Transparent mode segmentation on SSG20 ?
Hi, I am new to Juniper, I have configured with a lot of 'pain' my SSG5 as testing FW.I have followed the procedure from internet and a book on how to deal with the 'transparent mode segmentation' but...
View ArticleWhat model of FW to choose ?
Hi, I am looking to buy a Juniper FW, I am looking for something equivalent to the SSG20 ... Any advise ? Thxps: where to find prices for licences ?
View ArticleRequest ScreenOS 6.3.0r3 for ISG1000
Hi. Currently, we have adquired a ISG1000 and it has the 5.3.0r3 version and need get the 6.3.0r3 version in order to form a cluster with other ISG1000. We have readed that is necesary to upgrade to...
View ArticleNS 5GT Bricked...Boot Loop
I have an old netscreen 5GT when i connect console i am getting the below message,Not able to factory reset alsonot able to run any command also.when i try to restore any firmware via tftptftp is...
View Article[SSG 520M] Issue with bootloader upgrade
Hi, I try to upgrade the bootloader because of the message:********Invalid DSA signature********Bogus image - not authenticated but when i finished to fill the different fields i optain this new...
View ArticleSSG140 cross-subnet problems
Greetings. I have a pair of SSG140 firewalls set up in NSRP (Yes, I know they're old). I have two subnets on the same virtual router and in the same zone (192.168.42.0/24 and 172.20.0.0/16) which are...
View ArticleLimit number of client vpn connection in policy base vpn?
I am using two Juniper FW model using SSG 140 and SSG5 set up as a site to site firewall connection. The VPN connection is a policy base. I want to limit the client connection to 1 client only to use...
View ArticleSite to SIte Policy Base VPN Tunnel limit to one tunnel session
A setup of both SSG140 (FW A) and SSG 5 (FW B) policy base VPN tunnel. Only one tunnel connection is allowed between FW A and FW B. By introducing another tunnel FW C which has the same configuration...
View ArticleUnable to reach to remote MPLS site via VPN
Hi, Basically I have a main site with a Juniper SSG20 (on v6.2). This has a client IPSec VPN and also has a connection to another site via an MPLS connection (the main WAN is on eth0/0 and the MPLS is...
View Articlegeneral question about destination nat on ScreenOS FW
hey i have the following scenario. I have a server in the dmz (no public IPs), which should be reachable externally via port 443 tcp and udp. can i just configure to seperate VIPs (one for tcp and one...
View ArticleJuniper SSG Route issue
Hi, I have a Juniper SSG140 as a internet Gateway device. today some PC can't open the website which dns is 114.114.114.114(public dns server) when i check the SSG140,I found a connect route with...
View ArticlePPPoA on SSG140
Hello,I would appreciate it if someone could assist me with this. I need to set up a PPPoA (not E) connection on an interface on a SSG140. The problem is, the drop down for which interface to bind to...
View ArticleBootloader 1.3.2 for SSG-5 boot loop. No have Initialization.
Hi! I have a problem with SSG5. It reboots in a circle. Reset button does not work.Message "Initialization - Done" not appears. Juniper Networks SSG5 Boot Loader Version 1.3.2 (Checksum:...
View ArticleSite to Site VPN Nat Source Traffic
I'm trying to setup a vpn from a 5GT running 5.x code to a Cisco ASA. The 5GT has an internal network of 10.1.1.0/24 and needs access to 2 subnets behind the ASA( 172.25.101.0/24 and 172.25.102.0/24)....
View Articlehow to filter debug ike all
Hi,Is there a way to filter debug ike all and have only the negotiation for VPN peer i need?I tried set sa-filter ip_address_of_VPN_peer but i still see the IP addresses of other VPN peers in the dbuf...
View ArticleSSG140 v6.3.0r14.0 packet drop due to application error
Dear gurus, I got a problem here: ## 2017-04-07 07:56:16 : ***** SCTP_INIT_ACK *****## 2017-04-07 07:56:16 : existing assoc for INIT_ACK## 2017-04-07 07:56:16 : Different tag Init-Ack!## 2017-04-07...
View ArticleSSG5 BGP AS-Path Prepend per Neighbor via Route Map not working
I have a SSG5 with BGP running to two different routers (one is primary the other is meant to be secondary/backup.) I need to be able to pre-pend all the routes advertised out the secondary BGP...
View ArticleProblem of VPN client to site on SSG 5
Hello all,I have configured VPN client to site on SSG5 recently. also, I configured profile on client as well,the client use NCP Secure Entry Client as VPN client software to connect remotely, the...
View ArticleVPN client to side on SSG5.
I am trying to config Juniper SSG5 as VPN client to side only.Anyone give me some documentation for this.if the client use Cisco VPN client to connect VPN. is it succes ?please suggest.
View ArticleDelete Duplicate Addresses and Services
Hi, I am migrating ScreenOS configuration to SRX. But I got task to remove all duplicate Addresses & Servcies and also if any services created has matching predefine Service replace it in Service...
View Article