Re: Policy based traffic shaping (how it impacts non defined policies)
Hi Folks,By default, shaping is not configured on an interface. If you do not configure a shaping rate on an interface, the default shaping rate is 100 percent, which is the equivalent to no shaping...
View ArticleClik here to view.
Issue with alg pptp on SSG 6.3.0r23 OS
Hello, The setup is as follow:We have multiple people on our intranet trying to connect to the same client VPN (solution is from Microsoft using pptp)All of them are going out on the same public...
View ArticleRe: Strange Latency Issue Netscreen 50
This probably needs troubleshooting. However you can check few things: 1: Latency is the impact and the data shows high CPU usage during the issue. Need to confirm if CPU spikes are causing latency...
View ArticleRe: Issue with alg pptp on SSG 6.3.0r23 OS
Could you provide the output of the following? get alg pptpget alg pptp countersget alg pptp xlateget rm group activeget nat cookie | include allocated unset ff# Repeat above command until you get...
View ArticleSSG5 VLAN help
I am trying to reconfigure my SSG5 to use VLANs. It's pretty much factory defaults and running latest firmware. Here is how I would like my LAN https://imgur.com/knxrSvM I’m having issues configuring...
View ArticleRe: boot loader, key image and OS....oh my --- SSG20 in constant boot-upgrade...
You are correct, the key signature is a security measure to be sure the image is not damaged or deliberately corrupted. This is not related to feature functionality.
View ArticleMultiple public IP with CGN technical link
Hi all, Our new ISP give us a technical link to connect with a CGN address, and they forwarding the traffic from our /29 public address to this IP address. I need to use SNAT for outgoing traffic with...
View ArticleRe: Multiple public IP with CGN technical link
Hi, I understand it's connectivity from your Local to site to CGN and you need to SNAT the traffic from your local site, using this specific source IP. I hope you would have configured the Extended DIP...
View ArticleRe: SSG5 VLAN help
Hello Juan9999, This looks like a cosmetic issue with the webui . The steps you took look correct and I was able to see the same behaviour in my lab. The issue does not occur when the zone selected...
View ArticleRe: Strange Latency Issue Netscreen 50
Hello Dale1sh,Can you please check on the following :-1. Are there any AV / DI enabled on the device that does a update every Wednesday ?2. Are there any internal systems that do a update on Wednesday...
View ArticleRe: Issue with alg pptp on SSG 6.3.0r23 OS
Hello,The Kb https://kb.juniper.net/InfoCenter/index?page=content&id=KB12423&actp=METADATA is very useful to understand behaviour of the PPTP ALG on screenOS. With the commands provided...
View ArticleRe: Policy based traffic shaping applied to VPN tunnel traffic
Hello George,You can use the following CLI commands :-get traffic-shaping interface < interface name>get traffic-shaping statistics RegardsVatsa
View ArticleRe: Multiple public IP with CGN technical link
Hi, Thanks for the fast reply.The problem was I set the wrong interface to the default route.The debug flow tip helps a lot, thank you! Regards, Csana
View ArticleTrying to create a VPN Tunnel between 2 SSG devices, but I'm not even getting...
I'm currently perplexed with this situation, as I just can't seem to get my head around it.We have a SSG 320m at our main office which has 2 tunnels to 2 other locations, which work fine. But now I'm...
View ArticleRe: Trying to create a VPN Tunnel between 2 SSG devices, but I'm not even...
The KBs are not out of date. Can you send the output of the debugs? Need this from both sides as well as the get event.
View ArticleRe: Strange Latency Issue Netscreen 50
Thanks for all the replies. An update that is making it even more confusing. The latency is poor and jumping around again, but the CPU is 2%. When pinging between traffic on the same subnet I'm getting...
View ArticleRe: Strange Latency Issue Netscreen 50
Thanks for the reply, in answer to your points: 1. We've had the high latency issue today and the CPU hasn't spiked. It's at 2% so I think the CPU may be a red herring. 2. The issue seems to occur when...
View ArticleRe: Trying to create a VPN Tunnel between 2 SSG devices, but I'm not even...
What are the results of your testing? Phase 1 up?get ike cookiephase 2 up?get sa I assume you saw no messages in the log, did you check on both sides.
View ArticleRe: Trying to create a VPN Tunnel between 2 SSG devices, but I'm not even...
Yes, BOTH sides are having the same exact issue! The one being sent to the branch office was even factory reset, which makes it even more confusing.spuluka wrote:What are the results of your testing?...
View ArticleRe: Trying to create a VPN Tunnel between 2 SSG devices, but I'm not even...
Sorry, can you be more specific. Which debugs are you looking for?
View Article
