Show policy stats - How are they read?
I'm replacing some old SRX's, and need to clean up their configs were possible. I'v searched the Tech Library, and I haven't yet found a description of what the "show policy "policy-name-here"...
View Articlesyslogs not being saved on srx340 local storage
Hi guys, just noticed that syslogs were being saved locally (messages file) on our srx340. below is the cofigured syslog on the device. firmware version is 18.2R3.4. your help is well appreciated...
View ArticleSecond Hand SRX 240
Hello everyone,I've buy a second hand SRX24 to learn junos. Junos is a very old version and have never been updated. I've registed but i can't even download the recommended version : You have...
View ArticleSRX320 Cluster - Best Backup Practices
Hi there I just wondered what peoples thoughts were on backing up rescue configs. We manage firewalls via Space. Must we log on and create a manual rescue config backup each time we make a change to...
View ArticleSRX IPv6 route filter
Hello, I have two routing instances on an SRX1500; VR-Trust and VR-Untrust. VR-Untrust connects to my WAN link; it has a default route that points to the WAN router of my ISP. VR-Trust knows all my...
View ArticleUnable to route across vSRX once flow-based forwarding implemented
Hoping for some help. I am running 3 clusted vSRX (version 18.4R2.7) on ESX6.5 with connections running to a C3750G switch running vlans between the 2 esxi hosts. In trying to understand the vSRX I...
View ArticleClik here to view.
ECMP Two IPsec tunnels, SRX.
Hi there,I am trying to create a solution where interesting traffic can traverse two IPsec tunnels between the same to firewalls, please see topology attached:The issue i am having is only one of the...
View ArticleAnyone here has facing issue rearrange existing policy not work?
Hi all, I'm just facing the weird issue on SRX5800 chassis cluster. Currently i have logical-system in SRX5800 chassis cluster. I have existing security policy and i try to move up and down. After i...
View ArticleClik here to view.
Two IPsec tunnels, SRX.
Hi there,I am trying to create a solution where interesting traffic can traverse two IPsec tunnels between the same two firewalls, please see topology attached:The issue i am having is only one of the...
View ArticleSSL VPN on Srx1500
Hello!Please tell me how can I configure SSL VPN on the SRX1500, I need me to write down my global IP address in the browser and an authorization window opens. On the Juniper site, I saw configure with...
View ArticleHidden policy dropping DNS request?
Hi, We have an application service requires that a dozen servers behind SRX-HE (SRX-HE does PAT) send blast of DNS queries at the begining of each hour to a 3rd party DNS server connected to SRX via...
View ArticleSRX550 Firewall Issue
Hi All, We have a cluster SRX in one of our branch office. Recently, we found some issue. 1. When we login to the webpage, it will prompt 'you have pending changes from previous commit'.2. We tried to...
View ArticleSRX345 got into Recovery mode, please help
Hi, guys, One of my SRX345 HA cluster stuck into the "recovery mode" "Octeon srx_345_ram#" after abrupt power loss. Unfortunately, It has not been configured auto-recovery. What should I do to repair...
View ArticleClik here to view.
Fabric interfaces Physical up / Monitored dwon
Hello, everybody,I have the following situation with a SRX 4600Why does the status up but monitoring down show me?Is there an order telling me what it is?show chassis cluster information Thanks for you...
View ArticleSRX using VRRP and Virtual Router RI
Hi all,We are planning to have two SRX 345 routers used for a mixed high availability enviornment with two different ISP connections. What we like to do is configure VRRP for voice, data, MPLS and...
View ArticleDHCP Relay
I have a question about how the SRX processes DHCP relay packets. I have a remote site with a Cisco switch trunked to an SRX which is connected to my DHCP server via a tunnel. The host DHCP requests...
View ArticleJuniper ports scan
We have number of SRX routers that have flagged up issues with port scan was done via nmap. Number of TCP and UDP ports were showing as open so I would like to know what ports out of box come open on...
View Articlehttp redirection to https
Dear,I have a few webservers behind SRX and they are accessed via HTTPS. When external clients write the address without https://.. the websites are no accessible since it is HTTP by default on web...
View Articlecpu load to be high
HiI have a problem with juniper srx300 JUNOS 18.2R3-S2.9 after I have committed the cpu load to be high and access to ssh juniper is slow. what is the cause? Thanks,
View ArticleClik here to view.
Certificates based IPSEC VPN tunnel not coming up
Hi guys,I've been strugling a few days with an issue with a new certificate based VPN tunnel I need to set up but I can't get it work. On my side the gateway is a Juniper SRX300 standalone while on the...
View Article