Re: SRX5600 dual manment modules
amr, Please keep in mind that even if you have dual RE in one node, only one RE (slot 0) will be working; the second RE is only for activating the second control-link. If currently you dont have a...
View ArticleRe: DUP in icmp
Hi Arix,Is it possible for you to do a packet capture on the wire on the SRX or on the transit node to see who is generating the duplicate packet?“Monitor traffic interface “ on the srx would only show...
View ArticleRe: About appliaction-name?
sanvinh, The application-name is just the name you will give to a specific application. When you are configuring a security-policy you will make reference to that application by its name and you could...
View ArticleRe: About appliaction-name?
Hi Folks,You can refer the below tech-pubs documentation, https://www.juniper.net/documentation/en_US/junos/topics/topic-map/policy-application-sets-configuration.html
View ArticleRe: DUP in icmp
Hi Folks,Based on the captures attached I do find the source and destination are part of different network, so the traffic is routed. You need to identify the network in which the loop is seen and...
View ArticleRe: Fail - IP-MONITORING DUAL ISP
What will be the deafult route to be programmed in your case in the event of ISP-2 down?
View ArticleRe: Junos upgrade fails on SRX340 cluster (from 15.1X49-D170.4 to 17.3R1.10)
What was the configuration which failed during validation?
View ArticleRe: About appliaction-name?
how can i give name to an application (not available predefined app) ?
View ArticleRe: About appliaction-name?
Sanvinh, You create custom applications unders [edit applications] hierarchy. See an example below: set applications application NAME protocol tcp set applications application NAME destination-port...
View ArticleJuniper SRX240 not sending Jflow data to the Scrutinizer
Hello community, We are facing an issue with JFlow not sending data to scrutinizer. The jFlow collector (10.101.20.151) is not receiving any flow, despite it’s in the same subnet as the fw sending if,...
View ArticleSRX: no internet access inside zones
Hello everyone, I have a problem that within the zone there is no internet access.I am troubleshooting but I cannot get further. I also cannot see what I am doing wrong in my config.Can you help me...
View ArticleRe: Dynamic VPN Configuration (SRX 340)
Good morning, I'll start by saying....I'm an idiot. Thank you lpaniagua for the following statement: Chances are that packets from your PC are not reaching the SRX or that a device in between is...
View ArticleRe: Fail - IP-MONITORING DUAL ISP
Hi Leetrix I don't have your exact requirement detail but i understand what you are trying to do. You can achieve this by configuring RPM probe to detect the reachability and then using that in...
View Articleload average
Hi allconfused a little bit....The following output shows that 124 % or 1.24 % for last 1 minute? Load averages: 1 minute 5 minute 15 minute 1.24 1.29...
View ArticleRe: Juniper SRX240 not sending Jflow data to the Scrutinizer
Hello,I see You have enabled sampling on RETH0 and this means You have a cluster.In SRX products, "inline-flow" is supported only with v9 and v9 is not supported in cluster.Please see this KB...
View ArticleRe: SRX: no internet access inside zones
Suli, Lets start troubleshooting from ot-application to Internet first; I checked the config of the SRX and confirmed the following: Topology "OT-application vlan 30" "untrust" ---------(reth1.30:...
View ArticleRe: load average
Hi Arix,Based on the below KB, it should be 124 percentage. Please take a look at the kb articlehttps://kb.juniper.net/InfoCenter/index?page=content&id=KB13266&act=loginRegards,Jibu
View ArticleRe: load average
Arix, Load averages are not a good/simple reference when checking at the CPU utilization of the SRX, you could get easily confused and the processor(s) of the SRXs have more than 1 core. See the...
View Articlecisco switch connect to SRX 650
Hi everyone .I have two vlan (10,20) in cisco 2960 switch and connected one port from cisco switch to SRX 650. I configured cisco port switch as trunk . my question is how can i make inter vlan...
View Article