how to give mobilephone access to ipcamera from untrus to trust network
At this moment the access is set to any address but i want to give acces to a limmited number of external ip adresses.this wil work for static ip adresses but mobilephone users have changing ip...
View ArticleBFD flow session doubt
Hi, I am having hard time to understand how BFD works on SRX-5400, I have a BGP session with peer 169.254.254.1, zone security policy is allowing host inbound protocol bgp and bfdSRX-5400>show bgp...
View Articlehow to use GUI to limit outside public ip to access firewall web management?
hi All, I like to know if any way use GUI to whitelist some IPs allowed to access Juniper SRX web management instead of using console?
View ArticleSRX340 Base Model, which JunOS version?
The SRX340 base model closest to an SRX240B or B2 has a minimum version of JunOS. What is this version. I know the model numbers might not resemble the B or B2 designation but im sure someone can make...
View ArticleClik here to view.
Certain users can't be logged out manually/kicked
Hello!Device: SRX4200Version: 15.1X49-D110.4I've been trying to do some JunOS security hardening and I'm stumbling upon a weird phenomenon (at least to me it is) with the logged in users.So I know you...
View ArticleISSUES with SRX Virtual Router with BGP in selective packet mode
Hi Community, I need deployment a SRX like CPE with 2 Virtual Router, one for Internet Access with NAT feature and the other VR with BGP peering, I tried to deployment BGP VR in packet mode with...
View Articlehow to get blocked traffic information from LAN Traffic.
hello ,i am using srx 340 in production and have limited traffic open for internal users like pop smtp 80 and 443..now there is app called anydesk for remote support. this is application is not working...
View ArticleRPM for reachability to 3rd party devices
Hi, I am new to Junos RPM having primarily worked with Cisco IP SLA features...I have a site with Junos SRXs which has connectivity to other sites with SRXs... RPM works great, though i believe that...
View ArticleDo I have an MTU-VPN-OSPF ticking time bomb?
To start with, here is my point of reference: http://networkingbodges.blogspot.com/2015/07/ospf-stuck-in-exchange-exstart.html - in particular the second paragraph under sub-heading 'Papering Over the...
View ArticleUncommitted after firmware update
Came across an issue when i was trying to run a configlet against an SRX router from Junos Space. Discovered that after the last firmware update i had an uncommitted configuration because the firmware...
View ArticleStrange error on commit
When commiting configuration changes I see strange errors (although commit ends with "commit complete"). What does this error mean:node0:configuration check succeedsssamlib error. Error code...
View ArticleLoopbacks, the more the better???
I have a loopback only in lo0.0 . I want loopbacks on the interfaces but my ge-0/0/x.0 interfaces are configured on l3 . That is, I cant enable loopback at the ge-0/0/x level. How can I get a loopback...
View ArticleSRX210 VLAN problems
Hi All,I have a Juniper SRX 210 that I need some help with. I have a corporate network with a EX2300 with 3 VLANS 100,200,300 which is connected to a dedicated fibre link and a corporate firewall. I...
View ArticleSRX340 - Disable password recovery
We will be supplying SRX300 and SRX340 devices to customers on an ethernet core as an NTE device. Currently I have everything configured to protect the NTE from any customer access, except one issue:...
View ArticleFirewall filter source address query
I have the following firewall filter in place: firewall { filter VPN { term VPN-Source { from { source-address { xxx.xxx.xxx.xxx/32; } destination-port 500; } then accept; } term IKE-BLOCK { from {...
View ArticleSRX in Transparent Mode and VLAN-Rewrite with one Physical Link with Switch
Hi,I am deploying SRX1500 in transparent mode to Inspect traffic (IPS) passing from firewall. I am attaching High level topology with it. Below is my Scenario,I have one trunk link between Cisco Switch...
View Articleerror: MAIN: vrf-import policy permits accept action only if matching...
SRX220H2 running 12.3X48-D75.4 This is my first foray into configuring MPLS on any Juniper device. I'm trying to get the route target import and export working. When I apply the import policy, I get...
View ArticleEnhanced Web Filter with scheduler but allow user with special access
Hello Guys, I need your help.I will setup Enhanced Web Filtering with scheduler for restricted internet access, but i want certain IP/MAC Address to have all internet access. How do i apply the certain...
View ArticleVlan loop protection, not stp, etc.
I want to know if anyone knows about loop protection for the vlan on the SRX series. I'm asking because I have avaya switches without advanced license. No IPV6 support for loopbacks. They use SLPP....
View ArticleClik here to view.
VLAN to LAN visibility
Hello,I have workstation A connected to SRX240 on ge-0/0/5 (one of the ports that acting as a switch) for VLAN123 (zone trust)for network A.A.A.A/24 with (LAN DHCP). Workstation A has access to the...
View Article