SRX 5400 successful pass-through authentication and nat logging problem
Hi, I've made pass-through authentication with web-redirect. User is authenticating successful but in nat logs i see still unknown user. I need to set in policy source user as unknown-user to pass...
View Articleike SA unusable and ike No proposal chosen
Hello, i am trying new Juniper in my branch-office and i can't understad whats wrong (it's 5 branch with ipsev vpn, so i was expecting that everything will smoothly).I tried to set up to ipsec tunnels,...
View ArticleClik here to view.
Problem with CoS behavior on SRX210HE
All, I'm using an SRX210HE running Junos 12.1X46-D35.1 I'm stumped....I've got a very simple setup:There is ftp and http traffic going from "Remote Host" to "Local Host". I'm trying to rate-limit the...
View ArticleMoving SRX firewall filter rules
Hello, I would like to know the command for moving the firewall filter rules in SRX , I have done it via GUI , but Gui is not permitted . What I am looking is moving the Banned-ip list top of Term T1...
View ArticleJuniper srx-100-b doesn't boot
Hi all I have a juniper srx-100-b and I tried to configure this device completely from scratch. I performed a 'erase all' command in u-boot mode, now the device doesn't boot. I don't see any post...
View ArticleMapping a /28 without NAT
I'm trying to set up an SRX240 to sit in between some servers and the internet where I can set the external IP on the servers themselves.I'm thinking NAT to internal addresses would be better but we...
View ArticleCannot login to SRX100
Hello, I just used the wizard to setup my brand new SRX100. Using the web wizard I set my root password to: g$SY~THD=^8xK)/Q [yes, that is the actual password] After reboot, I cannot login using that...
View Articleempty proxy-identity for SRX
Hello,this is not a new topic but I still have some doubts about the proxy-identity setting for an SRX VPN : According to URL :...
View ArticleClik here to view.
Acceptable IKE pre shared keys
Hello, I just learned that JUNOS will change the passwords you specify without warning, for example if your password includes the symbol '=' (see this thread for more info). Question: Does JUNOS also...
View ArticleSRX 210 in transparent mode - trying to get inline management going
Hello, My work has a need for a layer2 firewall that can slip inbetween some vendor equipment that we're not to tamper/reconfigure and the uplink. Hence, transparent mode. Downside is I'm not sure what...
View ArticleJuniper to Cisco OSPF over IPsec
Hello, Does anyone know if its possible to setup an IPsec tunnel between a juniper and cisco and pass OSPF over it? Thanks
View ArticleSetting up Virtual Routers on an SRX 240
I admit I have no experience with Juniper devices prior to being tasked with setting up an SRX 240 for a test lab. I've followed documentation I could find, but can't quite get everything to work. I...
View ArticleDynamic VPN Client Logging - SRX100H
Goodmorning Everyone, I am wondering if the SRX100 has the ability to log VPN connections for troubleshooting. This is my first Juniper product I've had to manage in a production environment and just...
View ArticleRouting Engine Swap
Hey Guys, I am working on this change to swap faulty RE with RMAed one and in a dilemma on how to put configuration back to the RE after replacement. As per this kb, device need to have some sort...
View Articlecluser between SRX5800-CHAS and SRX5800X-CHAS
Dears, Can we form a cluser between SRX5800-CHAS and SRX5800X-CHAS ( enhanced ) ? last order for SRX5800-CHAS is May2016.
View ArticleManagement access of SRX Chassis Cluster
Hello guys, I'm new to this forum. I was a Cisco guy, started working on Juniper an year back. Now working on SRX boxes. I have 2 set of SRX3400 boxes are in Chassis Cluster in my environment. Both are...
View ArticleFBF anyway to modify the egress interface?
I have two VPN tunnels belonging to two different routing instances as follows: st0.0 belongs to 131 routing insrance and st0.1 belongs to 121 routing instance. I have a requirment to route a...
View ArticleCustom Attack Objects not working without valid IDP Signature License
I have a custom IDP rulebase configured that was running with a demo IDP signature license. The firewall worked as expected until the license expired on 2/1, and after that none of the custom attack...
View Articleconfision regarding SRX CPS per chassis
Dears, I have some confision regarding the global Connection per second on a chassis . via SNMP , i can see that CPS of my cluster is : 24KjnxJsNodeSessionCreationPerSecond.0 =...
View ArticleSNMP mib-jnx-chassis.txt
Hi Experts, I have downloaded the latest Junos OS Enterprise MIBs for SRX1400 using Junos Release 12.1X46 and when I am trying to importing mib-jnx-chassis.txt using PRTG Paessler MIB Importer V2 it...
View Article