Log in to ask questions, share your expertise, or stay connected to content you value. Don’t have a login? Learn how to become a member.
Hi all,
I have configure PBR on Juniper SSG, I am planning to change Juniper SRX
Then, how to configure PBR on Juniper SRX?
Could you tell me to basic configure PBR on Juniper SRX?
Thanks
F
In Junos the feature is called Filter Based Forwarding (FBF).
this is a basic SRX example for dual ISP in kb 17223
http://kb.juniper.net/InfoCenter/index?page=content&id=KB17223
The overview documentation page is here. It says M/T series, but the feature is available on SRX and EX too.
http://www.juniper.net/techpubs/en_US/junos11.4/topics/usage-guidelines/routing-configuring-filter-based-forwarding.html
There is also a chapter on the FBF in the Day one book for scaling SRX in the datacenter.
http://www.juniper.net/us/en/community/junos/training-certification/day-one/networking-technologies-series/scaling-beyond-single-srx-dc/
Hi spuluka.
Thanks for your link, I will learn it
So, In SRX is FBR? not PBR?
Regards
Right, in Junos on the SRX we use FBF (Filter Based Forwarding) for the same purpose as PBR Policy based Routing on ScreenOS.
The filter part is using the same format as Junos Firewall Filters. So the documentation on Firewall filters is also helpful in understanding how to capture the traffic you want inspect.
Hi spuluka,
For example use static route
But, I want to use BGP for route to ISP1
and ISP2 use static route
So, I configure that on routing instance
is it? and how about routing options?
As you note, I would probably use two routing instances in this case.
This will keep the routing tables separate for the internet access and you will need to control then what to forward between the two routing instances by the FBF.