SRX Services Gateway
SRX Services Gateway

SRX reth interface vlan trunk

[ Edited ]
‎05-21-2014 06:08 PM

Hi,

 

We're in the process of setting up a cluster with two SRX240s and having some issues around vlan trunking within the reth interfaces. The cluster has four switches coming off it, one core switch and three access switches.

 

We currently use LAGs on node0 until we get the reth interfaces working, configuration is like below on LAGs:

> show configuration interfaces ae0
aggregated-ether-options { lacp { active; } } unit 0 { family ethernet-switching { port-mode trunk; vlan { members [ servers staff voice ]; } } }

 

The problem happens when I try to set this up as a reth interface:

> show configuration interfaces reth0
redundant-ether-options {
    redundancy-group 1;
    lacp {
        active;
    }
}
unit 0 {
    family ethernet-switching {
        port-mode trunk;
        vlan {
            members [ servers staff voice ];
        }
    }
}

 

It comes up with an error when doing a commit that family ethernet-switching isn't supported. I then tried the below but am unable to ping anyting over the link:

> show configuration interfaces reth0
redundant-ether-options {
    redundancy-group 1;
    lacp {
        active;
    }
}
vlan-tagging;
unit 5 {
    vlan-id 5;
}
unit 6 {
    vlan-id 6;
}
unit 99 {
    vlan-id 99;
}

 

I have also tried bridging but this fails as we use IPsec tunnels off the router, as well as DynamicVPN:

> show configuration interfaces reth0
redundant-ether-options {
    redundancy-group 1;
    lacp {
        active;
    }
}
vlan-tagging;
unit 5 {
    family bridge {
        interface-mode trunk;
        vlan-id 5;
}
unit 6 {
    family bridge {
        interface-mode trunk;
        vlan-id 6;
}
unit 99 {
    family bridge {
        interface-mode trunk;
        vlan-id 99;
}

 

Does anyone have any other suggestions that I can try, I can't assign IP addresses to the logical interface vlans as we need the vlan accessible on other switches also.

 

We're currently on Junos 12.1R7.9.

 

Cheers,

Glenn

2 REPLIES 2
SRX Services Gateway

Re: SRX reth interface vlan trunk

‎05-21-2014 10:08 PM

Reth interfaces are generally used as L3 interfaces.

In you configuration I see that you need a L2 interface (running ethernet-switching) to be able to have multiple switches connected to same node.

 

Please refer below KB for ethernet-switching with chassis cluster.

http://kb.juniper.net/InfoCenter/index?page=content&id=KB21422&smlogin=true

 

 

regards,
Avd
JNCIE-SEC #320

Please Mark My Solution Accepted if you think it helped!
SRX Services Gateway

Re: SRX reth interface vlan trunk

‎05-24-2014 03:23 PM

After speaking to our contact at Juniper we redisgned the network and moved away from ethernet switching.

 

All working well on reth interface except our voice VLAN, I have put this on it's own port on the SRX with ethernet switching until I get a chance to try and resolve it.