I have to configure, for one of my client, an old Juniper 5GT with 1 untrust port and 4 trust ports.
I need to connect 4 vlan and route traffic between them with ACL and act as a gateway for each. I'm a beginner with Juniper products and don't know how to configure physicals ports to do thing I need.
This is more specific needs (I want each trust ports connect physicaly to each vlan on a core switch):
T1 -> network 172.16.0.0/24 (vlan Servers)
T2 -> network 172.17.0.24 (vlan BMC i.e: DRAC, iLO)
T3 -> network 172.18.0.0/24 (VMWare needs)
T4 -> 10.0.0.0/24 (workstatons)
Thank in advance.
You can add interface to a zone and assign IP to it:set interface <name> zone trustset interface ip ipaddress/subnet
Create address book entry for each subnetset address Trust <string> ipaddress/subnet
To control flow between 2 networks you can create policies between the 2 zones.
Since in this case, zone is the same, policy can look like this:
set policy from trust to untrust source-subnet destination-subnet service permit
You will also need following command: set zone trust block
For details on the configuration options, you can refer the below link:https://www.juniper.net/techpubs/software/screenos/screenos6.3.0/630_ce_all.pdf
Look for first few chapters.