Re: SRX 300 - How to disable transparent mode

Yes, that solution worked PulkitB

set protocols l2-learning global-mode switching

got the router out of transparent mode

However, now we have another problem. We can't ping the interfaces on the router.

I should be able to make my pc 10.0.0.5, connect it to a data port and ping 10.0.0.245

My config:

## Last commit: 2016-08-09 00:39:56 GMT+10 by root
version 15.1X49-D50.3;
system {
host-name .......;
time-zone GMT+10;
root-authentication {
encrypted-password "blah blah blah"; ## SECRET-DATA
}
name-server {
8.8.8.8;
}
name-resolution {
no-resolve-on-input;
}
services {
.....
}
syslog {
......
}
max-configurations-on-flash 5;
max-configuration-rollbacks 5;
archival {
.......
}
license {
autoupdate {
......
}
}
ntp {
server 0.oceania.pool.ntp.org;
}
}
security {
alg {
sip disable;
ike-esp-nat {
enable;
}
}
flow {
tcp-mss {
all-tcp {
mss 1400;
}
}
}
screen {
ids-option untrust-screen {
icmp {
ping-death;
}
ip {
source-route-option;
tear-drop;
}
tcp {
syn-flood {
alarm-threshold 1024;
attack-threshold 200;
source-threshold 1024;
destination-threshold 2048;
timeout 20;
}
land;
}
}
}
policies {
from-zone DataNetwork to-zone VoiceNetwork {
policy data2voice {
description "Allows traffic between Data and Voice zones";
match {
source-address any;
destination-address any;
application any;
}
then {
permit;
}
}
}
from-zone VoiceNetwork to-zone DataNetwork {
policy voice2data {
description "Allows traffic between Voice and Data zones";
match {
source-address any;
destination-address any;
application any;
}
then {
permit;
}
}
}
}
zones {
security-zone DataNetwork {
description "Data vlan";
interfaces {
irb.1 {
host-inbound-traffic {
system-services {
all;
}
protocols {
all;
}
}
}
}
}
security-zone VoiceNetwork {
description "Voice vlan";
interfaces {
irb.20 {
host-inbound-traffic {
system-services {
all;
}
}
}
}
}
}
}
interfaces {
ge-0/0/0 {
description "Data Port";
unit 0 {
family ethernet-switching {
interface-mode access;
vlan {
members default;
}
}
}
}
ge-0/0/1 {
description "Voice Port";
unit 0 {
family ethernet-switching {
interface-mode access;
vlan {
members Voice-VLAN;
}
}
}
}
.....
.....(more of the same).....
.....
irb {
unit 1 {
description Data;
family inet {
address 10.0.0.245/24;
}
}
unit 20 {
description Voice;
family inet {
address 10.2.2.1/24;
}
}
}
vlan {
unit 1 {
description Data;
family inet {
address 10.0.0.245/24;
}
}
unit 20 {
description Voice;
family inet {
address 10.2.2.1/24;
}
}
}
}
routing-options {
static {
route 0.0.0.0/0 next-hop 10.0.0.254;
}
}
protocols {
l2-learning {
global-mode switching;
}
}
vlans {
Voice-VLAN {
description "Voice Network";
vlan-id 20;
l3-interface irb.20;
}
default {
description "Data Network";
vlan-id 1;
l3-interface irb.1;
}
}