Security Management

  • 1.  SRX 240 webui access issue

    Posted 05-30-2014 04:19

    IDear,

     

    need your kind support , I have SRX 240 running in cluster mode version 10.4R1.. Suddenly I lost my web access and I also tried from deferent browsers but unable to access.. I would appreciate if anybody share kind expertise with commands to check or restore web access in cluster chassis mode..

     

    Thanks,

     



  • 2.  RE: SRX 240 webui access issue
    Best Answer

    Posted 05-30-2014 13:44

    You could try restarting the web-management service:

     

    >restart web-management

     

    OR, you could just delete web-management and re-add it like this:

     

    Do this:

    >show configuration system services web-management | display set | no-more

     

    Copy the set commands onto a notepad.

     

    Then do:

    # delete system services web-management

    # commit

     

    Then add it back in:

     

    # load set terminal

     

    Copy the set commands back in and at the end press enter and then control-D

     

    # commit

     

    Then see if JWEB is working again.



  • 3.  RE: SRX 240 webui access issue

    Posted 05-31-2014 04:16

    Thank you so much for your kind response or help but problem is I unable to run following commands. I also many time tried (show system services web-management) but no effect.

     

    I also restarted web service but problem is same or see response below after run the delete commands.

     

    root@COREFWV-02-01> set ?
    Possible completions:
      chassis              Set chassis properties
      cli                  Set CLI properties
      date                 Set system date and time
    {primary:node0}
    root@COREFWV-02-01> set    

     

     

    syntax error, expecting <command>.

    root@COREFWV-02-01> delete system services web-management

    ^unknown command.

    root@COREFWV-02-01> delete system services web-management                                                                                                                                               

    error: unknown command: delete

    {primary:node0}

    root@COREFWV-02-01> delete system services web-management  

    ^unknown command.

    {primary:node0}

    Also when I am running specified commands tab is not working..

     

    Web management gatekeeper process started, pid 53936

    {primary:node0}
    root@COREFWV-02-01> show system storage
    node0:
    --------------------------------------------------------------------------
    Filesystem              Size       Used      Avail  Capacity   Mounted on
    /dev/ad0s1a             865M       416M       380M       52%  /
    devfs                   1.0K       1.0K         0B      100%  /dev
    /dev/md0                515M       515M         0B      100%  /junos
    /cf                     865M       416M       380M       52%  /junos/cf
    devfs                   1.0K       1.0K         0B      100%  /junos/dev/
    procfs                  4.0K       4.0K         0B      100%  /proc
    /dev/ad0s1e              96M       794K        88M        1%  /config
    /dev/ad2s1f              12G       742M        10G        7%  /var
    /dev/md1                998M       1.0M       917M        0%  /mfs
    /var/jail                12G       742M        10G        7%  /jail/var
    /var/log                 12G       742M        10G        7%  /jail/var/log
    devfs                   1.0K       1.0K         0B      100%  /jail/dev

    node1:
    --------------------------------------------------------------------------
    Filesystem              Size       Used      Avail  Capacity   Mounted on
    /dev/ad0s1a             865M       415M       381M       52%  /
    devfs                   1.0K       1.0K         0B      100%  /dev
    /dev/md0                515M       515M         0B      100%  /junos
    /cf                     865M       415M       381M       52%  /junos/cf
    devfs                   1.0K       1.0K         0B      100%  /junos/dev/
    procfs                  4.0K       4.0K         0B      100%  /proc
    /dev/ad0s1e              96M       452K        88M        0%  /config
    /dev/ad2s1f              12G       1.3G       9.6G       12%  /var
    /dev/md1                998M       982K       917M        0%  /mfs
    /var/jail                12G       1.3G       9.6G       12%  /jail/var
    /var/log                 12G       1.3G       9.6G       12%  /jail/var/log
    devfs                   1.0K       1.0K         0B      100%  /jail/dev

    {primary:node0}
    root@COREFWV-02-01> show cpu
                                 ^
    syntax error, expecting <command>.
    root@COREFWV-02-01> show cpu  

     

     

     

    Looking forward for your kind response.

     

    Thanks



  • 4.  RE: SRX 240 webui access issue

    Posted 06-01-2014 18:31

    Yea looks like you're trying to run those commands from Operational mode with the > prompt.  My apologies I should have specified that you needed to go into Edit/Configuration mode to run those at the # prompt.  Simply type edit at the > prompt and it will take you into configuration mode, then you can run those commands.



  • 5.  RE: SRX 240 webui access issue

    Posted 06-03-2014 00:46

    Dear,

     

    Thanks for your kind help, I have follow your suggested steps perfectly but problem still the same. I unable to access the WEBUI interface. Maybe there is version issues or any services is toped.

     

    set system services ssh
    set system services netconf ssh
    set system services web-management http port 8080
    set system services web-management http interface reth0.120
    set system services web-management http interface reth1.0
    set system services web-management http interface reth0.60
    set system services web-management http interface reth0.115
    set system services web-management http interface reth0.200
    set system services web-management https system-generated-certificate
    set system services web-management https interface reth0.60
    set system services web-management https interface reth0.115
    set system services web-management https interface reth0.120
    set system services web-management https interface reth1.0
    set system services web-management https interface reth0.200

     

    Current version is running: JUNOS Software Release [10.4R10.7]

     

    Waiting for your further support or advice.

     

    Thank You,

       

     



  • 6.  RE: SRX 240 webui access issue

    Posted 06-03-2014 09:13

    I would check your security zone configuration and see what services you're allowing.  Does it look like this? 

     

    I would also recommend upgrading to the recommended code, 11.4R11.4.

     

    user@host> show configuration security zones security-zone trust
    
    host-inbound-traffic {
        system-services {
            all;
        }
        protocols {
            all;
        }
    }
    interfaces {
        reth0.120;
    }
    

     



  • 7.  RE: SRX 240 webui access issue

    Posted 06-03-2014 13:14

    I run many time following suggested command but showing nothing... kindly see below the status after run..

     

    {primary:node0}
    root@COREFWV-02-01> show configuration security zones security-zone trust

    {primary:node0}
    root@COREFWV-02-01> show configuration security zones security-zone trust

    {primary:node0}
    root@COREFWV-02-01> show configuration security zones security-zone trust   

    {primary:node0}
    root@COREFWV-02-01> show configuration security zones security-zone trust   

    {primary:node0}

     

    waiting for your response...

     

    Thanks,



  • 8.  RE: SRX 240 webui access issue

    Posted 06-03-2014 13:44

    I only used "trust" as an example.....display the output of whatever the name of the zone is that you have your reth interfaces in for web-management.



  • 9.  RE: SRX 240 webui access issue

    Posted 06-04-2014 02:36

    Thank you so much friend for your kind help. above issue has been resolved with following solution...

     

    {primary:node0}
    root@COREFWV-02-01> show system processes extensive | match http
     1238 nobody      6  96    0  8408K  4632K ucond    7:15  0.00% httpd
    69329 root        1 106    0  6516K  2440K select   0:00  0.00% httpd-gk

    {primary:node0}
    root@COREFWV-02-01> start shell
    root@COREFWV-02-01% kill -9 1238
    root@COREFWV-02-01% kill -9 69329
    root@COREFWV-02-01% exit
    exit



  • 10.  RE: SRX 240 webui access issue

    Posted 08-14-2020 02:32

    Hi all.

     

    I'm also encountered similar issue with the Web GUI. However, I tried the above method but that still did not solve the issue. May I know if there is any other solution other than rebooting the appliance as the firewall is not allowed to have downtime currently? Please advise.

    Thanks.