MichaelBalack
asked on
How to use the virtual firewall feature on Juniper?
Using Juniper SSG 140, and it is in production right now. It is working as a 2-legged, with untrusted and trusted interfaces. Untrusted is WAN facing, using segment of registered public IPs - 210.24.28.128/28; trusted is office internal, using segment of 192.168.10/24. Now, we need to have one more (probably 2) firewall. This firewall needs to have 2 interfaces, untrusted for IPs - 210.24.28.128/28, and DMZ, using segment: 172.16.100.0/24;
I heard that we can make use of the virtual firewall feature, btw, how to do it? Any additional license has to purchase?
thanks,
I heard that we can make use of the virtual firewall feature, btw, how to do it? Any additional license has to purchase?
thanks,
ASKER
Hi Sangamc,
Do you have a more in-details information on how these virtual routers, security zones work together to achieve the objective?
Do you have a more in-details information on how these virtual routers, security zones work together to achieve the objective?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks sangamc, that give a brief idea on vr, together with zones works.
You can also (if a very simple setup is required) use custom zones to create and separate different networks.
Lastly although cumbersome at times because other network hardware comes into play: VLAN tags: These can also help make multiple networks viable. I am not a huge fan because you will need enterprise level switches to properly implement VLAN tgs