SRX

Hi

I just connected Juniper SRX5400 with cisco 6500 switch. The interfaces are up but i cannot ping either side.Any clue?

Config:

SRX-5400:

xe-5/2/5 {
    unit 0 {
        family inet {
            address 192.168.0.5/30;
        }                               
    }

Cisco 6500:

interface TenGigabitEthernet4/6
 ip address 192.168.0.6 255.255.255.252
end

Show output:

Juniper SRX 5400:

root@FW1> show interfaces xe-5/2/5  
Physical interface: xe-5/2/5, Enabled, Physical link is Up
  Interface index: 194, SNMP ifIndex: 570
  Link-level type: Ethernet, MTU: 1514, LAN-PHY mode, Speed: 10Gbps, Loopback: None, Source filtering: Disabled, Flow control: Enabled
  Device flags   : Present Running
  Interface flags: SNMP-Traps Internal: 0x4000
  Link flags     : None
  CoS queues     : 8 supported, 8 maximum usable queues
  Current address: 44:f4:77:08:5a:59, Hardware address: 44:f4:77:08:5a:59
  Last flapped   : 2015-05-30 15:59:50 NPT (05:16:14 ago)
  Input rate     : 0 bps (0 pps)
  Output rate    : 0 bps (0 pps)
  Active alarms  : None
  Active defects : None
  PCS statistics                      Seconds
    Bit errors                             0
    Errored blocks                         0
  Interface transmit statistics: Disabled

  Logical interface xe-5/2/5.0 (Index 98) (SNMP ifIndex 621)
    Flags: SNMP-Traps 0x4004000 Encapsulation: ENET2
    Input packets : 796
    Output packets: 15
    Security: Zone: Null
    Protocol inet, MTU: 1500
      Flags: Sendbcast-pkt-to-re
      Addresses, Flags: Is-Preferred Is-Primary
        Destination: 192.168.0.4/30, Local: 192.168.0.5, Broadcast: 192.168.0.7
    Protocol multiservice, MTU: Unlimited

Cisco 6500:

Cisco_6500#sh interfaces te 4/6
TenGigabitEthernet4/6 is up, line protocol is up (connected)
  Hardware is C6k 10000Mb 802.3, address is 0025.847c.b3c0 (bia 0025.847c.b3c0)
  Internet address is 192.168.0.6/30
  MTU 1500 bytes, BW 10000000 Kbit, DLY 10 usec,
     reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ARPA, loopback not set
  Keepalive set (10 sec)
  Full-duplex, 10Gb/s
  input flow-control is off, output flow-control is off
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input 03:16:45, output 00:00:10, output hang never
  Last clearing of "show interface" counters never
  Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
  Queueing strategy: fifo
  Output queue: 0/40 (size/max)
  5 minute input rate 0 bits/sec, 0 packets/sec
  5 minute output rate 0 bits/sec, 0 packets/sec
  L2 Switched: ucast: 0 pkt, 0 bytes - mcast: 110 pkt, 7040 bytes
  L3 in Switched: ucast: 0 pkt, 0 bytes - mcast: 0 pkt, 0 bytes mcast
  L3 out Switched: ucast: 0 pkt, 0 bytes mcast: 0 pkt, 0 bytes
     4151 packets input, 346292 bytes, 0 no buffer
     Received 4144 broadcasts (0 IP multicasts)
     0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     0 watchdog, 0 multicast, 0 pause input
     0 input packets with dribble condition detected
     4962 packets output, 659393 bytes, 0 underruns
     0 output errors, 0 collisions, 3 interface resets
     0 babbles, 0 late collision, 0 deferred
     0 lost carrier, 0 no carrier, 0 PAUSE output
     0 output buffer failures, 0 output buffers swapped out

You need to put xe-5/2/5 into a security zone and allow host-inbound-traffic system-services ping on that interface.