WIRED: different logs from diff SRX with the same config and Junos version...
WIRED: different logs from diff SRX with the same config and Junos version...Hi There,I got wired behavior on two SRX100’es with syslog configured in the same way, running JUNOS 12.1X47-D30.4 built...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
Dear rav.kaminski, What do you think is good about the "good" one and bad about the "bad" one ? They look like normal SNMP sessions though to different SNMP Servers. Neither apply to your configuration...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
By Bad and Good behavior I mean that the logs are recognizable to the filtering software -and they don’t…And for first of all: why there are different at all ??? -I should have receive exactly THE SAME...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
"By Bad and Good behavior I mean that the logs are recognizable to the filtering software -and they don’t…" Do you mean your Syslog server doesn't show logs at all from the second firewall ? "I should...
View ArticleSRX Support for DHCP with special routing instances?
Can anyone tell me if any version of JunOS (12.1X47 up) provides support for configuring DHCP WITH a special routing instance? Or do we need to remove special routing instances and configure everything...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
Hisham, parsing engine simply cannot translate and atomize messages for further analysis from "bad" SRX sure please find the output belowAnd well -they are different :good :#run show services...
View ArticleClik here to view.
Re: WIRED: different logs from diff SRX with the same config and Junos...
"but c'mon -I don't want to rewrite ALL filters every time I update software on SRX -this is sick..." I still don't know for sure that the problem is from the difference in the definitions I just want...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
and ""logs"" found on syslog server from 3rd SRX -again: the same config, Junos, hardware [SRX100H2] Jan 21 19:50:22 fw3 eswd[1599] Bridge Address: add ffffffdc:38:ffffffe1:75:4d:08Jan 21 19:50:22 fw3...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
Make sure you have logging enabled on the security policy you want to monitor and that there is/was traffic actually passing through that policy. An example of enabling logging ( since you have app...
View ArticleRe: SRX Support for DHCP with special routing instances?
Are you looking to configure the SRX as a DHCP server OR client OR relay? Here are a few KB articles that might be of use to you: Configuring SRX with a DHCP server in multiple routing instances:...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
I've got :set security policies from-zone trust to-zone untrust policy trust-to-untrust then log session-initset security policies from-zone trust to-zone untrust policy trust-to-untrust then log...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
Yup, that is it ( sequence is not an issue ) as long as you don't have any other security policies and the syslog configuration is the same it is correct ( all security policies have to have the "...
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
Hello,To me, it looks like the somene or something cut out the below small part from logs sent by bad" SRX : : APPTRACK_SESSION_CREATE: Are You sure Your syslog server' regex is not doing this? Please...
View ArticleHA Cluster Loopback Interface during failover
I have two SRX3600 connected as A-P HA cluster, and there is a loopback interface used for VPN termination and assigned to redundancy-group-1.Its working in the primary firewall, but when I failover to...
View ArticleRe: HA Cluster Loopback Interface during failover
Hi Mahmoud, The loopback interface should not have any such issues.Just wanted to check if you have made it part of any particular RG group.If not it should work normally between the failovers.
View ArticleStrange IPsec behaviour between SRXs
Hello. I have really strange and confusing IPsec behaviour in very simple configuration. Here is the layout:Two identical SRX100H2 with the JunOS 12.1X46-D40.2 and BIOS 2.8 SRX-01 has the ISP IP =...
View ArticleRe: Strange IPsec behaviour between SRXs
Hi Den, It seems like the packet is not able to hit the policy correctly.Could you try a restart of the box or try deactivating > commit and then activating > commit for the policies in...
View ArticleRe: HA Cluster Loopback Interface during failover
Hi Mahmoud, What is theversion of Junos you are running on the device?
View ArticleRe: WIRED: different logs from diff SRX with the same config and Junos...
The "bad"Jan 25 13:29:36 fw_bad RT_FLOW AppTrack session created 192.168.1.31/58828->192.168.2.150/161 None SNMP-VERSION-2U UNKNOWN 192.168.1.31/58828->192.168.2.150/161 N/A N/A 17 vpn-2-trust...
View Article