Hi,
maybe the following is just some weird newcomer question, so sorry if i wasted anybodys time.
As far as i understand i'm trying to build a One-Arm Router Deployment, (but actually i only found the description in the security paper, no configuration examples)
i've made a short sketch here:
https://docs.google.com/drawings/edit?id=1P3NTCJg5CC4VJ0tkZVFNFibJoMknlGdOQwlfgch4lfo&hl=en&authkey=CMO4kIEL
to show my scenario.
an EX4200 is connected to a network, from which i would like to access a server connected to switch "random switch (i dont care about the model soon as traffice lands there im good;)".
traffic should be routed from EX to an SRX, (for firewall stuff), then back to EX, from there to switch "r". everything should be fully routed, so i can see errors in traceroute..)
i think i'm good with SRX and security zones, policies, so no problem there, just don't understand the EX part.
first question: is this even possible? (i think i have to somehow put the address of "server" into the routing table "twice", once to enter the srx, once to be actually routed to switch. tried virtual-router instances in "routing-instance", with assigned interfaces, but i couldnt even connect to the EX any more.)
i dont want anyone to give me a full solution (if there is one), just some hint like if there's a scenario on the juniper support or KB i could read. (and no, i dont want to put srx between EX and network1;)
thanks in advance
chris