Hi everyone, I have recently implemented an SRX110 cluster which has replaced a Juniper SSG20.
I have the following setup on the SRX:
Reth 0 - trust 10.0.0.254 which is the gateway for all clients on production network
Reth 1 - untrust
Reth 2 - DMZ 192.168.168.0 (vlan on switch)
Reth 3 - guest wifi network
Apart from guest wifi all the above networks are setup as vlans on the core HP switch IP address 10.0.0.9
Now the problem:
I have a test network 172.16.28.0 which is also a vlan on the HP switch gateway is the switch 172.16.28.254.
When I rdp to the test network it drops the connection every 30 seconds or so, I know this is due to the session starting on reth0, going to the 10.0.0.9 switch but as the switch is on the same subnet as my PC it returns over the 10.0.0.0 network and not back to the SRX. To fix this I have to setup a static route on my client which points to the switch.
I don't want to have to do that for everything accessing the test network, I have been advised to setup the test network on a spare SRX interface instead of the switch but is this the only way? I also have 2 other vlans so would need to do the same for them.
Another note to access the test network when the SRX was installed I had to set static routes on the SRX pointing to the 10.0.0.9 switch for test network and other vlans.
I then had to setup a trust to trust rule any any as it sees the test network on trust due to it being on the 10.0.0.9 switch.
Can anyone suggest any solutions please?
I hope that makes sense!
Many thanks
Ross