Re: [j-nsp] Netscreen Firewalls and TCP States/Bypass

On Tue, 20 Sep 2011 08:31:33 +0100, Phil Mayers wrote: 'unset flow tcp-syn-check' is what you want but unfortunately it is a global setting, so all or nothing... Are you sure? I don't think that's what he wants; as suggested by the name, this relaxes the requirement for the 1st packet to be a

Re: [j-nsp] SRX Experiences - Was: JUNOS 10.4S6 for EX8200 - PR/676826

Am 02.09.2011 14:11, schrieb Derick Winkworth: 1. Have you opened tickets? 2. Did you look in the Defect Search tool? To be honest - no. I've solved the issue by only filtering the traffic on one virtual router, that did the trick. Unfortunately we have so many bugs in our NSM installation/

Re: [j-nsp] SRX Experiences - Was: JUNOS 10.4S6 for EX8200 - PR/676826

Am 01.09.2011 23:06, schrieb Scott T. Cameron: I have 2x chassis cluster with SRX3400s. ALGs will destroy your soul. Avoid at all costs. Additionally, they don't work when firewalling over two virtual routers (which I did need for a setup on a chassis cluster). The ports then get only open

Re: [j-nsp] SNMP OID for session usage in ScreenOS

Am 22.05.2010 10:30, schrieb Patrik Olsson: sessionsAllocated -> SNMPv2-SMI::enterprises.3224.16.3.2.0 sessionsMaximum -> SNMPv2-SMI::enterprises.3224.16.3.3.0 sessionsFailed -> SNMPv2-SMI::enterprises.3224.16.3.4.0 > Hi all! > > Anyone have the OID Path for the session counter in ScreenOS? > > C

Re: [j-nsp] NS 5200

Ibariouen Khalid wrote: Hi there, If you take the time to browse around the Juniper support site, you'll notice the following: "M2-Management_Module with 8G and/or 24FE is not supported in ScreenOS 6.0, please select 5.4.0" The SPM2/3 are the next generation port modules for the 5000 series. B