Log in to ask questions, share your expertise, or stay connected to content you value. Don’t have a login? Learn how to become a member.
Fxp0 port is not able to access on SRX345 and for each commit getting an error as
"[edit security] 'nat' warning: Configuring NAT rule with match address 0.0.0.0/0 and source-nat/destination-nat off adds default reject route, causing fxp0's IP not accessible from outside subnets.
I am not sure how NAT is affecting your default route [Need more info around the configuration and topology] .
The fxp0 is designed to be a management port. That's why it does not fall under flow module (no flow lookup).
This means that traffic to & from fxp0 is NOT going to be governed by the NAT rules.
Can you provide more information around what you are trying to achieve ? It will help in answering your query.