I need a topology advice.
We have an mx80 Router which has 4 port of 10Gbps
1 of them for upper stream other 3 is empty.
we have an 10G UDP firewall which need to only face with udp traffic if tcp hit this device directly dropping all connection it is a specialized udp firewall.
2. port of the router is connected to this device.
We have an SRX 3K which has 2x 2x10G slot.
1. is connected to MX router
2. is connected to the UDP firewall's second 10G port it gets the clean udp traffic from here
we could not decide what to do after this.
We have an EX 4500 10Gx40 port swtich .
We need vlans .
Probabilities & needs
A. So is there any way to connect SRX's 3rd port to EX 4500 and and MX's 4th port to EX4500 again if SRX lost connection for any reason traffic will go on from directly EX because under some conditions SRX should loose connection.
B. We need to keep vlans it should be /24 to /30 range but we do not want to send all the traffic to the SRX we sometimes send a /32 traffic to it.
C. Do you think do we need to create vlans on MX or EX ? EX should have routing problems if it gets too many pps ?
D. SRX need to see return traffic for a good job. So Ex will send the same firewall ip's traffic back. If we create a prefix list as Firewall on MX for policy based routing should EX apply the same auto to set return traffic ?
E. For a good syn cookie check srx want to have gw's of the subnets but this get a problem for /32 routes and vlans.
This are our needs and problems and i need your advices.
Thank you for all your help