Archive

Archive for the ‘Juniper’ Category

JUNOS Boot from Backup Image – Recovery

February 17th, 2015 No comments

Another quick aide-memoir describing the recovery of a corrupted JUNOS image – the EX3300 series LAN switch has booted from the backup image.

— JUNOS 11.4R5.5 built 2012-08-25 05:29:29 UTC

***********************************************************************
**                                                                   **
**  WARNING: THIS DEVICE HAS BOOTED FROM THE BACKUP JUNOS IMAGE      **
**                                                                   **
**  It is possible that the primary copy of JUNOS failed to boot up  **
**  properly, and so this device has booted from the backup copy.    **
**                                                                   **
**  Please re-install JUNOS to recover the primary copy in case      **
**  it has been corrupted.                                           **
**                                                                   **
***********************************************************************

darenm@coresw1# show version
## Last changed: 2015-02-13 10:50:43 UTC
version 11.4R5.5; Read more…

Categories: Juniper, Uncategorized Tags:

Simple Bash Script to Backup Netscreen ISG / SSG Firewall

November 7th, 2013 No comments

This script is a simple, interactive way to backup and date-stamp your juniper Netscreen ISG/SSG (ScreenOS) firewall configurations. The script copies the configurations from the firewall using scp. Configurations older than one day ( -mtime +1) are archived off to a bz2 compressed file.  Archives older than 60 days ( -mtime +60 ) are removed from the disk.

The usage is: nsb.sh [ip address / hostname of Netscreen].  (VIEW SCRIPT)

Read more…

Running Snoop on Netscreen Firewall

September 26th, 2013 No comments

An aide-memoir:

ScreenOS-> undebug all
ScreenOS-> clear db Read more…

Categories: Juniper, linux, Security Tags: ,

Juniper ScreenOS – Clearing Idle CLI Sessions

September 3rd, 2013 No comments

An idle CLI session can cause many problems including:

ScreenOS-> get config | inc “Untrust”
^—-Pipe command cannot be run concurrently. Being used by user:xxxxxxx(ID:97). Read more…

Categories: Juniper Tags:

Juniper ScreenOS – Troubleshooting using Debug Flow

June 21st, 2013 No comments

Debug flow basic
shows the flow of traffic through the firewall, allowing for troubleshooting route selection, policy selection, any address translation and whether the packet is received or dropped by the firewall. Read more…