SRX Services Gateway
Blogs
Discussion Forums
Programs & Events
turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Reply
Topic Options
gvasquez@adexus.com…
Visitor
gvasquez@adexus.com.pe
Posts: 6
Registered: ‎03-23-2012
0

srx ha active standby in mode transparent with IPS

Options

‎03-24-2012 08:32 AM

 

 

Hello my name is Giancarlo

 

I have two srx 240 h, and i would like to configuring in mode transparent L2 in HA Active / Standby, using the funcionality of IPS, because i have the license

 

How can i do it

 

Do you have any information about it?

 

Regards

 

Giancarlo

Message 1 of 5 (476 Views)
 
Reply
Recognized Expert
Recognized Expert
JunOS_Fan
Posts: 241
Registered: ‎02-13-2012
0

Re: srx ha active standby in mode transparent with IPS

Options

‎03-24-2012 09:38 AM

Hi ,

 

For transparent mode configuration in SRX branch , you can refer to KB21421

for IDP/IPS and HA cluster setup ( and many other things), you can check the SRX Jumpstation - KB15694

 

 

Best regards
Pradeep (JNCIP-SEC,ENT,SP)
www.networker.co.in
Message 2 of 5 (473 Views)
 
Reply
Recognized Expert
Recognized Expert
JunOS_Fan
Posts: 241
Registered: ‎02-13-2012
0

Re: srx ha active standby in mode transparent with IPS

Options

‎03-24-2012 09:57 AM

One thing to note -

 

As of Junos 11.2  , On SRX100, SRX210, SRX220, SRX240, and SRX650 devices, Intrusion Detection and Prevention (IDP) is not supported in Layer 2 transparent mode active/active and active/backup chassis clusters. On SRX3400, SRX3600, SRX5600, and SRX5800 devices, IDP is not supported in Layer 2 transparent mode active/active but is supported in active/backup chassis clusters.

Best regards
Pradeep (JNCIP-SEC,ENT,SP)
www.networker.co.in
Message 3 of 5 (469 Views)
 
Reply
gvasquez@adexus.com…
Visitor
gvasquez@adexus.com.pe
Posts: 6
Registered: ‎03-23-2012
0

Re: srx ha active standby in mode transparent with IPS

Options

‎03-25-2012 07:55 AM

Hi Pradeep

 

I don't  understand you. According your advice, in 11.2 i can configure srx 240 in layer 2 (mode transparent)  in HA Active/Stanby but i can not configure the funcionallity of IDP?

 

Please could you help me about it

 

Thanks for your answer

 

Regards

 

Giancarlo

Message 4 of 5 (456 Views)
 
Reply
Recognized Expert
Recognized Expert
JunOS_Fan
Posts: 241
Registered: ‎02-13-2012
0

Re: srx ha active standby in mode transparent with IPS

Options

‎03-26-2012 10:33 AM

Hi ,

 

As per page 145 of Junos 11.2 release notes ,

 

http://www.juniper.net/techpubs/en_US/junos11.2/information-products/topic-collections/release-notes... ,  you are correct.

 

" In 11.2 we can configure srx 240 in layer 2 (mode transparent)  in HA Active/Stanby but with out  the funcionallity of IDP"

 

Junos 11.3 is not available for SRX and in Junos 11.4 release notes, page 231 states the Layer 3 transparent mode limitations, in which IDP is not there, But I am not sure whether it is supported in 11.4 or not .

Best regards
Pradeep (JNCIP-SEC,ENT,SP)
www.networker.co.in
Message 5 of 5 (435 Views)
 
Reply
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.