Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Configure vSRX Virtual Firewall Using the J-Web Interface

Access the J-Web Interface and Configuring vSRX Virtual Firewall

To configure vSRX Virtual Firewall using the J-Web Interface:

  1. Launch the J-Web interface from a Web browser.

    Note:

    You will be prompted to accept a system-generated certificate to access a vSRX Virtual Firewall VM using the J-Web interface.

  2. Enter the vSRX Virtual Firewall out-of-band management (fxp0) interface IP address in the Address box.

  3. Specify the username and password.

  4. Click Log In, and select the Configuration Wizards tab from the left navigation panel. The J-Web Setup wizard page opens.

  5. Click Setup.

    You can use the Setup wizard to configure the vSRX Virtual Firewall VM or edit an existing configuration.

    • Select Edit Existing Configuration if you have already configured the wizard using the factory mode.

    • Select Create New Configuration to configure the vSRX Virtual Firewall VM using the wizard.

      The following configuration options are available in the guided setup:

      • Basic

        Select basic to configure the vSRX Virtual Firewall VM name and user account information as shown in Table 1.

        • Instance name and user account information

          Table 1: Instance Name and User Account Information

          Field

          Description

          Instance name

          Type the name of the vSRX Virtual Firewall instance.

          Root password

          Create a default root user password.

          Verify password

          Verify the default root user password.

          Operator

          Add an optional administrative account in addition to the root account.

          User role options include:

          • Super User: This user has full system administration rights and can add, modify, and delete settings and users.

          • Operator: This user can perform system operations such as a system reset but cannot change the configuration or add or modify users.

          • Read only: This user can only access the system and view the configuration.

          • Disabled: This user cannot access the system.

      • Select either Time Server or Manual. Table 2 lists the system time options.

        Table 2: System Time Options

        Field

        Description

        Time Server

        Host Name

        Type the hostname of the time server. For example: ntp.example.com.

        IP

        Type the IP address of the time server in the IP address entry field. For example: 192.0.2.254.

        Note:

        You can enter either the hostname or the IP address.

        Manual

        Date

        Click the current date in the calendar.

        Time

        Set the hour, minute, and seconds. Choose AM or PM.

        Time Zone (mandatory)

        Time Zone

        Select the time zone from the list. For example: GMT Greenwich Mean Time GMT.

    • Expert

      1. Select Expert to configure the basic options as well as the following advanced options:

        • Four or more internal zones

        • Internal zone services

        • Application of security policies between internal zones

      2. Click the Need Help icon for detailed configuration information.

      You see a success message after the basic configuration is complete.

Apply the Configuration

To apply the configuration settings for vSRX Virtual Firewall:

  1. Review and ensure that the configuration settings are correct, and click Next. The Commit Configuration page appears.
  2. Click Apply Settings to apply the configuration changes to vSRX Virtual Firewall.
  3. Check the connectivity to vSRX Virtual Firewall, as you might lose connectivity if you have changed the management zone IP. Click the URL for reconnection instructions on how to reconnect to the instance.
  4. Click Done to complete the setup.

    After successful completion of the setup, you are redirected to the J-Web interface.

    CAUTION:

    After you complete the initial setup, you can relaunch the J-Web Setup wizard by clicking Configuration>Setup. You can either edit an existing configuration or create a new configuration. If you create a new configuration, the current configuration in vSRX Virtual Firewall will be deleted.

Add vSRX Virtual Firewall Feature Licenses

Certain Junos OS software features require a license to activate the feature. To enable a licensed feature, you need to purchase, install, manage, and verify a license key that corresponds to each licensed feature. To conform to software feature licensing requirements, you must purchase one license per feature per instance. The presence of the appropriate software unlocking key on your virtual instance allows you to configure and use the licensed feature.

See Managing Licenses for vSRX for details.