Juniper SRX240 – Firewall Cluster (Active / Standby)
KB ID 0000990 Problem I’ve had very little exposure to JUNOS and Juniper equipment, and later in the year I have to deploy some for a client in a failover cluster. So I had a good look round on the Internet, and found loads of good blog posts and KB articles like this one. The problem is they are all geared to setting up a cluster, they ASSUME you then know about security zones, how to add default routes, and setup NAT etc. So...
Juniper (JUNOS) SRX – Static ‘One-to-One’ NAT
KB ID 0000995 Problem Setting up ‘Static NAT’ is the process of taking one of your ‘spare’ public IP addresses, and permanently mapping that public IP to a private IP address on your network. In the example above I want to give my web sever which has an internal IP address of 192.168.1.10/24, the public IP address of 1.1.1.5/24. So if someone out on the Internet wants to view my website, they can browse to...
Juniper SRX – Commit Errors
KB ID 0000999 Problem WARNING: This article is not to cover every problem that will stop you committing the firewall config. It just serves to document problems I’ve encountered, and I how I overcame them. Solution I came across the following two problems whilst attempting to setup a ‘chassis cluster’. both were related to configuration existing on interfaces that I wanted to use as Reth interfaces. essentially I...
Factory Reset Juniper SRX Firewall
KB ID 0001003 Problem If you manage to stuff up your firewall, or you have just done some testing and want to revert back to ‘as new’ here is how to do it. Solution 1. Connect to the firewall either by console cable or via SSH, go to CLI mode then configuration mode. login: PeteL Password: ************ — JUNOS 12.1X47-D10.4 built 2014-08-14 22:21:50 UTC PeteL@Petes-SRX> cli PeteL@Petes-SRX> configure Entering...