SYSLOG Help with SRX
Hello, we have an SRX with 4 x Routing instances, all interafces are configured and members of one of these 4 routing instances. I need to get the SRX to send SYSLOG data to our syslog server but...
View Articleipv6 vlan interface
Hi, Does this article still relevant for srx 12X1 versions and above .....
View ArticleSRX tunnel to Cisco ASR configured for EZVPN?
For reasons that are difficult to explain, and mildly polical in nature as far as my company is concerned I have a need to create a site to site tunnel between an SRX 650 at one location and a Cisco...
View ArticleSRX240H Power Loss: Cannot Login
Hello: Unfortnately, our data center had a catastrophic power loss (their automatic transfer switches failed), and we lost power to our rack. One of our client SRX's on reboot will not allow any...
View ArticleCF ACT LED SRX650
Hello Community,I recently purchased two external compact flash memory cards for an SRX650 chassis cluster.Using a CF to USB convertor cable, I successfully managed to take a snapshot from the internal...
View ArticleEnabling TPM blocks any Junos upgrade on SRX
Enabling TPM makes any Junos upgrade on SRX impossible. If you enable TPM / MEK – the box needs to be rebuild from scratch using a local console access. There is no other way to disable TPM or do an...
View ArticleDownloadable access-list via radius
Hi All I'm new in this forum and in general to Juniper SRX.I struggling to find any documentation that can show me if SRX340 supports downloadable access-list per user vpnvia radius entries, and if...
View ArticleSTATIC DESTINATION NAT Question
Hi everyone. I have some questions about STATIC NAT. On Cisco Platform: SERVER--10.10.10.1------10.10.10.10 -F1-(INSIDE)--R1-F2-(OUTSIDE)-----INTERNET R1 is configured with STATIC NAT to translate...
View ArticleError when commit static nat two public ip into one private IP?
Hi all, How i can translate the screen os below config into srx. It get error when i do commit. On netscreen set interface "ethernet1/1:1" mip 71.10.11.30 host 192.168.10.1 netmask 255.255.255.255 vr...
View ArticleSplit assigned /29 Subnet into two /30
I have a SRX that I am running in packet mode and am attempting some test configurations on it while I await my IP assignment from ARIN. The assigned subnet I have been given at the moment is a /29 -...
View ArticleSRX address book: Global address book and Zone address book
Hi everyone, I am reading this one day book on SRX, great book, but left me with some questions: We can define address book under Zone and Global. I am wondering what are the some implications of...
View ArticleClik here to view.
Subinterfaces vs VLAN interfaces
Getting to the point where I know enough to get myself into trouble So what I'm trying to figure out now is VLAN setup. I've been reading here and the KB section for a few hours on setting them up and...
View ArticleSYSLOG and Control plane on SRX 650
Hi everyone. I have some questions about SRX 650 after I read DAY ONE book on SRX ( great book by the way!!) More specifically following excerpt from the book: "Logging behaves differently in the...
View ArticleClik here to view.
Help with NAT configuration.
I have a srx240 and am trying to learn junos the best that I can however I have reached my googling capabilities and simply can not figure out nat! topology modem -> ge-0/0/0(untrust) ->...
View ArticleConfig Dynamic DNS on SRX300
Hi, I want to config the SRX300 as a DDNS client. Is there any way to config it on web GUI or CLI? My SRX300 software is 15.1X49-D100.6 . Thanks.
View ArticleAny one has exprienced impement this command on SRX5800?
Hi all, May i know whether have someone exprecinced implement this hidden command below on the production. As per ATAC inform this command can perevent the RE from impact of broadcast storm but it not...
View ArticleSRX GATEWAY Cluster with VLAN
Greetings ExpertsThe following is the question on SRX 240 with Cluster, please guide me to the right path if this is already being answered... The below is the topologya) There are 2 SRX (SRX-A and...
View ArticleSecurity policy Untrust to zone Trust is denying traffic.
So! this is an interesting one, the untrust to trust policy is blocking traffic from untrust to untrust. I am using a port scanning utility on the internet to test for open ports on my network I am...
View ArticleSession creation and Security Policy on SRX
Hi everyone. Is it correct SRX creates " Session" for new flow that passes Security policy? I am confused about at what point Session is created in session table, please see the example below: PC(...
View Articletcpdump on SRX
Hi everyone I am trying to set up tcpdump to capture traffic involving 199.199.199.10 PC1 199.199.199.10--199.199.199.1 fe0/0/1-TRUST-SRX-UNTRUST-fe-0/0/2-200.200.200.1---200.200.200.2 PC2 SET UP:SRX...
View Article