It was the recommended release at the time, which has changed recently. Another step, which cleared remaining alarms was a simple reboot - not an uncommon requirement with SRX devices unfortunately.
Original Message:
Sent: 08-08-2023 05:40
From: opouwels
Subject: ATP 'AAMWD' and ' SecIntel' errors
Hi EMTSU
Which version are you running ? we have the samen error in version JUNOS 21.2R3-S2.9 a couple times a day, it was fixed in the latest recommended version but that version has a memory leak causing the network going down so we had to rollback.
Aug 8 02:04:37.590 xxx alarmd[2148]: Alarm set: IPFD id=-1677721599, color=RED, class=CHASSIS, reason=SecIntel channel down, it will impact SecIntel functionality
Aug 8 02:10:08.520 xxx alarmd[2148]: Alarm cleared: IPFD id=-1677721599, color=RED, class=CHASSIS, reason=SecIntel channel down, it will impact SecIntel functionality
Aug 8 05:16:09.092 xxx alarmd[2148]: Alarm set: IPFD id=-1677721599, color=RED, class=CHASSIS, reason=SecIntel channel down, it will impact SecIntel functionality
Aug 8 05:21:11.841 xxx alarmd[2148]: Alarm cleared: IPFD id=-1677721599, color=RED, class=CHASSIS, reason=SecIntel channel down, it will impact SecIntel functionality
Aug 8 09:53:18.680 xxx alarmd[2148]: Alarm set: AAMWD id=-1694498815, color=RED, class=CHASSIS, reason=AAMWD control channel down, it will impact AAMW functionality
Aug 8 09:53:18.706 xxx alarmd[2148]: Alarm set: AAMWD id=-1694498813, color=RED, class=CHASSIS, reason=SMS control channel down, it will impact SMS functionality
Aug 8 09:59:29.923 xxx alarmd[2148]: Alarm cleared: AAMWD id=-1694498815, color=RED, class=CHASSIS, reason=AAMWD control channel down, it will impact AAMW functionality
Aug 8 09:59:29.929 xxx alarmd[2148]: Alarm cleared: AAMWD id=-1694498813, color=RED, class=CHASSIS, reason=SMS control channel down, it will impact SMS functionality
Aug 8 10:54:54.129 xxx alarmd[2148]: Alarm set: IPFD id=-1677721599, color=RED, class=CHASSIS, reason=SecIntel channel down, it will impact SecIntel functionality
Aug 8 11:00:00.014 xxx alarmd[2148]: Alarm cleared: IPFD id=-1677721599, color=RED, class=CHASSIS, reason=SecIntel channel down, it will impact SecIntel functionality
Original Message:
Sent: 07-25-2023 11:13
From: EMTSU
Subject: ATP 'AAMWD' and ' SecIntel' errors
The 'issue' has been found, well, partly at least. During a recent project to setup loopback addresses on all devices, 'default-address-selection' was enabled. This 'caused' the issue. This has now been resolved. On some devices , however, the 'AAMWD control channel down, it will impact AAMW functionality' alarm remains with the following error 'Connection status: Request client certificate failed'.
Thank you for your time and assistance M Gi.
Original Message:
Sent: 07-25-2023 03:21
From: MGi
Subject: ATP 'AAMWD' and ' SecIntel' errors
That's your problem then.
You have to figure out if that's issue on the box (routing, junos-host, fw filters, etc.) or somewhere upstream. Fingers crossed.
------------------------------
M Gi
Original Message:
Sent: 07-24-2023 12:54
From: EMTSU
Subject: ATP 'AAMWD' and ' SecIntel' errors
Ok. I think my concern is that nothing has changed, in terms of the config (e.g. DNS / firewall filter) on these devices, so everything was ok and now it's not.
The config is as follows:-
name-server {
8.8.8.8;
208.67.222.222;
1.1.1.1;
}
Here are my Telnet outputs:-
> telnet 52.17.56.65 port 443
Trying 52.17.56.65...
telnet: connect to address 52.17.56.65: Operation timed out
telnet: Unable to connect to remote host
> telnet 34.249.176.154 port 443
Trying 34.249.176.154...
telnet: connect to address 34.249.176.154: Operation timed out
telnet: Unable to connect to remote host
Thank you for sticking with me on this :)