Support User Manuals

Juniper Networks 5XT Network Router User Manual

Open as PDF

of 42

Juniper Networks NetScreen Release Notes

ScreenOS 5.0.0r9-FIPS P/N 093-1638-000, Rev. A Page 18 of 42

• 02655 – The event log timestamp changed to Daylight Savings Time (DST)

even though DST was not enabled.

• 02642 – After configuring SCREEN setting thresholds on a device using the

WebUI or CLI, the get config | include <screen_settings> command did

not display the configured settings.

• 02641 – The PKI IKE memory pool on a device had a memory leak caused by

the Security Manager agent.

• 02637 – A session allocation with less than 1,000 sessions on a Juniper

NetScreen-5000 Series device failed.

• 02629 – When running a get config all command and redirecting the output

to a file on the TFTP server when the Trust interface as the source, the file

was not transferred correctly.

• 02627 – The policy move page only displayed the first 20 policies, and

therefore you could not move a policy from the initial screen from where you

copied the beyond the 20 policies displayed.

• 02624 – An anti-virus scan failed to scan .RAR files on a Juniper

NetScreen-5GT.

• 02621 – When a Ping request is initiated through a VPN tunnel to a MIP

configuration on a loopback interface, the ICMP reply through the tunnel did

not get translated back to the MIP address.

• 02680 – The SNMP name command inappropriately propagated across the

NSRP cluster.

• 02682 – When using the WebUI to set information on the backup device, the

primary SNMP device was inappropriately deleted when using the unset

VSD ID 0.

• 02606 – A ping packet through a tunnel in an NSRP environment between

two Juniper Networks security appliances failed after a failover until you

performed a rekey operation.

• 02581 – You incorrectly could define the same IP address to multiple

loopback interfaces over multiple subnetworks by running the set vrouter

trust-vr ignore-subnet-conflict command on a device. Juniper Networks

security appliances support defining multiple loopback interfaces on the

same subnetwork, but not with duplicate IP addresses.

• 02578 – A PPPoE (Point-to-Point-Protocol-Over-Ethernet) connection on a

device incorrectly sent an acknowledgment for an unnumbered PPP session.

The correct response to an unnumbered PPP session is a NAK (Non-

Acknowledgment).

• 02552 – Policy authentication with an external authenticating server could

run into the same memory corruption when authentication failed and caused

the firewall to fail.

previous next