So I guess I am not completely out of the woods yet. With the routing instance I found some oddities such as ntp or dns not working on the box. So I decided to test by removing the public interface out of the routing instance and back into the default instance.
I still cannot ping from the SRX console to anything on the web. I can only ping my gateway if I include the "bypass-routing" option to skip the routing table.
{primary:node0}[edit]
user@srx1500-cluster-0# show routing-instances
vr1 {
instance-type virtual-router;
interface reth1.40;
interface reth1.45;
interface reth1.48;
routing-options {
static {
route 0.0.0.0/0 next-table inet.0;
}
}
}
{
user@srx1500-cluster-0# show routing-options
static {
route 0.0.0.0/0 next-hop 1.1.1.1;
}
{primary:node0}
user@srx1500-cluster-0> show route
inet.0: 7 destinations, 8 routes (7 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
0.0.0.0/0 *[Static/5] 00:00:43
> to 1.1.1.1 via reth0.0
10.2.48.0/24 *[Direct/0] 1d 02:52:35
> via fxp0.0
[Direct/0] 1d 02:52:35
> via fxp0.0
10.2.48.10/32 *[Local/0] 1d 02:52:35
Local via fxp0.0
10.2.48.11/32 *[Local/0] 1d 02:52:35
Local via fxp0.0
1.1.1.0/25 *[Direct/0] 00:00:43
> via reth0.0
1.1.1.2/32 *[Local/0] 00:00:43
Local via reth0.0
safesys-vr.inet.0: 12 destinations, 12 routes (12 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
0.0.0.0/0 *[Static/5] 00:00:43
to table inet.0
10.2.40.0/24 *[Direct/0] 1d 02:52:35
> via reth1.40
10.2.40.200/32 *[Local/0] 1d 02:52:35
Local via reth1.40
10.2.48.0/24 *[Direct/0] 1d 01:04:45
> via reth1.48
10.2.48.1/32 *[Local/0] 1d 01:04:45
Local via reth1.48
inet6.0: 1 destinations, 1 routes (1 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
ff02::2/128 *[INET6/0] 1d 02:52:35
MultiRecv
safesys-vr.inet6.0: 1 destinations, 1 routes (1 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
ff02::2/128 *[INET6/0] 1d 02:52:35
MultiRecv