hi
i wonder about increasing the bandwidth on reth interface in SRX is that possible ??
↧
increasing the bandwidth on reth interface in SRX
↧
Re: increasing the bandwidth on reth interface in SRX
Hi Elbeshti,
Yes bandwidth of the redundant interface increased and can be set the Bandwidth of interface by the below mentioned command:
root# set interfaces <reth interface> unit <number> bandwidth <Number>
Please refer the below mentioned documention for more information :
Please let me know if you have any further queries .
-Regards,
Rishi
[KUDOS PLEASE! If you think I earned it!
If this solution worked for you please flag my post as an "Accepted Solution" so others can benefit..]
↧
↧
Re: cisco asa to juniper srx vpn site to site not working !!!!
I assume you have confirmed the ACL on the ASA matches the subnets on the traffic selectors. This and the routes look good.
I do notice that you have a private address on the outbound gateway interface. So I assume you have NAT involved meaning that the Cisco side will need to enable NAT-T for the tunnel to come up.
And typically the SRX wants to see local and remote ID configured then when you have NAT-T in use.
↧
reboot srx 240
hello guys, how to reboot SRX 240 from command line?
Is there a way to reboot device from web gui?
Thank you.
↧
Re: reboot srx 240
Hi,
Please refer to these links:
Hope this helps:
Thanks
---------------------------------------------------------------------------------------------------------
If this post was helpful, please mark this post as an "Accepted Solution".
Kudos are always appreciated!
----------------------------------------------------------------------------------------------------------
↧
↧
Re: reboot srx 240
From CLI:
root> request system reboot ? ---> You have below options
Possible completions:
<[Enter]> Execute this command
at Time at which to perform the operation
in Number of minutes to delay before operation
media Boot media for next boot
message Message to display to all users
| Pipe through a command
root> request system reboot
Reboot the system ? [yes,no] (no) yes
From J-web, go to "Maintain" tab and click on reboot (PFA.. for details).
↧
Re: increasing the bandwidth on reth interface in SRX
You can add multiple child interfaces under the reth to have more bandwidth. Ideally you take 1 interface from each node to make reth, you can take upto 8 interfaces from each node to get more bandwidth. When you take more than 1 interface from one node you need LACP/LAG. KB22474 explains the LACP supported scenarios and configuaration
↧
Re: How to Create e1/e3 interface as reth interface for chassis cluster in srx 650
No, we cannot configure e1/e3 as reth. May I know why you want to configure this way? We may think about altrenative plans
↧
Re: Internet through Central Office
Can you try ping with a source IP from 10.123.9.0/24 subnet?
Also can you do a show security flow session destination-prefix x.x.x.x for the ping and see if there is a session? If you see a session you may have to debug on remote side
↧
↧
Re: Policy based routing on st0
You can put ST0 to routing instances and achieve Policy Based routing
↧
Re: Patricia
do a commit full before you power off "SRX@root# commit full"
You may also save the rescue configuration using "SRX@root> request system configuration rescue save "
↧
Re: [S2S VPN] SRX DynamicIP Cisco IOS DynamicIP
I think you may have to enable Dynamic DNS (DDNS) for SPOKE.domain.com. KB28971 can be helpful.
https://kb.juniper.net/InfoCenter/index?page=content&id=KB28971&actp=RSS
↧
Re: reboot srx 240
Thank you all.
Thank you rsuraj.
Just one quick question, I notice that J-Web and SSH login is block. I'm not able to access, if I will not login let's say for 2 months.
Is this nornal? Or I need to configure something. Thanks again.
↧
↧
Re: SRX 650 IDP Signatures Update fails
Are you doing an offline update? If so this could be due to an incorrect URL used to download the files. Can you check the URLs? If you are doing auto update and getting the error you may have to do a Junos upgrade first.
↧
Re: reboot srx 240
Just one quick question, I notice that J-Web and SSH login is block. I'm not able to access, if I will not login let's say for 2 months.
Is this nornal? Or I need to configure something. Thanks again.
No, it's not expected. Please check and confirm the config is still active using "show system services" from configure mode.
Is this nornal? Or I need to configure something. Thanks again.
No, it's not expected. Please check and confirm the config is still active using "show system services" from configure mode.
↧
Re: [S2S VPN] SRX DynamicIP Cisco IOS DynamicIP
Hey rsuraj,
Thanks for the reply.
DDNS is enabled on both sides and both sides can resolve FQDNs properly.
But still, no luck.
It would be easier if there is any log message for ike, but there are none (tried traceoptions for ike, KMD logging - nothing appears in the log files).
Also, debug crypto isakmp and debug crypto ipsec shows nothing on cisco side.
↧
Does it impact service when change no of reth interface?
Hi all,
One quick question. Currently i'm configure no of reth interface under chassis cluster stanza for two (reth0 & reth1). Then suddnly i need to add another two reth interface (reth2 & reth3).
When i change the no of reth is it will make service interuption?
Thanks and appreciate someone feedback
↧
↧
SRX300 Active/Backup
Hi all,
this is my first post and I'm pretty newbie about Juniper.
I'm trying to setup a new cluster chassis with a couple of SRX 300 That will be connect n°2 subnet (backend and database)
I thought to this configuration but I have some trouble how to configure the chassis cluster/redundant interface, could anyone help me?
My idea is:
- in normal condition the traffic of the 2 subnets pass through SRX300-A on interfaces ge-0/0/0 and ge-0/0/4
- from normal condition if SW 01 fails, the traffic switch to SRX300-A on interfaces ge-0/0/1 and ge-0/0/5
- from normal confition if SRX300-A fails, the traffic switch to SRX300-B on interfaces ge-1/0/0 and ge-1/0/4
- from this above condition, if SW 01 fails, the traffic switch to SRX300-B on interfaces ge-1/0/1 and ge-1/0/5
See attachment
I've probably said several things wrong, be patient 
Regards
Simone
↧
Re: SRX300 Active/Backup
Hi Simone,
I am unsure if I have understood the set up correctly but as per my understanding it would not be working as you have mentioned, but with a node (eg 300A ) taking traffic when it is primary and if you have the interfaces on switch 1 failing and you have interface monitoring enabled, it would cause a failover to second node (300B) and thus traffic will start flowing via the second node and thus the second switch. The set up should be something like below;
Below kb shows a diagram with the concept of reth interface the rest of the kb may not be applicable here;
https://kb.juniper.net/InfoCenter/index?page=content&id=KB22474&actp=search
So the set up would have to be SRX A ge-0/0/0 and ge-0/0/4 and from SRX B ge-1/0/0 and ge-1/0/4 forming a reth interface eg; reth0 )and reth 0 connecting to switch 1 from SRX A and switch 2 from SRX B, this with interface monitoring will help you achieve the failover to switch 2 when switch A fails and also if SRX a fails.
HTH
↧
Re: Does it impact service when change no of reth interface?
Hi kronicklez,
There should be no service disruption with the change of number of reth numbers as it does not affect the existing reth interfaces.
HTH
↧