How to reserve bandwidth for the IPSec traffic in SRX240 cluster?
Hi guys, I'm facing some issues with the bandwidth usage and it's affecting the performance of the VPN tunnels ending on a SRX240 cluster running JUNOS 12.3X48-D65.1. We have a symmetric internet line...
View ArticleProblems and more problems in a SRX340 cluster.... the neverending story
Hi guys, This story is coming from here https://forums.juniper.net/t5/SRX-Services-Gateway/Junos-upgrade-fails-on-SRX340-cluster-from-15-1X49-D170-4-to-17/td-p/467752 I was strugling to upgrade a SX340...
View ArticleWAN links failover for internal hosts
Hi, Guys, My scenario is below:1. SRX345 HA structure in our DC, and two ISP internet links for public access.2. Some hosts in LAN, and some hosts are NATed.3. Hosts are connected with one LAN cable...
View ArticleUpgrade SRX240h-DC soft from 11.2R4.3 to Junos-12.1X46-D40.2-domestic
Hello, guys!I have a problem during upgrading software. Here logs:Using junos-12.1X46-D40.2-domestic from /altroot/cf/packages/install-tmp/junos-12.1X46-D40.2-domesticCopying package ...Verified...
View ArticleClik here to view.
[Security Zone] Hosts in Untrust zone cannot see clients in Trust zone
i have a diagram bellow:PCs in Server can ping to Internal zone and access internet. but PCs in Internal cannot ping to PCs in Server zone.my config:version 15.1X49-D45; system { host-name SRX300;...
View ArticleJuniper SRX SIP UDP Timeout
Hi, My VOIP system allows customers to set an sip destination they wish and all works great. My system is setup on the SRX as a static NAT, but I have come across an issue where if the B leg of the...
View ArticleIPSEC between SRX and Cisco asa
Hello, I would like to setup ipsec connection between SRX340 and Cisco asa firewall. Inside my network i have SRX directly connected via interconnect supplier (datacenter network) towards ISP. We are...
View ArticleSNAT & DNAT Question
Hello Folks, I would like to know wether my NAT code are correct or incorrect to migrate from a existing Cisco configuration. Cisco Codeip nat outside source static 3.0.34.32 72.16.28.122 ip nat...
View ArticleSRX345 PKI to Cisco Ca Server
Trying to get my srx to pull pki certs from cisco ca server. Used the configuration I found for Auto Discovery VPN's. Are the SRX's able to pull from a Cisco CA?
View ArticleWeird, weird, weird issue (poor upload performance) on SRX240 cluster
Hi guys, We have been facing a really weird issue in the last 2 weeks. We have a branch office with a few users. We have a Dell switch stack with 4 switches, and a Juniper SRX240 firewall cluster with...
View Articleshow security flow statistics
Hi all, Statistics were last cleared 4 days ago. VErison:12.3X48-D35.7....There are 3 non-Ipsec and 1 ipsec link to connect to multiple data centres including aws.Some questions:1-) Please see output...
View ArticleManagement of an SRX 345 cluster question
Can anyone tell/confirm/deny for me IF it is possible to manage an SRX cluster on a 'revenue'/data port and NOT on the fxp0/mgmt port? I have a very small network, 4 vlans that I am looking to take...
View ArticleSRX345 does not support RPM ICMP-ING ?
Hi, Guys,Just would like to know if SRX345 supports RPM icmp-ping for IP SLA feature ?Since the following link mentions :( On SRX340 devices, the RPM server operation with icmp is not supported. The...
View Article]KMD_INTERNAL_ERROR:
Hi all, There is 80 spokes and 2 hubs. please see configuations:HUB:650srxHUB> show configuration | display set | match grp_ike_GW_store-common_parametersset groups...
View ArticleAdding Administrative distance to OSPF routes?
I have two SRX Routers on my edge, each to a different ISP.Router 1 has a 10G internet connectionRouter 2 has a 1G internet connection. Router 1 publishes 0.0.0.0 via OSPF My campus router see's the...
View ArticleSRX on a stick
Hi everyone . I want to implement Inter Vlan routing on SRX 650 . I used this configuration for Implementation Inter Vlan RoutingInterfaces {ge-0/0/0 {vlan-tagging;unit 10 {vlan-id 10;family inet...
View ArticleHow to view streaming logs via Jweb
I have a cluster of SRX 345’sJunos version is 15.1X49-D124.3 I manage them via jweb and I just want to know how or where I can go to view the live streaming firewall traffic logs once they have traffic...
View ArticleAre there any sites that verify and set up PPPoE servers and clients between...
Are there any sites that verify and set up PPPoE servers and clients between SRXs?
View ArticleHub and Spoke VPNs from SRX340 to Other non Juniper VPN router
---VPN-------192.168.30.254/24 (Other VPN Router) 192.168.50.0/24192.168.10.0/24 (SRX) 192.168.20.254/24 ------|...
View ArticleSRX , SSG - Query
Hi All , Just a small query about NATing . In 1st site(SSG5) i have MIP a free usable public ip to a server which is on LAN Network & i can do a SSH to this Server remotely but issue is i can not...
View Article