Re: ScreenOS - How can I read the "get session" output correctly?
Sorry for the confusion. I had forgotten that virtual interfaces won't show up in get system so the interface number can only be seen for those in get interface. And you are correct the traffic...
View ArticleLast Firmware update for NS5GT
What is the last firmware upgrade for the NS5GT? Where might I be able to obtain it? Whenever I try changing"Enable web management Idle Timeout" under "Configuration > Admin > Management" and...
View ArticleRe: Last Firmware update for NS5GT
The ns5gt did support going to screen0s 6.3 But it has been several years since end of support on the platform so there are no public downloads for any version. If you do have an active relationship...
View ArticleRe: Last Firmware update for NS5GT
No, I have no active relationship with Juniper. I'm just a customer stuck with a buggy firmware and Juniper is deliberately hiding files from their customers.
View ArticleRe: Last Firmware update for NS5GT
The last firmware I was successfuly able to install was v6.2.0r19.0. This often required that an imagekey.cer file was also applied to allow the upgrade to proceed, otherwise an error was thrown up.
View ArticleRe: ScreenOS - How can I read the "get session" output correctly?
as I thought, the "get session" output from ScreenOS is not so good than the "show security flow session" output from JunOS. In these days I had to write a script to read the "get session" output and...
View ArticleClik here to view.
Two Dual ISP by one ISG1000
Greeting All, I need your support for the below subject. I have dual ISP, the first ISP (Speed 70 Mbps) already connected with ISG1000 and working correctly, my organization needs to install &...
View ArticleRe: Two Dual ISP by one ISG1000
What is the scenario you are looking at? Replace current ISP with new oneKeep both ISP in primary and secondary roleKeep and use both ISP in some fashion Do you have inbound destination nat traffic for...
View ArticleRe: Two Dual ISP by one ISG1000
Thanks Steve for your reply, Actually we have 300 Building, half them connected already by ISP1 (70Mbps) and another building we are planning to connect it to the new ISP(1Gbps). Scenario 01, I need to...
View ArticleRe: Two Dual ISP by one ISG1000
So if seems like you best option would be to add new virtual router.Routing > virtual routers Put the new ISP interface into this virtual router and also the interfaces connecting to the buildings...
View ArticleDo I need to create route if both subnet using the same virtual router
After created the 2 subnetsethernet0/1 192.168.1.0/24 Layer3ethernet0/2 192.168.2.0/24 Layer3There were 4 route entries auto created192.168.1.0/24 ethernet0/1 Protocol C192.168.1.1/32 ethernet0/1...
View ArticleRe: Do I need to create route if both subnet using the same virtual router
Nothing on the firewall but you need appropriate gateways configured on the hosts in that particular subnet to reach the Firewall and the routing is taken care by the firewall with the routes available...
View ArticleRe: Do I need to create route if both subnet using the same virtual router
Thanks pradkm.Actually, I set the ethernet interfaces to be the gateway.ethernet0/1 Static IP 192.168.1.1 /24 Zone Trust ethernet0/2 Static IP 192.168.2.1 /24 Zone DMZIs that enough for the computers...
View ArticleRe: Do I need to create route if both subnet using the same virtual router
Yes, that should do. Thanks and Regards,Pradeep Kumar M
View ArticleRe: Two Dual ISP by one ISG1000
Thanks a Lot, Spuluka for your solution.before closing this case, could you share with me the configuration steps, because I am still new with ISG1000 thank you.
View ArticleRe: Do I need to create route if both subnet using the same virtual router
The configuration does cover the routing but this is a firewall too. So the interfaces need to be assigned to a zone. If they are in the same zone the default policy is permit. If they are different...
View ArticleRe: Two Dual ISP by one ISG1000
Create the objects you need in this order. Virtual router - Routing > Virtual RouterZones - Network > Zones assign the new internet and business zones to your virtual routersInterfaces - Network...
View ArticleJuniper firewall as l2tp client
Is there a model of Juniper able to work like a l2tp client? So, for example having two firewall Juniper and one of them working like a l2tp-server and the other one working like l2tp-client and...
View ArticleInternal cannot reach internet
Ethernet0/0 with IP 1.1.1.1. Which connected to the modemI've an existing subnet 192.168.1.0/24 set at interface ethernet0/1. Computers within this subnet can reach internet .Now, I created another...
View ArticleRe: Internal cannot reach internet
Hi, As you are able to reach 1.1.1.1, it looks like an issue with the source NAT. Please check you have configured NAT for the subnet 192.168.2.0/24, either interface based NAT or policy based Src-NAT...
View Article