vSRX (Firefly): IPSec tunnels: st0-interface, not in any zone?
Im running a setup with two virtual SRXs and one physical.
I can ping and ssh between the boxes - Im running flow/sec-mode
I want to create IPSec tunnels between the vSRXs and the real one, but the SA does not come up on the vSRX
I use the standard guides for building IPSec and Im testing wiht Pre-shared-keys, to keep it simple.
Im running the following version:
root> show version Model: firefly-perimeter JUNOS Software Release [12.1X47-D20.7]
But I get the following error:
[May 13 14:47:45]Couldn't get the zone information for interface st0, error No such file or directory
root> show security ike security-associations
For each vSRX I have two NICs allocated to the VMs: one for trust and one for un-trust.
Here is my interfaces:
root> show interfaces terse Interface Admin Link Proto Local Remote ge-0/0/0 up up ge-0/0/0.0 up up gr-0/0/0 up up ip-0/0/0 up up lsq-0/0/0 up up lt-0/0/0 up up mt-0/0/0 up up sp-0/0/0 up up sp-0/0/0.0 up up inet inet6 sp-0/0/0.16383 up up inet 10.0.0.1 --> 10.0.0.16 10.0.0.6 --> 0/0 126.96.36.199 --> 188.8.131.52 184.108.40.206 --> 0/0 ge-0/0/1 up up ge-0/0/1.0 up up inet 172.25.61.152/24 dsc up up gre up up ipip up up irb up up lo0 up up lo0.16384 up up inet 127.0.0.1 --> 0/0 lo0.16385 up up inet 10.0.0.1 --> 0/0 10.0.0.16 --> 0/0 220.127.116.11 --> 0/0 18.104.22.168 --> 0/0 22.214.171.124 --> 0/0 lo0.32768 up up lsi up up mtun up up pimd up up pime up up pp0 up up ppd0 up up ppe0 up up st0 up up st0.0 up up inet 10.0.0.4/24 tap up up vlan up down