Connecting a Device to a Network | Juniper Networks SSG 20 specs

Connecting a Device to a Network

An SSG 20 device provides firewall and general security for networks when it is placed between internal networks and the untrusted network. This section describes the following:

Connecting a Device to an Untrusted Network

Connecting a Device to an Internal Network or a Workstation

Connecting a Device to an Untrusted Network

You can connect your SSG 20 device to an untrusted network in one of the following ways:

Ethernet Ports

Serial (AUX/Console) Ports

Connecting Mini PIMs to an Untrusted Network

Figure 10 shows the SSG 20 with basic network cabling connections with two blank mini-PIMs and the 10/100 Ethernet ports cabled as follows:

The port labeled 0/0 (ethernet0/0 interface) is connected to the untrust network.

The port labeled 0/1 (ethernet0/1 interface) is connected to a workstation in the DMZ security zone.

The port labeled 0/3 (brgoup0 interface) is connected to a workstation in the Trust security zone.

The Console port is connected to a serial terminal for management access.

Figure 10: Basic Networking Example

Untrust

Zone

SSG 20

Console	DMZ	Trust
		Zone

Connecting a Device to a Network 23

Image 23

Juniper Networks SSG 20 manual Connecting a Device to a Network, Connecting a Device to an Untrusted Network

Contents

SSG 20 Hardware Installation and Configuration Guide Copyright Notice Table of Contents Appendix B Initial Configuration Wizard About This Guide WebUI Conventions Organization CLI Conventions Navigational Path and Configuration Settings Obtaining Documentation and Technical Support Hardware Overview Port and Power Connectors Status LED Descriptions Name Color Front PanelSystem Status LEDs Name Color Status Description TX/RX Port DescriptionsLAN Port LEDs Name Color Status Description Link Mini PIMs for the SSG Mini Physical Interface Module Port Descriptions Mini PIM LED States on the SSG Type Name Color Description Radio Transceivers Power AdapterBack Panel Grounding Lug USB Port Antennae Types Installing and Connecting the Device Before You Begin Installing Equipment SSG 20 Front-mount Connecting the Power Connecting Interface Cables to a Device Connecting a Device to an Untrusted Network Connecting a Device to a Network Serial AUX/Console Ports Connecting Mini PIMs to an Untrusted Network Microfilter and Splitter on Your Network Connection Connecting a Device to an Internal Network or a Workstation Wireless Antennae Configuring the Device Using a Console Connection Accessing a Device Using the WebUI WebUI Login Prompt Using Telnet DMZ Default Device SettingsDefault Physical Interface to Zone Bindings Port Label Interface Zone Wireless and Logical Interface Bindings Root Admin Name and Password Basic Device Configuration Bridge Group Interfaces Date and Time Management Services Administrative Access Management Interface Address Default RouteHostname and Domain Name Basic Wireless Configuration Backup Untrust Interface Configuration Default SSG 20-WLAN Configuration WPA2-PSK Wireless Authentication and Encryption OptionsWPA-PSK WPA Activate wireless changes ADSL2/2+ Interface Mini PIM Configuration Virtual Circuits PPPoE or PPPoA Static IP Address and Netmask T1 Interface Isdn Interface E1 Interface Modem Interface Verifying External Connectivity Basic Firewall Protections Resetting a Device to Factory Defaults Page Replacing a Mini-Physical Interface Module Servicing the DeviceRequired Tools and Parts Removing a Mini PIM Removing a Blank Faceplate Removing a Mini PIM Installing a Mini PIM Bottom of Device Upgrading Memory Unlocking the Memory Module 56 „ Upgrading Memory Specifications Environmental Tolerance PhysicalElectrical EMC Immunity SafetyCertifications EMC Emissions DSR ConnectorsRJ-45 Connector Pinouts Name Description GND RTS DB-9 Connector Pinouts Name DescriptionDCD DTRPage Initial Configuration Wizard Rapid Deployment Window Administrator Login Window Physical Interface Window Wlan Access Point Window ADSL2/2+ Interface Window Adsl Interface Configuration Window VPI/VCI Fields in Adsl Interface Configuration Window Description T1 Physical Layer Tab Window T1 Interface Windows Fields in T1 Physical Layer Tab Window Description 70 „ Page Cisco Hdlc Option with Cisco Hdlc Tab Window E1 Physical Layer Tab Window E1 Interface Windows Fields in E1 Physical Layer Tab Window Description Field Description Isdn Interface Windows SPID2 Fields in Isdn Physical Layer Tab Window DescriptionSPID1 Page Eth0/0 Interface Untrust Zone Window 92 Modem Interface Window Eth0/1 Interface DMZ Zone Window Bgroup0 Interface Window Bgroup0 Interface Trust Zone Window Fields in Bgroup0 Interface Window Description Wireless0/0 Interface Trust Zone Window Ssid Fields in Wireless0/0 Interface Window DescriptionInterface Summary Window Physical Ethernet Dhcp Interface Window Wireless Dhcp Interface Window Confirmation Window Confirmation Window Adsl Index VPI/VCI