Re: Basic BGP Configuration
I've not used the loopback group myself, but the setup you describe is exactly what they seem to be created for with the sharing of a MIP between multiple interfaces. This should work well. The other...
View ArticleClik here to view.
Dial-up VPN isnt working with service rule except any
Hi everyone, I have created a Dial-up VPN. It is working with policy which has permission for any services. When i change service rule to spesific service ( it may be ping or rdp whatever ), it doesnt...
View ArticleRe: Dial-up VPN isnt working with service rule except any
1: From the logs it's failing in phase-2: 016-05-16 12:28:09 info IKE 85.96.xx.xx Phase 2: No policy exists for the proxy ID received: local ID (10.10.0.0/255.255.252.0, 0, 0) remote ID...
View ArticleRe: Dial-up VPN isnt working with service rule except any
Hi Vikas, output of "get ike policy-checking" : IKE Phase 2 ID payload checking is enabled. Thank you for your answer. So, it can be about Shrew Client. Is there any VPN Client that you suggested...
View ArticleRe: Dial-up VPN isnt working with service rule except any
1: Proxy-id check is enabled not disabled.2: Shrew soft is free and deployed in many networks without any issues. Check if "unset ike policy-checking" hepls. Thanks,Vikas
View ArticleClik here to view.
Re: Dial-up VPN isnt working with service rule except any
Hi Vikas, Proxy-id cCheck flag is unchecked for this one. If i disable proxy-id check via your commad, it will affect all VPNs, right ?
View ArticleRe: Dial-up VPN isnt working with service rule except any
1: policy-ID check in the VPN is different than "unset ike policy-checking" . Please check https://kb.juniper.net/InfoCenter/index?page=content&id=KB16008&actp=search...
View ArticleRe: Dial-up VPN isnt working with service rule except any
I have run unset ike policy-checking command. Result : "2016-05-17 15:36:00 info IKE 85.96.xx.xx Phase 2 msg ID 7944be28: Completed negotiations with SPI 87c3914b, tunnel ID 443, and lifetime 3600...
View ArticleRe: Dial-up VPN isnt working with service rule except any
Sorry, please ignore previous update. It was my fault. It is working now with unset ike policy-checking. Thank you for the answer. Is it affect anything other than one policy for Gateway restriction ?
View ArticleRe: Dial-up VPN isnt working with service rule except any
1: It shouldn't break any existing VPN.2: Make sure you have appropriate security policy in place to allow only legitimate traffic. Thanks,Vikas
View ArticleRe: Hello Juniper I have a question. I want to know how you can download the...
Thank you.vlkassingh I'm more curious ! I can log in.But there is no access rights.What do you say to get access rights ?The e-mail 're coming forIt does not make sense.I understand we have to get the...
View ArticleRe: Hello Juniper I have a question. I want to know how you can download the...
When you select the download that you want and the permission is denied, click the link presented to open a Juniper Administrative Service case. These are similar to opening trouble tickets, but are...
View ArticleRe: Hello Juniper I have a question. I want to know how you can download the...
Hi, Information provided earlier was correct to open create an account which enabled many feature like downloading software and opening tickets etc. As steve mentioned earlier you can open an admin...
View ArticleRe: Upgrade Path
If we were not aware of this Boot loop, and peformed the upgrade and now we are stuck in this loop. Is there a fix for this condition? and what is needed to be performed? Thank you
View ArticleRe: Upgrade Path
Hello, If you have not updated the signing key & tried to upgrade the device to 6.3.0r22, you must have got the message 'bogus image' or something similar & device getting stuck in a prompt...
View ArticleRe: Upgrade Path
I don't know if this works from the boot loader prompt, but you can try to delete the auth key using this note fromTSB16495 http://kb.juniper.net/InfoCenter/index?page=content&id=TSB16495 On SSG...
View ArticleRe: Hello Juniper I have a question. I want to know how you can download the...
Thank you. I am now need ScreenOS of the current SSG series. Low ScreenOS version of the current SSG-520M. I want to upgrade. But stillPermission knowing that I do not get ...
View ArticleRe: Hello Juniper I have a question. I want to know how you can download the...
Call at any number from https://kb.juniper.net/InfoCenter/index?page=content&id=KB9946&actp=search as per your convenient/country, and they will help you. Thanks,Vikas
View ArticleRe: Random reboot SSG550M
Hi I have the same case (firewalls rebooting, master and passive), upgraded to version 6.3R21, but still has the same issue. Do I have to downgrade to 6.3R19? Thanks
View ArticleRe: Random reboot SSG550M
You do not need to downgrade, issues fixed in lower releases are maintained going forward. What this means is you are hitting a different bug. This case the symptom was the slowly rising memory usage...
View Article