Clik here to view.
Re: SSG-5-SH no reaction
Usually the LED status should be blinking green for STATUS LED. One thing that you can try is to do a hard reset for the device. Please refer the KB...
View ArticleRe: MTU configuration for lan to lan VPN
Hello Bruno, There are few KBs available which talk about these topics and would be a good referal in this case....
View ArticleRe: two default routes to the internet with failover...
Hello The following KB articles talk about the scenario that you have explained. Hope they are useful for you. How to configure dual ISP links which act as primary and back up on ScreenOS...
View ArticleCreating GRE tunnel between juniper ssg and cisco firewall
Dears, i want to create a GRE tunnel between juniper ssg fw ans cisco fwactually its my first time to use GRE, could you please assisti want to know what requirements should i have to complete this...
View ArticleRe: Creating GRE tunnel between juniper ssg and cisco firewall
http://kb.juniper.net/InfoCenter/index?page=content&id=KB6126 has information on how to do this.
View ArticleSSG20:serial1/0: LMI link is down due to errors over threshold(n392)
Hirecently I have noticed some of our SSG20 Firewalls with the below messages :Date Time Module Level Type Description2016-05-24 18:45:18 system notif 00569 [fr/lmi]: serial1/0.1 dlci(101)...
View ArticleRe: SSG20:serial1/0: LMI link is down due to errors over threshold(n392)
Hi Kevin, This may be the issue where ISP has the LMI keepalives configured at there end on the fame relay switch and we do not have the LMI keepalives configured at our end. This may lead to link...
View ArticleRe: SSG20:serial1/0: LMI link is down due to errors over threshold(n392)
Hi Rishi thanks for your assistance , I did check the keep alive on the SSG20 they are on( by default its set to ON : get int serial1/0 frame-relay lmiFrame-Relay physical interface serial1/0 LMI...
View ArticleRe: Packet Loss from LAN to WAN on SSG20
We also see this problem on our SSG20, from the lan interface to the wan interface on de juniper we see timeouts. The bandwith is no used 100% not even 50%. Whe think that there are to many small...
View ArticleRe: SSG140 Deep Inspection
We have an SSG140 and we just renewed our Deep Inspection license after a long lapse. Right away we noticed it started blocking some CAD drawing email attachments. I am trying to figure out how to even...
View ArticleRIP Protocol
Good Day Experts, i have two point to point links between two SSG350 juniper firewalls and i want to configure RIP protocol over these links so i can reach the other side even if one of the links went...
View ArticleRe: RIP Protocol
You can configure lower RIP metric at interface level at both the ends on the backup link. Also, you can consider the track-ip option to bring down the primary interface in case of any issues. below...
View ArticleVPN issue - matched tunnel-id packet dropped, no way(tunnel) out
HI all, We have a VPN set-up on a Juniper SSG to a remote site firewall, the VPN tunnel is up To paint the picture, we are trying to send ICMP traffic from a subnet behind the local juniper, the...
View ArticleRe: VPN issue - matched tunnel-id packet dropped, no way(tunnel) out
Please update the output of the below commands: get route ip <source ip>get route ip <destination ip>get sa | in <public IP of the peer VPN gateway>get sa id <id from the previous...
View ArticleRe: VPN issue - matched tunnel-id packet dropped, no way(tunnel) out
Also, please check below old forum issue, where it turned to be issue with the proxy-id and proxy-id check....
View ArticleHMAC-SHA256 backward compatibility to 128 bits
Hello Team, Hope you are doing well.I just want an advise from you. Indeed, I am using ScreenOS : Software Version: 6.3.0r13.0, Type: Firewall+VPN I am configuring a VPN and my partener is requiring...
View ArticleRe: HMAC-SHA256 backward compatibility to 128 bits
Default is 128. The command referenced in the KB article is only if you want to revert back to 96 bits.
View ArticleRe: HMAC-SHA256 backward compatibility to 128 bits
Thanks for feedback, The question is about the default related value I am getting actually. Why is it 96 instead of 128 ? Do we have any explanation justifying this ? flow got session. flow session...
View Article