Security

 View Only
last person joined: 17 hours ago 

Ask questions and share experiences with Juniper Connected Security. Discuss Advanced Threat Protection, SecIntel, Secure Analytics, Secure Connect, Security Director, and all things related to Juniper security technologies.

No Internet access for SRX.

  • 1.  No Internet access for SRX.

    Posted 09-16-2021 11:22

    Hi there, I am trying to connect my SRX345 using the static public IP provided by ISP. When I connect that static IP to my laptop. I am able to ping the interface and google DNS 8.8.8.8. When I connect this static IP to my SRX345 for internet connectivity. I am unable to ping the google DNS 8.8.8.8 but I can ping the interface IP address that is 5.81.126.196. My public IP is 5.81.126.196 and the default gateway is 5.81.126.198. Here is my configuration on the specific port which is used as an untrust zone for internet access.

    Interface

    Interface:

        ge-0/0/6 {
            unit 0 {
                family inet {
                    address 5.81.126.196/29;
    } } }

    Security Zone:

    security-zone untrust {
                screen untrust-screen;
                interfaces {
                    ge-0/0/6.0 {
                        host-inbound-traffic {
                            system-services {
                                all;
                                ping;
                            }
                            protocols {
                                all;
                            } } } } } }

    Static route:

    routing-options {
    static {
    route 0.0.0.0/0 next-hop 5.81.126.198;
    }



    ------------------------------
    Abdul Qurashi
    ------------------------------