vSRX
Highlighted
vSRX

Problems routing for internet access and for nat to dual ISP

‎11-10-2017 01:32 AM

Hi,

 

I configured Juniper vSRX Junos 17.3R1

We want use UTM, AppSecure, NAT, CoS

Faced a problem when configuring the routing, did everything according to the following instructions https://www.juniper.net/documentation/en_US/junos/topics/example/nat-security-mutiple-isp-configurin...

nat works, does not work access to the Internet from a LAN, then there is not defined a default route to ISPs for rib inet.0. How i can configure routing from LAN to two ISPs with load balance, so that NAT works for multiple ISP?

my routing table:

inet.0: 4 destinations, 4 routes (4 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

172.20.0.0/16 *[Static/5] 22:28:12
> to 192.168.xxx.xxx via ge-0/0/0.0
192.168.0.0/16 *[Static/5] 22:28:12
> to 192.168.xxx.xxx via ge-0/0/0.0
192.168.xxx.0/24 *[Direct/0] 5w0d 19:56:45
> via ge-0/0/0.0
192.168.xxx.xxx/32 *[Local/0] 5w0d 19:56:45
Local via ge-0/0/0.0

2DAY.inet.0: 8 destinations, 8 routes (8 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

0.0.0.0/0 *[Static/5] 22:47:33
> to 85.29.xxx.xxx via ge-0/0/2.0
85.29.xxx.xxx/28 *[Direct/0] 22:47:33
> via ge-0/0/2.0
85.29.xxx.xxx/32 *[Local/0] 22:47:33
Local via ge-0/0/2.0
85.29.xxx.xxx/32 *[Static/1] 22:47:33
Receive
172.20.0.0/16 *[Static/5] 22:28:12
to table inet.0
192.168.0.0/16 *[Static/5] 22:28:12
to table inet.0
192.168.xxx.0/24 *[Direct/0] 22:12:48
> via ge-0/0/0.0
192.168.xxx.xxx/32 *[Local/0] 22:12:48
Local via ge-0/0/0.0

KZT.inet.0: 8 destinations, 8 routes (8 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

0.0.0.0/0 *[Static/5] 22:47:33
> to 88.204.xxx.xxx via ge-0/0/1.0
88.204.xxx.0/28 *[Direct/0] 22:47:33
> via ge-0/0/1.0
88.204.xxx.xxx/32 *[Static/1] 22:47:33
Receive
88.204.xxx.xxx/32 *[Local/0] 22:47:33
Local via ge-0/0/1.0
172.20.0.0/16 *[Static/5] 22:28:12
to table inet.0
192.168.0.0/16 *[Static/5] 22:28:12
to table inet.0
192.168.xxx.0/24 *[Direct/0] 22:47:37
> via ge-0/0/0.0
192.168.xxx.xxx/32 *[Local/0] 22:47:37
Local via ge-0/0/0.0

1 REPLY 1
vSRX

Re: Problems routing for internet access and for nat to dual ISP

‎11-15-2017 09:07 PM