03-18-2011 07:32 AM
got a SRX 240 cluster connecting to Cisco 4507R Switch and they are running OSPF between the two.
I'm seeing routes to each other locally but when I go one hop away on the cisco side I cannot ping the SRX side interface IP address.
Any ideas as this?
Do you need more info?
03-18-2011 02:18 PM
I haven't done OSPF between a Cisco Switch and an SRX, but my first thought would be to ensure that the VLANs are correct or that the port mode is correct on the switch..
The default vLAN and default tagging out of the box for Juniper and Cisco are not compatible, you need to make some configuration changes to make them talk..
An MTU mismatch would also cause OSPF to fail.
03-21-2011 04:06 AM
thanks for the post.
As this was a production site I just disabled OSPF for the time being and have static routes now doing the job. I'll need to create a lab test and see how I get on before trying to implement OSPF again.
03-23-2011 10:04 PM
I've had issues with routing assemytricly on the SRX platform. Not the devices fault mind you, they are firewalls by default. If you are just using this as a router w/o no security requirements, maybe disable all the security features according to the KB article KB11963.
If you have more details of what the topology looks like and your configuration that would also help this cause a bit.
03-24-2011 11:38 PM - edited 03-24-2011 11:43 PM
It's probably a MTU mismatch between the SRX and the Cisco
Enable traceoptions to find out more
set protocols ospf traceoptions file ospf.debug set protocols ospf traceoptions flag hello detail set protocols ospf traceoptions flag state detail commit and-quit monitor start ospf.debug
03-25-2011 11:07 AM
I finally turned off ospf and just used static routes between the devices....but I still couldn't ping across the link.
I did the following:
and everything seemed as it should, so too with a "show arp"
I opened a ticket with JTAC and they eventually re-set the forwarding table daemon and this got it working again.
I haven't yet re-enabled ospf but am waiting for an appropriate opportunity.
Thanks for all your help,