Re: DHCP Server SRX345
Do you have the system services section setup as well as outlined here? https://www.juniper.net/documentation/en_US/junos/topics/example/security-device-dhcp-server-configuring.html
View ArticleRe: Logs for shutdown or reboot
shutdown or reboot will clear and restart all local logging so you will need to get these from a syslog centralized system if you want to save them for reference.
View ArticleRe: failover or bgp vpn between SRX (Site A) to SRX & SSG5 (at same site with...
You can do this by creating route based vpn for both connections. Setup ospf route exchange across the tunnel interfaces. Use cost metrics to set the preferred tunnel. When the preferred tunnel is...
View ArticleRe: IKEv1 : Error: TImeout
Could you walk through the steps outlined in this kb to troubleshoot ike not coming up. then post the results of the failed step. https://kb.juniper.net/InfoCenter/index?page=content&id=KB10101
View ArticleRe: IKE negotiation successful by not IKE SA nor phase 2 negotiation
Can you run these ike tests and see which step the failure to create the ike association is at. https://kb.juniper.net/InfoCenter/index?page=content&id=KB10101
View ArticleRe: Troubleshooting Network Spikes from the SRX
show security flow sessions will give you the active sessions if you can get on during the event. These include data on the packet flow for the sessions. you can also restrict this using source-prefix...
View ArticleRe: Configuring srx300 to act as internal network switch with security zones
wrote:Ok i think this will work but i am having trouble with the cli need to disable the auto complete i can only get so far and then when i hit space-bar the line moves down and will not let me put...
View ArticleRe: Need advice about VPN connections
your remote access vpn into the office needs to also connect whatever subnets you are using the the GCP vpn so that the remote workstation has a route to the resources. you will then also need to nat...
View ArticleRe: Troubleshooting Network Spikes from the SRX
Except the on box "show security flow session" that Steve mentioned - you might use NetFlow for this.Seting up a simple netflow analyzer is not a very difficult task. The setup consist of SRX...
View ArticleIKEv2 Traffic Slector in 17.X
Good day, We are currently running multiple vSRX's (15.1X49D120) in Azure with IKEv2 VPNS's and Traffic Selectors. We are starting a change to upgrade these to 17.X, but I can't find out which version...
View ArticleRe: Dynamic VPN landing page on public IP.
HiAs stated - we are using Dynamic VPN so I assume we can't just remove the interface? Kind Regards Huw
View ArticleRe: Dynamic VPN landing page on public IP.
Sorry I missed that. Do you control a domain that you can create a dns record for the SRX?Then you can apply for the 3rd party cert for the connection.
View ArticleRe: Logs for shutdown or reboot
Thanks dear for your valuable reply. But i am getting logs of previous dates too locally saved. Now i have created saperate files for USER traffic logs and also Turned-OFF NTP. USER, and...
View ArticleRe: Dynamic VPN landing page on public IP.
Hi Thanks for your reply. Would adding it as a DNS entry work? The PCI Scan is directly scanning the IP address so even if we obtained a certificate for it using a domain name (eg firewall.domain.com)...
View Articlebgp vpn between SRX or ospf vpn
We have site-site to vpn between Site A & Site B , (Site A SRX 210 , Site B SSG5 ) till now everything is perfect but now we added new SRX210 at Site B with another ISP. So now SRX210 at Site A...
View ArticleClik here to view.
Re: SRX110H2-VA VDSL PIC Firmware
Hi Steve, Many thanks for your timely response The link you posted only lists software updates, not firmware updates. For example:'jfirmware-srxsme-12.3X48-D65.1.tgz' is the firmware file needed to...
View ArticleRe: SRX 1500 - HA Control Port
So, there is no way to achieve a redundant control port in SRX1500?
View ArticleRe: SRX220, SRX-MP-1VDSL2-A and VDSL Vectoring
Hi Karan, just wanted to give an update.After I updated with jfirmware-srxsme-12.3X48-D65.1.tgz my firmware revision went upto 2.19, and is currently working perfectly. :-) Thanks!
View ArticleRe: SRX 1500 - HA Control Port
Correct, you can only get a single control link connection on the SRX1500 platform.
View ArticleRe: Window Time Sync Error under SRX firewall
When i update my time from host i saw below error.
View Article