We are running a J2320 with NAT/Firewall and serve about 90-150
clients without breaking a sweat, mind this is an converted SSG320M
with 1G CF / 2GB RAM. In load-tests we can get about 800Mbps through
it, but we don't have any extensive rules.
--
Timh Bergström
System Operations
Videoplaza
My environment is unique as I have a financial customer and there should be
0 packet loss. The number of pps at peak times goes up to 80 000 and the
spikes are heavy - 10 000 to 80 000 in less than one second. I am asking
about stateless NAT because in my case I do not need to do any statefull
Hi All,
I have a router with two VRFs.
I need to apply FBF on traffic flowing between the two VRFs so I created a
logical tunnel that connects the two VRFs.
The problem is that when importing routes from one VRF to the other the next
hop is obviously not through the tunnel.
I am trying to apply
Hi Amos,
I'm not sure I completely understand what you're trying to accomplish. Could
you give us an example topology diagram?
Thanks,
--Stacy
On Feb 4, 2012, at 1:20 PM, Amos Rosenboim wrote:
Hi All,
I have a router with two VRFs.
I need to apply FBF on traffic flowing between the two
Hi,
I have a bunch of users using SSL VPN to Juniper SA box. Is there a way to
give each user the same static ip that will
always be given to that user, whenever he logs in?
All best,
mjb
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
Have you verified connectivity across the lt?
Will O'Brien
On Feb 4, 2012, at 2:21 PM, Amos Rosenboim a...@oasis-tech.net wrote:
Hi All,
I have a router with two VRFs.
I need to apply FBF on traffic flowing between the two VRFs so I created a
logical tunnel that connects the two VRFs.
On Sat, Feb 4, 2012 at 3:46 PM, Maciej Jan Broniarz gau...@gausus.net wrote:
I have a bunch of users using SSL VPN to Juniper SA box. Is there a way to
give each user the same static ip that will
always be given to that user, whenever he logs in?
Unfortunately, I don't know of a simple way of
the suggestion from Jof is clever but it doesn't scale. I am afraid that you
would require of an external device to help you accomplish this, such as using
a Radius and Attribute Value Pairs (AVP) to send back to the SA the associated
IP for an user (framed-ip-address) upon connection.
On Sat, Feb 4, 2012 at 6:42 PM, Barny Sanchez bar...@juniper.net wrote:
the suggestion from Jof is clever but it doesn't scale. I am afraid that you
would require of an external device to help you accomplish this, such as
using a Radius and Attribute Value Pairs (AVP) to send back to the SA
9 matches
Mail list logo