Re: Event Alarms email gave me a report of network attack that was happen 2...
the emails are generated in real time. So check that the date/time is correctly set on the device. Or the email headers that it has been delayed in delivery somewhere along the line.
View ArticleUDP flood! From 96.20.204.243:51037 to x.x.x.x:41194, proto UDP
Hi, I got many of these alerts in the Event log. is it I got attached? if I do then How to prevent it.?It a Juniper ISG1000 screen OS version 6.2.0r8.0. Thanks.Tri Nguyen
View ArticleRe: UDP flood! From 96.20.204.243:51037 to x.x.x.x:41194, proto UDP
This is an informational alert letting you know that the screen protection kicked in to block this udp flood attempt. If the ip address is not yours or expected by your customers this is an attack...
View ArticleRe: UDP flood! From 96.20.204.243:51037 to x.x.x.x:41194, proto UDP
Thank you so much. Problem solved. I increase the threshold.
View ArticleQuestion for Old School ScreenOS 1.0
When netscreen first released their Netscreen 5, I was fortunate enough to be sent to class in Dallas on how to use it. One of the first things we learned was that in order to access the GUI, we had to...
View ArticleSSG5 does not block access
Hello,My story is very sipmple: I have an ssg5 firewall conected to the internet. Since I do not wish myself any contact from outside, I created a very simple policy rejecting all traffic from any...
View ArticleRe: SSG5 does not block access
The default configuration on the SSG5 would not allow any connections from the internet to your server login. The configuration to look for that would allow this is destination nat and a policy that...
View ArticleRe: SSG5 does not block access
Thank you for the answer.I will start from the end:1. If my server was compromised from inside, the blocked ip that the server blocked would be an internal one as well (or am I wrong?).2. Do you mean...
View ArticleRe: SSG5 does not block access
Hi Kordian, 1) The blocked IP by the server should be an internal one. However, there is always a chance the attacker is trying to spoof the IP address using some software hiding the actual IP address....
View ArticleRe: SSG5 does not block access
Thank you!And sorry to inform, that this answer does not help - it makes it even more confusing. :-)The only advantage is that I am now sure everything was correctly setup.My network is a private small...
View ArticleUnable to boot
Hello, I have a J2350 service router which was running JunOS 12.1X46 fine but after a memory swap the system wouldn't boot so i removed the battery to clear the CMOS. After this the system powered on...
View ArticleRe: SSG5 does not block access
Can you confirm that there are no untrust to untrust policies?This is another vector that can be used if there right vip/dip/mip are configured. Were you able to confirm that the untrust interface...
View ArticleRe: SSG5 does not block access
Yes, I can confirm there are no untrust to untrust policies.The untrust interface has one VIP port enabled. You mentioned previously however, that with the reject policy this should not apply. I will...
View ArticleRe: Install SSG550M image to blank CF
Hi, I'm wondering if you solved your problem because i'm in a similar situation. Regards
View ArticleFailover criteria for route based VPN
Hello, If I set up two ipsec site-to-site route based VPN setup as failover using SSG140.Each has three encryption domains and one route for each encryption domain.The routes are not permanent and...
View ArticleRe: Failover criteria for route based VPN
For route based tunnel failover you are best to use a dynamic protocol instead of static routes. Static routes will remain active in the route table as long as the next hop interface is up. And by...
View ArticleSSG to SRX conversion tool
The SSG to SRX conversion tool at below link is not working for months https://migrationtools.juniper.net/s2j/index.jsp Looks like juniper decomissioned it, we have 100's of SSG firewalls that we are...
View ArticleRe: SSG to SRX conversion tool
https://partners.juniper.net/partnercenter/sales/jfmc/index.page#gsc.tab=0 seems the answer to this, but having access issue, checking with Jtac & lanooka support
View ArticleRe: SSG to SRX conversion tool
With the change to ELS (enhanced layer 2 services) with the SRX300 series and later, the original conversion tool is no longer accurate. I've been told there are no plans to update it and it is simply...
View Article