Tuesday, December 13, 2011

Juniper SSG-5-SB Customer Information

The Juniper SSG-5-SB is one of Vology's best selling Juniper SSG series router firewall. Often, our customers are not aware of the different variations for this Juniper device. These variations I am referring to can be found in the ending extension of the part number (See examples below).
* Note - You can save yourself some money by buying the SSG-5-SB-10U instead of the SSG-5-SB. 





Juniper SSG 5 Model Number Variations
  • SSG-5-SB - Juniper model comes with 128MB of memory and RS232 serial backup interface
  • SSG-5-SB-BT - Juniper model comes with 128MB of memory and ISDN BRI S/T backup interface
  • SSG-5-SB-M - Juniper product comes with 128MB of memory and v.92 backup interface
  • SSG-5-SB-W-xx - Juniper router firewall with 128MB memory with RS232 serial backup interface and 802.11a/b/g wireless connection
  • SSG-5-SB-MW-xx - This final model features 128MB memory with ISDN BRI S/T backup interface and 802.11a/b/g wireless connection

Now that you are aware of the major differences of these SSG5 models. I will continue with a variety of different accessories, upgrades, and licencing options.

Juniper SSG 5 Product Options
  • SSG-5-ELU - Extended license upgrade key
  • SSG-5-20-MEM-256 - 256MB memory upgrade
  • SSG-5-RMK - Rack mount kit that holds 2 units
  • SSG-ANT - Replacement wireless antenna
  • SSG-ANT-DIR - Dual band directional antenna
  • SSG-ANT-OMNI - Dual band omni-directional antenna
  • SSG-CBL-ANT-10M - 10 meter low loss cable for either dual band directional or omni-directional antennas
  • NS-K-AVS-SSG5 - Kaspersky antivirus subscription that includes Anti-spyware and Anti-phishing features
  • NS-DI-ISG-SSG5 - Intrusion Prevention System subscription
  • NS-WF-SSG5 - Web Filtering subscription
  • NS-SPAM-SSG5 - Anti-spam subscription
  • NS-RBO-CS-SSG5 - Remote office bundle that includes antivirus, IPS, and web filtering licensing
  • NS-SMB-CS-SSG5 - Main office bundle that includes antivirus, IPS, web filtering, and antispam licensing 
Posted by at 2:38 PM 0 comments
Labels: , ,

Juniper SRX220 Antivirus - Web Filter - IDP - Antispam Installation

As example, you recently purchased a Juniper SRX220H router with a antivirus, web filter, IDP, or antispam license. You are probably wondering how to install your newly purchased license to your SRX220 device. This process may be used for any Juniper SRX series device. To simply the process, please follow steps 1 to 3 carefully.

Juniper SRX220 License Installation Tip
  1. First, activate your subscription license by entering the authorization code and chassis serial number into the Subscription Registration system. The authorization code will be 16 digits and sent to the email address provided by the purchase order. It is also recommended that you register your device for faster support in the future.

    For your convenience, follow these steps to register your product:
    - Log into the Juniper Networks Subscription System
    - Select Subscription Registration Tool
    - Enter the device serial number and authorization code
    - Click register product
    - Finally, you will see a confirmation page that notifies you of successful registration

  2. Next, install the license on the SRX by a manual or automatic method.

    For Automatic Installation

    Confirm the SRX appliance has connectivity to the Internet and DNS configured. Then run the following command to request the license from the License Management Server and install it:

    root> request system license update

    (The output of the command show configuration system license displays the default URL for the License Management Server.)

    For Manual Installation

    Licenses can also be loaded manually via JWeb, NSM, or using the CLI. The CLI command is as follows:

    rootrequest system license add terminal
    [Type ^D at a new line to end input, enter blank line between each license key]
    Paste the license key and press enter
    Type Ctrl+D

    The License key should be added successfully.

  3. Ensure the license is installed using the command:

    root> show system license

    For Antivirus, look for feature ' av_key_kaspersky_engine'.

    For Web Filter (URL Filtering), look for feature 'wf_key_surfcontrol_cpa'.

    For IDP, look for feature 'idp-sig'.

    For Antispam, look for feature anti_spam_key_sbl

Posted by at 11:53 AM 0 comments
Labels: , ,

Juniper SRX100B Factory Reset Instructions


There are currently three ways you can reset your Juniper SRX100B back to the original factory configuration. Not only do these steps work for the device listed, they also work for any SRX branch series router. The methods consist of using the load factory-default command, using the reset config button, and using the root password recovery process.

SRX100B Password Tip

Using the Load Factory-Default Command
If you are still able to log in to the SRX100B with the CLI, you can use the load factory-default command to return the security appliance to its original factory default configuration. The load factory-default command loads and commits the factory configuration, but using this command does not delete other configuration files on the device.
  1. Type the load factory-default command.
    root@host# load factory-default

  2. Use the set system root-authentication plain-text-password command to set a new root password for the device.
    root@host# set system root-authentication plain-text-password

  3. Enter the root password, and enter it one more time for confirmation.
    New password:
    Retype new password:

  4. Use the commit and-quit command to commit the configuration and exit from configuration mode if the configuration contains no errors and the commit succeeds. 
    root@host# commit and-quit

    After the commit, the factory default configuration is the running configuration.

Using the Reset Config Button
The reset config button may only be found on the SRX650, SRX240, SRX210 and SRX100.

You can use the Reset Config button on the front panel of the SRX Series product to reset your hardware to its factory default configuration. If you use the Reset Config button to reset the device to its factory default configuration, all the configuration files, including the backup configuration and rescue configurations, are deleted. Otherwise, this means they are gone forever.

To reset the your Juniper device to its factory default configuration, press and hold the Reset Config button on the front panel of the SRX Series device for at least 15 seconds, until the Status LED glows amber.


Using the Root Password Recovery Process
If you can no longer log in to your SRX device, you can use the root password recovery process to reset the device to its factory default configuration. You must have console access to use the password recovery process. Please follow these steps from 1 to 20 carefully.
  1. Power off the router by pressing the power button on the front panel.
  2. Turn off the power to the management device, such as a laptop or desktop computer, that you want to use to access the CLI.
  3. Plug one end of the Ethernet rollover cable supplied with the router into the RJ-45–to–DB-9 serial port adapter supplied with the router.
  4. Plug the RJ-45–to–DB-9 serial port adapter into the serial port on the management device.
  5. Connect the other end of the Ethernet rollover cable to the console port on the router.
  6. Turn on the power to the management device.
  7. On the management device, start your asynchronous terminal emulation application (such as Microsoft Windows Hyperterminal) and select the appropriate COM port to use (for example, COM1).
  8. Configure the port settings:  Bits per second = 9600, Data bits = 8, Parity = None, Flow control = None
  9. Power on the router by pressing the power button on the front panel. Verify that the POWER LED on the front panel turns green. The terminal emulation screen on your management device displays the router’s boot sequence.
  10. When the following prompt appears, press the Spacebar to access the router’s bootstrap loader command prompt:

    Hit [Enter] to boot immediately, or space bar for command prompt. Booting [kernel] in 9 seconds...

  11. At the following prompt, enter boot -s to start up the system in single-user mode.

    ok boot -s

  12. At the following prompt, enter recovery to start the root password recovery procedure.

    Enter full pathname of shell or 'recovery' for root password recovery or RETURN for /bin/sh: recovery

  13. Enter configuration mode in the CLI.
  14. Set the root password. For example:

    user@host# set system root-authentication plain-text-password

  15. At the following prompt, enter the new root password. For example:

    New password: Vology
    Retype new password: Vology

  16. At the second prompt, reenter the new root password.>
  17. After you have finished configuring the password, commit the configuration.

    root@host# commit
    commit complete

  18. Exit configuration mode in the CLI.
  19. Exit operational mode in the CLI.
  20. At the prompt, enter y to reboot the router.

    Reboot the system? [y/n] y
Posted by at 10:49 AM 2 comments
Labels: , ,
Subscribe to: Posts (Atom)