Member Login

Remember Me
Forgot Password?
Join Us!

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

Join Tek-Tips
*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.
Jobs from Indeed

Link To This Forum!

Partner Button
Add Stickiness To Your Site By Linking To This Professionally Managed Technical Forum.
Just copy and paste the
code below into your site.

Netscreen 25 - open ports

Netscreen 25 - open ports


How can I open ports on Netscreen 25? From WAN to LAN?

RE: Netscreen 25 - open ports


This is done using by configuring policies.  First, what interfaces are being used?  Once you can determine the interfaces, you will need to check the zones assigned to each.   If the WAN and LAN are bound to the trust, you don't need a policy.  If the traffic crosses zones, you will need a policy.  The exception to this rule is when you have intra zone blocking enabled.  When you are creating the policies, you select objects from the address book.  That said, you may need need to create custom service and address objects prior to configuring a rule.  This is where you would define the subnets, IPs and ports/services.  If you require NAT, you have the option to use MIPs and VIPs.  A mapped IP is used for one to one NAT.  You can bind a MIP to a interface so that the IP is translated to a single internal IP via Policy.  If you need to use a single IP translating to a single host over several ports, you can use a VIP.  This would allow you to map a single IP to an internal server running for example HTTP and FTP.  Does this help?  Let me know.



Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!


Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close