Solved

Juniper SSG5 Managment IP Restriction

Posted on 2012-03-24
7
874 Views
Last Modified: 2012-03-24
I seemed to have locked myself out of remote admin via a browser. I entered the wrong IP address in the Permitted IPs section via the browser admin (Configuration > Admin > Permitted IPs). The wrong IP is also a public IP in my assigned block of IP addresses. It was a copy/paste mistake on my part. D'OH!

I can still can connect via VPN and Remote Desktop to servers. Is there anything else I can do besides drive to the datacenter and connect via the console port?
0
Comment
Question by:wn411
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 94

Expert Comment

by:John Hurst
ID: 37761012
You should be able to access the Netscreen via its internal address (getting in by VPN), log in, and reset remote management .
0
 
LVL 26

Expert Comment

by:Fred Marshall
ID: 37761019
I agree with thinkpads_user.  In fact, this should be the preferred method of access when it's available and don't use public access at all.
0
 

Author Comment

by:wn411
ID: 37761039
Correct, I only access the Browser admin via a local IP after I establish a VPN connection. The problem now is that after I entered a public IP in (Configuration > Admin > Permitted IPs), the VPN works but browsing to the local admin internal IP does not.
0
Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

 
LVL 94

Expert Comment

by:John Hurst
ID: 37761045
How remote are you? Can you get to the box and access by console? If so you should be able to reset the setting.
0
 

Author Comment

by:wn411
ID: 37761051
Yes I can get to datacenter. Just wondering if I could save myself the trip :) If not, I will just fix this the next time I do a backup swap.
0
 
LVL 94

Accepted Solution

by:
John Hurst earned 500 total points
ID: 37761069
Thanks. At this point, I think that is your remaining option.
0
 
LVL 94

Expert Comment

by:John Hurst
ID: 37761141
Thank you, and I was happy to help. Sorry it means a trip for you.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
ASA Shunning internal IP 10 49
Calyptix AE1200 VLAN Question 3 71
Factory Reset of Juniper SSG20 2 42
best firewall for packet filtering 5 37
Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
Network traffic routing plays key role in your network, if you have single site with heavy browsing or multiple sites, replicating important application data from your Primary Default Gateway ,you have to route your other network traffic from your p…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question