Memorise

Archive for the ‘Firewall’ Category

Howto Assign Multiple Public IP Addresses on Juniper SSG

Sharing Internet with Multiple public IP from same ISP: ISP Router running in bridge mode Juniper SSG5 eth0/0 doing ppoe to connect ADSL. ISP assign Public IP block as: 217.214.17.120/29 Network range will be: 217.214.17.120- 217.214.17.127. Using /29 on 2 untrust interface will give you an error, IP overlapping. To use these IP on 2 untrust […]

Setup Juniper SSG or Netscreen to support IPsec VPN client connectivity with Shrew Soft VPN Client

Introduction This guide provides information that can be used to configure a Juniper SSG or Netscreen device running firmware version 5.4+ to support IPsec VPN client connectivity. The Shrew Soft VPN Client has been tested with Juniper products to ensure interoperability. Overview The configuration example described below will allow an IPsec VPN client to communicate […]

Site to Site VPN with Netscreen 5GT and Netgear DG834G

Site to Site VPN with Netscreen 5GT and Netgear DG834G I purchased my parents a new router/modem/wireless device the other day. It is a Netgear DG834G, great value for money. Anyway the Netgear supports VPN termination, so I decided to setup a VPN between their house and mine. This allows me to run voip over the […]

ScreenOS Configure Backup Internet Interface with Automatic Failover

Version: 6.0 and higher  Network Topology: Two firewall interfaces configured in untrust zone.  One for each internet service provider. Description: You can setup a second internet service as a configured backup line for use during failure on the primary line.  This utilizes interface backup and the track-ip features of ScreenOS 6. This will automatically do […]

Reset Juniper SSG firewall using pinhole on the device

Using the device status LEDs: 1. Locate the Reset (or Reset Config) pinhole on the device. Using a thin wire (such as a straightened paperclip), push the pinhole button for four to six seconds. The Status LED blinks red. NOTE: If you do not follow the complete sequence, the reset process cancels without any configuration […]

Configuring NSRP clusters for failover between Juniper SSG 140

This config assumes that you are using ports 0/8 and 0/9 for trust and untrust.  Plus you need to define 2 HA ports as well to connect the firewalls heartbeat and session information I used ports 0/0 and 0/1.   SSG1 set interface “ethernet0/0” zone “HA” set interface “ethernet0/1” zone “HA” set nsrp cluster id […]

Connect a Cisco 837 router to BT ADSL

Connect a Cisco 837 router to BT ADSL Summary: A guide to setting up a Cisco 837 ADSL router to work with a ADSL Broadband service over a BT line. Examples of broadband services where this works are BT Broadband , Eclipse Broadband or NewNet Broadband and most ADSL over BT lines. Be careful when […]