Manuals / Juniper Networks / Computer Equipment / Computer Hardware

Juniper Networks SSG 20 manual Connecting a Device to a Network

Models: SSG 20

1 86

Download 86 pages 23.15 Kb

Page 23

Connecting a Device to a Network

An SSG 20 device provides firewall and general security for networks when it is placed between internal networks and the untrusted network. This section describes the following:

Connecting a Device to an Untrusted Network

Connecting a Device to an Internal Network or a Workstation

Connecting a Device to an Untrusted Network

You can connect your SSG 20 device to an untrusted network in one of the following ways:

Ethernet Ports

Serial (AUX/Console) Ports

Connecting Mini PIMs to an Untrusted Network

Figure 10 shows the SSG 20 with basic network cabling connections with two blank mini-PIMs and the 10/100 Ethernet ports cabled as follows:

The port labeled 0/0 (ethernet0/0 interface) is connected to the untrust network.

The port labeled 0/1 (ethernet0/1 interface) is connected to a workstation in the DMZ security zone.

The port labeled 0/3 (brgoup0 interface) is connected to a workstation in the Trust security zone.

The Console port is connected to a serial terminal for management access.

Figure 10: Basic Networking Example

Untrust

Zone

SSG 20

Console	DMZ	Trust
		Zone

Connecting a Device to a Network 23

Image 23

Juniper Networks SSG 20 manual Connecting a Device to a Network, Connecting a Device to an Untrusted Network

Contents

SSG 20 Hardware Installation and Configuration Guide Copyright Notice Table of Contents Appendix B Initial Configuration Wizard About This Guide WebUI Conventions OrganizationCLI Conventions Navigational Path and Configuration SettingsObtaining Documentation and Technical Support Hardware Overview Port and Power Connectors Status LED Descriptions Name Color Front PanelSystem Status LEDs Name Color Status Description TX/RX Port DescriptionsLAN Port LEDs Name Color Status Description LinkMini PIMs for the SSG Mini Physical Interface Module Port DescriptionsMini PIM LED States on the SSG Type Name Color Description Radio Transceivers Power AdapterBack Panel Grounding Lug USB Port Antennae TypesInstalling and Connecting the Device Before You Begin Installing EquipmentSSG 20 Front-mount Connecting the Power Connecting Interface Cables to a DeviceConnecting a Device to an Untrusted Network Connecting a Device to a NetworkSerial AUX/Console Ports Connecting Mini PIMs to an Untrusted NetworkMicrofilter and Splitter on Your Network Connection Connecting a Device to an Internal Network or a WorkstationWireless Antennae Configuring the Device Using a Console Connection Accessing a DeviceUsing the WebUI WebUI Login Prompt Using TelnetDMZ Default Device SettingsDefault Physical Interface to Zone Bindings Port Label Interface Zone Wireless and Logical Interface BindingsRoot Admin Name and Password Basic Device ConfigurationBridge Group Interfaces Date and TimeManagement Services Administrative AccessManagement Interface Address Default RouteHostname and Domain Name Basic Wireless Configuration Backup Untrust Interface ConfigurationDefault SSG 20-WLAN Configuration WPA2-PSK Wireless Authentication and Encryption OptionsWPA-PSK WPAActivate wireless changes ADSL2/2+ Interface Mini PIM ConfigurationVirtual Circuits PPPoE or PPPoA Static IP Address and Netmask T1 Interface Isdn InterfaceE1 Interface Modem Interface Verifying External Connectivity Basic Firewall ProtectionsResetting a Device to Factory Defaults Page Replacing a Mini-Physical Interface Module Servicing the DeviceRequired Tools and Parts Removing a Mini PIM Removing a Blank FaceplateRemoving a Mini PIM Installing a Mini PIMBottom of Device Upgrading MemoryUnlocking the Memory Module 56 „ Upgrading Memory Specifications Environmental Tolerance PhysicalElectrical EMC Immunity SafetyCertifications EMC EmissionsDSR ConnectorsRJ-45 Connector Pinouts Name Description GNDRTS DB-9 Connector Pinouts Name DescriptionDCD DTRPage Initial Configuration Wizard Rapid Deployment Window Administrator Login WindowPhysical Interface Window Wlan Access Point WindowADSL2/2+ Interface Window Adsl Interface Configuration WindowVPI/VCI Fields in Adsl Interface Configuration Window DescriptionT1 Physical Layer Tab Window T1 Interface WindowsFields in T1 Physical Layer Tab Window Description 70 „ Page Cisco Hdlc Option with Cisco Hdlc Tab Window E1 Physical Layer Tab Window E1 Interface WindowsFields in E1 Physical Layer Tab Window Description Field Description Isdn Interface WindowsSPID2 Fields in Isdn Physical Layer Tab Window DescriptionSPID1 Page Eth0/0 Interface Untrust Zone Window 92 Modem Interface WindowEth0/1 Interface DMZ Zone Window Bgroup0 Interface Window Bgroup0 Interface Trust Zone WindowFields in Bgroup0 Interface Window Description Wireless0/0 Interface Trust Zone WindowSsid Fields in Wireless0/0 Interface Window DescriptionInterface Summary Window Physical Ethernet Dhcp Interface Window Wireless Dhcp Interface WindowConfirmation Window Confirmation WindowAdsl IndexVPI/VCI