SRX Next-Gen Firewalls

For FBF Please refer the doc below: https://www.juniper.net/documentation/us/en/software/junos/routing-policy/topics/example/filter-based-forwarding-example.html If you have any questions wrt the config which you are making, please reach-out. ...

I did create an address book entry for both internal and external IP but when I try to ping the external ip from the the server it does not work I must be missing somthing I reverse the addresses just in case and that also did not work Srv-Mail-158.245 ...

Apologies for the double post. I got no confirmation from my first post. The 'any any' rule you mentioned that you have will be as effective as the more specific rule I provided as an example. The commit issue is because these source-address and destination-address ...

I can not commit I get this Warning(s): 'policy our-hairpin-policy,policy our-hairpin-policy' 1) Source address or address_set (10.10.20.0/24) not found. Please check if it is a SecProfiling Feed. 2) Destination address or address_set (10.10.20.0/24) ...

Hi Jay, Just reiterating Steve's note here, you will need to add a security policy to allow traffic from your servers back to your servers. Security Policy is evaluated after NAT Operations, to you will need to use the ultimate Source and Destination ...

Keep in mind that I already have a policy like yours and that does not allow me to ping any nated public IP from the trust policy trust-to-trust { match { source-address any; destination-address ...

I did try this but when I ping the domain or public IP behind the firewall it doe not work from-zone trust to-zone trust { policy our-hairpin-policy { match { source-address any; ...