SRX

Expand all | Collapse all

SRX3400 management port.

Jump to Best Answer
  • 1.  SRX3400 management port.

    Posted 10-09-2018 11:33

    Hi,

    Can we configure any other port as  management port on SRX3400 then the FXP0?

    Regards,

    Neeraj. 



  • 2.  RE: SRX3400 management port.
    Best Answer

    Posted 10-09-2018 11:53

    Hi Neeraj,

     

    Yes you can manage the SRX (SSH/Telnet/SNMP/etc) via a revenue/normal port. The fxp0 interface is intended for Out-of-Band management access, meaning that you have a separate network just for management purposes and your management traffic wont be mixed/affected by your production traffic. If you ever have a problem on the production network, like a broadcast storm, you wont lose management access to your SRX.

     

    https://www.juniper.net/documentation/en_US/junos/topics/concept/interfaces-understanding-management-ethernet-interfaces.html

     

    You could also have a revenue port working as a Out-of-Band management interface by placing it in the "management" funtional-zone. Note this type of zone is different from a security-zone and any traffic reaching the SRX via the management funtional-zone wont be routed to other zones, it will be only useful for managament of the SRX.

     

    https://www.oreilly.com/library/view/juniper-srx-series/9781449339029/ch04.html  (see funtional zone section)