hello ,
Couple of suggestion :
1) Mark the static default route pointing to the Internet gatway and for your LAN and FXP port , make the specific static route . Delete all other default routes .
eg:
set routing-options static route 0/0 next-hop 177.19.xxx.xxx
2) try using a different subnet for FXP ( not use the same as LAN ) to avoid any subnet confusion , because the FXP is specifically for inbound management and not used for transit traffic . So please be adviced to use a differenty subnet for management on FXP .
3) The NAT configuration is missing along with zones and policies .
Here is a sample configuration that you can try :
interfaces {
ge-0/0/0 {
unit 0 {
family inet {
address 177.19.201.116/29;
}
}
}
ge-0/0/2 {
unit 0 {
family inet {
address 192.168.5.200/23;
}
}
}
fxp0 {
unit 0 {
family inet {
address 192.168.10.2/24;
}
}
}
}
routing-options {
static {
route 0.0.0.0/0 next-hop 177.19.xxx.xxx ;
route 192.168.10.0/24 next-hop 192.168.10.X ;
route 192.168.5.0/23 next-hop 192.168.xxx.xxx ;
}
}
security {
nat {
source {
rule-set SNAT {
from zone trust;
to zone untrust;
rule 1 {
match {
source-address 0.0.0.0/0;
}
then {
source-nat {
interface;
}
}
}
}
}
}
policies {
from-zone trust to-zone untrust {
policy trust-to-untrust {
match {
source-address any;
destination-address any;
application any;
}
then {
permit;
}
}
}
}
zones {
security-zone trust {
interfaces {
ge-0/0/4.0 {
host-inbound-traffic {
system-services {
all;
}
}
}
}
}
security-zone teste {
interfaces {
ge-0/0/0.0 {
host-inbound-traffic {
system-services {
all;
}
protocols {
all;
}
}
}
}
}
}
}