Recent Posts

Pages: [1] 2 3 4 5 6 ... 10
1
NetScreen and SSG/ISG Series Firewalls / Re: GRE over IPsec with BGP
« Last post by Rich_rp on April 21, 2017, 04:59:13 pm »
Yes it is
On the propose solution the GRE tunnel is require as it will recreate the “physical connection”, point-to-point and communication will be Internet trough, IPSEC is key to maintain security as the data will be encrypted.
2
NetScreen and SSG/ISG Series Firewalls / Re: GRE over IPsec with BGP
« Last post by joshua.tres on April 21, 2017, 01:50:22 pm »
Hi

As far as I understood you want to create a Tunnel in a tunnel? Is that right?
3
Hi

This is correct. You have to translate the port with PAT if your  Server needs to be accessed on Port 44555 on the public side.

Cheers Josh
4
I have an FTP network device that cannot change the port to use.  It is fixed as 21.
I need to communicate to an FTP server that uses a non-standard port 44555.
Would this scenario be called Source PAT?  Everything I have read doesn't seem to work.
If you could point me to an example it would be much appreciated.
5
Routers / Re: Juniper Software
« Last post by Wiki Khan on April 19, 2017, 02:06:00 am »
6
NetScreen and SSG/ISG Series Firewalls / GRE over IPsec with BGP
« Last post by Rich_rp on April 17, 2017, 05:21:35 pm »
Hello all,

I need configure a GRE tunnel over an Ipsec tunnel and using BGP to Propagate Routing Information I have a Juniper Netscreen ISG-2000 and am confuse. please help me

7
What kind of phase 2 encryption are you using?
Did you check the tcp-mss settings?
 https://kb.juniper.net/InfoCenter/index?page=content&id=KB30688&pmv=print&actp=LIST

BR Josh
8
Hi
IPsec between Juniper and Cisco ASA doesn't really work fine.
The problem is the way how the proxy-id's are negociated between the Juniper and the ASA. The ASA can (as far as I know) only work with one. Therefore is not a problem of the 8SSG because Juniper is pretty standard in IPsec.

Try to use only one proxy-id per tunnel and check again. If you are using route based VPN check the routings (inbound/outbound).  Don't forget to open the ruleset on the Juniper!

Cheers Josh
9
NetScreen and SSG/ISG Series Firewalls / Re: PPPoA on SSG140
« Last post by joshua.tres on April 15, 2017, 06:43:02 am »
Hi, as far as I understood is PPPoA using a direct link to ADSL, right?
Meaning you need a "modem" unit on your SSG140 to have de ability to "call" through the ADSL line.
If your SSG140 doesn't have a "modem" card, the PPPoA will not work. The SSG140 doesn't have a "modem" card as default installed.

Cheers Josh
10
Hi, send the log to see more.
Pages: [1] 2 3 4 5 6 ... 10