SSH Key Size-NS5200
I am looking for info on changing the ssh key size on a NS52000 to 2048, or is this even possible.Thanks
View ArticleMultiple IPSEC VPN to Azure with ssg 140
I currently have a site-to-site IPsec vpn tunnel configured and working to Azure. I need to create a second site-to-site IPsec VPN tunnel to a different Azure gateway. I only have one public...
View ArticleAddress Objects in different Zones
Hi,Based on the below configuration, the address object "cms01" is referred in different zones.So my question is the address object is significant to the respective zones only or is it global ? set...
View ArticleSSG20 Assistance with VPN Tunnel
We have been asked to create a VPN tunnel between a vendor and a site of ours. The vendor is claiming our internal address is already taken by another client. For arguments sake, we will say it is...
View ArticleOptions for obtaining SSG550 Software
Apparently the SSGs we have, which were purchased before I took over, are not registered to our company and as such we are unable to purchase support to get access to software downloads.Does anyone...
View Articleunable to ping/ssh slave ssg firewall through vpn
Hi All,I have Netscreen 140 active-slave setup, I am able to ping both firewall management ip addresses from each other and the internal Switches and other devices.We have a site to site VPN with other...
View Articlemigrate config from ISG1000 to SRX345
Hello, We have two ISG1000s in an active-passive NSRP configuration. We are replacing them with two SRX345s. Is there any easier way of migrating the configuration of the firewalls, including IPsec...
View ArticleSSG500M Multiple search domains
Hello, Is it possible to setup multiple search domains for DHCP server configured for specific port??I am able to enter only one search domain.
View ArticleNS 208 port forwarding
I have a NS208 I setup a long time ago that the customer has now requested port forwarding. I haven't touched a Juniper device in years so I'm very rusty. I need to forward ports 81, 8554, and 37777 to...
View ArticleHow to Migrate Netscreen SSG20 to JunOS SRX320
Hi Support, How can i migrate netscreen SSG20 "Firmware Version: 6.2.0r5.0 (Firewall+VPN)" to JunOX SRX320 device?
View ArticleInteroperability Fortigate and Netscreen ISG1000
Dear all, I have an ISG1000 and a Fortigate be configured VPN site-to-site. The operation is good but recently, traffic cannot pass via Tunnel VPN (Tunnel still up) so my customer needs to run the...
View ArticleIssue with route based VPN tunnel with MIP between SSG140 and Cisco ASA device
I am having an issue with a route based VPN tunnel between a SSG140 and a Cisco ASA device (both sides are doing MIP translation from the original IP address to a different IP address, from...
View ArticleUpgrade SSG550 failed
Dear all, We need to upgrade an SSG550M from 6.1.0r2.0 to 6.2.0r19.0. We did not upgrade bootloader because as the document of Juniper (not required). After upgraded the key successful, we loaded...
View ArticleClik here to view.
Tunnel Interface in Trust Zone - Security Poblem?
Hello, we have VPNs with Tunnel interfaces. One of them is in the security zone - trust (See screenshot). The VPN tunnel works. Is this a security problem? In the documentation i found no hint. Some...
View ArticleSSG -140 gig interface dropping when changed to 1000 full
We recently upgraded our internet service from 100 to 200mbps. I moved us to interfaces 8 and 9 (gig) so we could realize these higher speeds. Everything went fine except when the upgrade was...
View ArticleSSG20 site to site dynamic vpn dont work issue
Dear All,i tired all senarios to make two SSG 20 to have site to site vpn using dynmaic ip address in site B, not no worthy. It works when both sites have fixed ip address but when Site B has dynamic...
View Articleslow Internet connection
Hi,My Internet connection is very slow, my provider is able to see many traffic that fill the bandwidth.On Juniper, Is it possible to have information about this traffic, (client IP, protocol, time...
View ArticleVPN tunnel going up and down (how to check if ISP has block ESP traffic)
Found this KB https://kb.juniper.net/InfoCenter/index?page=content&id=KB9488&actp=METADATA.At step 4. The VPN become stable after disabled Monitor.If I am not go to ask the ISP (or they don't...
View ArticleUnexpected traffic getting through SSG-350M to DMZ
I have had very little experience with Junipers and inherited my firewall from my predecessor. I have a server in my DMZ that has been responding to port requests to 445, when I expected it to be...
View ArticleSSG350M - Firmware 6.3 - Dual ISP - Routing Issue - Failover
Hi All, After setting up a SSG350M active/passive cluster, I am running into the problem, that I´m not able to figure out, how to configure a dual ISP routing configuration. Both ISPs are bound to...
View Article