Category Archives: Juniper

Juniper Networks – Configuring a Branch SRX Virtual Chassis to Send Data Plane System Log Messages to NSM

Juniper Networks – Configuring a Branch SRX Virtual Chassis to Send Data Plane System Log Messages to NSM Configuring a Branch SRX Virtual Chassis to Send Data Plane System Log Messages to NSM (pdf) This document describes how system log … Continue reading

Posted in Juniper | Leave a comment

Juniper SRX Branch + NSM + Logging + High CPU (Syslog)

SRX Branch + NSM + Logging + High CPU 1. Log directly to a syslog server instead 2. NSM 2011.1 appears to support SRX sd-syslog format. NSM can be configured to receive syslog messages directly. See page 765 of http://www.juniper.net/techpubs/software/management/security-manager/nsm2011_1/nsm-admin-guide.pdfContinue reading

Posted in Juniper | Leave a comment

Juniper / JunOS – Configuring a Filter to Block Telnet and SSH Access

Juniper Networks – Configuring a Filter to Block Telnet and SSH Access Configuration Configure the Stateless Firewall Filter Apply the Firewall Filter to the Loopback Interface Confirm and Commit Your Candidate Configuration To quickly configure this example, copy the following … Continue reading

Posted in Juniper | Leave a comment

Juniper – Configure Unicast RPF

Configure Unicast RPF. Configure Unicast RPF Strict Mode Unicast RPF Loose Mode Unicast RPF and Default Routes Unicast RPF with Routing Asymmetry Example: Configure Unicast RPF to Accept DHCP and BOOTP Packets

Posted in Juniper | Leave a comment

Juniper – Branch SRX Series Services Gateways Golden Configurations

Branch SRX Series Services Gateways Golden Configurations (pdf)  

Posted in Juniper | Leave a comment

Juniper SRX – Services Gateways for the branch (datasheet)

1000281-en.pdf SRX Series Services Gateways for the Branch SRX100, SRX110, SRX210, SRX220, SRX240 and SRX650     http://www.juniper.net/us/en/products-services/security/srx-series/srx210/ http://www.juniper.net/us/en/products-services/security/srx-series/srx650/

Posted in Juniper | Leave a comment

Juniper SRX – ‘track-ip’ support

Juniper Networks – Is ‘track-ip’ supported on the SRX series? This feature is now supported in 11.2 on SRX100, SRX210, SRX220, SRX240, and SRX650 platforms. http://www.juniper.net/techpubs/en_US/junos11.2/information-products/topic-collections/release-notes/11.2/junos-release-notes-11.2.pdf IP Monitoring • IP Monitoring with route failover (for standalone devices and redundant Ethernet … Continue reading

Posted in Juniper | Leave a comment

Juniper – SRX Knowledge Base Articles

Juniper Networks – Knowledge Base – Knowledge Base. SRX210 SRX650 EX Switches EX2200

Posted in Juniper | Leave a comment

Juniper SRX – VPN monitoring with a non SRX device causes VPN to flap

VPN monitoring with a non SRX device causes VPN to flap VPN-monitoring is enabled on a SRX device and the remote end of the VPN is terminating on a non SRX device. Due to VPN-monitoring being enabled, it might cause … Continue reading

Posted in Juniper | Tagged | Leave a comment

Juniper SRX packet captures

 Juniper SRX packet captures. configureset forwarding-options packet-capture file testcap1 pcap files 10 size 10000set forwarding-options packet-capture maximum-capture-size 15002. Create your filter set firewall filter PCAP term capture from source-address 192.168.1.1.32set firewall filter PCAP term capture from destination-address 10.15.61.45/32set firewall filter … Continue reading

Posted in Juniper | Leave a comment