Comments for I-BLOG

Comment on Site-To-Site VPN on Netscreen/Juniper Firewalls by Madje

Madje — Thu, 05 Jan 2012 08:58:20 +0000

Thank You Rajesh….Can I have your email id.

Comment on Site-To-Site VPN on Netscreen/Juniper Firewalls by rsivanandan

rsivanandan — Thu, 05 Jan 2012 08:08:14 +0000

Yes you can. Basically all what you have the difference is one side private IP as interesting network and the other end as public IP – it should work. Normally both sides will be private IP. The technology works on the same principle.

Cheers,
Rajesh

Comment on Site-To-Site VPN on Netscreen/Juniper Firewalls by Madje

Madje — Thu, 05 Jan 2012 05:59:26 +0000

Hi Guys,

One query.. I have 2 juniperssg5 device and need to establish site to site vpn tunnel. Is it possible to establish vpn tunnel between and privateip address and public ip address.

I mean, Device A have private ip address subnet and Device B have public ip address subnet…so is it possible to establish site to site vpn tunnel ? How to do it ?

Thank you

Comment on VPN between Cisco PIX and Juniper Netscreen Firewall by rsivanandan

rsivanandan — Wed, 07 Dec 2011 16:01:31 +0000

Hi Tom, in this scenario, a route based VPN would be the way to go for couple of reasons;

http://kb.juniper.net/InfoCenter/index?page=content&id=KB4124

The above article would help you understand different needs.

Cheers,
rsivanandan

Comment on VPN between Cisco PIX and Juniper Netscreen Firewall by Tom

Tom — Wed, 07 Dec 2011 14:59:29 +0000

Hello Rajesh,

I have a query reagaring Site to Site VPN setup between a Netscreen 5gt and Cisco asa.

We have a netscreen 5GT and the client has a Cisco ASA.

Scenario is a VPN tunnel has to be setup from the subnet in our end ie 10.10.10.0 is to connect to a couple of individual Nated IP address ( ie On their end the Nated IP is 192.168.108.2 and the IP address is 10.100.1.2 )

I do have expierence setting up site to site vpn where both end have the Network address but how to i go about sentting up a VPN tunnel from my subnet to individual Natted Ip address at the other end ?

Should i try policy or route based with Nat Traversal ?

Any assistance will be helpfull.

Regards,
Tom

Comment on Cisco ASA vs Juniper SSG/ISG firewalls by rsivanandan

rsivanandan — Wed, 30 Nov 2011 03:12:57 +0000

Yes, that is one hell of a router with modular architecture. Prior to that the routers were pretty much sealed and this offered the flexibility in what one really wants to do with this.

Cheers,
rsivanandan

Comment on Cisco ASA vs Juniper SSG/ISG firewalls by Rachel Harris

Rachel Harris — Wed, 30 Nov 2011 02:32:57 +0000

Hey Rsivanandan,
On a similar note,, The Cisco 7600 router is in my feeling an individual of the most flexible Superior Stop routing machines on the planet!! It is a particular of my favourite networking units. If you get a seem at Cisco website under the Routers Products Category, you will observe that the 7600 can be chosen in Info Centers, in Support Supplier networks, in WAN aggregation or as Net Edge router. In Service Suppliers can be applied as Supplier Edge (PE) in IP MPLS networks aggregating a great number of Customer Edge (CE) router products. Its modularity and large port potential enables the 7600 to labor as each Layer2 aggregation and as Layer3 high performance router.
Great Job!

Comment on Last Trip To Kerala by rsivanandan

rsivanandan — Fri, 28 Oct 2011 01:43:49 +0000

Shadia, I’ve invested close to 90K now on the gears (Nikon D5000, this model doesn’t come now and an advanced one is coming D5100 which I heard is very good. If you don’t mind spending a little more then D7000 is one of the best of its kind – entry level DSLR’s). Then it is about lenses, here I bought a zoom lens and a prime lens. The camera came with a kit lens of 18-55mm and I think it’ll be around 50-55k now.

Cheers,
rsivanandan

Comment on Last Trip To Kerala by Shadia

Shadia — Thu, 27 Oct 2011 18:02:42 +0000

Loved the pic of that tree you’ve posted. Its so full of life.
And how much did that DSLR cost all together? I’m dying to buy one. I think I’ve taken my Nokia N73 mobile to its max limit. And the photos are always so grainy if the lighting isn’t really good. Wish the HOD had invested in a DSLR rather than a Camcorder

Comment on Firefox Search Plug-In for Juniper Knowledge Base (KB) by rsivanandan

rsivanandan — Sun, 02 Oct 2011 14:49:36 +0000

Have you tried out Olive? Try Googling for Olive + Juniper. It isn’t going to be exactly you want, but will help you get to some level.

Cheers,
Rsivanandan

Comment on Firefox Search Plug-In for Juniper Knowledge Base (KB) by Ershad

Ershad — Sun, 02 Oct 2011 13:49:12 +0000

Dear Rsivanandan,
your postings are very much helpful for beginners as well as experience professionals.
Could you please tell me juniper simulator like Cisco “Packet Tracer” simulator.
I found one juniper simulator prepared by “Cert exams”. but in demo version not enough commands are working.if you have any Crack to convert in full version.Kindly tell me….waiting for your response………..

Comment on Block Facebook using Juniper SRX by San

San — Thu, 15 Sep 2011 22:29:39 +0000

The way to block facebook on SRX is not as easy as explained here. There is a lot of configuration to be done to achieve this. Even JTAC has got no clue how to block https facebook with using only srx.

Comment on Sony Erricson to upgrade Xperia X10 to Gingerbread 2.3.3 by David Rouster

David Rouster — Mon, 29 Aug 2011 14:39:29 +0000

Cool cell!! I’m using Sony Erricson Xperia X10 recently. Now it’s releasing new upgrade, sounds like more awesome stuff to enjoy for. Thanks for allocating this cool announcement.

Comment on Software Restriction Policy by Grady Skibosh

Grady Skibosh — Sat, 27 Aug 2011 04:12:49 +0000

I just wanted to say thanks for taking the time to write this! I enjoy reading your blog.

Comment on 4.3 million unemployed in Kerala by Joseph

Joseph — Sun, 03 Jul 2011 19:40:41 +0000

In spite of these statistics there is acute scarcity of labour in the state. As for the professionally qualified persons, is it really impossible to find a job in Kerala or start even a self sponsored venture? I think these statistics do not represent the real picture. If wants a govt.job that is a different matter and the days of relying on gove.jobs are gone.

Basic statistics on the numbers registered in employment eschanges is no more realistic. Most of them are engaged in some job or other.

Comment on PPTP Pass-through through Juniper NS 5GT Firewall by Jack

Jack — Thu, 30 Jun 2011 01:54:47 +0000

tks for your information,it is so good.i have a question:i has config PPTP is okie(pptp-pass-through-through-juniper-ns-5gt-firewall),now i want NAT port L2tp(l2tp-pass-through-through-juniper-ns-5gt-firewall).How to do it?

Tks bestgregard

Comment on Block Facebook using Juniper SRX by IT seems that there is no way to really block those sites like BLuecoat and Trend Micro IWSS does?

Sat, 04 Jun 2011 15:32:30 +0000

People using facebook and youtube have found a very clever way to trick the filters by using the https:// version of the web sites.
Having test this, it really works and not only for facebook and youtube but also many other sites which are categorised as adult or not permitted!

DOes this mean that Juniper sacks regarding web filtering?

Comment on 17 Must Have Free Applications For Android (Productivity) by broja

broja — Thu, 14 Apr 2011 17:43:34 +0000

Also checkout, Pakoomba Call Reminder –
The one app for phone/sms/email followups and reminders – https://market.android.com/details?id=com.pakoomba.callreminder

Comment on PPTP Pass-through through Juniper NS 5GT Firewall by Truck Pilot

Truck Pilot — Thu, 24 Mar 2011 03:20:33 +0000

Helpful information here. I added your site on my favorite, so visit again.

Comment on Get the Picture: Bucket and Sponge by rsivanandan

rsivanandan — Sat, 12 Mar 2011 02:17:17 +0000

Guess, the mid-30 crisis is over for me.. At least looks like Getting to know more on what this means

Comment on Get the Picture: Bucket and Sponge by Sudheesh

Sudheesh — Fri, 11 Mar 2011 21:44:27 +0000

U calming down more ??

Comment on Block Facebook using Juniper SRX by G shyam

G shyam — Fri, 18 Feb 2011 05:46:19 +0000

the above configuration doesn’t block the https://www.facebook.com in SRX

Comment on Block Facebook using Juniper SRX by Anne Jordan

Anne Jordan — Fri, 04 Feb 2011 15:41:18 +0000

to block facebook, I use this facebook blocker called FB Blocker, you can find it here: htt://www.fbblocker.com

Comment on Documentation for Juniper Devices by sarjil

sarjil — Tue, 04 Jan 2011 18:32:17 +0000

nice article buddy , keep it up

Comment on 17 Must Have Free Applications For Android (Productivity) by rsivanandan

rsivanandan — Thu, 16 Dec 2010 02:53:42 +0000

Productivity man, it all about the flexibility we get.

The prepackaging differs from manufacturer to manufacturer and I actually hate it, the reason is – prepackaged stuff won’t be updated by the companies and we’re stuck with what we have. The best is, stock android – runs blazing fast on a 1Ghz Proc + 384 MB Memory on my X10 + plus these apps.

Also did I tell you that I have a Tab now