Posts:

Juniper Screenos : Redundant multi-exitpoint ISP routing failover using multiple vrouters, multiple OSPF areas and eBGP

Introduction

As you most likely already know, Juniper screenOS supports a couple of dynamic routing protocols (OSPF, BGP, RIP).  These protocols can be used to build very powerful and redundant networks,  however there are some screenos specific issues with Read more

Read More

Nessus/OpenVAS wrapper for ike-scan

ike-scan is a great tool to audit VPN/IPSec implementations.  This tool, which runs under Lunix, Unix, MacOS and Windows, can be found at www.nta-monitor.com/tools/ike-scan/ (Latest version at time of writing is 1.9). My Nessus ike-scan NASL wrapper may Read more

Read More

Monitoring your network with Powershell

I have written a small powershell script that will help you to monitor various hosts on your network.   Instead of using ping to see if a host is alive, this script will connect to tcp ports, so you can Read more

Read More

Juniper : Netscreen Remote Dial-UP VPN with AD Radius Authentication and route based VPN / tunnel interface

The following procedure explains how to set up a Juniper ScreenOS based firewall to accept Netscreen Remote Client VPN connections and authenticate users using Active Directory (Radius via Windows 2003 IAS or Windows 2008 NPS). 

We’ll assume that all Read more

Read More

Windows XP L2TP over IPSec dialup client VPN to a Juniper ScreenOS firewall, using Certificates

Before looking at the various configuration steps, we’ll have to take the following assumptions into account :

– We don’t want to use the Netscreen Remote client, but we want to use the Windows XP built-in dialup VPN technology Read more

Read More

IPSec VPN between Windows Server 2008 and Juniper ScreenOS

In this blog post, I will show you how to set up a IPSec VPN tunnel between a Windows Server and a Juniper ScreenOS based firewall and route traffic between hosts that are located behind these 2 VPN gateways.

Read more

Read More

Juniper ScreenOS Admin authentication using Windows based IAS (Radius)

On popular request, this is a quick write-up on how to set up a Juniper screenOS firewall to use an external Radius server (I’ll use Windows IAS) to authenticate administrators and to let the Radius server to assign admin Read more

Read More

Getting connected to the internet over IPv6 using Juniper/screenos

It started snowing today, so I guessed it would be the perfect timing to write a quick and dirty howto on getting connected to the internet over IPv6, using a Juniper ssg5.  I’ll also discuss the easy steps to Read more

Read More

Blog now available over IPv6

I just wanted to share with you that, from this point forward, this blog and forum are now available over IPv6

(it might take a little while before all DNS servers are updated, but it should be fine before Read more

Read More

Using Fedora 9 as an OSPF / BGP router (Quagga / Zebra) and set up BGP between Linux and Juniper ScreenOS

In this post, I’m going to show you how to set up a Linux host (Fedora Core 9) and use it as a BGP enabled router. 

In order to fully understand the setup & configuration, please have a look Read more

Read More