SRX Next-Gen Firewalls

 View Only
last person joined: 19 hours ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Welcome!

If you have a question or a use case, likely there are others who are experiencing or worked through the same thing. Don't hesitate to jump in and ask or share your knowledge!

Need additional guidance?  Check out these Juniper Resources.

Juniper Threat Labs SRX Upgrade Guide Security Advisories Technical Bulletins

Latest Discussion Posts

  • I have my policy statements built this way. Each term has the same exact from and to. The difference is that after accepting the code in the first term, it then is rejected. This is so that your traffic is guaranteed to pass. So, your filter will be doubled. ...

  • " we have a local static route on the firewall for all internal traffic next-hop to the two ISPs gateways. " If those routes are in inet.0 then they won't matter for traffic that's trying to use Net-route-table.inet.0 for routing. Consider, on ...

  • Hello, guys. Could you please support here. I'm completely lost and got no meaningful explanation on what is going on there. Config is pretty straight forward: set system services web-management https interface ge-0/0/8.0 set security zones ...

  • As a followup.. The reason I don't think the next-hop to our ISPs gateway will work is because it is a public IP and I can ping it with my phone. That means the IP can be found on either of our ISPs interfaces. I do not want to have traffic find a ...

  • Thanks y'all. Your comments came in handy for me tonight. My vSRX nodes in EVE-NG are KVM type (junos-vsrx3-x86-64-23.2R2.21.qcow2) and are defaulting to 2048 RAM and qemu nic - tpl(e1000) When they boot up I see 11 system interfaces ...

  • I've used 10g DAC on SRX successfully, but not on the 550 specifically. ------------------------------ Nikolay Semov ------------------------------

  • " On ethernet connections, the next-hop address is the address of the device where traffic should go next, so in your case that's the ISP's address" I will dig into this, but I am not quite sure that is required because we have a local static route ...

Announcements

  • Introducing Juniper Support Portal (JSP) Mobile App for iOS

    The Juniper Support Portal (JSP) Mobile App is now available for customer use on iOS platforms. The app is designed to provide mobile access for on-the-go service support. 

    What’s available?

    • Live Chat Support
    • Instant Notifications
    • Knowledge Base Access 

Unanswered Posts

Top Contributors in the Community

Log in to see this information