SRX

 View Only
last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.
Expand all | Collapse all

how to restrict J-web access fonly from interface configured under system services web-management on firewall configured with Juniper secure Connect

  • 1.  how to restrict J-web access fonly from interface configured under system services web-management on firewall configured with Juniper secure Connect

    Posted 02-27-2024 11:55
    how to restrict J-web access fonly from interface configured under system services web-management on firewall configured with  Juniper secure Connect 
     
    Hi All, to limit access to J-Web I have specified interfaces under web-management configuration as below:
     
    set system services web-management https interface reth2.4
    set system services web-management https interface reth0.0
     
    however, I have enabled https on untrusted interfaces to allow Juniper Secure Connect remote users  to connect to SRX from outside 
     
    set security zones security-zone Untrusted interfaces rethX.XXX host-inbound-traffic system-services https
    but J-WEB still reachable from outside/untrusted zone .
     
    How can i deny J-WEB access from outside?
    thank you in advance


    ------------------------------
    ANDREA MALACARNE
    ------------------------------


  • 2.  RE: how to restrict J-web access fonly from interface configured under system services web-management on firewall configured with Juniper secure Connect

    Posted 02-28-2024 11:13

    Hi Andrea,

    You don't mention what version of Junos you are running but in this configuration Junos version 22.2R3-S2 is jtac recommended. 

    Cheers

    -Tom