Re: SIP Issues with SRX 240
DATA_LAN -- 10.1.0.0/24 --- Asterisk server is in this VlanVOIP_LAN --- 10.3.0.0/24 set security policies from-zone DATA_NW to-zone untrust policy DATA-to-Inet match source-address DATA_LANset...
View ArticlePort Forwarding Using J-Web?
There is plently of documentation regarding this subject using the CLI, however, I have been unable to locate any on Port Forwarding Using Only the J-Web interface. Could someone point me in the right...
View ArticleRe: Port Forwarding Using J-Web?
Hi dudleyfire, Port forwarding in Juniper SRX is destination NAT, there is this Juniper Day One Series book you'll probably enjoy called "Day One: Configruing SRX Series with J-Web" :...
View ArticleRe: Unable to HTTPS to the webgui thru a VPN st0
Hi, Sorry for missleading, this line should not be deleted since it not restrecting related line .set system services web-management https system-generated-certificateOnly do not restrict http\s...
View ArticleRe: SRX- 650 || Policy Based VPN || Communication Issue
Hi ajay_kumar, What do you mean by : "The VPN Tunnel is UP and LAN to LAN comminication is working without any problem. However I'm unable to access / ping any devices in 192.168.5.0/24 from SRX Box."...
View ArticleRe: SRX- 650 || Policy Based VPN || Communication Issue
Hi Hisham Sorry for the confusion and what you have mentiond is correct. I can ping from any PC in 192.168.41.0/24 to any machine in 192.168.5.0/24 and vice versa, however I'm not able to do so from...
View ArticleSRX100 and BT ADSL UK - intermittent Internet connectivity
I am in the process of configuring SRX100 for one of my clients and I am experiencing intermittent Internet connectivity issue. Here is my setup so far: BT ADSL line:BT Home Hub 3 – Hub is configured...
View ArticleConfiguring Serial Interface on Quad T1/E1 GPIM on SRX550
Hi Guys, I need help to convert the following cisco config to Juniper using the Quad T1/E1 GPIM on SRX550. ---- controller E1 1/0 framing NO-CRC4 channel-group 1 timeslots 1-16 channel-group 2...
View ArticleSRX240H High Dataplane CPU Load (99%) low throughput
Hi all, since a few days i´m searching for the reason why the throughput of an SRX240H Cluster is so slow.additional i debugged and reviewed the whole configuration if there are any problems visible....
View ArticleRe: SRX- 650 || Policy Based VPN || Communication Issue
Hi ajay_kumar, Can you enable packet tracing : set security flow traceoptions file DebugTrafficset security flow traceoptions flag basic-datapathset security flow traceoptions packet-filter...
View ArticleSSL Proxy Not Giving Server certification validation error
Hi, I just configured the SSL proxy and applied to the right security policy.I have followed this link to configure SSL proxy...
View ArticleRe: SSL Proxy Not Giving Server certification validation error
"Hello, MYN wrote: Hi, I just configured the SSL proxy<skip> In my case, users are not getting any Server certification validation error <skip> This is my configuration excerpt: [edit...
View ArticleRe: SSL Proxy Not Giving Server certification validation error
Hi, Thanks for your reply.As per your advise I have removed the ignore-server-auth-failure but still no error on the browser. root@srx-240-h# show enable-flow-tracing;preferred-ciphers...
View ArticleRe: InterVlan Problem
Could anybody help me please??? I must to find one urgent solution Thanks.
View Articlecryptographic algorithm SSH Juniper SRX3400
Hello, my customer have question for SSH in Juniper SRX3400. "Guidance for cryptographic algorithm and key lengths when performing remote management of network devices s, (e.g., transition to 2048-bit...
View ArticleRe: cryptographic algorithm SSH Juniper SRX3400
Hi Abdul Rochim, You can find some notes here and you can configure the 2048 DH modulus for ssh key agreement (dh-group14-sha1) using the following command : #set system services ssh key-exchange...
View ArticleRe: InterVlan Problem
Hi, I have attached one schematic of my topology. Thanks. Regards.
View ArticleRe: InterVlan Problem
Try making an intrazone policy from security to security and see if ping works.
View ArticleVPN IPSec client for JUNOS 12.1X47-D30.4
Hi there, Does anybody know the working Juniper/PULSE IPSec VPN client (Win/OSX) version ?Which exact build works? THA Rr
View ArticleSRX policy applications
Hi, probably dumb question but here goes, in a security policy when we match application "any" does that mean all the predefined applications that are included in the SRX? Thanks.
View Article