Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                

Srx650 Quick Start

Download as pdf or txt
Download as pdf or txt
You are on page 1of 3

SRX650 Services Gateway Quick Start

Use the instructions in this quick start to help you connect the SRX650 Services Gateway to your network. For details, see the SRX650 Services Gateway Hardware Guide at www.juniper.net/techpubs/hardware/junos-srx/srx650/index.html. For translated documentation, see the URL below: Arabic German
DC OK AC OK

SRX650 Services Gateway Back Panel


1 2 3 4 5

SRE 6

OFFLINE

RESET CONFIG ALARM POWER STATUS HA SRE AUX CONSOLE

USB 0 CF ACT COMPACT FLASH

USB 1

French Chinese Korean Russian Japanese www.juniper.net/techpubs/hardware/junos-srx/srx650/translated/index.html


Callout Description 1 2 3 4 5
7

10

11

Callout 7 8 9 10 11

Description SRE LEDs AUX port Console port External CompactFlash slot 2 USB ports

Power supply slots Multi-use processing slot Services and Routing (SRE) slot 0 (shown with SRE model installed) Fan tray Air filter (behind fan tray) Reset Config button

SRX650 Services Gateway Front Panel


2 1 3 4 5 6

Connecting and Configuring the SRX Series Device


g032700-gsg

Use the instructions below to connect and set up the SRX650 Services Gateway to protect your network. Refer to the LEDs on the front and back panels of the device to help you determine the status of the device.

10 11

12

Part 1: Overview
The SRX650 Services Gateway is a security device that requires these basic configuration settings to function:

Callout Description 1 2 3 4 5 6 Mounting brackets ALARM LED FAN LED SRE/ACE LED 1.0 ESD outlet 10/100/1000 Ethernet ports

Callout 7 8 9 10 11 12

Description GPIM/XPIM slots POWER LED HA SYS LED SRE/ACE LED 0 (applies to SRE models only) SRE/ACE LED 1.1 Power button

Interfaces must be assigned IP addresses. Interfaces must be bound to zones. All interfaces must be configured as Layer 3 interfaces. Policies must be configured between zones to permit or deny traffic. Source NAT rules must be set.

g032703

Spanish

Services and Routing Engine 6

Factory-Default Settings:
Interface ge-0/0/0 ge-0/0/1 ge-0/0/2 ge-0/0/3 Security Zone untrust trust trust trust DHCP State client server server server IP Address dynamically assigned 192.168.1.1/24 192.168.2.1/24 192.168.3.1/24

Part 4: DHCP Server Process Assigns an IP Address


After you connect the management device to the services gateway, the DHCP server process on the services gateway will assign an IP address automatically to the management device. NOTE: If an IP address is not assigned to the management device, manually configure an IP address in the 192.168.1.0/24 subnetwork while the management device is still connected to the ge-0/0/1 port.

Security Policies:
Source Zone trust Destination Zone untrust Policy Action permit

Part 5: Access the J-Web Interface


1. 2. 3. 4. Launch a Web browser from the management device. Enter http://192.168.1.1 in the URL address field. Specify the default user name as root. Do not enter any value in the Password field. Click Log In. The J-Web Initial Setup is displayed.

NAT Rule:
Source Zone trust Destination Zone untrust Policy Action
source NAT to untrust zone interface

Part 2: Connect the Power Cable and a Power Source


We recommend using a surge protector. Note the following indications:

POWER LEDs (solid green) on front and back panels: The device is receiving power. STATUS LED (solid green) on back panel: The device is operating normally. ALARM LED (amber) on front panel: The device is operating normally without a rescue configuration. This is not a panic condition.

NOTE: A solid red ALARM LED indicates a major problem exists on the services gateway. IMPORTANT: You must allow the services gateway between five and seven minutes to boot up after you have powered it on. Please wait until the STATUS LED is solid green before proceeding to Part 3.

Part 3: Connect the Management Device


Connect the management device to the services gateway using either of the following methods:

Part 6: Configure the Basic Settings


1. Configure the basic settings, such as Host Name, Domain Name, Root Password, and IP Address, for your services gateway. IMPORTANT: Ensure that you have configured the IP address, root authentication, and default gateway before you apply the configuration. 2. Click Apply to apply the configuration. NOTE: All network and management access settings are optional.

Connect an Ethernet cable from the ge-0/0/1 port to the Ethernet port on the management device (workstation or laptop). We recommend this connection method. If you are using this method to connect, proceed with Part 4.

Connect an RJ-45 cable from the console port to the DB-9 adapter, which then connects to the serial port on the management device. (Serial port settings: 9600 8-N-1-N) If you are using this method to connect, proceed with the CLI configuration instructions available in the Branch SRX Series Services Gateways Golden Configurations at www.juniper.net/us/en/local/pdf/app-notes/3500153-en.pdf.

Page 2

Part 7: Configure an Interface


1. In the J-Web interface, click the Configuration tab at the top and click Interfaces on the side bar. The Interface Configuration page is displayed.

2. 3. 4. 5. 6.

Under the Interface column, click on the interface you want to configure. Under Add, click Logical Interface. Under IPv4 Address, click Add. In the IPv4 Address field, enter an IP address and a subnet mask. Click OK. The configured IP address is added to the interface.

For additional configuration information, see the Branch SRX Series Services Gateways Golden Configurations at www.juniper.net/us/en/local/pdf/app-notes/3500153-en.pdf. For detailed software configuration information, see the software documentation available at www.juniper.net/techpubs/software/junos-srx/index.html.

Powering Off the Device


To shut down the operating system on the Services and Routing Engine (SRE), perform a graceful shutdown by pressing and releasing the Power button. The device begins gracefully shutting down the operating system on the SRE. To rescue the configuration or return the services gateway to its factory default configuration, press the Reset Config button. NOTE: You can reboot or halt the system in the J-Web interface by selecting Manage > Reboot.

Contacting Juniper Networks


For technical support, see www.juniper.net/support/requesting-support.html.

Juniper Networks, the Juniper Networks logo, JUNOS, NetScreen, ScreenOS, and Steel-Belted Radius are registered trademarks of Juniper Networks, Inc. in the United States and other countries. JUNOSe is a trademark of Juniper Networks, Inc. All other trademarks, service marks, registered trademarks, or registered service marks are the property of their respective owners. Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice. Products made or sold by Juniper Networks or components thereof might be covered by one or more of the following patents that are owned by or licensed to Juniper Networks: U.S. Patent Nos. 5,473,599, 5,905,725, 5,909,440, 6,192,051, 6,333,650, 6,359,479, 6,406,312, 6,429,706, 6,459,579, 6,493,347, 6,538,518, 6,538,899, 6,552,918, 6,567,902, 6,578,186, and 6,590,785. Copyright 2010, Juniper Networks, Inc. All rights reserved. Printed in USA. Part Number: 530-032843 Rev. 01, February 2010.

You might also like