SRX to NS5GT Policy Based Vpn (ping not working)
HiI am setting policy based VPNs between SRX vs Ns5gt NS5GT----Ping Working ------SRX210SRX210---Ping Not Working----NS5GT ? I apologize very little english...
View ArticleDynamic VPN for remote workers
Good morning,I have a simple question. We have a number of users that are working from home that would need temporary access to network resources in the office which is using SRX device as a gateway...
View ArticleSYN proxy not working
Dear friends , Our main problem is spoof syn attacks are passing from the SRX 3600 . We have an MX 80 Router and we are routing firewall traffic to the SRX device. we do not put the gateways...
View ArticleSRX vs ScreenOS - NAT difference in flow?
I want to know why there is the difference in NAT flow in SRX flow as compared to SSG firewalls.What was the flaw in NAT flow in ScreenOS.Can some some tell why in SRX flow, NAT occurs in 2 different...
View ArticleSimple IPv6 setup on SRX650 12.1X44-D45.2 w/ VLAN & DHCPv6/SLAAC
Hello folks, I've been racking my brain over this for several days. I've actually setup IPv6 with BGP etc with two other SRX650's over the last 5 years and can't recall if i ran into this problem using...
View ArticleCapture Traffic on USB Drive or Mount NFS ?
Hi, I looking for a way to record catches "pcap" over several days.I havean external hard drive2TB but my SRX650 says : "mountmsdosfs(): disk too big, sorry"What is the maximum partition size that the...
View ArticleSRX slow on some webpages
Hi guys, I have configured a SRX 100 for PPPOE however, it is dead slow on opening some pages and very fast on opening other pages.I noticed that it is fast for Facebook, google, gmail however it is...
View ArticlePBF problem when changing default route preference
Hi all,I am having some issues getting PBF working. Basically, I have two interfaces connected to Internet. One is used for ssl vpn access and it has a static IP that is nated and the other for...
View ArticleClik here to view.
External Users Can't Reach Public Addressed Devices in DMZ from Untrusted...
I have devices connected to a DMZ which has a subnet that was carved out of a /28 public static IP block with a /29 subnet. I created a static nat with proxy arp and corresponding policies to pass...
View ArticleClik here to view.
snmp no respond on SRX 1400 when use snmpwalk command on snmp server
when i use snmpwalk conmand on the snmp server , it says below but i can ping and ssh FW with 10.18.133.113 . and system-services snmp is configured on 10.18.133.113 10.18.133.113 is configure on a...
View Articleset up ipsec dynamic vpn
I am tired of issues with the dynamic vpn client and windows 10 computer, sometimes it works sometimes it does not How can i setup an ipsec vpn so my computer is ALWAYS connected via VPN tunnel? Thanks
View ArticleVPN Using Certs: Possible to Only Provide Cert-Chain for Local-Certs?
Hi, We are currently using security certs to create site-to-site VPNs. We provide local-cert in PKI config and also the ca-certificates. Is it possible to drop the latter and only provide...
View ArticleClik here to view.
Screen logs
Dear friends how should i allow to log screen rules. now it is always seems empty. Thanks
View ArticleDual ISP Failover Configuration (default route not working )
Hi dear AllWe have two srx240 which is configured in HA ClusterI configure two interfaces and two ISP, for isp failover but when first ISP was down second ISP didnot work Isp1 zone is ineternet1Isp2...
View ArticleBoot halts at Time and ticks drifted too much
Hello forum! When booting my SRX240H2 i stops for a looong time the following message: "Time and ticks drifted too much, resetting synchronization..." After 5min, give and take, it continues to boot. I...
View Articleunstable connection to leased IPVPN location after switching to SRX
Hi guys, we have this irritating issue that I have been strugling with before, going back to Sonicwall helped last time. sonicwall is at its last breath so now we need to implement SRX solution. this...
View ArticleDual fabric links on SRX5800
Hello, I am new to the Juniper line of products and I was wondering if you can create aggregated fabric link (2 interface on the primary chassis and 2 on the backup chassis). I did set up the...
View ArticleQoS Default Behavior
I could use some clarification on some QoS behavior. If a packet comes in to a device, should it automatically show up in the EF queue? Thanks.
View ArticleSecurity Director - policy sync
On Junos Space 14.1 I noticed an issue where if the policies are added locally on the SRX it not not synced back to Security Director. The way to get it back in sync is to import the configuration,...
View Article