Solved

Netscreen 5GT - Transparent Mode w/ Cisco 1841 question

Posted on 2006-11-23
6
860 Views
Last Modified: 2013-11-30
Hi all,
New to Juniper products, and wanting to find out if the following setup will work:

[Public Server]'---(Trust Port)[Netscreen 5GT Transparent Mode](Untrust Port)---[Cisco 1841]---Dedicated Link
[Public Server]'
[Public Server]'
[Router]
`[Private Network]

ISP has provided /28 block of IPs, all Public Servers and Router will have a public IP address.
Cisco 1841 ethernet interface connected to the Untrust port, Trust Ports connected to public servers.

Is all that i have to configure on the router and Public Servers, is a static IP and gateway pointing to the eth interface of Cisco?
Will the Public IP passthrough the Netscreen?

Edit: Also, would i be able to block ports on the Netscreen, using Trust and Untrust policies?
0
Comment
Question by:cellardoor1472
  • 3
  • 2
6 Comments
 
LVL 32

Accepted Solution

by:
rsivanandan earned 500 total points
ID: 18005629
Yeah that would work.

1. Put all the servers and eth1 interface of cisco router in the same subnet block.

2. Put the 5gt in transparent mode and also create assign an ip address to the vlan1 interface of 5gt so that you can manage that.

3. You could block ports on the netscreen if you want in the same using trust and untrust policies (which would be either predefined services or you can create custom services with the ports you want).

Suggest you to run the 5.40r2 code on 5gt.

Cheers,
Rajesh
0
 

Author Comment

by:cellardoor1472
ID: 18005732
Thanks again Rajesh,

I plan to manage it via serial interface, but ill put an IP address for remote management - thanks for the tip.
Ill give it a try.
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 18006077
Let me know how it goes.

Cheers,
Rajesh
0
 

Author Comment

by:cellardoor1472
ID: 18380325
Still yet to implement,
will update with results.
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 18382300
let us know how it goes.

Cheers,
Rajesh
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question