Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Email alert for any configuration change on Juniper firewall.

Posted on 2011-04-26
Medium Priority
Last Modified: 2012-05-11
Hello everyone,

I have recently configured email alerts on our Netscreen SSG550(6.1.0r2.0) and immediately after configuration I received a long email with all the traffic logs. However upon going through the logs, I was unable to locate any configuration change alert. All it had was traffic sessions and I had to turn off the send traffic log option.

Digging it further made me realize that Juniper does not send configuration change alert messages through email for security reasons, It will only display it on the console. Our business requirement is to enable email alerts for any configuration change done on the firewall.

Is there a command or a alternative solution which can enable this configuration change email alert?

Question by:KASPBoodai
  • 2
LVL 18

Accepted Solution

Sanga Collins earned 750 total points
ID: 35475424
I think rancid is what you want. It was developed for cisco devices initially, but now supports junper as well



Author Comment

ID: 35481255
Looking for a third party tool would be my last option. I want to know first if there is a way to configure Juniper to send configuration change email alerts.

Assisted Solution

Brian earned 750 total points
ID: 35495945
Not really. They made a conscious effort to not allow those types of notifications. There are a number of third party products to look at with a range in price. I don't have a specific recommendation though.

Author Closing Comment

ID: 35762899
Needed more suggestions on third party tools.

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?
Suggested Courses

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question