Linux, FreeBSD, Juniper, Cisco / Network security articles and troubleshooting guides

FAQ
It is currently Wed Apr 14, 2021 6:08 am


News News of Juniper SRX

Site map of Juniper SRX » Forum : Juniper SRX


 [ Total topics 25 Go to page 1, 2, 3

Message
 Post subject: How to monitor CPU usage and flow sessions via SNMP - Juniper SRX Branch - 12.1X44
PostPosted: Tue Jun 18, 2013 6:13 pm 
As every operating system, Junos on SRX has special SNMP MIBs for querying SRX information via the SNMP daemon.

More Info about Junos SRX SPU monitoring MIBs can be found on Juniper website:
http://www.juniper.net/techpubs/en_US/junos11.2/information-products/topic-collections/reference-mibs-and-traps/index.html?topic-25307.html and an OID viewer:
http://www.oidview.com/mibs/2636/JUNIPER-SRX5000-SPU-MONITORING-MIB.html

Following is list of SNMP OIDs contained in the "jnxJsSPUMonitoringMIB" SNMP MIB:

jnxJsSPUMonitoringMIB 1.3.6.1.4.1.2636.3.39.1.12.1
jnxJsSPUMonitoringObjectsTable 1.3.6.1.4.1.2636.3.39.1.12.1.1
jnxJsSPUMonitoringObjectsEntry 1.3.6.1.4.1.2636.3.39.1.12.1.1.1
jnxJsSPUMonitoringIndex 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.1
jnxJsSPUMonitoringNodeIndex 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.10
jnxJsSPUMonitoringNodeDescr 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.11
jnxJsSPUMonitoringFPCIndex 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.2
jnxJsSPUMonitoringSPUIndex 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.3
jnxJsSPUMonitoringCPUUsage 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.4
jnxJsSPUMonitoringMemoryUsage 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.5
jnxJsSPUMonitoringCurrentFlowSession 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.6
jnxJsSPUMonitoringMaxFlowSession 1.3.6.1.4.1.2636.3.39.1.12.1.1.1.7 ...

Read more : How to monitor CPU usage and flow sessions via SNMP - Juniper SRX Branch - 12.1X44 | Views : 13485 | Replies : 0

Top
 Post subject: Squid http(s) transparent proxy with Juniper SRX | part 3
PostPosted: Fri May 24, 2013 8:32 am 
This is the final part of this tutorial - Configuring the SRX to "detour" HTTP and HTTPS traffic to PF/SQUID box.
Image

As mentioned before, the SRX will not change neither the souce nor the destination IP addresses of the packets. Instead, it will use different default route for them (default route because destination IP is the internet, not a specific IP or block).

First, we define a custom VR (type forwarding - does only ...

Read more : Squid http(s) transparent proxy with Juniper SRX | part 3 | Views : 7397 | Replies : 0

Top
 Post subject: Squid http(s) transparent proxy with Juniper SRX | part 2
PostPosted: Tue May 21, 2013 5:58 am 
How to intercept HTTP/HTTPS connections with Juniper SRX, FreeBSD and Squid -part 2
Network diagram:
Image
Part 2 of this tutorial focuses on preparing the FreeBSD Squid/PF box for intercepting HTTP/HTTPS connections.
As mentioned in part 1 of this tutorial (http://forum.ivorde.ro/how-to-intercept ... 14111.html), starting with Squid version 3.2, packets arriving to SQUID port need to be destination NATed, but the difference is that squid needs to look at the ...

Read more : Squid http(s) transparent proxy with Juniper SRX | part 2 | Views : 8464 | Replies : 0

Top
 Post subject: Squid http(s) transparent proxy with Juniper SRX | part 1
PostPosted: Fri May 03, 2013 4:30 pm 
How to intercept HTTP/HTTPS connections with Juniper SRX, FreeBSD and Squid -part 1
Image
In this article, I will share my config, thoughts and resources on setting up a transparent proxy for both HTTP connections and HTTPS (man in the middle).

This is only for proof of concept purpose.


What needs to be known:
- when a browser is set up to use a proxy, it will send commands in following format "CONNECT ...

Read more : Squid http(s) transparent proxy with Juniper SRX | part 1 | Views : 9810 | Replies : 0

Top
 Post subject: [Config] Juniper SRX home LAN with dual AX411 wireless Access Points and source nat / dhcp untrust
PostPosted: Mon Apr 22, 2013 10:14 am 
Below is a simple config of an SRX 220 managing two Juniper AX411 Access points, performing source nat from trust (internal LAN) to untrust (internet). It permits all traffic from trust->untrust as well.

Hierarchical config:
## Last changed: 2013-04-19 16:27:21 UTC
version 11.4R7.5;
system {
host-name Andrei-SRX;
root-authentication {
encrypted-password "<SECRET DATA>"; ## SECRET-DATA
}
name-server {
208.67.222.222;
208.67.220.220;
8.8.8.8;
}
services {
ssh {
root-login allow;
protocol-version v2;
}
telnet;
xnm-clear-text;
web-management {
http ...

Read more : [Config] Juniper SRX home LAN with dual AX411 wireless Access Points and source nat / dhcp untrust | Views : 4033 | Replies : 0

Top
 [ Total topics 25 Go to page 1, 2, 3


Last 10 active topics


Virtualization

No new posts How to retrieve Vmware ESXi license from ssh shell command line
View the latest post

Shell Scripting and Programming

No new posts Scan IP range using nmap
View the latest post
No new posts Password generator with user inputs bash script
View the latest post

TCP/IP Networking

No new posts TCP ack after two packets
View the latest post

Junos Tips & Tricks

No new posts MTR / My traceroute in Junos
View the latest post

VPS Hosting & Security

No new posts Host a gmod server on a vps or shared host?
View the latest post

Juniper virtual MX (vMX)

No new posts Juniper Virtual MX (vMX) 14.2R5.3 Phase 2 (RE and MPC on different VMs)
View the latest post

OpenLDAP - Lightweight Directory Access Protocol

No new posts cannot login in linux system with ldap user after changing the ldap user password
View the latest post

PHP and other web technologies

No new posts php
View the latest post

TCPdump & Wireshark tips & tricks

No new posts Tcpdump - dump HTTP headers as ASCII and HEX
View the latest post

Login

Username:   Password:   Log me on automatically each visit  

Statistics

Statistics

Total posts 617 | Total topics 987 | Total members 1192



cronNews News Site map Site map SitemapIndex SitemapIndex RSS Feed RSS Feed Channel list Channel list


Delete all board cookies | The team | All times are UTC - 5 hours [ DST ]



phpBB SEO