[j-nsp] User Role Firewall in SRX

Jed Laundry jlaundry at jlaundry.com
Thu Sep 11 04:29:19 EDT 2014


Hi List,

Because I haven't got x47 in the lab yet (240H... :( ), has anyone tried
chaining UserFW and IPSec together?

Thanks,
Jed.


On 10 September 2014 03:14, Maarten van der Hoek <maarten at vanderhoek.nl>
wrote:

> Hi Nc,
>
> From the release notes:
>
> . Integrated user firewall [SRX Series]-This feature retrieves user-to-IP
> address
> mappings from the Windows Active Directory to use as match criteria in
> firewall policies.
> The SRX Series device polls the event log of the Active Directory
> Controller
> (ADC) to
> determine who has logged on. The username and group are queried from the
> LDAP
> service in the ADC. The SRX Series device uses the IP address, username,
> and
> group
> information to generate authentication entries that the UserFW module uses
> to enforce
> user-based and group-based policy control over traffic.
>
> Best regards,
>
> Maarten
>
> -----Oorspronkelijk bericht-----
> Van: juniper-nsp [mailto:juniper-nsp-bounces at puck.nether.net] Namens Nc
> Aji
> Verzonden: dinsdag 9 september 2014 16:21
> Aan: juniper-nsp at puck.nether.net
> Onderwerp: [j-nsp] User Role Firewall in SRX
>
> Does the Juniper SRX with Latest version 12.1x47 Support User Firewall
> roles
> without using MAG.
>
> I wasn't able to see that in the release notes also in the feature
> explorer.
>
> Thank you all..
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>


More information about the juniper-nsp mailing list