How to change the order of security policies in Juniper SRX

Within this post I would like to show how you can easily move policies within Juniper SRX configuration.

Below list of policies that we have currently set up:

pawel@srx-firewall> edit
Entering configuration mode

[edit]
pawel@srx-firewall# edit security policies from-zone WAN to-zone INSIDE

[edit security policies from-zone WAN to-zone INSIDE]
pawel@srx-firewall# show

Read More »

Cisco and Juniper basic commands

Some basic but very useful commands

Read More »

Juniper SRX Port Forwarding / Destination NAT

Within this post I would like to explain how to set up port forwarding/ destination NAT using CLI on Jupier SRX 240 running JUNOS Software Release [10.0R3.10]

We will forward port tcp/80 over to Web Server and port tcp/22 over to SFTP Server:

172.16.254.1:80 -> 10.254.254.2:80

172.16.254.1:22 -> 10.254.254.3:22

Below drawing shows network topology:

Read More »