SRX Next-Gen Firewalls

Hello. Thank you for answering! Here is my configuration for the security policy: Where destination address is port-83, which is the global address that I created - 46.10.161.40 ------------------------------ GEORGI DONKOV ---------------------- ...

Hello Koos, Since there is no TS on our side , most likely there won't be a TS on the other end either. You can confirm it by looking into the output of "show security ipsec sa detail". e.g. user@host> show security ipsec security-associations ...

Hey Georgi, After setting up Destination NAT, You also need a security policy rule that allows the traffic to pass from one zone to the other (assuming something like "Internet" to "Internal" or "Untrusted" to "Trusted) Cheers, ------------------------------ ...

Good day, The st0.249 interface is placed in the static route. so it is the same for local traffic as for remote traffic. i found that there is no traffic selector on our side. however the 3th party is using static routes to our site. so we can't ...

Just bumping this ..

Hello, I am trying to setup a webserver. I need this: 46.10.161.40 -> 192.168.2.2 on port 80 When I am entering http://46.10.161.40/ in my browser it gives timed out error. I am uploading my NAT Destination config as screenshots from J-Web. Maybe ...

My Appologies Jay, I should have asked the following questions... Does your provider route this public subnet to your router IP or are you directly connected to the subnet? This last post just answered that for me. What kind of NAT are you performing... ...