Hi,
i would like to create IPS HA active acitive (in tranparent mode) for two router.
Please see i prepare below configuration. It is correct or not ?
user@host> set chassis cluster cluster-id 1 node 0 reboot
user@host> set chassis cluster cluster-id 1 node 1 reboot
Management Port and Hostname0
set groups node0 system host-name IPS1
set groups node0 interfaces fxp0 unit 0 family inet address 1.1.1.1/24
set groups node1 system host-name IPS2
set groups node1 interfaces fxp0 unit 0 family inet address 1.1.1.2/24
set apply-groups “${node }”
commit
user@host# show groups
user@host# show apply-groups
user@host> show interfaces terse | match fxp0
Control Link-Ge 0/0/1
show chassis cluster control-plane statistics
clear chassis cluster control-plane statistics
Fabric Link –ANY Ge Link –ge 0/0/0
user@host# set interfaces fab0 fabric-options member-interfaces ge-0/0/11
user@host# set interfaces fab1 fabric-options member-interfaces ge-7/0/11
show interfaces
user@host> show interfaces terse | match fab
user@host> show configuration groups node0 interfaces
user@host> show chassis cluster data-plane interfaces
user@host> clear chassis cluster data-plane statistics
Cluster Redundant Group
set chassis cluster reth-count 8
user@host# set chassis cluster redundancy-group 0 node 0 priority 100
user@host# set chassis cluster redundancy-group 0 node 1 priority 1
user@host# set chassis cluster redundancy-group 1 node 0 priority 100
user@host# set chassis cluster redundancy-group 1 node 1 priority 1
user@host# set chassis cluster redundancy-group 2 node 0 priority 1
user@host# set chassis cluster redundancy-group 2 node 1 priority 100
user@host# set chassis cluster redundancy-group 1 preempt
user@host# set chassis cluster redundancy-group 1 gratuitous-arp-count 4
Redundant Interface
set security zones security-zone outside
set security zones security-zone inside
set security zones security-zone MGMT
set interfaces ge-0/0/0 gigether-options redundant-parent reth0
set interfaces ge-7/0/0 gigether-options redundant-parent reth0
set interfaces reth0 redundant-ether-options redundancy-group 1
set interfaces ge-0/0/1 gigether-options redundant-parent reth1
set interfaces ge-7/0/1 gigether-options redundant-parent reth1
set interfaces reth1 redundant-ether-options redundancy-group 1
set interfaces ge-0/0/2 gigether-options redundant-parent reth2
set interfaces ge-7/0/2 gigether-options redundant-parent reth2
set interfaces reth2 redundant-ether-options redundancy-group 2
set interfaces ge-0/0/3 gigether-options redundant-parent reth3
set interfaces ge-7/0/3 gigether-options redundant-parent reth3
set interfaces reth1 redundant-ether-options redundancy-group 2
set interfaces reth0 unit 0 family Ethernet-switching vlan member vlan-10
set interfaces reth1 unit 0 family ehternet-switching vlan member vlan-10
set interfaces reth2 unit 0 family ehternet-switching vlan member vlan-20
set interfaces reth3 unit 0 family ehternet-switching vlan member vlan-20
set security zones security-zone outside interfaces reth0
set security zones security-zone outside interfaces reth2
set security zones security-zone inside interfaces reth1
set security zones security-zone inside interfaces reth3