SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  Bug Reintroduced on Dynamic VPN

    Posted 01-07-2017 15:59

    Hi there!

     

    Was Dynamic VPN bugs reintroduced in version 12.3X48-D40.5?

    Running 12.3X48-D40.5 on SRX240H2.

     

    https://kb.juniper.net/InfoCenter/index?page=content&id=TSB16860

    https://prsearch.juniper.net/InfoCenter/index?page=prcontent&id=PR1135780

     

     

    root@EX-FW-01> show security dynamic-vpn client version
error: abnormal communication termination with web-management daemon

     

     

    Client shows:

     

    Failed to receive HTTP response. (Error:1454)

    Thanks.



  • 2.  RE: Bug Reintroduced on Dynamic VPN

     
    Posted 01-07-2017 18:38

    Hi Folks,

     

    12.3X48-D40.5 should have the fix for BUG 1135780. The observation seen could be due to some other trigger. I would suggest you to open a JTAC case to isolate it further.

     

     



  • 3.  RE: Bug Reintroduced on Dynamic VPN
    Best Answer

    Posted 01-09-2017 00:27

    Unfortunately it works only and only if you insert your external interfaces under "system services web-management".

    Otherwise you will get errors like "ERR_TOO_MANY_REDIRECTS" pointing your browser to the Dynamic VPN URL.

     

    Thanks.



  • 4.  RE: Bug Reintroduced on Dynamic VPN

    Posted 01-14-2017 08:47

    Hi,

     

    I just upgraded a SRX220H2 from 12.1X47-D15.4 to 12.3X48-D40.5 and have the exact same issue (described in PR1135780). The httpd.log states that web management is not allowed from this interface.

     

    The Pulse Secure version is 5.1.5 (61437).

     

    Anyone else experiencing this?

     

    Allowing web management on the public interface seems like a bad solution.


    #Dynamic-VPN