GRE with key
I've found only a few obscure posts dating a few years back but apparently there's no conclusion. Is gre key supported in JunOS?I am migrating an old ISG2000 with lots of gre keyed tunnels. Any clue?...
View ArticleRe: GRE with key
GRE with key is not supported on SRX. [edit]root@SRX# set interfaces gr-0/0/0 unit 0 tunnel ? ---> Below given are supported optionsPossible completions: allow-fragmentation Do not set DF bit on...
View ArticleRe: SRX550 Firewill Filter Deletion/Timeout Issue via jWeb
As soon as you commit the changes from J-web, can you collect below output from SRX CLI- this is to confirm if the commit is successfull. As steve mentioned you cannot delete filrewall filters if its...
View ArticleRe: integration juniper with cisco
are you using DHCP ? This is a know issues with old DHCP configuration due to the unicast flags on DHCP discover messages from Apple devices and the same has been fixed on JDHCP design. Request you to...
View ArticleRe: Dynamic VPN - Users Change Own Password
User configuration using J-web is explained on Page 12 - https://kb.juniper.net/library/CUSTOMERSERVICE/GLOBAL_JTAC/technotes/dynamic-vpn-appnote-junos10.4-v21.pdf let me know if this helps you.
View ArticleRe: SRX240H Slow throughput but can not see why
Use " show security monitoring performance spu " and see if the dataplane CPU is going high. You have also mentioned that you have active/active setup, can you check the performance with Active/Backup...
View ArticleRe: Dynamic VPN - Users Change Own Password
Thank you for the reply, but this looks to be while setting users up. Users are already set up and I want to provide them a way to change their password, even if it's with my laptop while logged in.
View ArticleRe: SRX550 Firewill Filter Deletion/Timeout Issue via jWeb
So this is a brand new setup, and we haven't configured any of the actual interfaces yet, besides the IP address to be able to access the jWeb GUI. So I find it hard to believe that it could be...
View ArticleRe: Traffic hair-pinning with static NAT
Since I have static NAT mapping for every host, I simply allowed intra-zone traffic in security policy and hairpining just worked!
View ArticleRG0 was already failed over to node 0 after reset PEM from Node 1 for the...
Hi All, I have the case about PEM module failed. In the troubleshooting, I do a manual failover to node 1 for RG1. RG0 was already failed over to node 1. I do reset PEM 1 from node 1 and the alarm was...
View ArticleRe: RG0 was already failed over to node 0 after reset PEM from Node 1 for the...
Hi Andriy17, What is the state of Node0 in show chassis cluster status Regards,Anand
View ArticleRe: SRX550 Firewill Filter Deletion/Timeout Issue via jWeb
Hi Colorado, Do you wish to remove all the firewall filters or just the one you have attached earlier? can you share the output of #show interfaces | match filter | display set#show firewall |...
View ArticleSRX300 - port mirror
Followed instructions found here: https://kb.juniper.net/InfoCenter/index?page=content&id=KB21833&smlogin=true&actp=search Can't seem to get traffic to show up when I do a port mirror. I'm...
View ArticleRe: SRX300 - port mirror
In addition, if I try to monitor traffic interface ge-0/0/0 I see zero packets.
View ArticleRe: RG0 was already failed over to node 0 after reset PEM from Node 1 for the...
Hi Anand, The state cluster on below : Cluster ID: 1Node Priority Status Preempt Manual Monitor-failuresRedundancy group: 0 , Failover count: 4node0 129 secondary no yes None node1 255 primary no yes...
View ArticleSRX SIP packets doesnt flow, instead ICMP
Hi. network sheme is very simple:LAN----ge0/0/0.15<SRX>vlan.100----ISP----10.3.7.81(ISP have host with address from private netw)So. My aster have address 192.168.77.122 and outgoing SIP session...
View Articlecustom objects to block bad sites and good sites to allow in srx210 firewall
hi i have srx210 firewall. i have configured two categories bad-sites and good-sites.i want to block bad-sites url and allow good-sites.but the problem is that both are being allowed on my firewall.my...
View ArticleRe: SRX550 Firewill Filter Deletion/Timeout Issue via jWeb
I think you will need to try the delete on the CLI and then do a commit check so the error can be seen.
View ArticleRe: SRX300 - port mirror
I suspect this is platform related, the SRX300 series is NOT listed on any port mirroring kb that I can find. You can submit a kb article feedback on the right side of that page. The document owner...
View Article