Simple pppoe + vlan setup issue
Hi ,Im trying to setup a simple pppoe + vlan install and its not working . The pppoe appears to go up / down and its not getting any IP .... I have searched the forum and pretty much tried all proposed...
View Article[GroupVPN] error: the gksd instance gksd is not running
Dear members, I have tested GroupVPN with vSRX version 17.3R1.10. But after that, I logged in to KS/GC and checked " show security group-vpn server ipsec security-associations" and saw the notification...
View ArticleVlan tagging/trunk, L2 required???
I have a wireless AP that I'm trying to tag and trunk. I'm in a pure L3 setup for the SRX. The AP is an Asus RT-AC68U with dd-wrt on it. I have tried trunk/tagging it with these two configs. ge-0/0/14...
View ArticleWilcard DNS entry in security policys
Hello, We have a requirement to bypass the proxy for certain wildcard URL's e.g. "*.outlook.office.com" which is fine but we have the issue in terms of allowing this traffic through out SRX firewall...
View Articlecontent filter/routing
Looking for some guidance. Currently in my organization we have 2 SRX 650 running version 12.x code. We have 2 internet provides coming into the office and the SRXs' are setup in a redundant HA pair....
View ArticleNo Internet on SRX. Cannot ping from VR's
Hi There,I have a problem where I cannot ping any external IP's or DNS names from my operational prompt. When I do a ping 8.8.8.8 routing-instance <instance-name> it also does not work. I have...
View ArticleHow can I prioritize traffic coming from ISP on SRX
Hi,Is there any way to prioritize traffic coming from ISP? For exampe start to drop packets from an HTTP transfer(download), but keep UDP VoIP packets when we reach the upper limit of the contracted...
View ArticleSRX 240 HA cluster lost its secondary unit
Hi, We have a SRX 240 HA cluster and the secondary unit seems to be lost. We can't connect to it via SSH, only on its console port. show chassis cluster status says its lost. Cluster ID: 1 Node...
View ArticlePackets to even numbered IP addresses vanish inside SRX 550
Scenario:- upstream QFX pair, connected to SRX HA-pair, 4 ports crossed over for mesh redundancy (reth on SRX to ae on QFX)- reth has LACP active Problem:- ping from QFX to host behind SRX only works...
View ArticleSRX 1500 and EX 2300 virtaul chassis and Etherchannel
Dear all,I would like to know design confusion for virtual chassis and ehterchannel.Please see the below diagram and help me. According to...
View ArticleCorrect options and config for adding public routable block to existing...
Hello, I am able to reach the public routable ip if assigned to the WAN interface and a public routable ip from a different subnet depending on the configuration. Stuck on traffic not reaching internet...
View ArticleUsing routing instances
I have SRX240 which is connected to Two ISP's on Eth0/0(Auntrust) and Eth15/0(Buntrust) with their separate zones. Two local-lan subnets(192.168.222.0/24(Atrust) & 192.168.70.0/24(Btrust)). Now i...
View ArticleClik here to view.
SRX320 Source route with DHCP enable (Issue)
Hi All, Previously, one of our branch office is deployed source routing with DHCP and the DHCP subnet exits on ISP2.Right now, I'm doing the same thing on other site but facing some issue. ISP1...
View ArticleS and D NAT with Policy Based VPN
Hello, We have a policy based VPN between two of our locations and I can't get them to talk. The issue this that they share the same subnet and I had to do S and D NAT. The IKE comes up but IPSEC shows...
View ArticleJuniper Route-based VPN to Cisco Policy-based VPN
Hi All, Quick question.. Has anyone successfully set up a reliable VPN between a Juniper SRX using IKEv2 (route-based as only that is supported) to a Cisco running IKEv2 policy-based VPN?.... Any...
View ArticleDoes junos-srxsme-12.3X48-D75.4 support SRX210?
junos-srxsme-12.3X48-D75.4 supports SRX220, does it also support SRX210?
View ArticleHow to reboot SRX 100 from ALT Partition ?
Hi Everyone,I am familizaring myself with snapshot feature on my lab SRX 100.Below I have created a snapshot:root@AFTER-SNAPSHOT> show system storage partitionsBoot Media: internal (da0)Active...
View ArticleSRX in Transparent Mode and VLAN-Rewrite with LACP with Cisco Switch VSS
Hi, We are trying to setup SRX Cluster in transparent mode with VLAN Rewrite feature with LACP setting. Our Setup is following Juniper SRX-1 (xe-0/0/16) ----> Cisco Switch (VSS) (Te-1/5/15)Juniper...
View ArticleSRX port forwarding clarification
Hi, I am migrating from SSG to SRX: allow SSH on a non-standard port from the WAN and forwarding it to a machine on the standard port. WAN:nnnn -> 192.168.3.100:22 Trying to understand why I need to...
View ArticleSRX VPN Issue- Intermittently Passing Traffic
Hey guys, We recently did an implementation of two SRX's in HA for two locations, SRX 1500 & 550. Were both devices link back to a Juniper core, where exceptions were made to allow traffic over...
View Article