[j-nsp] Infranet controller solution

Bill Blackford bblackford at gmail.com
Fri Oct 28 12:52:36 EDT 2016 

The Pulse Secure you're talking about is the Dynamic VPN client   - Yes.
Thank for the clarification. I'm not familiar with the Infranet Enforcer
and missed the nuance. I apologize for the noise.

On Fri, Oct 28, 2016 at 9:49 AM, Tim Jackson <jackson.tim at gmail.com> wrote:

> The Pulse Secure you're talking about is the Dynamic VPN client, not as an
> Infranet enforcer..
>
> --
> Tim
>
> On Fri, Oct 28, 2016 at 11:45 AM, Bill Blackford <bblackford at gmail.com>
> wrote:
>
>> I believe it's a licensing issue and I don't know the details of their
>> agreement with Pulse Secure after they spun them off, so it may be all of
>> the platforms. I ran into it with the branch models.
>>
>> On Fri, Oct 28, 2016 at 7:54 AM, james list <jameslist72 at gmail.com>
>> wrote:
>>
>> > Interesting, which models are you referring to ? Also high end (ie 5600
>> or
>> > 5800) ?
>> >
>> > Cheers
>> >
>> > 2016-10-28 16:49 GMT+02:00 Bill Blackford <bblackford at gmail.com>:
>> >
>> >> I was told by our SE that the newer models of SRX will no longer
>> support
>> >> Pulse Secure. I've also had to downgrade code to get older models to
>> >> support it as well.
>> >>
>> >> Sent from my iPhone
>> >>
>> >> > On Oct 28, 2016, at 00:59, Michael Gehrmann <mgehrmann at atlassian.com
>> >
>> >> wrote:
>> >> >
>> >> > Hi James,
>> >> >
>> >> > I'm only aware of Palo Alto and Juniper supporting this function. The
>> >> next
>> >> > generation SRX (300 and 1500) have some pretty good pricing from
>> what I
>> >> > have experienced.
>> >> >
>> >> > https://www.pulsesecure.net/download/document/988/PulseSecur
>> >> e_Solution_Brief_PAN_PPS_d1v5.fin.pdf
>> >> >
>> >> > I have experienced the Juniper integration with NAC and it works very
>> >> well.
>> >> >
>> >> > Cheers
>> >> > Mike
>> >> >
>> >> >> On 28 October 2016 at 18:52, james list <jameslist72 at gmail.com>
>> wrote:
>> >> >>
>> >> >> Hi Mike
>> >> >> here the functionality I'm looking for in the firewall device:
>> >> >>
>> >> >> - integration with MAG Pulse Secure
>> >> >> - policy enforcement using at least destination ip address, port and
>> >> >> protocol
>> >> >> - policy enforcement with action at least like allow, deny, reject
>> >> >> - policy enforcement based on user role
>> >> >>
>> >> >> Cheers
>> >> >> James
>> >> >>
>> >> >>
>> >> >> -
>> >> >>
>> >> >> 2016-10-28 7:21 GMT+02:00 Michael Gehrmann <mgehrmann at atlassian.com
>> >:
>> >> >>
>> >> >>> Hi James,
>> >> >>>
>> >> >>> Might be useful if you describe what functionality you are trying
>> to
>> >> >>> achieve. i.e. SRX as an enforcer
>> >> >>>
>> >> >>> Also you may not find many 'cheaper' alternatives in the TNC space:
>> >> >>> https://en.wikipedia.org/wiki/Trusted_Network_Connect
>> >> >>>
>> >> >>> Cheers
>> >> >>> Mike
>> >> >>>
>> >> >>>> On 28 October 2016 at 01:36, james list <jameslist72 at gmail.com>
>> >> wrote:
>> >> >>>>
>> >> >>>> Hi experts,
>> >> >>>>
>> >> >>>> has anybody ever configured an infranet controller solution using
>> MAG
>> >> >>>> (today Pulse Secure) other than using SRX firewall ?
>> >> >>>>
>> >> >>>>
>> >> >>>> I looking to find an alternative solution to SRX and as far as
>> I’ve
>> >> >>>> searched till now, seems that only Palo Alto could do something.
>> I’m
>> >> >>>> wondering if there are (cheaper) alternative…
>> >> >>>>
>> >> >>>>
>> >> >>>> Thanks in advance
>> >> >>>>
>> >> >>>>
>> >> >>>> Cheers
>> >> >>>>
>> >> >>>> James
>> >> >>>> _______________________________________________
>> >> >>>> juniper-nsp mailing list juniper-nsp at puck.nether.net
>> >> >>>> https://puck.nether.net/mailman/listinfo/juniper-nsp
>> >> >>>
>> >> >>>
>> >> >>>
>> >> >>>
>> >> >>> --
>> >> >>> Michael Gehrmann
>> >> >>> Senior Network Engineer - Atlassian
>> >> >>> m: +61 407 570 658
>> >> >
>> >> >
>> >> > --
>> >> > Michael Gehrmann
>> >> > Senior Network Engineer - Atlassian
>> >> > m: +61 407 570 658
>> >> > _______________________________________________
>> >> > juniper-nsp mailing list juniper-nsp at puck.nether.net
>> >> > https://puck.nether.net/mailman/listinfo/juniper-nsp
>> >>
>> >
>> >
>>
>>
>> --
>> Bill Blackford
>>
>> Logged into reality and abusing my sudo privileges.....
>> _______________________________________________
>> juniper-nsp mailing list juniper-nsp at puck.nether.net
>> https://puck.nether.net/mailman/listinfo/juniper-nsp
>>
>
>


-- 
Bill Blackford

Logged into reality and abusing my sudo privileges.....

More information about the juniper-nsp mailing list