Re: Suddenly WEBUI and SSH don't work on SSG-5
Well, I found it by examining the configuration file.It seems the management had been disabled.Once enabled, all is fine again.I have NO idea how it got that way but it's not important now.
View ArticlePCAP file size limit when running Snoop on ssg550
I'm hitting a limit of 128KB file size on PCAP files that I export using snoop. I need to capture traffic for about 5 minutes and this is limiting me. Here is my filter: ssg550-> snoop infoSnoop:...
View ArticleRe: PCAP file size limit when running Snoop on ssg550
That is the default file size. You can increase it using the command set db size 4096 Please note that the maximum size is 4MB. Once this limit is reached, the device will override the oldest output....
View ArticleRe: PCAP file size limit when running Snoop on ssg550
Oh. And wireshark can open the file directly as long as the file starts with a new packet, and it is not tunnel traffic.
View ArticleRe: SSG140 SNMP over Internet
HI, Found the solution.Actually the firewall detects WAN ip not NAT ip, so what i did was configure the host ip with WAN ip. Thanks for the help, really appreciate it. rgds.
View Articlessl_error_no_cypher_overlap when trying acess to SSG5
Hello im trying to acces my SSG5 via firefox but i get error message "ssl_error_no_cypher_overlap" what is wrong? Something with FF or SSG5? Please help me
View ArticleRe: ssl_error_no_cypher_overlap when trying acess to SSG5
Hello, It seems that FW's default self signed certificate uses RC4 cipher which is not supported by latest browsers. You try following steps to change the cipher and test:1.) "set ssl encrypt 3des...
View Articleadding a vsys upgrade license
Hello, was just wondering how to add an additional vsys license(upgrade) to a firewall that already has 50 vsys. I have the license which is 50 upgrade to 100 vsys. what is the process to install the...
View ArticleRe: adding a vsys upgrade license
Hello , Please follow the below mentioned Kb article which explains the process of adding the Vsys license keys to the device: #...
View ArticleRe: adding a vsys upgrade license
Thanks. So for nsrp pair. I would assume do the backup first reboot. then failover do the other then fail back? Thanks.
View ArticleRe: adding a vsys upgrade license
Hi, Yes for the NSRP pair you need to first upload the license on the backup followed by the reboot. Once the license gets successfully installed on backup you need to perform the failover. Once the...
View ArticleRe: adding a vsys upgrade license
Thanks. So we received the vsys license. But its weird. we were never asked the serial number of the devices. for a vsys upgrade from 50 -> 100 do I need to supply the serial number? Is the serial...
View ArticleRe: adding a vsys upgrade license
Hi, Generally the licenses are linked by the serial numbers. You can confirm the same by calling our customer care numbers(+1888-314-5822 ,+1 408-745-9500 ) . Let me know if you face any issue while...
View ArticleRe: adding a vsys upgrade license
For ScreenOS licenses I generally use the online tool. https://www.juniper.net/lcrs/spgGenerateLicense.do Select the Firewall/IPSEC VPN option (weird but this is the old designation for the ScreenOS...
View Articlessg 5 vlan sub int dhcp
Hello, i have a ssg5 Version 6.3.0 and try to get a dhcp address from a taged sub int. config:eth0/4 0.0.0.0/0 NUlleth0/4.1 192.168.20.1/24 zone 3 tag 3 eth0/4.1 dhcp service server (gw 192.168.20.1...
View ArticleRe: ssg 5 vlan sub int dhcp
Your config looks correct but you test will not work. Your laptop is not able to process tagged traffic. You would need to test with the equipment that can recognize a vlan tag as destined for the...
View ArticleRe: ssg 5 vlan sub int dhcp
Hi Kc, I do agree with Steve that laptop's NIC wont be able to understand VLAN which is causing this issue. Can you please let us know the requirement of VLAN tag even when there is no switch in the...
View ArticleRe: ssg 5 vlan sub int dhcp
hi, thanks for your quick respone. the goal is, to seperate guest and internal wifi. hardware setup : cisco wap321 poe -> cisco 200-50p -> ssg5 eth0/4 -> ISP Router i`m trying to get for our...
View ArticleRe: ssg 5 vlan sub int dhcp
Thanks for the clarification on the scenario. I have setup a similar operation in the past to Cisco WAP using the tagged interface. This is a sample configuration that worked for the DHCP server in...
View ArticleRe: ssg 5 vlan sub int dhcp
thanks i`ll try it asap: sgg5 configuration looks like this now: ethernet0/4 - 0.0.0.0/0 Null Unused Up ethernet0/4.1 3 172.16.1.1/24 zone3 Layer3 Updhcp range 172.16.1.20 - 172.16.1.100 Regards ps. it...
View Article