Solved

Block IP with Juniper SSG5

Posted on 2014-12-11
3
270 Views
Last Modified: 2014-12-12
I have intermedia as my hosted exchange solution. Intermedia keeps blocking my public IP because they said that my network is trying to connect to their server via RDP protocol.

I logged in to SSG5 to see if i could find anything and the only suspicious thing I saw was. untrust-local... to trust (any > any). I deleted it.

I only have one user who logins to a computer remotely via RDP.  I don't know how to scan the network to see which computer is sending mass traffic to their servers. I installed wireshark but I don't really know how to use it.

any suggestions?

BTW, I scanned all computers and did remove viruses/trojans from a couple, intermedia unblocked it and email worked again, but this is the third time they blocked it.
0
Comment
Question by:Anthony H.
  • 2
3 Comments
 
LVL 69

Accepted Solution

by:
Qlemo earned 500 total points
ID: 40495702
To block RDP to a specific public IP address, create a policy Trust to Untrust with adresses Any and that public IP, and RDP as service. Make sure to check the "top" option so the policy is applied before any other policy. Action is Deny.
0
 

Author Comment

by:Anthony H.
ID: 40496622
i also closed from untrust to trust. It should be OK to reopen that right?
0
 
LVL 69

Expert Comment

by:Qlemo
ID: 40497484
Untrust is Internet. You don't want to block RDP from internet to LAN, do you?  So remove it,  or leaves it alone if it doesn't matter for you. By default all Untrust traffic is blocked unless explicitly allowed.
0

Featured Post

Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco vWLC DHCP issues 36 68
Windows NLB support on Cisco Nexus 9000 1 68
Windows 2012 R2 Anywhere Access and PCI compliance 5 34
VLAN Question 7 33
From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question