Re: two next hops on Default Route
the simplest option is to delete it from cli as belowroot@SRX> configureroot@SRX# delete routing-options static route 0.0.0.0/0 next-hop 111.111.111.111 ---> which ever next hop you want to...
View ArticleSRX/F5 Position Global Data Center
We are looking for an SRX/F5 Network Engineer for an onsite position in Alpharetta GA. Must be either US Citizen or Perm Resident. Contact kmiller(at)corus360.com
View ArticleRe: 3G USB modem on SRX devices
Hello Ben,I have an SRX100 running 12.1X44 and a 320U Sierra 3G Modem however it is not being detected at the cl-0/0/8 interface. Will appreciate any info you can give me on this. Regards
View ArticleFailover to backup SRX in cluster. Reth interfaces in zones and Natting
Hello, I have 2 SRX5800 chassis in a HA cluster, active/passive. I am new to juniper equipment (NEVER WORKED WITH ANY TYPE OF FIREWALL) and I have to get solution together within a week. I have...
View ArticleRe: CPU spikes on data plane caused by security monitoring
that output, if i'm reading right, suggests a whole lot of packet fragmentation happening, which I believe has to be done by the CPU, rather than any hardare acceleration. Are you running a lot of VPN...
View Articleclient/dynamic vpn license for chassis cluster
Hi, we have a SRX240 chassis cluster firewall and we want to install license for client/dynamic vpn. if we install 5 client vpn license for both firewall, are we going to have 5 or 10 client vpn...
View ArticleRe: client/dynamic vpn license for chassis cluster
Hi Kimffrey, It would still mean 5 dynamic vpn licenses.
View ArticleRe: client/dynamic vpn license for chassis cluster
HI kimffrey, You are going to require 5 for each node in the chassis cluster and you'll have to associate each set of licenses with the serial number of one of the firewalls, so you would have to...
View ArticleSRX 650 - SSH issue
Hi all, We have a 2 Juniper SRX 650 HA Cluster mode with following details;roups { node0 { system { host-name SRX1; } interfaces { fxp0 { unit 0 { family inet { address 192.168.70.250/32; } } node1 {...
View ArticleClik here to view.
Re: SRX 650 - SSH issue
Hi !the SRX answer tells you that on the secondary node there is no routing active.In order to reach any remote network address with the SSH return packet you need to define a gateway address put under...
View ArticleClik here to view.
SRX240 cluster at 2 sites
Hi, I hope somebody can help me with this setup. We are trying to make a SRX240 cluster at two sites connected to each other with a fiber trunk (with all Vlan's at both sites). Site A and Site B are...
View ArticleRe: client/dynamic vpn license for chassis cluster
Talk to your Juniper reseller about the license. Juniper has a mechanism to reduce the price of the second license when used in a cluster like this. It does require that the devices remain a cluster...
View ArticleDHCP OPTION setting in SRX100
Right now, I have only one option for this device, but there is a primary and a secondary (active & Standby) option 43 10.10.9.98option 43 10.10.9.99 is it possible to do the above setting.?
View ArticleRe: JUNOS Default Application junos-ms-rpc-epm
Hello Suraj Thanks. Can you explain what is uuid e1af8308-5d1f-11c9-91a4-08002b14a0fa? there is no port 135
View ArticlePort Overloading factor with overflow
Hi Team, I have this specific requirement where I did configure 1 ip address in my source pool to PAT-NAT.I did configure port-overloading-factor = 4 configuration to have bigger port space for my...
View ArticleRe: Port Overloading factor with overflow
As per https://kb.juniper.net/InfoCenter/index?page=content&id=KB27810&actp=search there is no overflow mechanism.
View ArticleFilter Based Forwarding to Specific Outgoing Interface on SRX
Hi, On MX series we can achieve filter based forwarding by just defining the next-interface in the then stanza according to this link...
View Article