Re: VPN tunnel between SRX100 and SRX220
Try configuring the local identity on both sides as below: set security ike gateway GW-NAME local-identity inet 192.168.1.1 --> The initial private IP you have used on external inetrafces if that...
View ArticleRe: SRX simulator in GNS3
Hi, vsrx 12.1x46d10 qemu can run on gns3 VM but only one interface is working other interface shows in the list but trffic not passing . any idea ..? ThanksMamdud
View ArticleRe: Connectivity Between 2 SRX
Hi Bharat, I am facing the same issue and above link not working can you please help me..? I am using vsrx12.1x46d10 qemu in gns3 VM . only ge-0/0 interface working but other interface not getting...
View ArticleRe: Connectivity Between 2 SRX
Hi , According to you link not find the page .. can you send it again ..? Thanks
View ArticleRe: Policy Based VPN - SRX210H to ASA5550
Hi AlexThe excerpt you picked out above is for the original vpn which establishes a tunnel successfully - it is my 2nd new vpn which is not referenced at all in the show commands.Configuration to follow:
View ArticleRe: Policy Based VPN - SRX210H to ASA5550
Juniper Configuration: I have included almost all the config with blotted ip's:version 11.2R2.4;system { host-name EMS-SRX210; time-zone Europe/London; root-authentication {...
View ArticleRe: Policy Based VPN - SRX210H to ASA5550
Juniper Configuration: I have included almost all the config with blotted ip's:version 11.2R2.4;system { host-name EMS-SRX210; time-zone Europe/London; root-authentication {...
View ArticleRe: Policy Based VPN - SRX210H to ASA5550
part 2 of juniper config: policies { from-zone iScsi to-zone expo { policy iScsi-replication { match { source-address any;...
View ArticleRe: Policy Based VPN - SRX210H to ASA5550
ASA Configuration shown below (i have edited out irrelavant config): ::ASA Version 8.2(4) !hostname schoenable password mrjjYdD8astWJ9lv encryptedpasswd 2KFQnbNIdI.2KYOU encryptednamesname 61.xx.xx.xx...
View ArticleRe: Policy Based VPN - SRX210H to ASA5550
below config is for a route based VPN and not policy based VPN. vpn HHCL { ike { gateway HHCL; proxy-identity { local 172.16.1.0/24;...
View Articlesnmp: CPU (Data) resource utilization
Hi, In the Web-interface of the Juniper Firewall SRX220H2, in the tab Dashboard, in the part "Resource Utilization", I see the "CPU (Data)".This "CPU (data)" is mostly +/ 8% but some time this "CPU...
View ArticleRe: Need help! VPN tunnel is up but st0.0 interface is up/down
Are you running VPN monitor options? This will bring down VPN interfaces when they fail the monitor test. If not, I think you best bet for a root cause here will be setting up trace options and...
View ArticleRe: VPN tunnel between SRX100 and SRX220
Once I change the external interface to Public IP, Tunnel does not come up. Do I need to have a router between with two WAN ports !!!If you are directly connecting the two WAN interfaces together then...
View ArticleRe: snmp: CPU (Data) resource utilization
I think this is what you will need https://kb.juniper.net/InfoCenter/index?page=content&id=KB23726 You may also find the MIB explorer helpful. Here you can search the MIB for items of interest....
View ArticleRe: Policy Based VPN - SRX210H to ASA5550
Hi Guys Thank you so much for your help but time was a factor here so i went with a route based site-to-site and it came straight up. Still i wouldnt mind a response as i this has really spiked my...
View ArticleRe: Need help! VPN tunnel is up but st0.0 interface is up/down
I cannot beleive it... I actually already tried that before posting on here and the interface still wouldn't come up..Tried again and voila.... its back up! It's so weird.. Is there an explaination...
View Article2 vlans, 2 dhcp server, cannot get them both to work at same time
I've been struggling with this for a bit now and really need to know where I have dropped the ball.show interfacesge-0/0/5 { unit 0 { family ethernet-switching; }}irb { unit 10 { description Internal;...
View ArticleRe: 2 vlans, 2 dhcp server, cannot get them both to work at same time
Hi Dale, Have you enabled the DHCP servoce for host inbound traffic on the zone?Based upon the outputs I am not able to see DHCP service enabled. You can enable DHCP service by the below command and...
View ArticleRe: 2 vlans, 2 dhcp server, cannot get them both to work at same time
root@HSRX300# run show system services dhcp statistics warning: dhcp subsystem not running - not needed by configuration.
View ArticleRe: 2 vlans, 2 dhcp server, cannot get them both to work at same time
I made a couple changes.[edit] root@HSRX300# show access address-assignment pool guest { family inet { network 10.10.20.0/24; range scope { low 10.10.20.30; high 10.10.20.99; } dhcp-attributes {...
View Article