Memorise

Archive for the ‘Juniper’ Category

SRX300 usb serial console driver

Please check if the USB console driver available on the below link works for you. http://www.juniper.net/support/downloads/?p=srx550#sw Please follow the below link to set this up. http://www.juniper.net/techpubs/en_US/release-independent/junos/topics/task/operational/services-gat… For SRX 340 you can use this driver srx_usbdriver-2

VPN Does Not Connect When Using Virgin Media SuperHub

When setting up a VPN, you can run into problems with VPN pass through. If you are using a Virgin Media SuperHub you have the added challenge that is by default, your speedy SuperHub will block outgoing VPN traffic meaning that with all the correct details it just doesn’t work. To fix this, just follow […]

Juniper : Introduction to the Junos Operating System, “PKI: DSA verify fails.”

How to Update the New Image Authentication Key and Upgrade Boot Loader/ScreenOS Firmware As of August 18, 2014, all Boot Loaders and ScreenOS Firmwares downloaded from the Juniper Networks Software Download Site are signed with the New Image Authentication Certificate.ScreenOS includes the ability to determine the authenticity of binary images provided by Juniper Networks. An […]

Howto Assign Multiple Public IP Addresses on Juniper SSG

Sharing Internet with Multiple public IP from same ISP: ISP Router running in bridge mode Juniper SSG5 eth0/0 doing ppoe to connect ADSL. ISP assign Public IP block as: 217.214.17.120/29 Network range will be: 217.214.17.120- 217.214.17.127. Using /29 on 2 untrust interface will give you an error, IP overlapping. To use these IP on 2 untrust […]

Setup Juniper SSG or Netscreen to support IPsec VPN client connectivity with Shrew Soft VPN Client

Introduction This guide provides information that can be used to configure a Juniper SSG or Netscreen device running firmware version 5.4+ to support IPsec VPN client connectivity. The Shrew Soft VPN Client has been tested with Juniper products to ensure interoperability. Overview The configuration example described below will allow an IPsec VPN client to communicate […]

Site to Site VPN with Netscreen 5GT and Netgear DG834G

Site to Site VPN with Netscreen 5GT and Netgear DG834G I purchased my parents a new router/modem/wireless device the other day. It is a Netgear DG834G, great value for money. Anyway the Netgear supports VPN termination, so I decided to setup a VPN between their house and mine. This allows me to run voip over the […]

ScreenOS Configure Backup Internet Interface with Automatic Failover

Version: 6.0 and higher  Network Topology: Two firewall interfaces configured in untrust zone.  One for each internet service provider. Description: You can setup a second internet service as a configured backup line for use during failure on the primary line.  This utilizes interface backup and the track-ip features of ScreenOS 6. This will automatically do […]

Reset Juniper SSG firewall using pinhole on the device

Using the device status LEDs: 1. Locate the Reset (or Reset Config) pinhole on the device. Using a thin wire (such as a straightened paperclip), push the pinhole button for four to six seconds. The Status LED blinks red. NOTE: If you do not follow the complete sequence, the reset process cancels without any configuration […]

Configuring NSRP clusters for failover between Juniper SSG 140

This config assumes that you are using ports 0/8 and 0/9 for trust and untrust.  Plus you need to define 2 HA ports as well to connect the firewalls heartbeat and session information I used ports 0/0 and 0/1.   SSG1 set interface “ethernet0/0” zone “HA” set interface “ethernet0/1” zone “HA” set nsrp cluster id […]