SRX

 View Only
last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.
  • 1.  VLAN to MX

    Posted 02-12-2021 02:58
    I am trying  to configure the following:

    Customer A / Customer B  --> ge-0/0/0/ge-0/0/3 SRX ge-0/0/5 --> MX ge-0/0/5 (Routing will take place at this point).

    So, the SRX is NTE for Customers but only we manage it so, from a customers perspective the Gateway for them will be on the MX making the SRX Transparent. But I configure up an irb interface for the management from the MX to the SRX. Here are the VLANs

    VLAN 10 - Customer-A
    VLAN 20 - Customer-B
    VLAN 99 - Management

    When configuring Q-in-Q I can configure the MX interface as follows and all works fine:

    set interfaces ge-0/0/5 unit 10 description Customer-A
    set interfaces ge-0/0/5 unit 10 vlan-tags outer 300
    set interfaces ge-0/0/5 unit 10 vlan-tags inner 10
    set interfaces ge-0/0/5 unit 10 ip address 172.16.16.2/30
    set interfaces ge-0/0/5 unit 99 description NTE-Management
    set interfaces ge-0/0/5 unit 99 vlan-tags outer 500
    set interfaces ge-0/0/5 unit 99 vlan-tags inner 99
    set interfaces ge-0/0/5 unit 99 family inet address 192.168.99.2/30 - opposing NTE IRB Interface will be addressed as 192.168.99.1/30
    set interfaces ge-0/0/5 unit 20 description Customer-B
    set interfaces ge-0/0/5 unit 20 vlan-tags outer 300
    set interfaces ge-0/0/5 unit 20 vlan-tags inner 10
    set interfaces ge-0/0/5 unit 20 ip address 10.10.10.2/30

    However, I do not have a downstream ISP in between now and therefore cannot strip an S-Tag so I need to make the MX Interface capable of receiving multiple VLANs (Trunked) and be routed directly from the MX and I cannot get that working. Any ideas anyone?

    ------------------------------
    Clive Gwyther
    ------------------------------