Re: SSG WebUI Login Screen (Redirect fail) error ( but Telnet login to the...
Remark : if you enter "nswebui.html" instead of redirect.html you probably do not need to clear the cache
View ArticleRe: Internal cannot reach internet
Hello paradkm,Found that the ethernet0/2 interface mode was set to "Route". I changed back to "NAT" (which is ethernet0/1 setting). But still unable to ping external public IP.
View ArticleRe: Internal cannot reach internet
Hi, Can you initiaite some traffic to the Internet and capture the session output using get session src-ip <Src-IP used>. You can read the session information using...
View ArticleRe: Internal cannot reach internet
Hello pradkm,The real settings as below ethernet0/4, DMZ, IP 10.10.20.1A computer with IP 10.10.20.2When ping 8.8.8.8 from 10.10.20.2. get session show below logsSSG140(M)-> get session src-ip...
View ArticleRe: Internal cannot reach internet
Hello pradkm,After enable "Source Transalation" (DIP on None (Use Egress Interface IP)) in the policy of "From DMZ to Untrust". Ping to outside works.But I wonder why the policy of "Trust to Untrust"...
View ArticleRe: Internal cannot reach internet
Hi, I am glad its working. interface based NAT not working in DMZ zone - What I can think of is the use of custom VR's not allowing interface NAT for DMZ. If it is Trust-VR, interface based NAT works...
View ArticleRe: Juniper firewall as l2tp client
There is no l2rp support on the ScreenOS series for the firewall communications itself.
View ArticleRe: Two Dual ISP by one ISG1000
Thanks a lot for your advice.actually we have installed new ISG1000 and connected it to the New ISP but I cannot ping to the new ISP, I have done the configuration It is the same configuration as on...
View ArticleRe: Two Dual ISP by one ISG1000
When running commands like ping for a virtual router you need to specify the interface you want to use for the source address of the ping request. This will be the interface you connected to the ISP...
View ArticleClik here to view.
ssg20 routing problem
Hello everyone, I am new to Juniper, I hope someone can help me solve this problem. Below is the network diagram of my environment. I have established a policy based VPN connection from Site1 to...
View ArticleClik here to view.
Clik here to view.
Re: ssg20 routing problem
Hi mriyaz, Thanks for the reply.As mentioned in my post, I already have the VPN established in my envrionment. I can access Trust from Site1 to Trust in Site2. What I need is to access Trust from...
View ArticleConfiguring VIP for VNC on SSG20
Hi to everybody here...I'm trying to get familiar with Juniper firewall... so I'm a newbieConfiguring a port forwarding for VNC service I could notice that in Network > Interfaces > Edit >...
View ArticleRe: Configuring VIP for VNC on SSG20
The pre-defined service for vnc covers two destination ports that are possible. This can be used in policies but not in the vip object. With the vip you can only specify one virtual port that maps to...
View ArticleRe: ssg20 routing problem
For policy based vpn you need to have two separte tunnel enabled polcies adding one on both sides for the new ip address pair. Locate your tunnel policy from 192.168.11.0/24 to 192.168.1.0/24Create...
View ArticleVPN tunnel using LTE modem
So i have a need for connecting a remote site (trailer) using cellular to our main SSG140 @ our datacenter. We purchased a Netgear LTE modem and put it in bridge mode and put a SSG5 behind it. Plugging...
View ArticleRe: VPN tunnel using LTE modem
You will need the DC side SSG140 to have the gateway configured for dynamic ip address for these LTE connections. And be sure the SSG5 on LTE is the tunnel initiator for the connection.
View ArticleClik here to view.
Re: VPN tunnel using LTE modem
Thanks, the SSG140 has the peer gateway setup as dynamic with Peer ID, attached.And i initiate traffic from remote site and tunnel seems to come up but neither end Receives traffic? The routes exists...
View ArticleClik here to view.
Re: Configuring VIP for VNC on SSG20
Ok, I see... Thank you very much for your quick reply!
View Article