Message Image

Skip main navigation (Press Enter).

Screen OS

last person joined: 8 months ago

This is a legacy community with limited Juniper monitoring.

Back to discussions

Expand all | Collapse all

Redundant IF or bgroup IF

Jump to Best Answer

Erdem12-03-2010 01:31

Hi, I currently have a Juniper SSG520 with one interface in a DMZ zone. This is attached to an unmanaged ...

Erdem12-03-2010 02:39Best Answer

Hi, I did not try this but can suppose that this will not work with bgroup IF. Both switches will ...

1. Redundant IF or bgroup IF

0 Recommend
Erdem
Posted 12-03-2010 01:31
| view attached
Hi,
I currently have a Juniper SSG520 with one interface in a DMZ zone. This is attached to an unmanaged switch which connects to a VMware ESX virtual switch. Two interfaces from the vswitch connect to the dmz switch in failover mode.
I have a single point of failure in the unmanaged switch so want to add another switch and use a spare port on the Juniper SSG520. I'm not sure how the interface should be setup on the Juniper - redundant IF or bgroup IF?
Basically I need to ensure that traffic gets from the vswitch to the Juniper SSG520 in the event of any failure along the way. I've attached a diagram that shows the desired setup. Please advise.

Thanks,
John
2. RE: Redundant IF or bgroup IF
Best Answer

0 Recommend
Erdem
Posted 12-03-2010 02:39
Hi,

I did not try this but can suppose that this will not work with bgroup IF. Both switches will see the same MAC address on two ports simultaniously. They will try to solve the problem using STP but fail because ScreenOS does not support STP, thus breaking the STP communication. I would try to use redundant IF.

Powered by Higher Logic