Re: vpn connection behind a nat device
Encrypted bytes: 104520Decrypted bytes: 0Encrypted packets: 871Decrypted packets: 0 This does look like you are sending traffic but not receiving any from the remote side to me. Can they check their...
View ArticleClik here to view.
Re: IPSEC VPN between private WAN IP and Public WAN IP
Hello, I am sorry but when you say no public IP from ISP and only private IP on the HQ side then how are the users on your HQ side able to go on the internet. Is there a NAT happening on the ISP side...
View Article[HELP] cannot download offline update signature for IDP (srx3600)
Hello, I want to offline install signature update for IDP on SRX3600 (junos 12.1X44). I follow this guide :...
View ArticleRe: Configuring SRX for home use
You only need vlans when you want to have multiple interfaces in the same broadcast domain on the SRX itself. So typically the untrust interfaces will by a single interface in layer 3 and won't need a...
View ArticleRe: IPSEC VPN between private WAN IP and Public WAN IP
Sam, Your case will us NAT traversal, which is the first example posted by PulkitB above....
View ArticleRe: Can SRX series work with Shrew Soft VPN client?
Great job, Jeffrey89! I managed to use Shrew VPN on SRX345 after changing Phase1 life-time to 180 sec. Before that changes Shrew was auto-disconnecting every1-2 minutes. Best regards,Mike
View ArticleRe: vSRX 15.1 D50 cannot add ge- interfaces
Hi, I have same issue and fpc0 reports "CPU less FPC":root# run show version Model: vSRX Junos: 15.1X49-D40.6 JUNOS Software Release [15.1X49-D40.6] [edit] root# run show chassis fpc 0 Temp CPU...
View ArticleIPSec Tunnel on linux
Hi all So I have an SRX3400, and the other site (another comany) has a linux box (don't know version/release) that we are trying to setup IPSec tunnel with. Now I have no control over the other site,...
View ArticleRe: IPSec Tunnel on linux
I assume they are just running a firewall on a Linux computer? If so, you can just follow the standard IPSEC VPN setup instructions to create a site-to-site tunnel between the Linux firewall and the...
View ArticlePort Forwarding for a single source address
Hello everybody.There was a problem setting up port forwarding:When I configure destination NAT - one port of the untrusted zone is redirected to a computer on the LAN.However, when I specify the...
View ArticleHow do i setup virtual IP (VIP) on SRX240 device?
I am trying to setup some high availability and need to setup virtual IP or VIP Basically something like floating IP so i can setup this setup in this tutorial...
View ArticleRe: Port Forwarding for a single source address
Hi, The destination NAT should work only for the source IP address tou have mentioned in the NAT statement.Do you have a security policy allowing all IP addresses to that internal IP ?Please configure...
View ArticleRe: How do i setup virtual IP (VIP) on SRX240 device?
Hi, You can use destination nat to acheive this :-http://www.juniper.net/techpubs/en_US/junos12.1/topics/example/nat-security-destination-address-port-translation-configuring.html You can also use a...
View ArticleRe: How do i setup virtual IP (VIP) on SRX240 device?
Hi, I didn't quite understand the scenario. Do you required a NAT IP for a VIP running between 2 load balancers or a VIP to be running between 2 SRXs?The most common and open standard protocol for...
View ArticleRe: How do i setup virtual IP (VIP) on SRX240 device?
I am not sure what exactly the links are doing, i see the first link makes me route to different ports, but i want to route to same port on different IP its like this image here...
View ArticleRe: How do i setup virtual IP (VIP) on SRX240 device?
My virtual IP will like floating IP in this diagram https://assets.digitalocean.com/articles/high_availability/ha-diagram-animated.gif
View ArticleRe: How do i setup virtual IP (VIP) on SRX240 device?
Hi, You would need a reth interface and configure the SRX nodes in a chassis cluster. Else, VRRP could be used :-https://kb.juniper.net/InfoCenter/index?page=content&id=KB24681&actp=search...
View ArticleFilter ICMP Packets
Hello Guys, Someone help? I have one filter in SRX240 allowing just some public IP address able to ping my untrust zone (my public IP address).This is working fine. When I applied this filter, the ping...
View ArticleRe: How do i setup virtual IP (VIP) on SRX240 device?
I am not trying to do HA on SRX device, i want to setup floating IP so i can loadbalance 2 loadbalancer virtual machine in my infrastructure. I only have 1 Juniper SRX router and i believe i should be...
View ArticleRe: Filter ICMP Packets
Hi, The term 4 seems to be blocking the pings. Please deacvtivate the term 4 and then test again, it should work. Regards,Sahil Sharma---------------------------------------------------Please mark my...
View Article