Android VPN to Juniper SSG
Hi, Since few days I am trying to find an answer is it possible to connect from Android to Juniper SSG / NetScreen via VPN?If it's possible, can someone share some howto please? I see that there is a...
View ArticleSSG550 Tag Traffic
I have an SSG550 and just define one of the interface to setup a content filter device, this content filte device filters using the Tag of the VLAN that comes thru that port. How can I define several...
View ArticleGRE(not over IPSec) tunnel troubleshooting
Hi,How to troubleshoot/Debug a GRE tunnel(not over IPSec) on SSG140?Thank you,tcp
View ArticleDHCP not passing IPs
Hello, I have a setup of Juniper SSG140 unit that acts as DHCP server and PulseSecure device within the same subnet.The PulseSecure device is configured to use SSG-140 as DHCP server, but it does not...
View ArticleDual Internet links Failover and load balancing on SSG-140
I required help configuring of dual Internet links with Failover and load balancing on SSG-140.Right now we have a single ISP link on firewall for all inbound traffic of Emails and outbound traffic of...
View ArticleNetScreen 50, transparent mode, tagged vlans and webui?
Hello there!I actually have a network composed of a Cisco 2800 router, attached to a switch.They communicate through three 802.1q tagged VLANs (workstations, production, management).I would like to put...
View ArticleVPN users in another security zone
Hi , All VPN users by default are in trust security zone on SSG140.Is it possible to put them in separate security zone to restrict their access to Trust zone hosts?
View ArticleClik here to view.
SSG550M Active/Passive HA Link
Hi guys. I am about to configure 2xSSG550M in L3 Active/Passive HA mode. Is it possible to connect the HA link passing through switches? These 2 SSG5 will be connected to EX3300 series switches. Refer...
View ArticleProblem VPN between ScreenOS firewall and USG Huawei firewall
Hi , I have problem VPN between ScreenOS firewall and USG Huawei firewall inet-------SSG 5juniper --------------- USG Huawei ------ inet dynamic ip static ip...
View ArticleIPSec VPN between SSG 140 and WatchGuard M300
Does anyone have any experience in getting a SSG140 setup with a WatchGuard firewall (M300) with regards to an IPSec VPN? Reluctantly, I am moving away from SSG and wanted to make sure Co-existence...
View ArticleSplit Tunneling for Remote Client VPN on SSG 140
Hi everyone; I have created a remote access VPN (Dialup VPN) for remote client who will use ShrewSoft VPN client. I would like to disable the split tunneling while it is connected, I do not want the...
View ArticleHow to restrict access to one server only after Dialup VPN connected?
How can I restrict my remote user to access a server only in SSG 140 who is using Dialup VPN. In my Shrew Soft client, I can use "Include", "Exclude" in Policy tab to control but I do think this is...
View ArticleProblem with Dial-up VPN to SSG5
Hi, I am getting rejected IKE package error when I tried to dial-up VPN from Windows.Error message:Rejected an IKE packet on ethernet0/0 from x.x.x.x:x to x.x.x.x:x with cookies 31c4831da574c0d3 and...
View ArticleHow to configure vlan to have different ext IP?
I have never used Juniper but got one to play with and need some help. I am testing something and using a SSG5 with 6.3r8 FW and have a /29 from ISP.I have configured ethernet0/6 with 10.30.3.1/24 and...
View ArticleZero-Hit Count Policy
Hi, I have one client who asked me to optimize his SSG550M configuration and one part of this requirement is to delete all policies of Zero hit Count. To enable countering on policies has limitation of...
View ArticleDeep Inspection Rule to Prevent RDP Login Brute-Force
I want to create a DI rule to prevent RDP login brute force (port 3389)for example, if it's detected 10 authentication failure from a specific IP address within 1 minute, then the IP address is...
View ArticleCheck route with Tag
Hello I added a route with a tag. This route will be publish on all equipements with OSPF mecanism. How I can check on a Juniper SSG if the TAG is added ? When I try a "get route", I don't see...
View ArticleHow to set monitor with track ip bidirectional
Our topology is as follow lan: 192.168.1.1-->SSG1-->(e0/0)WAN:118.163.40.37<--Internet-->124.12.151.186(WAN)<-->SSG2<-LAN:192.168.10.1...
View ArticleConfig a pair of Active/Backup interfaces
Hello, I am running Single SSG350M with firmware 6.3.x. I would like to like does it support create a pair of Acitve/backup interfaces? Also, any suggestion to smooth migrate as one of Interface is...
View Article