Hello,
I've trying to setup a cluster of SRX210 and ingest an IP via Hub 3.0 in modem mode, which works fine cloning the mac on the reth0 interface (reth0 outside, reth1 inside). Unfortunately, I can't ping Google from the firewall.
This same setup worked previously with no cluster with only one unit, although with some random issues where I lost the public IP on the firewall. Overall, it seems like VM Hub 3.0 doesn't work rock-solidly in modem mode, and also it depends a lot on the hardware you behind.
The first setup was to have PFsense virtually which worked perfectly, but now I'm not sure whether it's the firmware on the Hub or it's something wrong on my SRX configuration.
What annoys and confuses me is the fact that I'm getting (Access-internal/12), where I received "default" (if I remember correctly when I had only one single unit). Another fact is that I'm stripping the VLAN 100 tag from the switch to the Hub3 but tagging it back on the LACP to the SRX cluster. I can see ARP from the street VM cabinets, and I get the public IP correctly although something is wrong as it doesn't work. This same method worked correctly.
root@firewall_node01> show route
inet.0: 23 destinations, 23 routes (23 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both
0.0.0.0/0 *[Access-internal/12] 00:13:56
> to 82.6.88.1 via reth0.100
Any help would be great.
Thanks,
Alberto.