SRX 300 server from trusted unable to ping on untrusted server
Hi All, i configured srx 300 firewalls with HA but strange is i unable to ping from trusted to untrusted zone device. i already allow all services on security policy. is it anyone can help about this? i will upload the config and simple network diagram
Re: SRX 300 server from trusted unable to ping on untrusted server
I see you are running 15.1X49-D45. I will strongly recommend you to upgrade to 15.1X49-D110 as there is multiple bugs in the initial releases.
As you don't have any NAT configured, does the destination device in the untrusted zone have a return route on how to reach your 192.168.1.0/24 network?
I will recommend you to move your fxp0 IP-addresses to another range than your reth0 to avoid issues accessing the cluster (if you connect to fxp0 on the active node you will loose connectivity for your connecting device via reth0 until arp updates)