J-WEB Initial Setup Wizards

J-WEB Initial Setup Wizards

J-WEB DOCUMENTATION.

J-WEB initial setup wizards.

Introduction

Connect the management device to the services gateway using either of the following methods: Connect an RJ-45 cable (Ethernet cable) from any one port between ge-0/0/1 and ge-0/0/15 on the front panel to the Ethernet port on the management device (workstation or laptop). After connecting the management device to the services gateway, the DHCP server process on the services gateway will assign an IP address automatically to the management device. Ensure that the management device acquires an IP address on the 192.168.1/24subnet-work (other than 192.168.1.1) from the device. The services gateway functions as a DHCP server and will assign an IP address to the management device. By default, the DHCP server is enabled on the L3 VLAN interface, (IRB) vlan.0 (ge-0/0/1 to ge-0/0/15), which is configured with an IP address of 192.168.1.1/24. When an SRX device services Gateway is powered on for the first time, it boots using the factory default configuration.

Setup wizards

  1. Launch a Web browser on the management device
  2. Enter in the URL address field. The J-Web login page is displayed.
  3. Specify the default user name as root. Do not enter any value in the Password field.

.

  1. Click Log In. The J-Web Initial Setup page is displayed

  1. Click on start>
  2. Configure the basic settings such as Host Name, Domain Name, Root Password and verify Root password

: Ensure that you have configured the IP address and root password before you apply the configuration.

NOTE: All fields marked with an asterisk (*) are mandatory

  1. Click Next
  2. Enter the default gateway, DNS servers and domain search

Note: optional field

  1. Click Next
  2. This page enables you to create new VLANs

Note: optional page

  1. Edit an existing VLAN by double-clicking the name or by selecting the row and clicking Edit

  1. Moved the ge-0/0/4.0 to available interface and user can able to configure IPV4 address
  2. Enter the Vlan-id, (range :2-4094)
  3. Select one or more interfaces in the available Interfaces box, then click the "<" button to add to group. You may also remove interfaces by selecting an interface in the right box and clicking the "<" button.
  4. Click Next
  1. This page shows gigabit Ethernet, Fast Ethernet and Vlan interfaces

Note: Optional page

  1. To edit an interface, double-click it, or select the row and click Edit. To add an interface, click Add.
  1. Select the interface from the drop down list
  2. Select the DHCP/IP/PPPOE address using radio button
  3. Select the zone from the drop down list
  4. Select the services by using check box
  1. Click Save
  2. Configured interface will appear in configure interface main page
  1. Click Next
  2. This page enables you to select the way that J-Web behaves when you start it.
  3. Select the option in J-web starting page option
  4. Select the option in J-web commit options
  1. Click Next
  1. This page to set the system time and time zone

(Note: Optional page)

  1. Click Next
  2. This page shows the system configuration summary

User Scenario 1: Sofware upgrade using the J-WEB .

Steps:

  1. Download the software to local PC
  2. Navigate to Maintain > Software> Upload Package page
  3. Click on Browse and select the downloaded software
  1. Select reboot options if required and click on Upload and “install package button “
  2. Browser will refresh every 1min to provide updated status and the 1st update will be available once image is copied to router
  1. Upload competion time depends on the platform
  2. Click on OK once the process is done or select reboot schedule

FTP upload

  1. Navigate to Maintain > Software> Install package page for FTP upload
  1. Provide FTP server and credential information and click on Fetch and install package button
  1. UI indicates step by step install progress
  1. Click OK to reboot immediately (if reboot is selected ) or schedule a reboot using hyperlink

Rollback to Alternative package:

  1. Navigate to Maintain > Software> Downgrade page (to rollback to alternative version )
  1. Click on Downgrade button and select the hyper link to schedule a reboot

Note: during reboot connection to the router will be lost hence there won’t be any update in the page status.

User Scenario 3: J-WEB FW and NAT wizard:

Steps to configure FW using Wizards

FW wizards

  1. Navigate to configure > Wizards > Fw_wizards (after initial setup)
  2. Click on start >
  1. click on Add>
  2. Enter the policy name
  3. Select the available zone_address for source and destination address and move to selected zone/address using Up arrow mark
  4. Select the available applications and move to selected application using Up arrow mark.
  5. Select the Action as permit/deny

(Note: All the given fields are mandatory)

  1. Click save, and it will reflect in firewall policy table

VPN Wizard

  1. Navigate to configure > Wizards > VPN_wizards (after initial setup)
  2. Click on start >
  1. Enter VPN name
  2. Select a security zone for the local private network from the list.
  3. Add network addresses to identify the local networks for the VPN. Add addresses by entering them and clicking Add.
  4. Enter the ST0 interface, number should be between (0-65535)
  5. Select a security zone for the interface from the list
  6. Indicate whether the interface is numbered (an IP address) or unnumbered
  7. Select an interface for the public network from the lists provided
  8. Select an interface zone for the public network from the lists provided.
  9. Indicate the interface type, either static/dynamic
  1. Add remote Gateway Public IP
  2. Add IP addresses for the remote private networks and clicking Add.
  1. Select the IKE security level
  2. Select the IKE mode
  3. Enter IKE preshared key (Ascii)
  4. Select the IPSec security level
  5. Select the IPSec forward secrecy
  6. Select the optional choice VPN monitor, Dead peer Detection
  1. Select the optional field
  1. click commit

NAT Wizard

  1. Navigate to configure > Wizards > NAT_wizards (after initial setup)
  2. Click on start >
  1. Click Add enter rule name
  2. Indicate whether the rule specifies a zone or an interface for the direction the traffic comes from
  3. Select the list and move to the RHS
  4. Enter a destination address in the form of a host address or a network address.
  5. Specify the address to use to perform static NAT

[Type text]

Top View