Hello,
"Might be an obvious thing, but do you have system services ssh configured?"
-- yes, SSH is enabled on the device. I can reach the device trough the management interface, fxp0, but my problem is that I cannot reach the device trough a revenue port, I mean a reth interface which is bount to a logical system. An there I need to allow only the host inbount traffic for ssh.
"Also, do you have any policy from zone x to zone junos-host?"
-- no, I don't. I have a similar setup in for another customer, but there are no logical systems, and the same I have to allow only the host-inbound traffic fro ssh, and it works.
"Are you trying to ssh into the directly connected interface or to another interface (e.g. loopback)? Sounds like you are trying the directly connected interface, but if you are trying to reach a different interface, even in the same zone, policy is required. "
-- I am trying to reach a directly connected interface, not the looback interface, or ohter interface.
Yes, it's a good idea to use the traceoption feature.
I also think that what I am trying to do is not possible. I mean I had a similay problem when I integrated the Log Collector for the devices. And the config had to be done at the root lovel and the traffic had to be done trough a revenue port.
Linke I said, I am able to login to the device directly into the logical system, but only trough the fxp0 interface, which is configured at the root level and is not bound to any logical system. The device is a SRX 1400, an the version is 12.3X48-D75.4, and I think I need to create a new interface at the root level and then enable routing between the logical system and the master logical system.
At least that's what I think. I didn't found anything else that could help me.
But, thank you.