Routing

last person joined: 3 days ago 

Ask questions and share experiences about ACX Series, CTP Series, MX Series, PTX Series, SSR Series, JRR Series, and all things routing, including portfolios and protocols.

  • 1.  HA Through Routing EX-4200 and SRX240H2

    Posted 04-23-2015 00:52
      |   view attached

    Dear Team,

     

    We are preparing a new setup where we having 02 nos of SRX-240H2  , 02 nos of EX-4200 switches and total 04 routers (2 for internet from different ISPs and 2 for MPLS). attaching proposed diagram for reference.

     

    As i am new to Juniper , would like to configure for the setup for Active-Passive secnerio.

     

    1) EX-4200 switches will be used as WAN switches.  Etherchannel is proposed between two for HA. From these switches one leg will be connected with First Internet Router and one will be with Second Internet Router for redundancy purpose. same way connectivity will be done to MPLS routers.

     

    2) SRX240H2 (we have not taken cluster license), requesting to pls refer attached diagram and share your inputs for achieving the sort of HA scenrio through routing for both point #1 and point #2.

     

     

     

    Rgds



  • 2.  RE: HA Through Routing EX-4200 and SRX240H2

     
    Posted 04-23-2015 01:05

    Hi ,

     

    From SRX point of view , if you Just configure Simple Chassis cluster ( No Licence needed ) and configure the interfaces conencting those 2 Core Switches in a reduntent ethernet interface , thats will server the perpose .

     

    If you need a route failover between 2 clouds ( Internet & MPLS ) , then we can go ahead and configure route failover using ip-monitoring .

     

    http://kb.juniper.net/InfoCenter/index?page=content&id=KB22052&smlogin=true

     

     



  • 3.  RE: HA Through Routing EX-4200 and SRX240H2

    Posted 04-23-2015 01:08

    Thanks SAM,

     

    Do you mean that cluster can be configured and even will work smoothly without license. It'll be great if you can share for what purpose exactly license will be required for cluster.

     

    Rgds

     



  • 4.  RE: HA Through Routing EX-4200 and SRX240H2

     
    Posted 04-23-2015 01:15

    Hi ,

     

    For enabling cluster and for its running , there is no license needed  in SRX devices .  License is only needed for some features like  UTM , IDP , LSYS , Dynamic VPN ( for more than 2 users ) . 

     

    For smooth running and implementation of cluster , License is not needed .



  • 5.  RE: HA Through Routing EX-4200 and SRX240H2

    Posted 04-23-2015 01:20

    Ohh OK Thanks for Great Help on Confusion.

     

    Meanwhile, The link your shared for Dual ISP traffic failover is for SRX, However in our scenerio EX-4200 switches are proposed at upper end.

     

    Could you pls share document based on EX-4200 switches for Dual ISP failover.

     

    Rgds 



  • 6.  RE: HA Through Routing EX-4200 and SRX240H2
    Best Answer

    Posted 04-23-2015 01:33

    SRX Chassis cluster can be formed without license, license is required if you are using any advanced services i.e. UTM, IPS, Appsec, BGP RR, dynamic vpn etc which is valid for stand alone node too, in case of chassis cluster respective licenses must be loaded to both the nodes.

    For the failover either use interfaces monitoring (reth interface child) or upstream gateway can also be tracked for the failover using ip-monitoring.

     

    On EX4200 you may required to have two keys for the master and backup role in virtual chassis. also if planning to used more feature set you need enhanced feature licenses (EFLs) or advanced feature licenses (AFLs) for the advanced services.

    You can create the virtual-chassis out of 2xEX4200 and can configure aggregate Ethernet (RTG can also be configured if need to avoid STP) for the redundancy purpose.