SRX

Expand all | Collapse all

SRX reth interface vlan trunk

  • 1.  SRX reth interface vlan trunk

    Posted 05-21-2014 18:09

    Hi,

     

    We're in the process of setting up a cluster with two SRX240s and having some issues around vlan trunking within the reth interfaces. The cluster has four switches coming off it, one core switch and three access switches.

     

    We currently use LAGs on node0 until we get the reth interfaces working, configuration is like below on LAGs:

    > show configuration interfaces ae0
    aggregated-ether-options { lacp { active; } } unit 0 { family ethernet-switching { port-mode trunk; vlan { members [ servers staff voice ]; } } }

     

    The problem happens when I try to set this up as a reth interface:

    > show configuration interfaces reth0
    redundant-ether-options {
        redundancy-group 1;
        lacp {
            active;
        }
    }
    unit 0 {
        family ethernet-switching {
            port-mode trunk;
            vlan {
                members [ servers staff voice ];
            }
        }
    }

     

    It comes up with an error when doing a commit that family ethernet-switching isn't supported. I then tried the below but am unable to ping anyting over the link:

    > show configuration interfaces reth0
    redundant-ether-options {
        redundancy-group 1;
        lacp {
            active;
        }
    }
    vlan-tagging;
    unit 5 {
        vlan-id 5;
    }
    unit 6 {
        vlan-id 6;
    }
    unit 99 {
        vlan-id 99;
    }

     

    I have also tried bridging but this fails as we use IPsec tunnels off the router, as well as DynamicVPN:

    > show configuration interfaces reth0
    redundant-ether-options {
        redundancy-group 1;
        lacp {
            active;
        }
    }
    vlan-tagging;
    unit 5 {
        family bridge {
            interface-mode trunk;
            vlan-id 5;
    }
    unit 6 {
        family bridge {
            interface-mode trunk;
            vlan-id 6;
    }
    unit 99 {
        family bridge {
            interface-mode trunk;
            vlan-id 99;
    }

     

    Does anyone have any other suggestions that I can try, I can't assign IP addresses to the logical interface vlans as we need the vlan accessible on other switches also.

     

    We're currently on Junos 12.1R7.9.

     

    Cheers,

    Glenn



  • 2.  RE: SRX reth interface vlan trunk

    Posted 05-21-2014 22:09

    Reth interfaces are generally used as L3 interfaces.

    In you configuration I see that you need a L2 interface (running ethernet-switching) to be able to have multiple switches connected to same node.

     

    Please refer below KB for ethernet-switching with chassis cluster.

    http://kb.juniper.net/InfoCenter/index?page=content&id=KB21422&smlogin=true

     

     



  • 3.  RE: SRX reth interface vlan trunk

    Posted 05-24-2014 15:24

    After speaking to our contact at Juniper we redisgned the network and moved away from ethernet switching.

     

    All working well on reth interface except our voice VLAN, I have put this on it's own port on the SRX with ethernet switching until I get a chance to try and resolve it.



  • 4.  RE: SRX reth interface vlan trunk

    Posted 08-31-2020 09:25

    Hi @eResources

    can you  please share part of the solution configuration