Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


Open Issues

Learn about open issues in this release for SRX Series devices.

For the most complete and latest information about known Junos OS defects, use the Juniper Networks online Junos Problem Report Search application.

Class of Service (CoS)

  • The show interfaces queue command output not correctly displaying bps values for throughput higher than 4.25Gbps. PR1596172

Flow-Based and Packet-Based Processing

  • For accelerated flows such as Express Path, the packet or byte counters in the session close log and show session output take into account only the values that accumulated while traversing the NP. PR1546430

  • When you perform ISSU with security VRF-group configuration, the ISSU cannot be completed successfully. PR1661935

Interfaces and Chassis

  • Traffic drop might be seen on irb interface on SRX1500 device for network control forwarding class when verifying DSCP classification based on single and multiple code-points. PR1611623

Platform and Infrastructure

  • In macOS platforms when Juniper Secure Connect client connects successfully, the client is not getting minimized to tray icon and needs to be minimized manually.PR1525889

  • With ssl-proxy configured along with web-proxy, the client session might not closed on the device even though proxy session ends gracefully. PR1580526

  • HA active/passive mode on-box logging in logical systems and tenant systems, Intermittently Security log contents of binary log file in LSYS are not as expected. PR1587360

  • SMTPS sessions are not getting identified when traffic is sent from IXIA (BPS) profile. PR1635929

  • Firewall authentication with user firewall based RADIUS access has system logs missing the username and rule. PR1654842

  • The show security firewall-authentication users identifier 1 and show security firewall-authentication users address commands does not display user's group information. PR1659115

  • The primary password for configuration encryption and FIPS mode should not be enabled together.PR1665506

  • The show services user-identification authentication-table ip-address command is failing when auth entry boundary testing with auth entry containing maximum length group-name and resource-group-name is used. PR1665691


  • In some scenarios, the kmd process might generate core files when all VPNs are down. PR1336368