Log in to ask questions, share your expertise, or stay connected to content you value. Don’t have a login? Learn how to become a member.
Hi
how to make a st0.0 interface use ip address from another interface ( ip unnumbered )
thanks,
vik
If it is unnumbered, the st0 interface borrows the IP address from the security zone interface
An unnumbered st interface must be bound to a security zone. An egress interface must also be bound to the security zone whose IP address the unnumbered st0 interface borrows.
Have a read of the below:
http://www.juniper.net/techpubs/en_US/nsm2009.1/topics/reference/general/security-service-firewall-tunnel-interface-configuring-nsm.html
http://kb.juniper.net/InfoCenter/index?page=content&id=KB15745
so, Junos does not let the user specify the interface from which the tunnel interface borrows an IP address unlike screenos.
The st interface can be also numbered but in the event that it is not it borrows the address of the security zone interface making that interface the source IP of the VPN