Hi,
You cannot use Internet to connect the HA Control and Fab links between the two SRX nodes because of the following reasons :-
- Latency needs to be less than 100ms.
- For HE, minimum bandwidth needed is 1Gbps, for Branch, this varies.
- The network should be isolated from any other hosts.
- The network connecting both the nodes should be free of any traffic.
- The communication between the devices uses private MAC and IP addresses, which could conflict with other hosts and would not be routable on the internet.
- IGMP snooping should be disabled on the L2 device.
- The L2 device should not perform IP Legitimate check.
- Jumbo frames should be allowed to pass through.
- Control and Fab links should be in separate Vlans.
All the above requirements cannot be achieved traversing through the internet.
Hence it is not possible to deploy a chassis cluster with control and fab links traversing over the Internet.
Regards,
Sahil Sharma
---------------------------------------------------
Please mark my solution as accepted if it helped, Kudos are appreciated as well.