<div>
Just define a custom service using the port range. Then add that service in the VIP definition, and provide the first (!) port to map the VIP to (10000).<br />
The according policy for that VIP will automatically allow traffic from those ports, so nothing to do there, if you already have a policy for the VIP.
</div>


Just define a custom service using the port range. Then add that service in the VIP definition, and provide the first (!) port to map the VIP to (10000).
The according policy for that VIP will automatically allow traffic from those ports, so nothing to do there, if you already have a policy for the VIP.

<div>
I have tried that, but it hits a limit of 64 ports.
</div>


I have tried that, but it hits a limit of 64 ports.

<div>
Possible. That's the way VIP works, it is not intended to have such a wide-spread port range, and unless you want to break it down to 64 ports packages, there is no way around.<br />
<br />
You should consider using a MIP instead - if you've got more than one public IP, that is.<br />
<br />
Or maybe you should explain why you would need to do that - there might be better options.
</div>


Possible. That's the way VIP works, it is not intended to have such a wide-spread port range, and unless you want to break it down to 64 ports packages, there is no way around.

You should consider using a MIP instead - if you've got more than one public IP, that is.

Or maybe you should explain why you would need to do that - there might be better options.

<div>
its due to Voice Traffic, (RTP)<br />
<br />
I will have a play with MIP instead<br />
<br />
Thank you.
</div>


its due to Voice Traffic, (RTP)

I will have a play with MIP instead

Thank you.

<div>
done using MIP and working fine now...<br />
<br />
Thanks for your help.
</div>


done using MIP and working fine now...

Thanks for your help.

<div>
<div class="content wysiwyg-content">
Hi,<br />
<br />
I'm trying to open ports 10000-20000 on a Juniper SSG 5.<br />
<br />
I know how to do it for individual ports via VIP but is there a way to do more ports in one go?<br />
<br />
Thanks
</div>
</div>


Hi,

I'm trying to open ports 10000-20000 on a Juniper SSG 5.

I know how to do it for individual ports via VIP but is there a way to do more ports in one go?

Thanks

Range Port Forwarding on Juniper SSG5

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

Network security consists of the policies adopted to prevent and monitor authorized access, misuse, modification, or denial of a computer network and network-accessible resources. Network security involves the authorization of access to data in a network, and covers a variety of computer networks; conducting transactions and communications among businesses, government agencies and individuals. Networks can be private, such as within a company, and others which might be open to public access.