Juniper SRX Update the Operating System / Firmware
SRX Update KB ID 0000989 Problem With two brand new SRX firewalls on the bench my first task was to get them updated to the latest operating system. Solution : SRX Update Before you start get the updated Juniper software. Option 1 Update SRX firewall via Command Line 1. Connect to the firewall via either Console cable, telnet, or SSH. 2. Log on and then go to CLI mode, and then configuration mode. login: root Password: *******...
Juniper SRX Cluster (Active / Standby)
SRX Cluster KB ID 0000990 Problem I’ve had very little exposure to JUNOS and Juniper equipment, and later in the year I have to deploy some for a client in a failover cluster. So I had a good look round on the Internet, and found loads of good blog posts and KB articles like this one. The problem is they are all geared to setting up a cluster, they ASSUME you then know about security zones, how to add default routes, and setup...
Juniper SRX Alarm Light Lit
SRX Alarm Light KB ID 0000993 Problem I noticed the alarm light was lit amber on an SRX240 Juniper firewall. Solution : SRX Alarm Light This will not serve as a solution to every alarm on the SRX, but it should point you where to look, and show you how to resolve the two problems I identified on my firewall. View SRX Alarm Light Status in J-Web The status is displayed on the ‘Dashboard’ tab, here you can see I’ve got...
Juniper JUNOS SRX NAT – Static ‘One-to-One’
SRX NAT KB ID 0000995 Problem Setting up ‘Static NAT’ is the process of taking one of your ‘spare’ public IP addresses, and permanently mapping that public IP to a private IP address on your network. In the example above I want to give my web sever which has an internal IP address of 192.168.1.10/24, the public IP address of 1.1.1.5/24. So if someone out on the Internet wants to view my website, they can...
Juniper SRX Commit Errors
SRX Commit Errors KB ID 0000999 Problem WARNING: This article is not to cover every problem that will stop you committing the firewall config. It just serves to document problems I’ve encountered, and I how I overcame them. Solution: SRX Commit Errors I came across the following two problems whilst attempting to setup a ‘chassis cluster’. both were related to configuration existing on interfaces that I wanted to use...