Hi, kind of a strange situation I've inherited. I have an SRX5800 cluster, and am changing my site-to-site VPNs to use the loopback interface instead of a hard-coded physical interface. Lo0.0 is configured with the proper address, and is in RG1. But I just noticed that lo0.0 is inside one of our trusted zones, instead of an untrusted zone facing toward our edge.
The loopback is also used for iBGP and OSPF peerings. When I move the interface and address into the proper zone, will that cause the BGP sessions to resync? I would expect that but just can't confirm it - when I moved the loopback from RG0 to RG1 I saw no change on either the BGP or OSPF sessions. I'm just curious what kind of impact I can expect so I can schedule properly.
Thanks very much!
Louis