Netscreen 25: VIP port forward failing after adding in second untrusted...
Hi, I had ADSL on one interface with VIP port fowarding to various servers which was working fine. I then added a VSDL on another interface, configured the routing table metric so this became the...
View ArticleRIP Configuration Assistance
I'm trying to setup 2 firewalls that currently have a point to point in place. I've configured the 2 endpoints in a /29 network and confirmed connectivity across the links, but I'm not seeing the...
View ArticleSource NAT two private IPs through route based VPN
Please give me some advice to solve this puzzle. Network setup: ethernet0/0 IP: 70.20.219.1; two bgroup1 IPs: 70.20.220.30, 70.20.220.35.Both bgroup1 addresses have to be NAT'ed out as 70.20.219.1....
View ArticleClik here to view.
SSG5 reboots all the time
HiMy SSG5 reboots all the time. Every time after loading it reboots. Start...
View ArticleSSG5 config and NAT behind router
I have an SSG5 that has been plugged into cable modem, receiving an address from ISP via DHCP. Inside network gets NAT"d to external interface on juniper for internet traffic, so inside trust interface...
View Articledebug flow basic on tftp?
Hello guys,i had problem with isg2000 but the noc people of my company just rebooted the machine without take any log so i do not know what exactly happened, they aren't ablet to access the firewall.If...
View ArticleSSG520 intermediate gateway route across WAN
I have a straight internet connection at a remote office where my ISP gave me a few subnets, but routed them through a single /30 gateway. I now want to start a new gigabit internet connection at a...
View ArticleTime Warner Business Class (TWBC) slow speed
Hi, I've had two sites, SSG-5 running in both locations, upgraded to TWBC - one at 300 mbps down/20 mbps up and second at 50 mbps down/5 mbps up and, in both cases, the speed tests done from a laptop...
View ArticlePhase2 failure message with there was preexisting session from the same peer
hi all, I have a problem in phase2 when I trying SSG550M (screenos 6.2) as hub and srx100 (junos12.1) as spokes. The message is there was preexisting session from the same peer. I also change soft...
View ArticleTraffic Shapping
Hi Experts, I just wanted to ask your opinion about the traffic shaping settings that we have at the moment. We have created these policies (see attached) and I'll be also attaching the traffic...
View ArticleRemotely Manage a VPN Terminated PC
Let me explain the scenario to the above subject. We're using Shrewsoft VPN Client to terminate a VPN on our NetscreenOS SSG-550. This is working correctly, we can access all resources within our LAN...
View ArticleISG-2000 vpn version2 features
I am looking to establish a IKEv2 tunnel between ISG-2000 and ASA, and in that i having a doubt if the tunnel can support SHA-256. As per the datasheet of ISG-2000 only SHA-1 is written which creates a...
View ArticleFirmware upgrade and NSRP
Hi we've got a problem with a remote site of ours. Its only just been noticed that an ssg20 NSRP pair are sitting on firmeware version 6.2.0r5.0 (Firewall+VPN) - we want to upgrade the firmware to...
View ArticleHA for version 6.3.0r14b and 6.3.0r14
Hi Guys, Can version 6.3.0r14b in unit A and 6.3.0r14 in unit B perform HA? Not sure what's the difference between them? I can't find firmware 6.3.0r14 for dowload.
View ArticleClik here to view.
routing fro juniper to PfSense.
Hi All, As per shown in picture I got a bit problem, whenever I set pfsense default gateway to 172.16.25.4 I can ping from pfsense straight to juniper e/02, can go all the way to the LAN 2 also can...
View ArticleClik here to view.
routing fro juniper to PfSense. [Solved]
Hi All, As per shown in picture I got a bit problem, whenever I set pfsense default gateway to 172.16.25.4 I can ping from pfsense straight to juniper e/02, can go all the way to the LAN 2 also can...
View Articlessg550M max arp entries ?
Hi, We plan to use ssg550M as gateways for backoffice/administration VLAN in our datacenters.Each VM will have a specific interface attached to one of the backend VLANs.Thus, we could end with 2000 to...
View ArticleUDP flood! From Google
Hello, last time we experience a lot of udp flood from Google servers to a random port on the untrust / wan interface.Any ideas what can cause this problem? Can i generally block incomig udp 443...
View ArticleNeed assistance with multiple Plex servers behind SSG-5
Relatively new to Juniper SSG-5. I am trying to setup multiple Plex servers that will use different external ports, but use the same internal port. so let's say it looks like: PlexSrv1 - 192.168.0.23...
View ArticleDoes InfrAuth have the same issue as WebAuth and UserAuth?
Hello all We know that there is an issue when using WebAuth or UserAuth if you have multiple users connecting to a resource behind the firewall from the same source IP. Scenarios where multiple users...
View Article