• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2004
  • Last Modified:

Juniper Networks SSG 5- Configuration

I have inherited a Juniper Networks SSG 5 firewall at my new work. I need to allow access through ports 3389, 5800 and 5900 and also allow SSH enabled on port 5900 so that PortWise will work when I am connecting to a remote server.

Could someone give me instructions on how to do this.

I have access to the GUI through a browser.

Many thanks

John.
0
borgqjeanluc
Asked:
borgqjeanluc
  • 4
  • 2
1 Solution
 
rsivanandanCommented:
http://www.rsivanandan.com/?p=108

Read this and see if this helps.

Post back with further clarifications if needed.

Cheers,
Rajesh
0
 
borgqjeanlucAuthor Commented:
Thanks for this Rajesh. It was useful but I just want to open these ports using the Web interface. Would I just need to create a entry in the Objects/Services/Custom page or somewhere else.

Sorry my knowladge of Firewalls is pretty limited so I kinds need the "idiots" guide to doing this.

Help is appreciated.

Regards

John.
0
 
calltmsCommented:
If you want to open the ports, you need to:

Create a custom Service Object for each port that you need, that doesn't already have a service.

Create a VIP for the service to point to the appropriate internal IP address.

Create a Policy saying that any (or defined) address from the outside can access the VIP::1 using whichever service (or multiple services).



All done!
0
Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

 
rsivanandanCommented:
Yes, you basically create the service and proceed. In which direction are we talking about? Outgoing or incoming?

Cheers,
Rajesh
0
 
rsivanandanCommented:
Sirbounty,

  I had posted an answer, also have left a question open for the author.

Cheers,
Rajesh
0
 
calltmsCommented:
As have I.
0
 
rsivanandanCommented:
modus_operandi,

  At least the objection could be explained instead of just closing down the question, this is the second one you're doing so!

--Rajesh
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now