SRX

Hi all,

I have configure bridge in SRX Juniper

can i have 2 zone in 1 bridge?

example :

set bridge-domains xxx domain-type bridge

set bridge-domains xxx vlan-id 10

set bridge-domains xxx routing-interface irb.0

set interfaces ge-0/0/0 unit 0 family bridge interface-mode trunk vlan-id 10

set interfaces ge-0/0/1 unit 0 family bridge interface-mode trunk vlan-id 10

I want to interface ge-0/0/0 --> zone trust and interface ge-0/0/1 -- zone untrust

can do it?

And How to I know trrafic for this interface?

Thanks

F

according to this link:

http://www.juniper.net/techpubs/software/junos-security/junos-security95/junos-security-swconfig-interfaces-and-routing/understand-bridging-domain-section.html

Bridging domains forward packets based on VLAN ID. So, if understood properly an interface can be a trunk port and pass traffic for the VLAN members that are allowed. The bridging domain for your untrust and trust zone interfaces would have to be in a VLAN that the trunk is allowing.

Hi ds1602,

Before, thanks for your response

I want to know log if there traffic through in interface bridge

how I can see that?

Thanks

F

I'd just set a packet capture to see what is going accross the SRX.

http://kb.juniper.net/InfoCenter/index?page=content&id=KB11709

Good luck, hope this helps!

Hi ds1602,

Thanks for your answer

Regards

F