Dynamic VPN route-based won't come up
Hi,I have purchased a SRX320 to replace a working Netscreen-25 which is used as a VPN concentrator. I cannot get the config to work, here is from the kmd-logs (I masked the IP addresses in the logs,...
View Articleone vlan 2 subnets
Hi I have this situaton I have to setup on my SRX two subnets in one VLAN. Here's my interface config, but I am unableto route traffic from subnet 1.0 to 3.0 but I am able to route traffic from 3.0 to...
View ArticleClik here to view.
How to load balance on SRX
I am very new to juniper and need some help I currently have one SRX 550M and 2 EX 2200 switch, below is the diagram, we have 2 ISP connections one is ILL and the other is a Broadband.' 1.How do we...
View ArticleSRX Layer 2 port and BA Classifier/Multifiled Classifier
Hi everyone, Can we use BA DSCP classifier under layer 2 port on SRX 650?I do not see any option to Multified classifier using Filter family ethernet-switching under layer 2 port on SRX 100 but i am...
View ArticleGRE header and DSCP
Hi everyone, Does SRX copy DSCP value from inner packet ( payload) into GRE imposed IP header when encapsulating it? If not , how can we tell SRX to copy DSCP value from inner packet into GRE header...
View ArticlePIM and setting up DSCP value
Hi everyone, What DSCP value SRX use when creating PIM messages by default ? Can it be modified ?
View Articlesrx 300 use ge-0/0/0 ip address for NAT (destination and static NAT) problem ~
when i have "only one" ip assigned for ge-0/0/0 untrust interface (example: 1.1.1.1)and i need to use this ip address to destination NAT my many server port service int the trust zone after I...
View ArticleSRX100B Installation failed from 12.1X46.D55.3 to 12.1X46.D65.4
I can't upgrade SRX100B from current firmware 12.1X46.D55.3 to 12.1X46.D65.4 or other versions (D50, D60), and got error message as below, does any one know what is the problem? I can't rollback to...
View ArticleJunos upgrade path and ALG problems
Hi, We use Polycom video conferencing. We have a video conferencing unit at the edge site behind an SRX-210 firewall running Junos 12.1X46-D40.2. This runs an ipsec VPN back to an SRX-210 firewall at...
View ArticleJuniper Weighted Round robin Sceheduler
https://www.juniper.net/documentation/en_US/junos/topics/concept/cos-scheduler-security-overview.html An individual device interface has multiple queues assigned to store packets temporarily before...
View Articleegress queue stats and logical interfaces
Hi everyone, Please consider the following example: On SRX 650, we have following logical interfaces : ge-0/0/1 unit family inet 1.1.1.1ge-0/0/2 unit family inet 2.2.2.2 so when I do show interface...
View ArticleScheduler per unit basis versus Scheduler per physical interface
Hi everyone, Juniper COS is way complicated compared to other vendors I have worked witjh in past.I am going to keep pushing until i get COS down. A few questions on scheduler: JR2> show...
View ArticleRemote Access SSL VPN with NPC Client
Hi, Can anyone tell me the Maximum number of SSL VPN users supported on SRX5k using NPC client. Regards, Mannan
View ArticleSite-to-Site VPN SETUP - Cisco to Juniper
Hi Friends,I am trying to setup a VPN tunnel between a customer and application service provider. I completed this job using Cisco IOS and successfully made it. But,I need this to be done using SRX110:...
View ArticleMy DHCPV6 Server does not work at all
You must forgive me, I have Junos 11.47, Dont crack on me.No DHCPV6 client.Upon entering the following code my DHCPV6 server does not operate at all. Am I missing something?dhcp-local-server {...
View ArticleSRX-550 upgrade fails, at compatibility check ! Read-only file system
Hello,I have a issue at SRX-550 software upgrade, at compatibility check , does anybody has has the same issue ?I need to upgrade a couple of SRX550M clusters from 15.1X49-D30.3 to 17.3.At upgrade,...
View ArticleDynamic VPN client having wrong netmask and blank default gateway
Hello, I'm trying to set up VPN for a SRX550m unit. I was able to establish connection (via Pulse Secure v5.1.5). However, once connected, although the client's got the correct IP address assignment,...
View ArticleChanging Scheduling order of Queues on SRX 650
Hi everyone,Please consider the following set up: Let say we have mapped 8 traffic class to queues on our SRX 650Traffic 0—Q0Traffic 1-q1Traffic2-q2Traffic3 q3Traffic4-q4Traffic5-q5Traffic-q6Network...
View ArticleMultifield filter and BA Classifier on SRX 650
Let say we have following scenario: Traffic>----f1/0-SRX We applied multified classiifer ingress f1/0, which classifies traffic based on some criteria, what happens to traffic that is permitted...
View ArticleDoes SRX support ALG for JAVA RMI?
Hi all, Is there someone here know whether the SRX ALG support for JAVA RMI.? Thanks
View Article
