Juniper SSG5 Managment IP Restriction

Posted on 2012-03-24
Last Modified: 2012-03-24
I seemed to have locked myself out of remote admin via a browser. I entered the wrong IP address in the Permitted IPs section via the browser admin (Configuration > Admin > Permitted IPs). The wrong IP is also a public IP in my assigned block of IP addresses. It was a copy/paste mistake on my part. D'OH!

I can still can connect via VPN and Remote Desktop to servers. Is there anything else I can do besides drive to the datacenter and connect via the console port?
Question by:wn411
  • 4
  • 2
LVL 90

Expert Comment

by:John Hurst
ID: 37761012
You should be able to access the Netscreen via its internal address (getting in by VPN), log in, and reset remote management .
LVL 25

Expert Comment

by:Fred Marshall
ID: 37761019
I agree with thinkpads_user.  In fact, this should be the preferred method of access when it's available and don't use public access at all.

Author Comment

ID: 37761039
Correct, I only access the Browser admin via a local IP after I establish a VPN connection. The problem now is that after I entered a public IP in (Configuration > Admin > Permitted IPs), the VPN works but browsing to the local admin internal IP does not.
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

LVL 90

Expert Comment

by:John Hurst
ID: 37761045
How remote are you? Can you get to the box and access by console? If so you should be able to reset the setting.

Author Comment

ID: 37761051
Yes I can get to datacenter. Just wondering if I could save myself the trip :) If not, I will just fix this the next time I do a backup swap.
LVL 90

Accepted Solution

John Hurst earned 500 total points
ID: 37761069
Thanks. At this point, I think that is your remaining option.
LVL 90

Expert Comment

by:John Hurst
ID: 37761141
Thank you, and I was happy to help. Sorry it means a trip for you.

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Checkpoint books 3 67
What does this mean to you?  Source side firewall 3 59
VLAN Routing on an HP2920 2 52
Sonicwall SSO 11 40
I recently had the displeasure of buying a new firewall at one of the buildings I play Sys Admin at. I had to get a better firewall than the cheap one that I had there since I was reconnecting the main office to the satellite office via point-to-poi…
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now