Issues while upgrading SRX 5600 from [12.1X46-D40.2] to 15.x
Hi I am trying to upgrade my SRX 5600 from 12.1X46-D40.2 to 15.X49-d120.3 and I am using the following commandrequest system software add /var/tmp/junos-srx5000-15.1X49-D120.3-domestic.tgz no-copy...
View ArticleConference call QoS Setup
Hello everyone. I have 2 ISPs connected to 2 Juniper SRX345s in H.A. connected to a couple EX4000 series switches as the MDF. My question is how can I set up QoS/CoS for Skype for Business and...
View ArticlePacket capture/ TCP dump on SRX 650
Hi everyone, Is TCP dump/ packet capture feature on SRX 650 for transit traffic or just for traffic destined/sourced from/ to SRX? Thanks and have a nice evening!!
View ArticleDynamic VPN - Pulse secure VS NCP
Hi I try to test dymamic VPN fucntion on SRX 3xx (version 15.1X49 D100)But What's different between Pulse secure and NCP? Which one i should select Regards,
View ArticleAdd a second SRX240 to network
Hi everyone. I have a network with different subnets for the users that can't communicate with each other (this is a requirement from our clients), and a central subnet for the servers that everyone...
View ArticleSelectively disable DNS ALG
Hi, guys,I have DNS server outside of SRX, DNS clients (our partner) will come in from a dedicated connection/security zone, we advertise 1.1.1.0/24 over the dedicated link to our partner. Here is it...
View Articleicmp on destination nat rule
Our client recently requested to implement following ruleSource 150.140.197.110 (remote)destination IP 140.200.20.40 (DMZ)port 3299 and icmp to allowed throughdestination NAT translated to...
View ArticleAllow ping from RE and PFE to internet
Hi Which one is a source interface when ping from RE or PFE to internet? Loopback ip or fxp0 ipIf I want to create policy for allow ping from RE or PFE to internet, Have I create new policy (junos...
View ArticleClik here to view.
traceoption seeing policy lookup twice.
Hi there, i have another question regarding to the use of traceoption. I saw on the log, the SRX did twice of doing policy lookup. The detail are as follow. So the result, the SRX dropped the packet....
View ArticleIPsec ikev1 PSK Client
Hi all Maybe anybody have experience with other VPN Clients that supports IPsec/IKEv1 with PSK. At the moment I use the NCP Exclusive RemoteAccess Client with success, no issue there. Works very well....
View ArticleIPSEC IKEV2 Pico Cell Provisioning via DHCP
hi Experts,i find one SRX IPSEC VPN guide as below, it explains every clearly how to setup SRX for Pico Cell Provisioning....
View ArticleSRX Kernal issue
Hello everyone, So I have a SRX240 that was pulled from a production network. After holding down the reset config button to blow the configs away, I get the issue below regarding not being able to load...
View ArticleEnabling DHCP option 66
Hello, I am trying to add an option 66 to some current configuration, and I am gettin an error: "Incompatible with the dhcp server configured under 'system services dhcp'" The configuration I am trying...
View ArticleInterface Monitor - SRX HA Cluster
Hello Experts,I am looking for advice regarding setting up interface monitoring in a HA cluster with multiple sub-interfaces.reth1 up up reth1.1 up up inet 10.10.11.1/24 reth1.2 up up inet...
View ArticleCLI Configuration help Srx300 Srx220
hi all i had submitted a a help document but could not find it again so i started another what im trying to do i create ports for different items i have scanned off a diagram of what im attempting to...
View Articlesource NAT
Hi everyone, It is possible to nat one source private IP address to many source public IP address? I have proxy server with private IP and I would like to nat this IP to many (pool) public IP. Is it...
View ArticleClik here to view.
Upgrading SRX question
Hi everyone.Let say we have a JUNOS install file in VAR/TMP folder . When we use the command request system software add var/tmp/ FILE NAME, are we loading the file into " Pacakages" folder on...
View ArticleClik here to view.
TLS on https didn't reply the hello from server.
I have a problem regarding to the connection for transit the https traffic. We've attempt do dump using PCAP by setting up the datapath-debug. The following are the result of PCAP.TCP dump, failed...
View ArticleHow to migrate the configuration from global to logical system
Recently we purchased logical system license and installed in our SRX5400. Is there any way to easily migrate the existing configuration of SRX (without logical system) into the logical system on the...
View ArticleProxy ARP and DNAT is successful but cannot ping or access from Local Network
Dear All,I got error and please help me to fix it.I configure proxy arp and DNAT in my network.It is working.I can access my some servers form outside network by using public ip .But i cannot access...
View Article