Fortigate 800C - SRX 240 ike problem
Hi, I'm trying to configure vpn between Fortigate 800C and SRX 240 in test environment (the same subnet for WAN interfaces). I have a problem with ike: Juniper: show security ike security-associations...
View ArticleLimited download but no affect streaming with firewall policer
Regarding to the firewall filters and policer on SRX. I would like to ask about what is the proper configuration if inside of a subnet with 192.168.200.0/24 is limited to download only for 128k but it...
View Articlepolicy-statement and from rib matching
Hi, Is there a reason this policy doesn't work? prefix-list routes-from-main { 1.1.1.0/24; } policy-statement accept-from-main { term ok { from { rib inet.0; prefix-list routes-from-main; } then...
View ArticleHow to solve that several VR can access the same reth0 vlan for untrust
I have several VRs on an SRX.The untrust is on reth0 vlan 10But i cant create reth0 unit 10 vlan-id 10 and at the same time unit 11 vlanid-10 to hook these up to different VRs.Any suggestion on how to...
View Articlerouting instance and ospf
Hello! Trying to configure ospf on srx100 device with routing-instance enabled, everything works fine between devices without routing instance. show routing-instances cifra1 { instance-type...
View ArticleTransparent mode support SRX340 or not
Hi Guys, I am new with Juniper firewalls, i have a juniper firewall SRX340 (Junos 15.1X49-D45) and trying to configure it as Transparent mode. IS this series support transparent mode or should go with...
View ArticleClik here to view.
ipsec VPN is up, but not passing data
Hello!ipsec VPN is up, but not passing data KB 10093 but no luck.Ipsec SA listed on both devices:no:run show security ipsec security-associations Total active tunnels: 2 ID Algorithm SPI Life:sec/kb...
View ArticleTransparent mode: Redundant connection between Juniper SRX340 and Cisco...
Hi Juniper Community, I am unable to connect the SRX340 in transparent mode via LACP to a Cisco Catalyst Switch.Afaik it is not possible to use LACP, instead static LAGs should be used. May be some of...
View ArticleClik here to view.
Bug ? Sometime the dhcp IP is wrong for the client when I move a client from...
SRX240H2 -- JUNOS 12.3X48-D30.7 example ,I plugged my laptop to vlan14 where the pool is 192.168.14.0/23 so it get the right dhcp Ip then I plugged the same laptop to vlan2 where the pool is...
View ArticleVPN failed with SRX300 and SRX100
Dears, I have the new site to Install SRX300 and build VPN connect to old site. But VPN is failed. From the command : show security ike security-associations , the state is DOWN The attach have 2...
View ArticleWhich contract service do I need for SRX, if any?
Hi - I am about to order some SRX340 (hardware + software licence) but there is one information that I am not able to get. Do I need a contract service and if any what's the minimal one is necessary in...
View ArticleAdd DMZ on single IP
Hi, i'm trying to add a dmz zone on lan port 2, local ip 192.168.5.180. Here it is my test: version 12.1X46-D55.3;system { host-name JuniperSRX210; time-zone Europe/Rome; root-authentication {...
View Article10 minutes downtime while Primary node boots up after power off/power failure
We have a SRX1400 cluster running on JUNOS Software Release [12.3X48-D35.7]. I was running some Failover test cases. In one of the cases, when we power off primary node, the failover works fine but,...
View ArticleLog dropped packets to rsyslog
When doing: show security flow statistics we see the dropped pacekts.root@fw1.phl> show security flow statistics Current sessions: 351 Packets forwarded: 15168819 Packets dropped: 157887 Fragment...
View ArticleVLAN for WiFi with DHCP
This is really basic, I am sure. Normally I would try to figure it out on my own but do not have the luxury of time.I have an SRX300 with no specified VLAN's, just the default:root@HSRX300# run show...
View ArticleNAT64 lan to wan
I'm trying to NAT64 my internal LAN IPv6 network to the Internet which only supports IPv4. Any ideas on where to start?
View ArticleTraffic logging on srx branch series
Hi,I'm trying to log all traffic information for a specific device when it access the internet on my srx branch series network but when I do a "show log traffic-log" command the log file is empty....
View ArticleSRX100 and BT infinity problem
Hello everyone, I’m trying to configure my srx100 for almost 2 weeks and can’t find solution to my problem. Here is my setup: BT Openreach modem (BT infinity broadband) -->srx100 -->LAN with 1...
View ArticlePolicy based vpn up but no traffic
Hi, SRX-to-Zyxel scenario. cannot get the traffic flow working over policy based vpn vpn is up both IKE and IPSEC.policy and reverse policy are configured.when viewing statistics for ipsec ID, it shows...
View ArticleSRX100 VPN problem
I just got this new SRX100 just to add Dynamic VPN on to controls network. I worked it out with the Web Manager and it set it up for me. I can connect to the SRX100 with Pulse VPN but I do not get...
View Article