SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  Virtual router config issue

    Posted 02-24-2014 06:41
      |   view attached

    hello everybody,

     

    Am biginning the juniper journey and have few challenges!....am setting up the first LAB of the JNCIA junos. i have bought the study guides and LAB guides and need somehelp.

    i managed to assign the interface IP address and configuring of static routes which is the agenda for LAB 1.am stuck on virtual router set up.as you would see in the attached image am supposed to assign the virtual router Loopback IP and creat link from the pysical router to the virtaul router.

    in short  my challenge is establishing the link from the physical to the virtual router.

    I appreciate your help.

    thanks.

     



  • 2.  RE: Virtual router config issue
    Best Answer

    Posted 02-24-2014 07:16

    Hello,

    Your diagram shows that srxA-1 main instance is connected via logical interface ge-0/0/4.101 to virtual-router vr101.

    This means You have start with 2 physical Ethernet ports and Ethernet crossover cable to achieve that.

    Assuming You plugged crossover cable into srxA-1 e-0/0/4 and srxA-1 ge-0/0/5, then the srxA-1 VR configuration looks like below:

     

    set interfaces ge-0/0/4 vlan-tagging
set interfaces ge-0/0/4 unit 101 vlan-id 101
set interfaces ge-0/0/4.101 family inet address 172.20.101.1/24
set interfaces ge-0/0/5 vlan-tagging
set interfaces ge-0/0/5 unit 101 vlan-id 101
set interfaces ge-0/0/5.101 family inet address 172.20.101.10/24
set routing-instances vr101 instance-type virtual-router
set routing-instances vr101 interface ge-0/0/5.101

     And "loopback inside virtual router" on srxA-1 config looks like below:

     

    set interfaces lo0.1 family inet address 192.168.1.2/32
set routing-instances vr101 interface lo0.1

     

    However, this does not necessarily mean You can immediately ping to 172.20.101.10 and get a response.

    If srxA-1 is NOT in packet-mode, You have to assign ge-0/0/4.101 and ge-0/0/5.101 to security zones and craft security policies to allow ping.

    HTH

    Thanks

    Alex

     



  • 3.  RE: Virtual router config issue

    Posted 02-24-2014 22:37

    Helo Alex,

    thank you very much for your help. it worked.Smiley Happy

     

    lish



  • 4.  RE: Virtual router config issue

    Posted 02-25-2014 00:06
      |   view attached

    Hello,

     

    am having small challenge again.

    i managed to create connectivity from one SRX to the other including the virtaul router lo0.my challenge is i cant ping the lo0 of SRX_A from SRX_B but i can do the other way round. i can reach both virtual routers loopback from both sides and all the interfaces. but from srxB i cant reach the lo0 of srxA. both SRXs are in packet mode.

     

    when i say show route from SRX_B this is what i see:

     

    root@SRX-B# run show route 192.168.1.1 (srx A lo0 IP)



    192.168.1.1/32             *[Local/0] 2d 20:29:27
                                               Reject
                                             [Static/5] 01:45:51
                                              > to 172.20.66.1 via ge-0/0/2.0
                                                     [Static/6] 00:39:59
                                               > to 172.20.77.1 via ge-0/0/1.0

     

    from SRX_A


    root@SRX_A# run show route 192.168.2.1 (srx B lo0 IP)

     

    192.168.2.1/32      *[Static/5] 15:04:45
                                      > to 172.20.66.2 via ge-0/0/2.0
                                           [Static/6] 00:43:48
                                       > to 172.20.77.2 via ge-0/0/1.0

     

     

    attached is the LAB diagram.

     

     

    Would appreciate your help.

    lish.



  • 5.  RE: Virtual router config issue

    Posted 02-25-2014 02:48

    Hello,

    You have 192.168.1.1 locally assigned somewhere on srx-B (should it be srxA-2 according to Your earlier diagram?)

     

    root@SRX-B# run show route 192.168.1.1 (srx A lo0 IP)



192.168.1.1/32             *[Local/0] 2d 20:29:27
                                           Reject

     

    Please run following commands on srx-B

     

    show configuration | display set | match 192.168.1.1

     - and post the results here.

    HTH

    Thanks

    Alex



  • 6.  RE: Virtual router config issue

    Posted 02-25-2014 03:01

    hello Allex,

     

    ooooohhh..found it....its locally defined on vlan.0 interface. will use another subnet.

    thanks amillion!

     


    root@SRX-B# run show configuration |display set |match 192.168.1.1
    set system services dhcp router 192.168.1.1
    set interfaces vlan unit 0 family inet address 192.168.1.1/24

     


    thanks,

    lish.

     

     



  • 7.  RE: Virtual router config issue

    Posted 02-28-2014 06:16
      |   view attached

    Hello,

     

    am having some challenge setting up this LAB as per the lab digram.

    what i have tried so far is connect a switch to port 5 of the SRX and assign that port to VR101 . after the switch i have arouter where i have defined this networks and having port 5 of the srx as the gateway to this 3 networks.

    the objective is to define static routes to the networks attached to Virutal router.

     

    I appreciate your help.

    Thanks

    lish