Solved

SSG 5 Juniper firewall

Posted on 2012-03-25
4
2,582 Views
Last Modified: 2012-03-27
Hi there,

I started to configure the SSG 5 Juniper firewall and get to basic configuration. I need to know the following commands and I can not figure it out.

1. I want to see the running configuration. In cisco we just type Show running config and I tried using different and neither worked. I only get to know get interface that listed the interfaces and IP addresses on the interfaces.


2. I want to know how I can upload the latest OS on the firewall?

Thank you.
0
Comment
Question by:Zak
4 Comments
 
LVL 90

Assisted Solution

by:John Hurst
John Hurst earned 167 total points
ID: 37764051
The SSG5 has a web interface which is vastly easier to work with than a command line (I have done both). Log into the SSG5 by IP address. Enter the userid and password (it appears you may have done it).

1. The elements of complete configuration are listed down the side.  The home page shows the current firmware revision.

2. In the configuration section, you can save the current configuration (do this before upgrading any firmware) and then also in the configuration, you can update the firmware (you need the firmware file on hand from Juniper first). Open the various sub menus in Configuration to see what I mean. Click on the + beside the menu item to expand it.

... Thinkpads_User
0
 
LVL 5

Assisted Solution

by:cdfs
cdfs earned 166 total points
ID: 37764496
To get the complete configuration on cli, type "get config"
The SSG has also a kind of "autocompletion". When you type e.x. "get ?", it will list you the possibilities you have. This works for nearly all commands found on the cli. But I second thinkpad_user, with the SSG-firewalls working with the webinterface is easier. With junOS (SRX-series) things are different, I would always prefer the cli there.
0
 
LVL 1

Accepted Solution

by:
junyap earned 167 total points
ID: 37764585
Execute 'get config' (w/o quote) from the cli to see the configuration like show run in Cisco. To see all the interfaces and it's config, execute 'get system' like show ip interfaces in Cisco.
 
To upgrade the OS
Step A
1.Log into the security device by opening a browser.
a. Enter the management IP address in the Address field.
b. Log in as the root admin or an admin with read-write privileges.
2. Save the existing configuration.
a. Go to Configuration > Update > Config File, and then click Save to File. The File Download dialog box appears.
b. Click Save.
c. Navigate to the location where you want to save the configuration file (cfg.txt), and then click Save.
 
Step B
Upgrade to the new ScreenOS firmware.
a. Go to Configuration > Update > ScreenOS/Keys, and then select Firmware Update.
b. Click Browse to navigate to the location of the new ScreenOS firmware, or enter the path to its location in the Load File field.
c. Click Apply.
A message box appears with information about the upgrade time.
d. Click OK to continue.
The security device restarts automatically. The upgrade is complete when the device displays the login page in the browser.
e. Log into the security device. You can verify the version of the security device ScreenOS firmware in the Device Information section of the WebUI page.
 
Step C
If necessary, upload the configuration file that you saved in Step A.
a. Go to Configuration > Update > Config File.
b. Select Merge to Current Configuration.
c. Enter the path and name of the configuration file, or click Browse to navigate to the file location.
d. Click Apply.
0
 

Author Closing Comment

by:Zak
ID: 37771643
Thank you for the feedback very helpful indeed
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Cisco Sup720 Migrate to Sup2T 5 38
SRX240 SYSLOG Setting 6 51
EIGRP Multicast vs Unicast 7 44
how to access my server 9 28
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
DECT technology has become a popular standard for wireless voice communication. DECT devices are not likely to be affected by other electronic devices and signals because they operate in a separate frequency-band.
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now