VDSL2-A MPIM Configuration
Hi, I've been having a read of the following document: https://www.juniper.net/documentation/en_US/junos/topics/example/vdsl2-pim-security-interface-configuring.html And to be honest, it just is not...
View ArticleSRX340 control link wont establish over layer 2 network
We currently have other branch devices clustered over layer 2 network.Now, with a newer cluster based on SRX340 and recommended JunOS, the cluster worked fine with direct cable, but once connected to...
View ArticleClik here to view.
DPD is Preemptive?
HI All,i have a question about DPD. As i know, DPD is used to monitor the reachability of VPN Peers, right? Ok, i have one vpn tunel established with Peer A, and the client will include a new internet...
View ArticleIs Junos Policy is bi-directional?
I have a SRX with policy "from-zone TRUST to-zone UNTRUST" which allow any source-address, desination-address and application. Now I have initiated a ping from TRUST zone to UNTRUST zone. My doubt is...
View ArticleClik here to view.
Juniper SRX 210he is not received IP WAN from ISP
Hi everyone,I have a problem that I configure PPPoE client on Juniper SRX210he with username and password provided by radius server, but I show that SRX210 didn't receive IP WAN from BRAS but I used...
View Articledynamic address list in srx
how can define dynamic address entry or list in srx with out Sky ATP license?can define thi out this license?thanks a lot
View ArticlePacket with IPv6 source & IPv4 destination (in Juniper documentation)
Anyone know how a packet could have an IPv6 source address and an IPv4 destination address? The example at...
View ArticleSRX240H2 Multiple traffic-selectors on IKEV2
Hi there, I need to establish a IPSec connection between a static and a dynamic IP endpoint. The SRX240H2 has the static IP. I planed to use IKEv2 but then I found out that the software Version...
View ArticleSRX300 latest Junos 18.4R1.8 possible performance/throughput issues
Wasn't sure if this needed to go through the SRX forum or Junos. Sorry, may be a little long winded. I wanted to post here to be informative and possibly get some additional help and things that can...
View ArticleSRX300 Configuration issue at site with single static ip
all, I have couple different issues going on which I believe are all related to a basic config setting, however I just can't find my error. I've chosen my incomming internet on ge 0/0/0.0 my isp...
View ArticleSite-to-Site VPN TCP MMS Issue
Hi All, We have got 5 remotes offices, 3 are using SRX and 2 are using netscreen. All of the firewalls including HQ (total 6 firewalls) are using default TCP MMS 1500. Pt-to-Pt VPN is formed to HQ at...
View ArticleSRX3600 not syncing with NTP servers
Hello all. I'm trying to configure our SRX3600 cluster to sync with outside NTP servers but I'm not having any luck with this.I have the following configured on the cluster.ntp { boot-server...
View ArticleSRX3600 sending logs to remote syslog server
Hello. I'm trying to configure our SRX3600 cluster to send syslog messages to the remote syslog/SIEM server. I have the following configured on the cluster. syslog { archive size 128k files 50...
View ArticleDisabled Web Interface
Hello guys, I have srx240. All of a sudden the SRX240 Web interface is inaccessible and also SSH to the device.I checked HTTPD logs nothing that seems serious. When I tried to access SSH, it's not...
View ArticleSRX-Chassis-Cluster / Switched Fabric Interface / IPSEC-Termination on...
Hi all, just a quick one:Please let me know of this scenario is supported: Two SRX345 in Chassis-Cluster + Switched Fabric (swfab).Create VLAN and L3-IRB-Interface. (lets assume: VLAN:External and...
View ArticlePolicy based on specific device signature
Hi,I am not an expert on the SRX240 so maybe this is a weird question.. We need to configure a firewall rule on our SRX240 to allow a specific device. Unfortunately we can not do this based on IP...
View ArticleSRX550 High Memory strange issue
Hi All!I have a strange issue with SRX550 High Memory.It is connected to 2 ISPs with BGP (full view filtered /24).After some time as BGP sessions come UP the log show:Jan 17 22:53:06 srx550-1 fto_new:...
View ArticleSIP TCP issue
Hi, Please see below the route process for this issue: Cust SIP --> ASA --> Outside Stack --> SRX1500 --> Core --> LNS --> CPE --> Other end The problem is that every now and then,...
View ArticleSRX 3600 blocking EDNS packets
Hi All, We have a SRX 3600 running 12.1X46-D25.7 and we are having issues with our DNS servers behind it. We are trying to make sure our DNS servers are EDNS compliant but testing EDNS is showing...
View ArticleBehavior of NAT source pool with no PAT
Dear team, Today we tested the features NAT source pool with no PAT. As your mindset, if we have 3 sessions (ssh, telnet, ping), the SRX device will translate to 3 IPs but in realistic, just NAT to 1...
View Article