Quick Question (and probably easy, I'm just not finding it)
On a SRX240H2 using JunOS 12.1X44-D45.2
I have 2 VLANs in same zone. (vlan.5 is newly added to this zone. vlan.1 has long been working)
Routing table looks normal.
VLAN.1 is on an AE.0 (untagged). While VLAN.5 is on AE.2 (untagged).
Both VLANs are added to the appropriate zone -- and their interfaces are set to accept all traffic.
The SRX240 can ping devices on both vlans. No problem.
A device on VLAN.1 cannot ping either the FW's .1 address on VLAN.5 or any host on VLAN.5
I remember on ScreenOS, there was a switch for blocking intrazone traffic. Is there something similar for JunOS? If not -- what else am I missing?
Thanks,
-Ben