[j-nsp] Infranet controller solution
Tim Jackson
jackson.tim at gmail.com
Fri Oct 28 12:49:31 EDT 2016
The Pulse Secure you're talking about is the Dynamic VPN client, not as an
Infranet enforcer..
--
Tim
On Fri, Oct 28, 2016 at 11:45 AM, Bill Blackford <bblackford at gmail.com>
wrote:
> I believe it's a licensing issue and I don't know the details of their
> agreement with Pulse Secure after they spun them off, so it may be all of
> the platforms. I ran into it with the branch models.
>
> On Fri, Oct 28, 2016 at 7:54 AM, james list <jameslist72 at gmail.com> wrote:
>
> > Interesting, which models are you referring to ? Also high end (ie 5600
> or
> > 5800) ?
> >
> > Cheers
> >
> > 2016-10-28 16:49 GMT+02:00 Bill Blackford <bblackford at gmail.com>:
> >
> >> I was told by our SE that the newer models of SRX will no longer support
> >> Pulse Secure. I've also had to downgrade code to get older models to
> >> support it as well.
> >>
> >> Sent from my iPhone
> >>
> >> > On Oct 28, 2016, at 00:59, Michael Gehrmann <mgehrmann at atlassian.com>
> >> wrote:
> >> >
> >> > Hi James,
> >> >
> >> > I'm only aware of Palo Alto and Juniper supporting this function. The
> >> next
> >> > generation SRX (300 and 1500) have some pretty good pricing from what
> I
> >> > have experienced.
> >> >
> >> > https://www.pulsesecure.net/download/document/988/PulseSecur
> >> e_Solution_Brief_PAN_PPS_d1v5.fin.pdf
> >> >
> >> > I have experienced the Juniper integration with NAC and it works very
> >> well.
> >> >
> >> > Cheers
> >> > Mike
> >> >
> >> >> On 28 October 2016 at 18:52, james list <jameslist72 at gmail.com>
> wrote:
> >> >>
> >> >> Hi Mike
> >> >> here the functionality I'm looking for in the firewall device:
> >> >>
> >> >> - integration with MAG Pulse Secure
> >> >> - policy enforcement using at least destination ip address, port and
> >> >> protocol
> >> >> - policy enforcement with action at least like allow, deny, reject
> >> >> - policy enforcement based on user role
> >> >>
> >> >> Cheers
> >> >> James
> >> >>
> >> >>
> >> >> -
> >> >>
> >> >> 2016-10-28 7:21 GMT+02:00 Michael Gehrmann <mgehrmann at atlassian.com
> >:
> >> >>
> >> >>> Hi James,
> >> >>>
> >> >>> Might be useful if you describe what functionality you are trying to
> >> >>> achieve. i.e. SRX as an enforcer
> >> >>>
> >> >>> Also you may not find many 'cheaper' alternatives in the TNC space:
> >> >>> https://en.wikipedia.org/wiki/Trusted_Network_Connect
> >> >>>
> >> >>> Cheers
> >> >>> Mike
> >> >>>
> >> >>>> On 28 October 2016 at 01:36, james list <jameslist72 at gmail.com>
> >> wrote:
> >> >>>>
> >> >>>> Hi experts,
> >> >>>>
> >> >>>> has anybody ever configured an infranet controller solution using
> MAG
> >> >>>> (today Pulse Secure) other than using SRX firewall ?
> >> >>>>
> >> >>>>
> >> >>>> I looking to find an alternative solution to SRX and as far as I’ve
> >> >>>> searched till now, seems that only Palo Alto could do something.
> I’m
> >> >>>> wondering if there are (cheaper) alternative…
> >> >>>>
> >> >>>>
> >> >>>> Thanks in advance
> >> >>>>
> >> >>>>
> >> >>>> Cheers
> >> >>>>
> >> >>>> James
> >> >>>> _______________________________________________
> >> >>>> juniper-nsp mailing list juniper-nsp at puck.nether.net
> >> >>>> https://puck.nether.net/mailman/listinfo/juniper-nsp
> >> >>>
> >> >>>
> >> >>>
> >> >>>
> >> >>> --
> >> >>> Michael Gehrmann
> >> >>> Senior Network Engineer - Atlassian
> >> >>> m: +61 407 570 658
> >> >
> >> >
> >> > --
> >> > Michael Gehrmann
> >> > Senior Network Engineer - Atlassian
> >> > m: +61 407 570 658
> >> > _______________________________________________
> >> > juniper-nsp mailing list juniper-nsp at puck.nether.net
> >> > https://puck.nether.net/mailman/listinfo/juniper-nsp
> >>
> >
> >
>
>
> --
> Bill Blackford
>
> Logged into reality and abusing my sudo privileges.....
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
More information about the juniper-nsp
mailing list