Re: Proxy-Arp only works if monitoring external interface
Hi That behavior changed somewhere between Junos versions.Both should be OK as far as I know.
View ArticleRe: Firewall address range address book objects appearing as address sets...
Hi I see your question is more Space-related so probably it should be moved to the Management forum.I can't test the behavior at the moment but is seems more or less natural for me.Maybe someone else...
View ArticleRe: VPN client unable to access 2nd site when connected to first site
Thanks for the clarification. From your description, this is the policy based VPN that will need to adjust along with the matching pair. policy vpnpolicy-trust-untrust-cfgr { match { source-address [...
View ArticleSRX345 AutoVPN Configuration HUB and Spoke
Hi Support, I need your help regarding autovpn configuration with hub and spoke.
View Articleroute internal subnet using non primary WAN IP address
Hi guys Im trying to send traffic from an internal subnet to use the non primary ip address (222.333.19.65) as the public ip show interfaces pp0 unit 0 ... family inet { address 222.111.19.62/32 {...
View ArticleRe: route internal subnet using non primary WAN IP address
Hi, Seems you are referring to source nat. You could configure a nat pool with that address. Example:set security nat source pool test address x.x.x.x/x set security nat source rule-set snat from zone...
View ArticleRe: SRX345 AutoVPN Configuration HUB and Spoke
Hi, did you check AutoVPN feature guide? You can find it here, examples are at chapter 3.Hope it helps!
View ArticleRe: UTM policy is not showing in j-Web management
What is the Junos version and device model number?
View ArticleRe: Proxy-Arp only works if monitoring external interface
Just to follow up on this. This is all working properly now, the culprit was a cached ARP table on a Comcast SMC modem. The only way to clear the cache is to power cycle the comcast modem, apparently.
View ArticleRe: Changing TCP MSS on SRX
This command is going to change the value Globally? Is there any way we can change it to the specific tunnel?
View ArticleCompatibility high availability with 2 different SRX models ?
Hi everyone , On my location I have SRX240H2 and I'm wonder if is possible to make a redundancy group failover on the same location with a SRX220H2 as I don't need a stronger router for my second ISP...
View ArticleRe: Compatibility high availability with 2 different SRX models ?
No, that is unsupported. You need to have identical hardware and software if you want to form a cluster. SRX240H2 needs to be paired with SRX240H2.
View Articleredundant connection between spokes and hub
Hi Experts, we just had configured hub and spoke AutoVPN with OSPF, see for example on this link...
View ArticleRe: Compatibility high availability with 2 different SRX models ?
Hi, Please go through the link which states that the same hardware has to be used for a chassis cluster...
View ArticleHE SRX vlan-tag port connected to QFX access port (same vlan with srx)
Good day Fellas, has anyone encountered this kind of setup? and make it work? by basic topology (1.1.1.10/24)...
View ArticleRe: HE SRX vlan-tag port connected to QFX access port (same vlan with srx)
Hi, Is the SRX ge-0/0/4 interface defined in a security zone with icmp allowed in the host-inbound-services ? Regards,Sahil Sharma---------------------------------------------------Please mark my...
View ArticleRe: VPN client unable to access 2nd site when connected to first site
I made the changes as you suggested but it did not resolve the problem. I see all the SAs up for each tunnel but it still isnt allowing me to ping or access the other site when i vpn into the first...
View Articlesrx 3400 policy with both ipv6 and ipv4 addresses?
Hi Would the following policy be a valid policy? Policy: pol_v4_v6, State: enabled, Index: 5359, Scope Policy: 0, Sequence number: 11 Source addresses: N_IPv4_network1, N_IPv6_network1 Destination...
View ArticleCoS Design Questions\Concerns
Hello Juniper experts, We are getting ready to implement a new provider based VPLS WAN solution. We are looking heavily at the new SRX300 series at our edge due to both price\performance and...
View Article