SRX

 View Only
last person joined: 23 hours ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

HTTPS/TLS traffic inspection on SRX1500 configured in cluster mode

  • 1.  HTTPS/TLS traffic inspection on SRX1500 configured in cluster mode

    Posted 20 days ago

    Hi All, I am new to this forum as well as to Juniper. 

    SRX1500 (22.2R3) configured in active/passive clustering with single control plane.  

    How to achieve SSL Forward/reverse proxy functionality on SRX1500s or SRX4100s configured in cluster mode. 

    How these devices handle HTTPS/TLS traffic inspection (intercept, decrypt, inspect, av scan and re-encrypt) while configured in a cluster mode.

    what are the differences between chassis cluster mode and multi-node high availability?

    https://www.juniper.net/documentation/us/en/software/junos/application-identification/topics/topic-map/secure-web-proxy-security-devices.html

    • An SRX Series Firewall operating in chassis cluster mode does not support the secure Web proxy functionality.

    • SRX Series Firewalls operating in Multi-node High Availability setup do not support the secure Web proxy functionality.

    https://www.juniper.net/documentation/us/en/software/junos/application-identification/topics/topic-map/security-ssl-proxy.html

    • SRX Series Firewalls operating in Multi-node High Availability setup do not support the SSL proxy functionality.



    ------------------------------
    DHARSHANI SELVANITHY
    ------------------------------