Mar 5 2012

Juniper SRX: Copy a file from one node to another one in a JSRP Chassis Cluster.

When Chassis Cluster is enabled, it is possible to transfer a file from one node to the other.

An example scenario would be if it’s required to move a JunOS image from one node to the other to upgrade both nodes.
Continue reading

Feb 27 2012

Juniper SRX: Configure Time and NTP Client.

Let’s see how to set the system time of an SRX Series device manually and configure NTP on the device.
Continue reading

Feb 26 2012

Juniper SRX: Customize “Default-Deny” policy to allow Dropped Sessions Logging.

In JunOS traffic which doesn’t match an explicitly defined security policy matches against the default-deny policy.

Administrators who would track (LOG) denied sessions, will simply choose to create their own deny policies with the desired options and place this deny policy as the last policy for traffic going from one zone to another.
While working with instances where many zones have been configured, it might be very time-consuming to manually configure this to accommodate all zones.
Continue reading

Jan 30 2012

Juniper SRX Series: Creating and managing the “Rescue Configuration”.

A rescue configuration allows administrators to define a known working configuration or a configuration with a known state that can be loaded (this is called a configuration roll-back) at any time.

This alleviates the necessity (on Junper devices) of having to remember the rollback number with the rollback command.
Rescue configuration can be used to roll back to a known configuration or as a last resort if device configuration and backup configuration files became damaged beyond repair.
Continue reading

Jan 29 2012

Upgrade JunOS on SRX Chassis Clusters.

SRX devices in a Chassis Cluster have a requirement to not have different version of JunIS on each node of the cluster.

Because of this, it is very important to ensure that both devices in the cluster come online at the same time.
Continue reading