Re: Firmware upgrade and NSRP
There should not be a problem with upgrading directly to 6.3 .. For more info follow this document :Upgrade path:http://www.juniper.net/techpubs/software/screenos/screenos6.3.0/630_upgrade.pdfAnd...
View ArticleRe: Phase2 failure message with there was preexisting session from the same peer
Thanks you for your help.I am sure the 'Untrust' zone interface is permitting inbound ike, but I will try it again as your last reference post after our new year off days in myanmar. Regards,Lay Min
View ArticleRe: Remotely Manage a VPN Terminated PC
I remember getting this working once - with route based dialup VPN. It won't work with policy based tunnels. You may want to give it a try. Basic Config:...
View ArticleRe: Firmware upgrade and NSRP
To answer your other questions: It is not a good idea to run different firmwares on the members of a HA pair. Especially, not different Major versions (6.2 Vs 6.3). This may lead to config sync issues,...
View ArticleRe: SSG WebUI Login Screen (Redirect fail) error ( but Telnet login to the...
by clearing the cache after enabled ssl and disable redirects fixed it. thanks!
View ArticleHA for version 6.3.0r14b and 6.3.0r14
Hi Guys, Can version 6.3.0r14b in unit A and 6.3.0r14 in unit B perform HA? Not sure what's the difference between them? I can't find firmware 6.3.0r14 for dowload.
View ArticleRe: HA for version 6.3.0r14b and 6.3.0r14
Hi John, Technically they should sync the sessions, SA and other important information. However, you may see configuration out of sync errors as both the codes will be have different hash values....
View ArticleClik here to view.
routing fro juniper to PfSense.
Hi All, As per shown in picture I got a bit problem, whenever I set pfsense default gateway to 172.16.25.4 I can ping from pfsense straight to juniper e/02, can go all the way to the LAN 2 also can...
View ArticleRe: routing fro juniper to PfSense.
Hi, Please check the routes on the pfsense to the 172.16.30.0/26 subnet. If no routes to the subnet then try adding one static route to the 172.16.30.0/26 via default gateway 172.16.25.4. When you set...
View ArticleRe: Firmware upgrade and NSRP
For older devices, also note that the ScreenOS signing key changed in June 2014. If your OS is older than this you will need to update the signing key on the device BEFORE the upgrade process....
View ArticleRe: HA for version 6.3.0r14b and 6.3.0r14
The "b" version is the one you will want to download and use. The original version had a serious security flaw as discussed in the thread below with links to the Juniper announcements. You should...
View ArticleClik here to view.
routing fro juniper to PfSense. [Solved]
Hi All, As per shown in picture I got a bit problem, whenever I set pfsense default gateway to 172.16.25.4 I can ping from pfsense straight to juniper e/02, can go all the way to the LAN 2 also can...
View ArticleRe: routing fro juniper to PfSense.
Hi, Please check the routes on the pfsense to the 172.16.30.0/26 subnet. If no routes to the subnet then try adding one static route to the 172.16.30.0/26 via default gateway 172.16.25.4. When you set...
View ArticleRe: routing fro juniper to PfSense.
Thanks Mr VIkassingh for you reply. From your guide now I able to ping from both end. from this configuration am i suppose to be able get internet access to juniper or not? since now I cannot access...
View ArticleRe: routing fro juniper to PfSense.
Hi, The routing table looks good. The firewall is configured to send internet traffic to the PFsense as per the default route configuration. Are you able to reach the 192.168.25.x network from the...
View Articlessg550M max arp entries ?
Hi, We plan to use ssg550M as gateways for backoffice/administration VLAN in our datacenters.Each VM will have a specific interface attached to one of the backend VLANs.Thus, we could end with 2000 to...
View ArticleRe: ssg550M max arp entries ?
Hi Pascal, I checked few of the devices and it seems that limit is 4096. get arp usage: 1/4096 miss: 0 <-- One ARp entry out of 4096always-on-dest:...
View ArticleNeed assistance with multiple Plex servers behind SSG-5
Relatively new to Juniper SSG-5. I am trying to setup multiple Plex servers that will use different external ports, but use the same internal port. so let's say it looks like: PlexSrv1 - 192.168.0.23...
View ArticleRe: ssg550M max arp entries ?
Thanks a lot, shame on me for not even thinking to type this command... I found another interesting hidden command that lists most system maximum values, in case anyone would need it :get sys-cfg Pascal
View ArticleUDP flood! From Google
Hello, last time we experience a lot of udp flood from Google servers to a random port on the untrust / wan interface.Any ideas what can cause this problem? Can i generally block incomig udp 443...
View Article