search for: netscreens

Does anyone have Asterisk running over a "policy-based" NetScreen IPSEC VPN with NetScreen OS 5.x? I have Asterisk behind an NS50 on one end and a Grandstream phone on the other behind a NS 5XP on the other. The SIP session appears to set up fine, but no media goes across - no voice, just silence. Everything else works. This worked fine under Screen OS 4.X, but NetScreen added

Sorry to barge in on an old thread. I''m having the same trouble as the gent who started this thread. I''ve tried the options described and can''t seem to get the tunnel to pass packets through it. I''m using the Netscreen Remote VPN client (Safenet derivative) on a windows machine, trying to connect to a Netscreen 5xp at the other end. The connection fires

Sorry for going OT, but this list host an amazing diveristy of networking knowledge, and i am staring to get a bit desperate. I need to get a lan-to-lan tunnel working between a Linux firewall (shorewall) and a Netscreen 25 firewall (ScreenOS 4). ANd i cannot find a simple useful guide on how to do this. I cannot get it working via isakmpd or racoon. So, if someone HAS done this, i would

Hi everyone, today I got an e-mail from a company claiming that my server is doing port scans on their firewall machine. I found that hard to believe so I started checking the box. The company rep told me that the scan was originating at port 80 with destination port 8254 on their machine. I couldn't find any hints as to why that computer was subject to the alleged port scans. Searching

Hi all, Lookin to do an IPSEC VPN between a Juniper SSG5 and Centos 5.5. Reading some docs that ref /etc/ipsec-tools.conf but they do not exist on my box being Centos 5.5. The package ipsec-tools is installed and I'm guessing /etc/racoon/ racoon.conf is what I am looking for. Anyways, some help would be very appreciated. - aurf

Hi Guys, I have 3 opportunities open for Full Time positions in Toronto, Canada 1. Intermediate System and Network Administrator - Salary Range 55-65K CAD per anum Looking for someone with 5+ years of experience working with Linux/Unix systems. Networking and Windows experience not as important. - Manage Linux systems - Manage FreeBSD systems - Manage Cisco switches - Manage Foundry

...y, and if the firewalls are replaced with a router (the two 'sites' were original local for testing), then the problem goes away. However, the firewall policy doesn't limit anything (and wouldn't it break Windows too?) Does this ring any bells with anyone? The firewalls are Juniper Netscreens at both ends, for what it's worth. I've had a google around, and I can't see anything related to packet size or MTUs, which is what it smells like to me... (presumably the 9th filename ends up in a second packet, or a certain sized response). Thanks in advance for any pointers, Howie

We have a customer with a handful of Sayson/Aastra 480i phones behind a Juniper Networks Netscreen firewall registering with our hosted PBX service. The Netscreen monitors the REGISTER messages and only keeps the reverse mapping open for the duration of the registration period. It appears that every so often the Sayson does not send out another REGISTER message after the registration has expired

https://bugzilla.mindrot.org/show_bug.cgi?id=1980 dajoker at gmail.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |dajoker at gmail.com --- Comment #6 from dajoker at gmail.com --- The ' openssh-unix-dev at mindrot.org' mailing list thread

Hi guys, I am running with: "OpenSSH_3.9p1 Debian-1ubuntu2, OpenSSL 0.9.7e 25 Oct 2004", as an ssh client, and am having some strange behaviour with a firewall of ours. We have a netscreen 5gt-plus, running ScreenOS 5.0.2, which has an ssh daemon running. I ssh to the firewall using `ssh username@<ip address>`, which works correctly (ie, connects, and I can use the console of

After upgrading to 5.1, connections to our Juniper E-Series routers fail with: $ ssh -v eseries OpenSSH_5.1p1, OpenSSL 0.9.8g 19 Oct 2007 debug1: Reading configuration data /etc/ssh_config debug1: Applying options for *-lns* debug1: Applying options for * debug1: Connecting to eseries [1.2.3.4] port 22. debug1: fd 3 clearing O_NONBLOCK debug1: Connection established. debug1: identity file

To all, I''ve just recently finished my "Security Gateway Server" project which separates a 10 laptop WLAN subnet from our main LAN/Internet network. I used Debian Sarge with kernel 2.6.9/ipsec-netfilter patched, and Shorewall 2.2.0-RC3 on a Asus P4S533, 2.4 GHz PenIV and 512MB memory. The Toshiba A60-S166, PenIV, 2.4G laptops run Windows XP Pro and have internal Atheros based

Hello all, I need a virtual firewall/router solution. I''m thinking of a netscreen 1000 but I want to know if it can be done in Linux. Here is my idea: 1 Linux box 2 GigE interfaces 1 interface setup with a public IP address ($PUBIP) 1 interface setup with 802.1q VLAN trunking with 100 vlans assigned ($VLAN1-$VLAN100) a /25 subnet routed to $PUBIP from my core routers All $VLAN

5.1p1 disconnects after the password prompt when connecting to my router and UPS. 5.1p1 connects fine to other unix hosts, and my Windows client connects fine to 5.1p1 servers. 5.0p1 works fine everywhere. I've tried ssh -T, ssh -t, permutations with ssh -o Compression=no -o TCPKeepAlive=no, etc, to no avail. I've used the default ssh_config file, and it still fails. Can anyone

Hi All, Until now I've only used IAX2 to connect to ITSPs. I've been toying with a SIP connection to Gizmo Project, but not yet successfully. It brings to mind a question. At what point does it make sense to consider a SIP-aware firewall such as those from Ingate? I'd hate to move away from my m0n0wall, which is open source, easy to manage and has served me brilliantly for two

Hello, I switched from my PSTN provider to a voip provider. (Voicedata in the Netherlands) >From the moment i switched all inbound calls are terminated after aproximatly 1 minute. The provider tells me it's not their issue since I have no other configuration than all their other users. What can I do. I removed all asterisk functionality by forwarding the inboud call directly to a local

Below is a patch against the current OpenBSD OpenSSH CVS to workaround a behavior I have observed when converting from SSH 1.2.27 to OpenSSH while using the same old RSA1 host key for protocol 1. In several cases I saw that old SSH sshd reported a host key size of 1024 bits when OpenSSH saw it as 1023 bits. Without the patch, when OpenSSH's ssh client connects to an old SSH sshd it warns

Hi, This is the first time I've come across this: pid 11415 (ipfw), uid 0: exited on signal 11 (core dumped) The core dump landed in root's home directory in one of my jails. Has anyone seen this before? Should I be concerned? chkrootkit says nothing. (How trustworthy is its output? ;-) Thanks. Cheers. -- Ng Pheng Siong <ngps@netmemetic.com> http://firewall.rulemaker.net

I having a problem where Logwatch is not showing any events from the /var/log/secure log file. When I run logwatch --print --range today --service sshd --detail 10 --debug 10 the end result shows this: ... LogFiles that will be processed: [0] = secure [1] = messages Made Temp Dir: /var/cache/logwatch/logwatch.sOga48bL with tempdir export LOGWATCH_DATE_RANGE='today' export

I have Asterisk server providing phone service for my company. The server is behind a PIX-515 FW and is assigned a private address 192.168.11.X/24. With that said what is best to provide remote SIP phones (home offices) securely. If the solution is to put up another Asterisk server with a public IP address I am opposed to that. I am looking for the a secure reliable solution to set up remote SIP