Sending IP packets on a multiaccess network requires mapping from an IP address to a MAC address (physical/hardware address like 00:02:b6:34:6a:2f).
In an ethernet environment, ARP is used to map a MAC address to an IP address.
ARP dynamically binds the IP address to the correct MAC address.
You need a SSH Access to your juniper to proceed!
Show all ARP entrys:
Clear all dynamic entries from the ARP cache.
Also you can clear a single ARP entry:
ssg5-> clear arp 192.168.201.9
Theoretical information was token from: juniper.net
Example, you want to debug a connection from a client(192.168.110.20) to the internet (google – 220.127.116.11).
From your client you start a continuous ping to 18.104.22.168, now you are able to debug the traffic on your juniper device.
Continue reading ‘Debug on a Juniper firewall’
I used a serial connection, with USB -> RJ45-Serial – Cable
save config from usb configname.cfg to flash
minicom config from: /etc/minicom/minirc.juniper
# Manuell erzeugte Datei - Verwenden Sie "minicom -s" zum Ändern
pu port /dev/ttyUSB0
pu baudrate 9600
pu escape-key ^M
pu rtscts No