SRX Services Gateway
Showing results for 
Search instead for 
Do you mean 
Reply
New User
Posts: 3
Registered: ‎04-12-2017
0 Kudos

Issues W/ Multiple Interfaces on Single IRB / VLAN

[ Edited ]

Hello all,

 

I am having some issues with my srx345 running JUNOS 15.1X49-D75.5. 

I am attempting to have a single VLAN (assigned to an IRB) be switched through multiple physical interfaces.

Unfortunately, though the configuration applies just fine the SRX will not switch traffic from one physical interface to the other on the same vlan.

I have made sure the device is in switching mode.

 

I'll include relevant config below.

 

Any help is appreciated! 

 

[edit protocols l2-learning]

global-mode switching;

 

[edit interfaces]

ge-0/0/1 {
   unit 0 {
       description "switch 1";
       family ethernet-switching {
           interface-mode trunk;
           vlan {
               members [ my-great-vlan my-ok-vlan ];
           }
       }
   }
}

ge-0/0/2 {
   unit 0 {
       description "switch 2";
       family ethernet-switching {
           interface-mode trunk;
           vlan {
               members [ my-great-vlan my-ok-vlan ];
           }
       }
   }
}

irb {
   unit 101 {
       family inet {
           address 10.33.1.1/24;
       }
   }

   unit 201 {
       family inet {
           address 10.34.1.1/24;
       }
   }

}

 

[edit vlans]

my-great-vlan {
   vlan-id 101;
   l3-interface irb.101;
}
my-ok-vlan {
   vlan-id 201;
   l3-interface irb.201;
}

 

 

[show security]

policies {

   from-zone Internal to-zone Internal {
       policy permit-all {              
           match {                      
               source-address any;      
               destination-address any;
               application any;         
           }                            
           then {                       
               permit;                  
           }                            
       }                                
   }                                    

zones {
   security-zone Internal {
       host-inbound-traffic {
           system-services {
               all;
           }                            
           protocols {
               all;
           }
       }
       interfaces {
           irb.101;
           irb.201; 
       }
   }
}

Highlighted
Distinguished Expert
Posts: 657
Registered: ‎06-22-2011
0 Kudos

Re: Issues W/ Multiple Interfaces on Single IRB / VLAN

What do you have that is adding/removing the VLANs?  The config looks correct, however, you will need something to remove/add the VLAN tags.

New User
Posts: 3
Registered: ‎04-12-2017
0 Kudos

Re: Issues W/ Multiple Interfaces on Single IRB / VLAN

There are managed switches on both sides tagging traffic. 

New User
Posts: 3
Registered: ‎04-12-2017
0 Kudos

Re: Issues W/ Multiple Interfaces on Single IRB / VLAN

Digging into the issue a bit more, it seems that traffic is making it one direction but not the other.

 

Note: I am also running a DHCP server on the two IRBs (with respestive pools properly configured)

 

When a system does a DHCP request from the first interface it works fine.

BUT if another system does a DHCP request from the second interface it never receives an address.

 

Performing show dhcp server binding shows that the system on the second interface stuck in a "SELECTING" state.