Download
Share
Print this page
Juniper NetScreen-50 User Manual
  1. Manuals
  2. Brands
  3. Juniper Manuals
  4. Firewall
  5. NetScreen-50
  6. User manual
Juniper NetScreen-50 User Manual

Juniper NetScreen-50 User Manual

Hide thumbs Also See for NetScreen-50:

Advertisement

Quick Links

Download this manual
1
6

(7
&5((1
8VHU·V *XLGH
Version 5.0
P/N 093-1249-000
Rev. A

Advertisement

loading

Related Manuals for Juniper NetScreen-50

Summary of Contents for Juniper NetScreen-50

  • Page 1 &5((1 8VHU·V *XLGH Version 5.0 P/N 093-1249-000 Rev. A...
  • Page 2 NetScreen-Global PRO, NetScreen-Global PRO Express, NetScreen-Remote Security Client, NetScreen-Remote VPN Client, NetScreen-IDP 10, NetScreen-IDP 100, NetScreen-IDP 500, GigaScreen ASIC, GigaScreen-II ASIC, and NetScreen ScreenOS are trademarks of Juniper Networks, Inc. All other trademarks and registered trademarks are the property of their respective companies.
  • Page 3 &RQWHQWV 3UHIDFH  Y *XLGH 2UJDQL]DWLRQ Y &RPPDQG /LQH ,QWHUIDFH &/, &RQYHQWLRQV  YL -XQLSHU 1HWZRUNV 1HW6FUHHQ 3XEOLFDWLRQV  YL &KDSWHU  2YHUYLHZ   7KH )URQW 3DQHO   3RZHU DQG 6WDWXV /('V   $VVHW 5HFRYHU\ 3LQKROH  &RQVROH DQG 0RGHP 3RUWV  &RPSDFW )ODVK &DUG 6ORW   (WKHUQHW ,QWHUIDFHV ...
  • Page 4 &RQWHQWV (OHFWULFDO 6SHFLILFDWLRQ  $,, (QYLURQPHQWDO  $,, 6DIHW\ &HUWLILFDWLRQV  $,, (0, &HUWLILFDWLRQV  $,, &RQQHFWRUV  $,,, ,QGH[ 8VHU·V *XLGH...
  • Page 5 Chapter 3, "Configuring the Device" details how to connect the NetScreen-50 device to your network, establish a Console session, set an IP address for the NetScreen-50 device, and access the device using the WebUI. Chapter 4, "Replacing the Fuse"...
  • Page 6 To obtain the latest software version, visit: www.netscreen.com/services/download_soft. Select a category of software product from the dropdown list, then follow the displayed instructions. (You must be a registered user to download Juniper Networks Netscreen software.) If you find any errors or omissions in the following content, please contact us at the e-mail address below: techpubs@netscreen.com...
  • Page 7 8uhƒ‡r…à 2YHUYLHZ This chapter provides detailed descriptions of the NetScreen-50 chassis. Topics explained in this chapter include: • “The Front Panel” on page 2 – “Power and Status LEDs” on page 2 – “Asset Recovery Pinhole” on page 4 –...

  • Page 8: Chapter 1 Overview

    A Compact Flash card slot, for storage of system images, configuration files, keys, and logs. • Four Ethernet ports, for connecting the NetScreen-50 device to your LAN or local workstations and to the Internet. Power and Status LEDs Compact Flash Slot...
  • Page 9 Session amber Session utilization is between 70% and 90%. Utilization Session utilization is greater than 90%. Normal operation. Flash Compact Flash green The card is installed. (CF) Card Status blinking green Read-write activity is detected. CF slot is empty. NetScreen-50...
  • Page 10 Chapter 1 Overview $VVHW 5HFRYHU\ 3LQKROH The asset recovery pinhole is a switch that resets the device to its original default settings. To use this switch, insert a stiff wire (such as a straightened paper clip) into the pinhole. Warning: Because resetting the device restores it to the original default configuration, any new configuration settings are lost, and the firewall and all VPN service become inoperative.
  • Page 11 LED indicates network traffic activity and the right LED indicates if the link is up (the port is connected to an active device). $1(/ The rear panel of the NetScreen-50 device contains the power outlet and ON/OFF switch. Power Outlet ON/OFF Switch You can order the NetScreen-50 device with either an AC or DC power supply.
  • Page 12 Chapter 1 Overview User’s Guide...
  • Page 13 8uhƒ‡r…Ã! ,QVWDOOLQJ WKH 'HYLFH This chapter describes how to install a NetScreen-50 device in an equipment rack or on a desktop. Topics in this chapter include: • “General Installation Guidelines” on page 8 • “Equipment Rack Mounting” on page 8 –...

  • Page 14: Chapter 2 Installing The Device

    NetScreen-50 device in a locked-room environment. 48,30(17 $&. 2817,1* The NetScreen-50 device comes with accessories for mounting the device in a standard 19–inch equipment rack. (TXLSPHQW 5DFN ,QVWDOODWLRQ *XLGHOLQHV The location of the chassis, the layout of the equipment rack, and the security of your wiring room are crucial for proper system operation.
  • Page 15 1 Phillips-head screwdriver (not provided) • 4 screws to match the rack (if the thread size of the screws provided in the NetScreen-50 product package do not fit the thread size of the rack) • The included rack mount bracket kit.
  • Page 16 Chapter 2 Installing the Device User’s Guide...
  • Page 17 8uhƒ‡r…Ã" &RQILJXULQJ WKH 'HYLFH This chapter describes how to connect a NetScreen-50 device to your network and perform initial configuration on the device. Topics in this chapter include: • “Operational Modes” on page 12 – “Transparent Mode” on page 12 –...

  • Page 18: Chapter 3 Configuring The Device

    VPN, and traffic management according to configured security policies. 5RXWH 0RGH In Route mode, the NetScreen-50 device operates at Layer 3. Because you can configure each interface using an IP address and subnet mask, you can configure individual interfaces to perform NAT.
  • Page 19 The NetScreen-50 Interfaces  , &5((1 17(5)$&(6 Each NetScreen-50 device provides Ethernet interfaces for access and connectivity. In addition, there are logical (non-physical) interfaces that perform special Layer-2 or management functions. The configurable interfaces available on a NetScreen-50 device are as follows:...
  • Page 20 “Equipment Rack Mounting” on page Make sure that the power switch on the device is turned OFF. Connect the power cable, included in the product package, to the NetScreen-50 power outlet at the rear of the device and to a power source.
  • Page 21 NetScreen devices in a redundant cluster. The devices propagate all network, configuration and session information to each other. Should one device fail, the other takes over the traffic processing. The following diagram shows a typical HA setup for NetScreen-50 devices. Internet Routers...
  • Page 22 Chapter 3 Configuring the Device To cable two NetScreen-50 devices together for HA and connect them to the network: Note: The cabling instructions given below reproduce the configuration shown previously. However, this is not the only possible HA configuration. In addition, the instructions assume that all physical ports and interfaces are still set at their default settings.
  • Page 23 Performing Initial Configuration Using the CLI & &/, (5)250,1* 1,7,$/ 21),*85$7,21 6,1* 7+( There are two ways to establish a console session with the NetScreen-50 device: ® ® • Using a vt100 terminal emulator, such as Hilgraeve Hyperterminal hrough an RJ-45 serial cable connected to the console port.
  • Page 24 Chapter 3 Configuring the Device 6HWWLQJ DQ ,3 $GGUHVV IRU 0DQDJLQJ WKH 'HYLFH The default IP address for managing the NetScreen-50 device through the Trust zone interface (Ethernet port 1) is 192.68.1.1. This is the IP address that you use to manage the device through a Telnet session or with the WebUI management application.
  • Page 25 To prevent automatic termination, specify a value of 0. $OORZLQJ 2XWERXQG 7UDIILF By default, the NetScreen-50 device does not allow inbound or outbound traffic, nor does it allow traffic to or from the DMZ. You need to create access policies to permit specified kinds of traffic in the directions you want.
  • Page 26 &&(66,1* 7+( (9,&( ,7+ 7+( To access the NetScreen-50 device with the WebUI management application: Connect your PC (or your LAN hub) to the Trust zone interface, as described in “Connecting the Device to a Network” on page Launch your browser, enter the IP address of the Trust zone interface in the URL field, and then press Enter.
  • Page 27 If you proceed, the device will return to factory default configuration, which is: System IP: 192.168.1.1; username: netscreen; password: netscreen. Would you like to continue? y/[n] Press the y key to rest the device. You can now login in using netscreen as the default username and password. NetScreen-50...
  • Page 28 Chapter 3 Configuring the Device 8VLQJ WKH $VVHW 5HFRYHU\ 3LQKROH WR 5HVHW WKH 'HYLFH You can also reset the device and restore the factory default settings by pressing the asset recovery pinhole. To perform this operation, you need to make a console connection, as described in “Connecting Using a vt100 Terminal Emulator”...
  • Page 29 8uhƒ‡r…Ã# 5HSODFLQJ WKH )XVH The NetScreen-50 device uses a 2.5 Amp slow-blow fuse rated for 250 Volts. To replace a failed fuse on the NetScreen-50 device: Take the device off-line, turn the power switch OFF, and disconnect the power cable.

  • Page 30: Chapter 4 Replacing The Fuse

    Chapter 4 Replacing the Fuse User’s Guide...
  • Page 31 6ƒƒrqv‘Ã6 6SHFLILFDWLRQV This appendix provides general system specifications for the NetScreen-50 device. • “NetScreen-50 Attributes” on page A-II • “Electrical Specification” on page A-II • “Environmental” on page A-II • “Safety Certifications” on page A-II • “EMI Certifications” on page A-II •...

  • Page 32: Appendix A Specifications

    Appendix A Specifications  $ &5((1 775,%87(6 Height: 1.73 inches (4.4 cm) Depth: 10.8 inches (27.4 cm) Width: 17.5 inches (44.5 cm) Weight: 8 pounds (36 Hg) /(&75,&$/ 3(&,),&$7,21 AC voltage: 100-240 VAC +/- 10% DC voltage: -36 to -60 VDC Maximum AC Watts: 45 Watts Maximum DC Watts: 50 Watts Fuse Rating: 2.5 Amp / 250 Volts...
  • Page 33 The RJ-45 twisted-pair ports are compatible with the IEEE 802.3 Type 10/100 Base-T standard. The following table describes the media type and distance for these connectors. Standard Media Type Mhz/Km Maximum Rating Distance 100Base-TX Category 5 and higher Unshielded Twisted Pair (UTP) 100 m Cable NetScreen-50 A-III...
  • Page 34 Appendix A Specifications A-IV User’s Guide...
  • Page 35 14, connecting power NetScreen publications console changing timeout 17, initiating a session password console port changing resetting ports, console guide organization rack HA connection installation guidelines mounting reset installation guidelines transparent mode LEDs alarm Flash ventilation NetScreen-50 IX-1...
  • Page 36 Index IX-2 User’s Guide...