Screen Options UDP flooding Threshhold on SRX
Hi everyone, edited: Corrected the post.Below Destination IP can be multicast address or it is just unicast address?...
View ArticleExchange type mismatch (configured 4, proposed by peer 2), no proposal chosen
I have a new, very basic route-based vpn failing to setup on my SRX P1 with this message: Exchange type mismatch (configured 4, proposed by peer 2) for tunnel local:<my ip> remote:<remote...
View ArticleSRX how to tell SRX to use inet.0 for multicast forwarding
Hi Everyone, By defaut SRX uses inet6.0 for multicast traffic, let say I created a static route 238.0.0.0/8 in inet.0.How can we tell SRX to use inet.0 for 238.0.0.0/8 instead of...
View Article"groups" statement and interfaces
I have my "groups" statement in my config.Example:groups {dhcpport {interfaces {ge-0/0/0 {unit 0;}}}My question is this? I have grouped traffic for my main communication ports this way. All the ports,...
View ArticleSRX cluster with IRB and RETH toward no vPC Nexus
I would implemented the attached scenario, is it supported?
View ArticleRedundant default route via two different SRX's?
I have two different SRXs each with different ISPs.SRX 110.0.0.1 has a static 0.0.0.0 route to ISP1 SRX 2is on two redundant paths and has two ip's10.0.0.1010.0.0.11and it also has a loopback ip of...
View ArticleSRX340 - Layer 2 and 3
Hi, Here's the set up: CPE --> NTE (SRX340) --> Downstream ISP - (dot1q tagged) --> Core --> Upstream ISP Remit:VLAN 10 Tagged direct from Core to CPEVLAN 99 Tagged - Management to NTE...
View ArticleClik here to view.
SkyATP verdict threshold
I configured threat policy on SRX by working with SkyATP. And I'm confused about each verdict threshold value in configuration set services security-intelligence profile policyATP_CC category CCset...
View ArticleCoS at Layer 2
Thanks to your help I have a working NTE device now..... I have one question that I am 99.9 per cent sure I know the answer to but thought I would ask anyway.... Is there any way of controlling VoiP...
View ArticleOSPF / routing scenario question
We only use OSPF for routing. A requirement has come about where a remote site will no longer be using its VPN connection back to the hub site and is being replaced with a managed MPLS service. We have...
View ArticleRouting doesn't work as I'd like
Hello, Context: I'd like to be able to reach a destination network (78.x.y.z/32) via a specific interface (reth 1.112 : 172.28.x.2/30) from my source network (172.20.x.y/24). (I change the network for...
View ArticleSRX 300 stuck after upgrade reboot
Hi,Not sure what's going on with this one, seems stuck after reboot at Oct 3 10:19:21 after upgrading to D130 - been about 20 minutes now kern.securelevel: -1 -> 1Creating JAIL MFS partition...JAIL...
View ArticleClik here to view.
SRX and link aggregation
Hi all. I am having a little trouble with a particular scenario. I am quite new to JunOS so it's possible I'm not doing it right, hopefully somebody can set me straight!The scenario is basically that I...
View ArticleSRX550 Layer 2 Mode
I am trying to configure an SRX550 to function as a layer 2 firewall. I am doing it via J-Web as I haven't had success via the CLI either, so I was hoping J-Web would overcome whatever silliness I am...
View ArticleSRX Not Passing Traffic
Hi, Ok, so had a strange experince with an SRX tonight!My SRX100H (12.1X46-D67) has been running fine for a while now. However tonight the power cut out. I powered the SRX back on and I was unable to...
View ArticleADSL PIM in SRX320
Hi All, really basic question, i need to connect an SRX320 to a european ADSL line, so i know i need to purchase an ADSL PIM.My options are:-ADSL2+ PIMorVDSL PIM for greater speeds From research i know...
View ArticleHow to configure an OSPF export policy for static routes
Assuming an export policy is what I need, I'd like some assistance in configuring an OSPF export policy to inject/advertise some static routes in our network. I have been looking at the article below...
View ArticleSRX 1500 back up configuration with Kiwi Cat Tool?
Hello, how can I set up Kiwi Cat Tool to back up SRX configuration?For QFX 5110 and EX devices my question is the same.Thank you.
View ArticleSRX Certificate VPN
Hi, Setting up a certificate based site-to-site VPN. I have -Created the key-pair.Generated a CSR.Had the CSR signed by our Windows CA.Uploaded the signed certificate to the firewall as a local...
View ArticleSRX BGP Multiple Public IP not working
Hi, I have a BGP connection to my ISP and when my network is using the public IP of the SRX all is ok. But when I try to use a different IP in the subnet allocated such as 119.28.29.135. Servers can...
View Article