Clik here to view.
Re: SSL Forward Proxy Certificate
Welcome the the wonderful world of x509. I ran into the same issue when trying to use a cert signed by a internal root CA. You need to check the following fields on the cert.X509v3 Basic Constraints:...
View ArticleRe: SRX 240 Cluster over EX switches, ethernet switching not working.
March, Please note that in order to use the SWFab link, the nodes have to be connected back to back (directly connected): https://kb.juniper.net/KB21422 Hope this helps.
View ArticleCPU less FPC
Hi allThe following output is not usual that all time we are seeing -CPU less FPC as there was no high utilization on RE and device -SRX is functional. What is the reason JUNOS is not showing the...
View ArticleRe: CPU less FPC
Hello Ar, The FPC here is an interface card and hence does not have any CPU. The output of the command "show chassis fpc" is designed to cover all sorts of FPCs including Services Processing Card (SPC)...
View ArticleRe: CPU less FPC
Hi Ar, The log you reported on your second issue is related to a protection mechanism configured on the SRX against Tear Drop attacks. Based on the log the malicious packet was dropped because the SRX...
View ArticleRe: NTP Polling Frequency
Hi,When you say the time is drifting, are you seeing a large time difference between the ntp server and the ntp client ? Why are you looking at modifying the polling time? Ntp will choose the polling...
View ArticleOPC Support on SRX
I need to allow OPC DA, OPC HDA, OPC A&E which is based on Windows DCOM, through SRX320 Junos firewalls.Is it fully supported on Juniper firewall? How can I define access rules?
View ArticleRe: OPC Support on SRX
Hi Avilt,DCOM uses MS-RPC and you can allow it by configuring your security-policies with one of the predefined MS-RPC applications like junos-ms-rpc-tcp or junos-ms-rpc-any. In order to permit MS-RPC...
View ArticleRe: CPU less FPC
Hi all,All your ideas are informative and workable particularly Stwardlp's point. Thanks again.Ar
View ArticleRe: OPC Support on SRX
Thank you.There is no information on OPC Data Access, OPC Histoical Data Access, OPC Alarm&Events, these protocols are used in industrial environment for data exchange. Maybe I need to allow the...
View ArticleSRX300 No bootable media found. Entering loader prompt.
I encountered OS corruption issue, so I tried to boot from USB drive. Then I met the following error loader> install file:///junos-srxsme-15.1X49-D180.2-domestic.tgzTarget device selected for...
View ArticleRe: SRX300 No bootable media found. Entering loader prompt.
Can you try u-boot upgrade as in https://kb.juniper.net/InfoCenter/index?page=content&id=KB14175&actp=METADATA
View ArticleRe: SRX300 No bootable media found. Entering loader prompt.
Thank you for your suggestion, but may I ask how can I get the files for u-boot (u-boot-crc.bin) and loader (loader_crc) ready? thanks!
View ArticleRe: SRX300 No bootable media found. Entering loader prompt.
http://kb.juniper.net/KB30427
View ArticleRe: SRX300 No bootable media found. Entering loader prompt.
File sturcture for 15.1X49-D180 is quite different from the one in your link. No much file do depress and those there are no loader and uboot files mentioned
View ArticleSIP voice service from l2 vlan to internet through SRX345
Hi to all, I have a customer who has an SRX345 as a gateway. In its ge-0/0/1 interface has two vlan, the default vlan untagged and the voice vlan tagged. In the voice VLAN, the SRX acts as dhcp server...
View ArticleRe: OPC Support on SRX
avilt, As you already stated, those standards use DCOM to transport data and this can also be confirmed in the following link: "Similar to the OPC Data Access specification, OPC Historical Data...
View ArticleVPN Issue: KMD_VPN_TS_MISMATCH: Traffic-selector mismatch
We have a IPsec site-to-site VPN from a SRX300 to SRX340. The VPN connection is working but after x hours (24 to 48 , a week sometimes) the VPN got dropped and the only way to get it back up is...
View ArticleSRX 300 Cluster load balancing not working properly
Hi,I've set up an SRX300 Cluster for a customer. I've got one cable from each member running to the customer switch in a reth interface, and have two 100Mbps WAN links, one on ge-0/0/3 and one on...
View Article
