1. Manuals
  2. Brands
  3. Juniper Manuals
  4. Software
  5. JUNOS OS 10.4 RELEASE NOTES
  6. Release note

Point-To-Point Protocol Over Ethernet (Pppoe); Security; Snmp; Switching - Juniper JUNOS OS 10.4 - RELEASE NOTES Release Note

Hide thumbs
Table of Contents

Advertisement

Known Limitations in Junos OS Release 10.4 for SRX Series Services Gateways and J Series Services Routers
Copyright © 2010, Juniper Networks, Inc.
Table 10: Number of Rules on SRX Series and J Series Devices (continued)
NAT Rule
Type
SRX100
Static NAT
512
rule
The restriction on the number of rules per rule set has been increased so that there is
only a device-wide limitation on how many rules a device can support. This restriction
is provided to help you better plan and configure the NAT rules for the device.
IKE negotiations involving NAT-T—On SRX1400, SRX3400, SRX3600, SRX5600,
and SRX5800 devices, IKE negotiations involving NAT-Traversal (NAT-T) traversal
do not work if the IKE peer is behind a NAT device that will change the source IP address
of the IKE packets during the negotiation. For example, if the NAT device is configured
with DIP, it changes the source IP because the IKE protocol switches the UDP port from
500 to 4500.

Point-to-Point Protocol over Ethernet (PPPoE)

On SRX100, SRX210, SRX220, SRX240, SRX650, and all J Series devices in a chassis
cluster, the
reth
interface cannot be used as the underlying interface for Point-to-Point
Protocol over Ethernet (PPPoE).

Security

J Series devices do not support the authentication order
in the
ldap
edit access profile profile-name authentication-order
or
order radius password
For all other limitations in security, see "Addresses and Address Sets" in the Junos OS
Security Configuration Guide.

SNMP

On J Series devices, the SNMP NAT-related MIB is not supported in Junos OS Release
10.4.

Switching

On SRX100, SRX210, SRX240, and SRX650 devices, CoA is not supported with 802.1x.
On SRX100, SRX210, SRX240 and SRX650 devices, on the routed VLAN interface, the
following features are not supported:
IPv6 (family inet6)
ISIS (family ISO)
Class-of-service
Encapsulations (Ether CCC, VLAN CCC, VPLS, PPPOE etc) on VLAN interfaces
CLNS
SRX210
SRX2 40
SRX650
512
1024
1024
.
ldap password
SRX3400
SRX5600
SRX3600
SRX5800
J Series
8192
8192
512
password radius
or
password
command. Instead, use
141
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Juniper JUNOS OS 10.4 - RELEASE NOTES

Related Content for Juniper JUNOS OS 10.4 - RELEASE NOTES

This manual is also suitable for:

Junos os 10.4

Table of Contents