Best way to open internet ports for a single device
I have a device that I need to open up a range of internet facing ports (UDP and TCP). I want to do this in as secure a way as possible (I know opening up ports permently isn't secure by nature....),...
View ArticleSRX110 Best way to open internet ports for a single device
I have a device that I need to open up a range of internet facing ports (UDP and TCP). I want to do this in as secure a way as possible (I know opening up ports permently isn't secure by nature....),...
View ArticleSecurity policy place
Hi all, We have SRX_Main in main datacenter and SRX_Backup in backup datacenter.Traffic form branches to backup datacenter goes through main datacenter - Branch router -> SRX_Main ->...
View Articletraceoptions issue on physical interfaces of SRX345
Hi, guys, Issue found on traceoption on physical interfaces of SRX345 ( JUNOS 15.1X49-D110.4 built 2017-09-08 ).I want to record/capture the event log of physical interface status, so the following...
View Articletraceoption rpm test between two sites...help
Hi, guy, Due to geographical reason, I would like to create RPM service in SRX345 (two sites) for keeping ping between two sites, Any advice on: how to set up traceoption in order to record the ping...
View ArticleKeep saving the results of "rpm service"
Hi, Guys, Any advice on keeping saving the results " show services rpm history-results owner test" and " show services rpm probe-results", thx a lot ?...
View ArticleQuestion about Application hosting support for the MX and the SRX routers...
Hi experts!I saw some posts about vmx and how its deployed to allow Docker support for app hosting and also the ones about the SRX family app hosting capabilities, However, I am not 100% clear whether...
View ArticleSRX WAN interface bandwidth limitation
Hi, We have SRX210HE with Junos 11.4R10 version.We have connected 50 Mbps WAN Link on fe-0/0/6 interface but total interface bandwidthmax 10 Mbps. Their is no limitation configuraed on interface....
View ArticleProblems to ICU Upgrade SRX clusster from version 15.1X49-D45 to version...
Hello, i am trying upgrade devices SRX340 in a chassis using ICU, but I get the following message: user@SRX340> request system software in-service-upgrade...
View ArticleDHCP server not leasing IP if applied filter on the vlan interface where the...
Hi,DHCP stops leasing IP when I apply the below-mentioned filter to the VLAN interface, My requirement is all the traffic (0.0.0.0/0) from a certain vlan 20 should go through the VPN tunnel where other...
View Article2 Factor / MFA on SRX240 firmware : [12.1X44-D35.5] for remote access dynamic...
Hi All, On one of the threads it is mentioned that MFA or 2F is not possible with dynamic vpns on srx. Reason being https traffic, but this is allowed on the external interface. So what might be the...
View ArticleJuniper SRX-240
Hi All,I need some help regarding Juniper SRX-240. The device working fine. But after restarted when I try to log in and type "root" then press enter the following output comes on CLI.login: rootNov 19...
View ArticleOpenVPN in connected but cant reach anything
I have decided to start to get away from pulsesecure VPN client and setup my own openvpn server on a VPN in my environment and connect to that using openvpn client now i have been able to setup the...
View ArticleClik here to view.
Got DHCP set up, but can't get internet - My first Juniper router
I am totally new to Juniper routers. I have used mostly had Netgear and Linksys routers so I am unfamiliar with the terminology. I am a total noob so bear with me. I have an SRX300 and am trying to set...
View ArticleSRX1500 100GB SSD: ¿ could it be replaced by a bigger SSD unit?
Hello team:Customer published a tender that requests a next generation firewall cluster.The SRX1500 family fits almost perfectly, except by the fact that its factory default is a 100GB SSD whereas the...
View ArticleClik here to view.
SRX 340 default Global policy issue
Problem is that I DO NOT have any global policies or default polices configured. When testing I find that although I can ping from my trust zone across my VPN any test ping from VPN to trust fails....
View ArticleWeb Filtering Logs with AD Integration Username and URL fields null
I've been working on some logging we recieve to our JSA from the SRX's we manage. Most of the SRXs are 340's. We are using JIMs at a our clients and i've noticed some weird returns from the...
View ArticleSRX DCHPd, Option 125 and Mitel Phones
This post isn't a question, more of an answer tying together a bunch of other posts and KB articles that I've been searching through. Problem:You have an older SRX series (running DHCPd - the set...
View ArticleAre multiple access profiles for dynamic vpn on SRX ?
Hi All, Can multiple dynamic vpn access profiles be configured on the SRX 240 firewall ? There is already an in production remote access dynamic vpn setup that uses LDAP authentication for users. We...
View ArticleSource-Nat disable query
Hi All, All traffic from trust zone to internet is set to source-nat "interface" thus it gets natted to the public ip. I want to disable this common natting for all traffic types and have custom...
View Article