Quantcast
Channel: All SRX Services Gateway posts
Viewing all articles
Browse latest Browse all 17645

Adding Master-Only IP to SRX

$
0
0

Hello all

 

Wondering if I could get some advice. Basically we have a number of SRXs configured as HA clusters. For reasons which I was never part of they were never implemented using the Master-Only IP feature, each node in the cluster has its own unique IP address for everything.

 

We are now in a position where we actually have to implement this feature. My question here is there anything other than the list I have written below we need to consider? Any quirks or gotchas which after we have implemented we all think "**bleep**, why didn't we think of that?"

 

As I see it adding the Master-Only IP address will change how we manage things thus:

 

- The target SSH IP address from our terminal servers will now use the master-only IP (HTTP/S not used)

- The target SNMP polling IP from our NMS will be now use the master-only IP

- The source of the SNMP traps will use the master-only IP (not so sure about this one)

- The source of the TACACS+ session will be the master-only IP

- The source of Syslog messages will use the individual IP addresses of each node - no change here

 

Anything else? Any other risks which we would need think about?

 

Thank you all in advance for any help and advice Smiley Happy


Viewing all articles
Browse latest Browse all 17645

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>