Security

 View Only
last person joined: yesterday 

Ask questions and share experiences with Juniper Connected Security. Discuss Advanced Threat Protection, SecIntel, Secure Analytics, Secure Connect, Security Director, and all things related to Juniper security technologies.

If you have a question or a use case, likely there are others who are experiencing or worked through the same thing. Don't hesitate to jump in and ask or share your knowledge! Post here or access the following resources: 

Documentation SRX Community Juniper Threat Labs Security Advisories

Latest Discussion Posts

  • Elevate Community & Juniper Customers: Here at Juniper, we recognize upgrading your SRX can be a challenging and delicate process. For this reason, we developed the SRX Upgrade Guide documentation to assist you. This guide has you covered from what ...

    1 person recommends this.
  • I have users using Filezilla to send files to our local county government. As of the last 45 days, the connection is not being made. I checked the traffic from one of the computers and I see no blocks under the Events and Logs->All Events screen. Regular ...

  • Is this hub-spoke topology and the configuration is taken from hub firewall? If that is the case, then maybe you should try to add multipoint under st0.0 and assign proper IP to this unit, so that remote spokes could be terminated on this st0.0 ...

  • I appreciate the feedback from everyone as always. My issue is resolved at this time. This was due to unnumbered tunnel interfaces and that on the old SSG5 all the tunnels were able to terminate on st0 using a pointer to the loopback address on the old ...

  • Your reading is correct, the SRX is seeing st0.0 as the interface source. Check the routing table to confirm where 10.253.252.6 is pointed, likely to the st0.0 interface. Security policy in/out are directed based on routing table interfaces. One ...

    2 people recommend this.
  • On the screenshot below is the IF St0.0 the remote side tunnel interface? Session ID: 4294995713, Policy name: BRIC-Apps-Servers/6, HA State: Stand-alone, Timeout: 20, Valid In: 10.253.252.6/11720 --> 10.25.50.43/443;tcp, Conn Tag: 0x0, If: st0.0 ...

  • Hi Team, I have a scenario where I want to deny all traffic except specific URLs or domain names. Is there any option in Juniper vSRX to achieve this, such as using DNS names or UTM? Please explain how these options work, how to configure them, and ...

Unanswered Posts

  • 1 person recommends this.

Top Contributors in the Community