Re: Virtual Routers on Cluster Chasis
Virtual Routers on chassis cluster operates the same way in non-cluster devices.
View ArticleUTM policy is not showing in j-Web management
When we are logging in j-Web management, then j-Web management. Is not showing utm policy option in security between user firewall and idp.
View ArticleSRX 100 cli dead - /bin/csh: Input/output error
Hi folks, I have a strange issue on one of my SRX100 Devices:Whenever I try to login with the root-user I get: /bin/csh: Input/output error ***Session End***I can login with any user but as soon as I...
View ArticleRe: SRX 100 cli dead - /bin/csh: Input/output error
1. Plug a USB drive into a known healthy SRX which is of the same model and configuration as the faulty device. Run the following command:>request system snapshot media usb 1. When the snapshot is...
View ArticleRe: VPN client unable to access 2nd site when connected to first site
Your remote access vpn puts you computer into the address pool 10.10.10.0/24. Your VPN from that site only includes the CompanyLAN 10.10.9.0/24 as a local subnet to use the tunnel. Add a second policy...
View ArticleRe: UTM policy is not showing in j-Web management
What Junos version is running on the device? Also confirm the issue with multiple browsers so it is not a compatibility issue. You could try a reinstall of the package.
View ArticleEthernet switching trunk SRX cluster
Hi all, We're running a cluster of SRX-240's and are in the process of migrating our core routers to Extreme Networks.One of the goals is to run a multi-VLAN trunk between the SRX-s and Extreme router...
View ArticleRe: UTM policy is not showing in j-Web management
I have tried multiple point.1. Multiple browsers.2. Restart utm and Web-management services 3. Kill services4. Clear user sessions
View ArticleProblem- With Destination NAT
Hi, I had a static NAT working, where public IP : 1.1.1.102 was mapped to internal IP : 2.2.2.126, our access from internet (untrust zone) was working for port 8080. So i had to create a destination...
View ArticleRe: Problem- With Destination NAT
Hello,I think You are missing "port" in the NAT pool, hence only 1 dst NAT rule works - the one which is found first in the config.Please add the following: set security nat destination pool mail1...
View ArticleClik here to view.
Re: Problem- With Destination NAT
Dont work I rollback the config. another detail, now the follow nat is intermitent : IP : 2.2.2.4, using IP from my interface (1.1.1.98) If i try "telnet 1.1.1.98 25" dont work, but if i try do from...
View ArticleRe: Problem- With Destination NAT
Can you make sure the security policies have correct Destination Address (I don’t see what Ip is specified under Server-mail1/2).Also, can you initiate a Telnet to 1.1.1.102 port 25 and check the flow...
View ArticleRe: Ethernet switching trunk SRX cluster
I haven’t tested this but as per KB21422 The Ethernet-switching subsystem runs only in the primary node, so not sure how you see switching on both...
View ArticleUnable to access Secondary Firewall after Cluster Failover kicks it
Hi, I recently setup Chassis Cluster Transparent mode on SRX220H2 firewall x2. I have no issue accessing the primary firewall. However I have issue accessing to secondary firewall. I have already setup...
View ArticleClustering Between two Different SRX Firewalls
Hi, I am bit confused. Can i use two different SRX firewalls for clustering? i mean SRX240 & SRX650 to make a cluster? Kindly share any link. Thanks
View ArticleRe: Clustering Between two Different SRX Firewalls
Hi, It is not possible to use two different SRX models in a cluster:"The hardware on both the devices should be identical. Also, the placement of cards should be...
View ArticleRe: Unable to access Secondary Firewall after Cluster Failover kicks it
Hi, Are you using inband management for the irb interfaces. Please check:"Which port are you using to manage the device?Cluster Management port (FXP0) - Continue to Step 3One of the revenue...
View ArticleRe: Ethernet switching trunk SRX cluster
Hi Suraj, the subsystem runs indeed on (usually) the primary node. But traffic is switched between the nodes. It runs through the switching fabric link. I've confirmed that both ge-0/0/4 and ge-5/0/4...
View ArticleClik here to view.
Re: SRX 100 cli dead - /bin/csh: Input/output error
Hi Suraj, after a second reboot, the SRX seems to be fully dead - only the loader comes up "0 storage devices found", can't find / load kernel and so on... I tried the USB-Boot - no luck - it does not...
View ArticleRe: Ethernet switching trunk SRX cluster
Hi, This seems to be a supported config as the control plane [Ethernet-switching subsystem] resides on the primary node but ethernet-switching [forwarding plane] can be active on both nodes:"This...
View Article