SRX Next-Gen Firewalls

 View Only
last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Welcome!

If you have a question or a use case, likely there are others who are experiencing or worked through the same thing. Don't hesitate to jump in and ask or share your knowledge!

Need additional guidance?  Check out these Juniper Resources.

Juniper Threat LabsSRX Upgrade Guide Security Advisories Technical Bulletins

Latest Discussion Posts

  • Soooo, it was something incredibly simple. I had this. set interface ge-0/0/1 unit 0 family inet filter input example The command is set interfaces, not set interface. When i tab through CLI, it filled it in correctly. When I put the ...

  • Hello engineers! Why did the DNS server go to therapy? It had too many unresolved issues! 😆 In the last video of our IoT Security series, we’ll dive into setting up Pi-hole on a Raspberry Pi Zero W for customized DNS filtering tailored to ...

  • Done. Thanks. ------------------------------ JOHN WILLIAMSON ------------------------------

  • Profile Picture

    RE: Restricting Ping

    Run show security flow status . Towards the top, it will say whether the firewall is processing stuff in flow mode (the default) or packet mode. In packet mode , you'd be correct that a blanket "then accept" allows traffic through. However, in ...

  • I appreciate the help. " I.e. you're trying to prevent non-authorized devices from pinging your SRX." This statement is accurate. "On a separate note, you should include a third term stating what should happen to all other traffic" Do you ...

  • I don't think that's a safe guess. I don't believe stateless firewall filters are influenced by established sessions. As for your original question, I really don't know why exactly Mist is complaining. It's possible that the actual name you're using ...

  • That was simply a mistake in my transposing it for this message. Good catch! In my configuration the last line is: set interface ge-0/0/1 unit 0 family inet filter input icmprestrict I left the firewall filter without a next term thinking that ...

Announcements

  • Introducing Juniper Support Portal (JSP) Mobile App for iOS

    The Juniper Support Portal (JSP) Mobile App is now available for customer use on iOS platforms. The app is designed to provide mobile access for on-the-go service support. 

    What’s available?

    • Live Chat Support
    • Instant Notifications
    • Knowledge Base Access 

Unanswered Posts

  • 1 person recommends this.

Top Contributors in the Community