SRX

 View Only
last person joined: 17 hours ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  Routing IRB on SRX

    Posted 03-19-2018 20:14

    I have two VLANs, and two IRB interface for two guest VMs

    Both two VLANs is associated with ge-0/0/5 interface and It is a same DMZ zone. 

     

    They can't ping to each others. What is miss configuration?

    Here is configuration 

     

    show vlans
    VLAN66 {
    vlan-id 66;
    l3-interface irb.66;
    }
    VLAN77 {
    vlan-id 77;
    l3-interface irb.77;
    }

    show interfaces irb
    unit 66 {
    family inet {
    address 10.10.66.254/24;
    }
    }
    unit 77 {
    family inet {
    address 10.10.77.254/24;
    }
    }

     

     

    show security zones security-zone DMZ
    host-inbound-traffic {
    system-services {
    all;
    }
    protocols {
    all;
    }
    }
    interfaces {
    irb.66;
    irb.77;
    }

     



  • 2.  RE: Routing IRB on SRX

    Posted 03-19-2018 20:33

    Hi,

     

    U need to have security policy intrazone.

     

     

    Thanks



  • 3.  RE: Routing IRB on SRX

    Posted 03-19-2018 21:30

    You mean I have to create policy for allow traffic from DMZ to DMZ zone?



  • 4.  RE: Routing IRB on SRX
    Best Answer

    Posted 03-19-2018 21:41

    pl configure security policies from zone dmz to zone dmz and permit the traffic.