fbf - single lan / 2 dmzs to dual isp intermittent rto
hi guys, im wondering if what is the issue on my setup; LAN Segment => 1.1.1.0/24 => ge-0/0/0.0DMZ Segment 1 => 5.5.4.0/26 => ge-0/0/5.0 (for ISP 1)DMZ Segment 2 => 6.6.4.0/26...
View ArticlePower off device automatically when system is out of power
Hi all, I'm supporting for small data center network using EX3300, EX4200, SRX650 devices. When system is out of power, The UPS can supply within 5 minutes for devices. So I want to creat script or...
View Articlesrx340 cluster and LACP weird reth interface issue
Hardware: SRX340, EX4300Sofware version: SRX340 : 15.1X49-D50.3 EX4300: 14.1X53-D35.3 Doing LACP between a pair of SRX340 and EX4300. No problem with LACP configuration and all interface are up.When...
View ArticleNAT Management Traffic for multiple downstream cellular routers on management...
Hi, I would like to NAT management traffic for 50 routers on the trusted side of my Juniper SRX 340 through the single management port on the SRX. Basically I have 50 cellular routers using private IP...
View ArticleUpdate Junos version in SRX cluster
Hi Guys, I need to update two SRX 220h in cluster, but when I tried to copy junos version from Node0 to Node1, the imagen was corrupted, I used the following command in start shell mode: rcp -T...
View ArticleSSL Forward Proxy
Given google chromes requirement to present sha256 or more secure certificates to ensure browser security, is there a way to specify the digest of the client side certificate presented by the srx...
View ArticleUnable to browse website after deploying Juniper SRX220H as Transparent Mode
Dear all, I setup an Juniper SRX Firewall and acted as a transparent mode firewall for IDP purposes. I place it between the Internet Router and Fortinet Fortigate Firewall. We are able to ping the...
View ArticleClik here to view.
Connect PFSense to JuniperSRX
Hi, I am having issue connecting PFSense Server to Juniper. Here is my current setup: Modem is directly connected to Juniper and it works fine, however I want the Traffic shaping and squid so that I...
View Article[SRX Cluster] NTP synchronization
Hi All, Just asking how ntpd working in SRX with chassis clustering mode. As now seeing one node0(chassis) as using LOCAL CLOCK and another node1(chassis) is gettin NTP CLOCK It is node0 fetching data...
View ArticleSRX 5400 - GARP issue after RETH recovered
Hello all, We are facing HA issue after a link failure on RETH the firewall is not sending GARP packets on the recovered interfaces. In order to validate our HA configuration (RETH+LACP) we disabled...
View ArticleSRX1500: IRB interfaces and Ping issues between directly connected interfaces.
Hi , I have 2 SRX1500 configured in l2-learning to mode "switching" I created 3 vlans and set l3-interfaces irb SRX1:set interfaces ge-0/0/4 unit 0 family ethernet-switching vlan members VLAN12set...
View ArticleIntegrated User Firewall Issues
Hey team , I am trying to Integrated user firewall with AD , II can see that srx is connected to ADcontroller and I can see the table as well . However , the user can not browse and when I looked...
View ArticleSRX Cluster (Active / Active) Over Ethernet
HiI want to make a cluster of SRX firewall over an ethernet Link. I couldn't find exact config though found many guides. I am bit confuse how to configure Control & Data link interfaces since these...
View ArticleARP Request Being Ignored
(IPs obfuscated) Hi all, I receive Internet traffic from a managed upstream router over which I have no control. It is a managed service office and the router sends traffic to a number of customers –...
View ArticleSRX 240 VPLS Configuration problems
I amtrying to set up VPLS between 2 SRX240 in our lab at the Academy. We have tried several configuration ideas from documentation on VPLS on J/SRX series (security devices) and nothing works so far....
View ArticleCHASSISD_FASIC_HSL_ERROR
SRX 3600 is showing following in log chassidCHASSISD_FASIC_HSL_ERROR: Fchip (CB 0, ID 0): link 1 failed because of crc errorsCHASSISD_FASIC_HSL_ERROR: Fchip (CB 0, ID 0): link 2 failed because of crc...
View ArticleClik here to view.
SRX Chassis Cluster With BGP Router for Dual Internet
Hi, I have Two Sites A & B connected with core switches via Layer2 having SRX Cluster (Active / Passive; Which needs to be established via same ethernet switches). Now new requirement is to put a...
View ArticleVSRX Evaluation License
Hello everyone, I'm new to Juniper Neyworks, Begining my first lab on vSRX.I'm trying to test idp functionality on my vSRX , have installed an evaluation license , But I think something is going wrong...
View ArticleDynamic VPN client can only access some protected resources?
Hi all, I've got a 2 site setup with SRX240s in each site, and an IPSEC VPN tunnel between them. I've also set up Dynamic VPN access via Internet to the main site (PHV). Dyn-VPN Clients can...
View Articlecommit failed
hii have 2 question for srx 36001- after commit check it say:error: could not open configuration database (juniper.data+)2- i delete the log file but with cli df -h it shows it is full
View Article