SRX Services Gateway
SRX Services Gateway

Transparent mode

05.14.17   |  
‎05-14-2017 08:41 AM

i was studying Transparent mode in SRX but there are lots of things confusing:

1- what are the differences between transparent mode and mixed mode?

2- in Transparent mode you cannot route between Vlans because you cannot route between IRb interfaces , so why transparent mode is important??

3-what are the scenarios where i can use transparent mode ??

1 REPLY
Highlighted
SRX Services Gateway

Re: Transparent mode

05.14.17   |  
‎05-14-2017 11:32 AM

Hi,

 

1) In mixed mode, the Ethernet physical interface can be either a Layer 2 interface or a Layer 3 interface, but the Ethernet physical interface cannot be both simultaneously. However, Layer 2 and Layer 3 families can exist on separate physical interfaces on the same device.

The following link has more details :-

https://www.juniper.net/documentation/en_US/junos/topics/concept/security-mixed-mode-understanding.h...

 

2) In transparent mode, the SRX Series device filters packets that traverse the device without modifying any of the source or destination information in the IP packet headers. Transparent mode is useful for protecting servers that mainly receive traffic from untrusted sources because there is no need to reconfigure the IP settings of routers or protected servers.

More details :-

https://www.juniper.net/documentation/en_US/junos12.1x44/topics/concept/security-layer2-bridging-tra...

 

3)You should consider using transparent mode because certain networking scenarios are not ideal for a Layer 3 implementation of a firewall.

Segmenting a Layer 2 domain

Complex routing environments

The following link would be helpful :-

http://chimera.labs.oreilly.com/books/1234000001633/ch06.html

 

Hope this Helps Smiley Happy

 

Regards,

Sahil Sharma

Please mark my response as Solution if it Helps, Kudos are Appreciated as well.