Re: cisco asa to juniper srx vpn site to site not working !!!!
it wont commit because it was policy based VPN not route based vpn
View ArticleConfiguring maximum bandwidth shared between two logical interfaces for cos
We are trying to setup some COS policies with percentages of the total bandwidth assigned to interfaces.Some interfaces connect to the same internet connection and should share the same configured...
View ArticleRe: SRX and ESX Configuration Assistance For Newbie
Thank you again for the assistance, I have reviewed the instructions and drawn pictures and come up with mock commands for my setup. The only questions I have before I dig in are: Do you know of a way...
View ArticleSRX5800 LSYS suddenly ignore the security policy?
Hi all, Is there any one here exprience the LSYS in SRX5800 suddenly ignore the security policy that we area created? For example i'm create the new security policy and after i do command show security...
View ArticleHow to change ssh default port for extra security in srx1500
Hi all, i want to change ssh port to 2222 for extra security in srx 1500 , how to change it any configuration pls...
View ArticleRe: Unable to SSH/HTTPS Secondary node on SRX 5800 Cluster
Hi,Below is modified config , but no success.. set version 15.1X49-D60.7set groups node0 system host-name node0set groups node0 system backup-router 10.160.237.225set groups node0 system backup-router...
View ArticleRe: How to change ssh default port for extra security in srx1500
Unfortunately, changing the inbound ssh port in Junos is not an option. All you can do is use either security policies with the destination zone junos-host to restrict access to your mgmt subnets only...
View ArticleTraffic not passing/Session not showing on Primary SRX 3400
Hi All, We have two SRX Firewalls 3400 running in HA recently we are facing some issues in it. We have a switch that was accessible previously using 10.11.5.173 IP but now its not accessible.After...
View ArticleAgressive tunnels SRX300 15.1X49-D75.5 fail to work
We have around 80 odd sites with ipsec route based tunnels and some with agressive tunnels that have 4g or natted connection.We have just added a nex SRX320 into the mix and it wont get phase1 with an...
View ArticleRe: Agressive tunnels SRX300 15.1X49-D75.5 fail to work
I found the issue ended up been a simple typo
View ArticleRe: SRX and ESX Configuration Assistance For Newbie
Any way to do this without vmware? Just setting up specific ports on the ESX and SRX for management via J-Web without using the management port on ESX? Sorry, I don't have the infrastructure for the...
View ArticleRe: How to change ssh default port for extra security in srx1500
Asifkhan wrote:Hi all, i want to change ssh port to 2222 for extra security That will probably last for 15 mins or less and then it will be discovered by port scanners & mapped as open SSH port...
View ArticleRe: VPN Route issue with traffic selector
Thanks Suraj for the help. In my case. I have two traffic selector configured in one VPN tunnel and one traffic selector in another VPN. What i was thinking is to remove the traffic selector from both...
View ArticleMTU size different between physical and logical interface
Hi all I thought MTU is a physical property of the interface according to my JNCIA? So how come reth1 below has two different MTUs? Which one is the accurate one? Thanks {primary:node0} FW> show...
View ArticleRe: MTU size different between physical and logical interface
Hello,They are both accurate.This -{primary:node0} FW> show interfaces reth1 extensive Physical interface: reth1, Enabled, Physical link is Up Interface index: 129, SNMP ifIndex: 562, Generation:...
View ArticleHow to get "Session Creation Per Second"
We have been trying to collect how many sessions are created per second by using this command but every time filed.show security monitoring fpc 0 |no-more every time this answer is "0"Dose this comand...
View ArticleRe: How to get "Session Creation Per Second"
It works on my machine. You can use "security monitoring performance session" to check if there are active sessions . Also I would recommend you upgrading to any latest versions ASAP as 11.4 is very...
View ArticleRe: How to get "Session Creation Per Second"
It works on my machine. You can use "security monitoring performance session" to check if there are active sessions . Also I would recommend you upgrading to any latest versions ASAP as 11.4 is very...
View ArticleRe: MTU size different between physical and logical interface
Logical Interface MTU = Physical Interface MTU - L2 OverheadReth1.44 MTU =reth1 MTU - L2 overhead9188 = 9170-18so what you see is...
View ArticleRe: MTU size different between physical and logical interface
Logical Interface MTU = Physical Interface MTU - L2 OverheadReth1.44 MTU =reth1 MTU - L2 overhead9188 = 9170-18so what you see is...
View Article
