Hello guys!
I have Juniper SRX 100 and I need to configure 2 ISPs routing and access. For example, I have fe-0/0/0.0 with IP address 1.1.1.1 (ISP1) and fe-0/0/3.0 with IP address 2.2.2.2 (ISP2). Also there is LAN interface with IP 192.168.0.1. So I want the following:
- All LAN clients use ISP1 as default gateway (ISP2 when ISP1 link is down)
- When someone outside ping (ssh or anything else) 1.1.1.1 SRX should response using fe-0/0/0.0 interface
- When someone outside ping (ssh or anything else) 2.2.2.2 SRX should response using fe-0/0/3.0 interface
I try to implement last 2 items. There is only one default gateway through fe-0/0/0.0. So when I ping 1.1.1.1 from outside it is ok. But when I ping or ssh 2.2.2.2 there is nothing.
The solution is to use FBF. But I do something wrong and nothing changes.
There is part of the configuration in attachments.