Thank you Gavin, I appreciater any help you can offer:
Interface:
ge-0/0/3 {
unit 0 {
family inet {
address 10.0.1.1/24;
address 10.0.2.1/24;
}
}
}
Security policy:
policies{
from-zone MGMT to-zone MGMT {
policy mgmt-mgmt {
match {
source-address any;
destination-address any;
application any;
dynamic-application any;
}
then {
permit;
}
}
James
------------------------------
James Ault
------------------------------
Original Message:
Sent: 09-22-2023 16:20
From: GAVIN WHITE
Subject: Multiple Networks conneccted to a single interface SRX345
Hi James,
It sounds like you have done the right thing... You have added the policy to allow traffic from-zone to the same zone.
Would you mind sharing just the interface configuration and the security policy you have configured? (You can change the IPs for privacy etc)
------------------------------
GAVIN WHITE
Original Message:
Sent: 09-21-2023 10:55
From: James Ault
Subject: Multiple Networks conneccted to a single interface SRX345
Hello, I am new to JunOS so please bear with me. I have an environment where I have several different /24s leaving a single port on an ESXi host and connecting to a single interface on my SRX345. I added the IP's for the gates as xxx.xxx.xxx.1/24 and I can ping each of the gates from VM's on different /24s but I can't speak device to device. I migrated from ScreenOS where this was defined as secondary IP's all defined in a single zone and set a policy that everything in that zone is free to speak to everything else in the zone. I've done the same on the 345 but the devices can't connect. Not sure where to go from here, any help would be appreciated.
------------------------------
James Ault
------------------------------