Re: SRX1400 Trunk Issue
it`s give me error message: [edit]admin@CIG-HQ# set security zones security-zone trust15 interfaces irb.1error: interface-unit: 'irb.1': This interface cannot be configured in a zoneerror: statement...
View ArticleRe: SRX1400 Trunk Issue
I don't have high end SRX at my disposal so this is just an educated guess..I would try the followingge-0/0/9 { vlan-tagging unit 0 { family bridge { interface-mode trunk; vlan-id-list 2-17; } } unit 1...
View ArticleRe: SRX1400 Trunk Issue
Instead of vla-id list, can you try configuing only one vlan (access port) on these ports on SRX and check if you are able to ping through SRX?...
View ArticleRe: SRX1400 Trunk Issue
All the examples I've found are using subinterfaces on the trunk with single vlan id in the vlan-id-list ge-0/0/9 { vlan-tagging unit 1 { family bridge { interface-mode trunk; vlan-id-list 1; unit 2 {...
View ArticleRe: SRX1400 Trunk Issue
when i transfered all ports to access vlan 1, its working for vlan 1 only
View ArticleRe: SRX1400 Trunk Issue
thx for reply, i will try this tomorrow while my duty time is finished for today
View ArticleRe: SRX340 with Filter-Based Forwarding Issue
Right now, the AP can reach the Internet and I'm checking with local support.Refer to the traceroute from SRX, the AP traffic is still leaving the original path. You can refer to the attached result...
View Articlemore specific monitoring via automation for high-end SRX(s)
Hi all,We have 10 high-end SRX devices. We want to do more and more specific monitoring these SRX(s) as usual existing monitoring is also covering these SRX devices. But we want to more stand out...
View ArticleRe: SRX340 with Filter-Based Forwarding Issue
From what I see in the trace it's working as expected. Traffic is being source NATted to the reth3.0 interface IP and the leaves via 124.65.160.169. Trace shows only traffic leaving the firewall. To...
View ArticleRe: SRX340 with Filter-Based Forwarding Issue
Great, it means it is working finally.I'm really appreciate your assistance. If this internet link goes down, will it swap back to orginal link or I have to add extra comments? I have attached the log...
View ArticleRe: SRX1400 Trunk Issue
I am tried it, still no pinging, i dont no why this thing happen only in vlan 1?
View ArticleRe: SRX1400 Trunk Issue
Can you try to configure VLAN 1 as native on the trunk interfaces?native-vlan-id 1;Also please see a note from configuration guideIf you are using Layer 2 switches, you will need to set BPDU options to...
View ArticleSrx 5400 -> Mikrotik CCR1036 Ipsec over Gre
Hello I am trying to get Gre / ipsec tunnel between Juniper srx 5400 and mikrotik ccr1036. Ipsec tunnel and gre tunnel seperately work. But i would like to have gre tunnel and everyting that passes...
View ArticleRe: SRX1400 Trunk Issue
it`s given me this message:admin@CIG-HQ# set interfaces ge-0/0/9 vlan-tagging native-vlan-id 1[edit]admin@CIG-HQ# commit[edit interfaces ge-0/0/9 native-vlan-id] 'native-vlan-id 1' native-vlan-id can...
View ArticleRe: SRX1400 Trunk Issue
Just replace vlan-tagging with flexible-vlan-tagging and try again. delete interfaces ge-0/0/9 vlan-tagging set interfaces ge-0/0/9 flexible-vlan-tagging set interfaces ge-0/0/9 native-vlan-id...
View ArticleRPM/IP Monitoring - Slow Failback
I'd like to configure my SRX to wait 15 minutes to fail back to the default route after installing a different next-hop via rpm/ip monitoring. Is there a way to do this?
View ArticleRe: RPM/IP Monitoring - Slow Failback
You can use "within" option with "trigger". For example if your rpm executed once in 1 min , so you need to check if rpm was succesful 15 times We configured this some time ago services { rpm { probe...
View Articleautomatic route change as per tunnel state
Hi , In my below configuration 192.168.2.0/24 has going via st0.2 & st0.3 , my default preference is st0.2. whenever st0.2 goes down 2.x should go via st0.3 but my problem is...
View ArticleRe: automatic route change as per tunnel state
Try if this helpsroute 192.168.2.0/24 { next-hop st0.2; qualified-next-hop st0.3 { preference 6; } }Whats on the other side of the tunnel? If also SRX there is an option to configure BFD for static...
View Article