Netscreen 5GT - Transparent Mode w/ Cisco 1841 question

Posted on 2006-11-23
Last Modified: 2013-11-30
Hi all,
New to Juniper products, and wanting to find out if the following setup will work:

[Public Server]'---(Trust Port)[Netscreen 5GT Transparent Mode](Untrust Port)---[Cisco 1841]---Dedicated Link
[Public Server]'
[Public Server]'
`[Private Network]

ISP has provided /28 block of IPs, all Public Servers and Router will have a public IP address.
Cisco 1841 ethernet interface connected to the Untrust port, Trust Ports connected to public servers.

Is all that i have to configure on the router and Public Servers, is a static IP and gateway pointing to the eth interface of Cisco?
Will the Public IP passthrough the Netscreen?

Edit: Also, would i be able to block ports on the Netscreen, using Trust and Untrust policies?
Question by:cellardoor1472
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
LVL 32

Accepted Solution

rsivanandan earned 500 total points
ID: 18005629
Yeah that would work.

1. Put all the servers and eth1 interface of cisco router in the same subnet block.

2. Put the 5gt in transparent mode and also create assign an ip address to the vlan1 interface of 5gt so that you can manage that.

3. You could block ports on the netscreen if you want in the same using trust and untrust policies (which would be either predefined services or you can create custom services with the ports you want).

Suggest you to run the 5.40r2 code on 5gt.


Author Comment

ID: 18005732
Thanks again Rajesh,

I plan to manage it via serial interface, but ill put an IP address for remote management - thanks for the tip.
Ill give it a try.
LVL 32

Expert Comment

ID: 18006077
Let me know how it goes.


Author Comment

ID: 18380325
Still yet to implement,
will update with results.
LVL 32

Expert Comment

ID: 18382300
let us know how it goes.


Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SSH setup on ASA 5505 17 114
I am looking for a reliable program to clone servers 5 102
Cisco Nexus 9372 port channel 3 32
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question