Solved

Juniper SSG5 Managment IP Restriction

Posted on 2012-03-24
7
878 Views
Last Modified: 2012-03-24
I seemed to have locked myself out of remote admin via a browser. I entered the wrong IP address in the Permitted IPs section via the browser admin (Configuration > Admin > Permitted IPs). The wrong IP is also a public IP in my assigned block of IP addresses. It was a copy/paste mistake on my part. D'OH!

I can still can connect via VPN and Remote Desktop to servers. Is there anything else I can do besides drive to the datacenter and connect via the console port?
0
Comment
Question by:wn411
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 95

Expert Comment

by:John Hurst
ID: 37761012
You should be able to access the Netscreen via its internal address (getting in by VPN), log in, and reset remote management .
0
 
LVL 26

Expert Comment

by:Fred Marshall
ID: 37761019
I agree with thinkpads_user.  In fact, this should be the preferred method of access when it's available and don't use public access at all.
0
 

Author Comment

by:wn411
ID: 37761039
Correct, I only access the Browser admin via a local IP after I establish a VPN connection. The problem now is that after I entered a public IP in (Configuration > Admin > Permitted IPs), the VPN works but browsing to the local admin internal IP does not.
0
Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

 
LVL 95

Expert Comment

by:John Hurst
ID: 37761045
How remote are you? Can you get to the box and access by console? If so you should be able to reset the setting.
0
 

Author Comment

by:wn411
ID: 37761051
Yes I can get to datacenter. Just wondering if I could save myself the trip :) If not, I will just fix this the next time I do a backup swap.
0
 
LVL 95

Accepted Solution

by:
John Hurst earned 500 total points
ID: 37761069
Thanks. At this point, I think that is your remaining option.
0
 
LVL 95

Expert Comment

by:John Hurst
ID: 37761141
Thank you, and I was happy to help. Sorry it means a trip for you.
0

Featured Post

Retailers - Is your network secure?

With the prevalence of social media & networking tools, for retailers, reputation is critical. Have you considered the impact your network security could have in your customer's experience? Learn more in our Retail Security Resource Kit Today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question