SRX Next-Gen Firewalls

 View Only
last person joined: 5 days ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Welcome!

If you have a question or a use case, likely there are others who are experiencing or worked through the same thing. Don't hesitate to jump in and ask or share your knowledge!

Need additional guidance?  Check out these Juniper Resources.

Juniper Threat LabsSRX Upgrade Guide Security Advisories Technical Bulletins

Latest Discussion Posts

  • Share config perhaps, to give clues. ------------------------------ Nikolay Semov ------------------------------

  • I don't have a box running 22 to test with, but I saw this in a recently-updated KB, except in their example they're using it to match the source-address rather than the destination-address. https://supportportal.juniper.net/s/article/SRX-DNS-name-is-not-a-supported-address-or-address-set-type-in-NAT-rules?language=en_US ...

  • Thanks Nikolay. As far as I can see and with the tests I've done, this does not resolve my problem. My use case for this is doing source-NAT to a specific source pool when traffic has a destination which is a FQDN. I am unable to create a NAT rule ...

  • This message was posted by a user wishing to remain anonymous Hi All, I have a juniper SRX 320 on packet mode and connected to internet via a 4G uplink. I can access the router externally without any issues. I also have a public subnet routed over ...

  • Ok, you know what, yes, okay, I'm sorry I didn't pay enough attention and I missed it, but your configuration from 4 days ago is right, except as Steve said you really don't need the proxy-arp at all if 12.12.12.12 is the address of the outside interface ...

  • Hi Nikolay. We're not using an application. Just the web GUI of the printer over HTTPS. If i'm understanding you correctly, we can't DNAT to multiple devices behind the firewall unless we own multiple public IP addresses. Is that accurate? ------------------------------ ...

  • Thank you Nikolay for the correction. Honestly, I don't know how I got on the SNMP train. My apologies to the OP. ------------------------------ GAVIN WHITE ------------------------------

Unanswered Posts

Top Contributors in the Community