• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1086
  • Last Modified:

Range Port Forwarding on Juniper SSG5

Hi,

I'm trying to open ports 10000-20000 on a Juniper SSG 5.

I know how to do it for individual ports via VIP but is there a way to do more ports in one go?

Thanks
0
MattToner
Asked:
MattToner
  • 3
  • 3
1 Solution
 
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
Just define a custom service using the port range. Then add that service in the VIP definition, and provide the first (!) port to map the VIP to (10000).
The according policy for that VIP will automatically allow traffic from those ports, so nothing to do there, if you already have a policy for the VIP.
0
 
MattTonerAuthor Commented:
I have tried that, but it hits a limit of 64 ports.
0
 
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
Possible. That's the way VIP works, it is not intended to have such a wide-spread port range, and unless you want to break it down to 64 ports packages, there is no way around.

You should consider using a MIP instead - if you've got more than one public IP, that is.

Or maybe you should explain why you would need to do that - there might be better options.
0
KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

 
MattTonerAuthor Commented:
its due to Voice Traffic, (RTP)

I will have a play with MIP instead

Thank you.
0
 
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
NAT with VoIP might be an issue in itself, but using a MIP is better than a VIP for that.
0
 
MattTonerAuthor Commented:
done using MIP and working fine now...

Thanks for your help.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now