SRX Next-Gen Firewalls

(disclaimer: homelab) Hey guys, I am having an issue with the interaction between the SRX320 and the Cisco WLC 3504. Wireless clients that have their gateway set and traffic handled on/by the SRX320, have their traffic either dropped or not forwarded ...

correct DNS is now supported in the latest code versions, however, it only works for ipv4 only ; if you need ipv6 ( I'm using ipv6 ike with dynamic "hostname" vpn to avoid opening the VPN hub to the world as I can lock down the VPN DNS name) so ...

I'm with Steve on this one. It's nice to issue a single command and just sit back and let it do its thing, upgrading a whole stack. It seems that the validation whether a cluster can perform the operation are insufficient, so if your cluster isn't in ...

ISSU has been a mixed experience for me from the beginning in 2009. When it works the process is great but the failures tend to be much worse than scheduled outages. A few years back we made the decision to do scheduled outages with reboots instead ...

Hello people, Be honest. What's your thoughts on ISSU process from your experience? Is it solid and works pretty well? Recently we've seen several problems with it: intermittent accesses, some sessions were lost between the switchover process and ...

Your policies are mostly permissive. If a website is allowed when it seems it should be blocked, you should check how the website is categorized in order to see if your policy is working ok or not. See this article on how to check a website category: ...

Thanks for the reply! web-filtering { http-reassemble; http-persist; juniper-enhanced { server { host rp.cloud.threatseeker.com; port 80; } profile BLOCKALLpolicy { category ...