SRX550 FIREWALL POLICY
Hello Guys,We have a deny all policy,based on internal customer requests ports are opened for applications from trust to untrust and in some cases to specific destination IPs sourcing our internal...
View Articlesrx240b2 can't add static IP address to interface
I have an srx240b2. I have the default interface settings. Since it is 11.4x it will not allow me to add ip addresses to the host side interfaces, I think. The public(internet) interface does allow...
View ArticleBroken ECMP ipv6 with SRX1500 in paketmode
hi, I have here a setup with srx1500 in paketmode. If I try to enable ECMP with ipv6 all runs finex except Clients that runs Windows Server > 2012. I found out that Windows Server Systems have ECN...
View Articlehow to install dynamic vpn license in srx1500
hi all,i want to install dynamic vpn license in srx1500. which command is used for it..pls share
View ArticleSRX 1500 HA over L2 question
Hi guys,I need to deploy 2 srx 1500 but HA over L2. I want to konw is control port tag enabled on srx 1500? Any command can check and modify? Thanks Seansc
View ArticleSRX Sending logs to SYSLOG Issue
Hi Guys, We are having issue while sending logs to syslog server. SRX 3400's configuration is attached with this thread.Logs are not forwarding to SYSLOG server and when I try to open any file like...
View ArticleSRX : 802.1q trunk and VLAN subinterfaces on ge-x/x/x without...
Hi,I need to use 2 trunk interfaces from one (same) srx to one ex4300.ge-0/0/0 : routing-instance VR0 : trunk mode, VLAN 100, 101 => ex4300, ethernet switching/trunk interfacege-0/0/1 :...
View ArticleSRX-650 Backup to USB
I wanted to make a backup of my SRX externally - just in case - and so I got an old SATA drive with a USB dongle and plugged it in. I then used the "request system snapshot media external" command to...
View ArticleVPN Junos Pulse restrict attempts to login
Hi all, I've seen some brute force attempts to login in to my VPN.Due to very large passwords and usernames, they could not log in. I would like to know, how i can limit these attempts for login for...
View ArticleSRX200 migration to SRX300 two vlan.irb through trunk interface to wireless...
I am migrating from an SRX200 to a SRX300 and I have everything up and working except for the trunk port to my wireless access point (Ruckus). I'm not finding a way to get the access point to come up....
View ArticleDCHP-Relay Question
I have two DHCP sources that I am using that goes through a trunk port to a wireless AP. The DHCP-RELAY is used in conjunction with the windows domain and is used on everything with everything but the...
View ArticleStep by Step procedure to remove route based & dynamic vpn configuration on SRX
Hi, Can someone help in removing route based & dynamic vpn configuration on SRX so that there are no errors while commiting the configuration. Thanks,Kunal Tupe
View ArticleNot working:Site-to-Site VPN with SRX300 and Vyatta behind NAT on the firewall
Hi, PLS can someone take a look and shed some light why SRX is not reply on port 4500 when devices tring to establish VPN. Vyatta perfectly works with other devices been behind NAT, also Juniper works...
View ArticleSRX340 as Internet Gateway
Hi!I am working for the first time with a Juniper equipment.I am trying to set up my machine (SRX340) as the internal network internet gateway.I do not have any VLANs, I just wish all computers in the...
View ArticleLimit internet access from specific source ips
Hi!I am configuring the juniper SRX 340 for the first time.At the moment I was able to configure the access of the entire internal network to the internet, using the juniper as gateway.Now I would like...
View ArticleBlock Whatsapp calls
Wondering if there is way to block whatsapp audio calls only ( if not I guess total block would be fine)? Has anyone implemented this successfully? Do I need IDP license etc?
View ArticleProxy-ID
what are the differences between proxy-ID and traffic selector and when to use them ?
View ArticleWhta is the difference bettween session creation per second and performance...
Hi, I have a question. As you see the 3 commands results, so many active sessions and failed sessions occures, but we can not get session creation per second, the result is always zero.Whta is the...
View ArticleHow to share printer (mdns bonjour apple) in a different vlan .
Goal:apple devices would be able to discover the printer (192.168.2.20) in vlan.2 (192.168.2.0/24) from vlan.1(192.168.1.0/24) With the "policy printer", From vlan.1 I can ping and see webpage of the...
View ArticlePing fluctuations SRX external interface
I have an issue with external link fluctuating while pinging from outside (from other external network to SRX untrust interface), i have checked ping to ISP side it's clear and no ping...
View Article