Re: Please Help with SRX550 Routing between Amazon and ISP

Hello ,

Here you need is to have simple filter based forwarding , ie 

DNS request   --->  ISP  10.0.4.1 

Rest all  -->  BGP 

So make the ISP 10.0.4.1  in a virtual router  and create a firewall filter in your LAN with following  :

firewall {
filter FILTER1 {
term DNS { #This term is necessary for allowing managment traffic/host-inbound traffic.
from {
destination-port 53;
protocol udp
}
then {
routing-instance routing-table-ISP1;
}
}
term default {
then {
accept;
}
}
}
}

Put this filter as Input to local LAN interface :

ge-0/0/0 {
unit 0 {
family inet {
filter {
input FILTER1;
}
address x.x.x.x;
}
}

Please refer the following KB for more details : http://kb.juniper.net/InfoCenter/index?page=content&id=KB23300&actp=search