use 1 Gbps interfaces; thus, I changed the configuration to...
View ArticleCreating a simple trunk interface
Hello First time trying to create a trunk interface in srx router, did some googling and came up with config, but i think something is still missing since i cant ping the interface even from router...
View ArticleRouted Subnet
Hi guys, I was wondering if you can help me. I have 2 questions on routed subnets. 1. What is a routed subnet? 2. I have a SRX210 and I'm somewhat of a newbie to Juniper. I Just wanted to know how to...
View ArticleNegated Addresses
HiI'm confused about destination-address-excluded and source-address-excluded. I tyr to read an example following these link...
View ArticleSRX340 HA Cluster Strange Behaviour on Reth Interface - Unknown Egress Traffic
Hi All, I am having a strange issue on an SRX340 Cluster pair - with strange unknown traffic egressing out of a Reth interface that is configured as a trunk port on an ethernet switch - with a few...
View ArticleSite 2 Site VNP with overlapping networks srx300 to srx240
Hi! I have the followig problem:Site A: Network 192.168.12.0/22Site B: Network 192.168.20.0/24 (Networks 192.168.13.0/24, 192.168.14.0/24 and 192.168.15.0/24 are assigned to other services on Site B)...
View ArticleCreating a DMZ setup
I have a simple consumer grade ADSL router that has a DMZ configured to a local ip of 192.168.1.1 . At this address sits the WAN interface of an OPNsense box. This is configured as an end point for VPN...
View ArticleSRX to SRX VRRP not running
Hi All, can you please confirm what i could be missing here.. I am simply trying to get VRRP working between two SRX devices, config to follow (same config on both sides other side using .216); set...
View ArticleSRX 4100 with HA
Dear Sir,I would like to use SRX 4100 with HA. May I know.I would like to know can i use 1G or 10 G DAC cable for HA links (control and fab ports) ?i might use 1 G sfp or 10 SFP + module ?if i use SFP...
View ArticleSecure-access-port questions....
I have an srx240b2. I have chosen to try the secure-access-port option for the ports that I use. They are ge-0/0/1.0 to ge-0/0/15.0 . I know that I want to use them on those ports. My question is........
View ArticleCoS issue on LNS
Hi,We have two separate sites running Juniper MX240 LNS with dynamic-profiles. I am now testing site 2 with VoiP. Site 1 has been tested and works fine with no problem at all. I can fill the best...
View ArticleClik here to view.
SRX with ISP with default gateway from different subnet
We have the SRX 320.Our ISP provides several external static IP addresses from the 95.78.228.208/29 subnet.ISP routes these addresses from the gateway 95.78.251.254 to the address 95.78.251.27, which...
View ArticleBlock NW Scans / Port Scans on SRX
Hi all,My topology is as shown in the attachment. I want have two TCP and two UDP ports open in security policy for my server farm from untrust zone. I have blocked, all kind of icmp , traceroute etc...
View ArticleSRX with SkyATP and Security Director
How to change Infected-Hosts score by security director?
View ArticleCoS on an SRX300 Series
Hi, Is there any documentation anywhere to show the configuration of CoS/QoS on an SRX300/340? Is it possibly as simple as the following: Configure the CoS and assign to an interface (as I have on the...
View ArticleSRX 5600 with J-Flow version9
Hi, I've had success in setting up J-Flow version9 directed at a single flow-server, but cannot find a way to direct the flows to two flow servers. I have tried creating multiple instances but to no...
View ArticleVPN Packet dropping issue in juniper 240h
Dear All, We have configured policy based VPN in Juniper 240h with Cisco ASA & we are facing packet drop issue every after 10 minutes. Please help us to get rid of it.Thanks & Regards,Achyut Sarma
View ArticleSRX110H2 OS and Firmware difference
Hello, I have a Juniper SRX110H2-VA and have updated the device to JUNOS 12.3X48-D70.3 however I have noticed that the firmware on the VDSL PIC has not updated and is still reporting it is on version...
View ArticleScreen OS UDP flooding Threshhold on SRX
Hi everyone, Does the destination below only refers to Unicast IP or it can be multicast address?For example, SRX sees 1500 UDP packets destined to a group say 238.1.1.1 , SRX has listeners...
View Article