Critical ScreenOS Security Flaw: 6.2.0r15 through 6.2.0r18 and 6.3.0r12 through 6.3.0r20. Update 4/6/2016: New ScreenOS 6.3r22 release Juniper has now completed the ScreenOS VPN updates with the removal of the DUAL_EC_DRBG and the ANSI X9.31 […]
Read More →I just finished creating an online version of the introductory Configuring Juniper ScreenOS Firewall/IPSEC VPN class. YouTube Play List Originally Posted May 20, 2012 Last Revised on May 20, 2012
Read More →Product: ScreenOS Version: 6.0 and higher Network Topology The local trust zone server has a public ip address assigned for accessing services. This has two policies created. One allows destination nat for the untrust internet […]
Read More →Product: ScreenOS Version: 6.0 and higher Network Topology Two sites that each have redundant internet connections. This establishes two VPN tunnels and uses OSPF to set routing priorities over the tunnels to use the primary […]
Read More →Product: ScreenOS Version: 6.0 and higher Network Topology Two sites connected by VPN with one site having two internet access connections. They connect using policy based VPN. Description: This configuration has a redundant internet link […]
Read More →Product: ScreenOS Version: 6.0 and higher Network Topology Two sites are connected via a route based VPN, server site and public IP site. The local public ip site publishes a policy to allow internet access […]
Read More →Product: ScreenOS SSG Series Version: 6.2 and up Network Topology: Network diagram: Hub and spoke VPN with multiple sites using point to multipoint Two sites routing VPN with SSG Two sites Policy VPN with any […]
Read More →ScreenOS provide two methods to reset a device to the factory default settings. Hard reset (Pinhole reset) Soft reset (Console login) The pinhole reset method can be difficult to achieve if you do not have […]
Read More →Product: ScreenOS SSG Series Version: 6.0 and up Network Topology: Network diagram: Two sites connect via IPEC VPN across the internet. The internet requests from the remote site are forwarded down the VPN tunnel to […]
Read More →Product: ScreenOS Version: 6.0 and higher Network Topology Two firewall interfaces configured in untrust zone. One for each internet service provider using ethernet0/0 and ethernet0/1. Description: You can setup a second internet service as a […]
Read More →Product: ScreenOS SSG Series Version: 6.0 and up Network Topology: Network diagram: Two sites that have internet connections and a firewall that supports IPSEC VPN. This procedure creates the Virtual Private Network across the internet […]
Read More →Product: ScreenOS wireless series Version: 6.2R7 and above There is a RADIUS bug in code below this release that can cause a system reboot when RADIUS authentication is denied for the client. Network Topology: Network […]
Read More →Product: ScreenOS Version: Tested Version 6 and up Network Topology: Connecting WAP to SSG port ethernet0/6 This removes ethernet0/6 from the default trust bgroup0 for isolation Description: Provide a Guest Wireless Access Point (WAP) on […]
Read More →Product: ScreenOS Version: 4.0 and higher Description: The built in flash on the firewalls have limited storage for log files. These are automatically over written as space runs out on the device. Adding a USB […]
Read More →Product: WXC WAN Accleration Version: Any Network Topology: The diagram notes the before and after network logical diagram for the site. The before scenario shows the standard active/passive cluster connecting to both the internal and […]
Read More →Products: WXC WAN Accelerator any model & SSG Firewall any Model Version: Tested with ScreenOS 6.1 & 6.2 & WXC 5.7 Network Topology: Network diagram: SSG5 is the sample design eth0/0 – WAN eth0/1 – […]
Read More →Product: ScreenOS SSG Series Version: 6.2 Network Topology: Network diagram: Hub and spoke VPN with multiple sites using point to multipoint Using OSPF for route distribution Using Auto-complete VPN for spoke to spoke traffic Description: […]
Read More →
steve@puluka.com