SRX Next-Gen Firewalls

 View Only
last person joined: 4 days ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Welcome!

If you have a question or a use case, likely there are others who are experiencing or worked through the same thing. Don't hesitate to jump in and ask or share your knowledge!

Need additional guidance?  Check out these Juniper Resources.

Juniper Threat LabsSRX Upgrade Guide Security Advisories Technical Bulletins

Latest Discussion Posts

  • Hmm, okay so the only way to do this is with a self-signed cert, and then upload it to each computer? I just want to confirm.

  • You're essentially looking for your SRX to act as a publicly-trusted sub-CA, with ability to issue a certificate for any website. Unless you're operating at the scale of a nation state, I don't believe you're likely to be able to get the necessary certificate ...

  • Hi Ben, yes i'm talking about Mitm so inside clients don't complain. I've used that link to configure most of it, but there's not much detail about loading a external CA for MITM use.

  • Do you mean an "official" cert signed by a CA? LetsEncrypt is handled directly in JunOS after like 22.4 IIRC. I have it set up for one client so Juniper Secure Connect is happy and works. But it's only valid for the SRX (because of the hostname) At ...

  • Hi all, Is it possible to use a public CA cert as my Root-CA in ssl proxy configuration so I do not have to add self-signed certs to all computers downstream of the SRX?

  • No. Not similar. We do eBGP towards our ISP. ------------------------------ Best regards Vidar Stokke ------------------------------

  • I believe the answer is "Yes," perhaps even "YES!!!" ------------------------------ Nikolay Semov ------------------------------

Announcements

  • Introducing Juniper Support Portal (JSP) Mobile App for iOS

    The Juniper Support Portal (JSP) Mobile App is now available for customer use on iOS platforms. The app is designed to provide mobile access for on-the-go service support. 

    What’s available?

    • Live Chat Support
    • Instant Notifications
    • Knowledge Base Access 

Unanswered Posts

Top Contributors in the Community