hi all,
I'm trying to work out a way to set a route that will failover based on the same next-hop, and fail back. I may be over thinking it, but wanted to see if anyone was interested or curious about the same concept?
Topology is a SRX, with an EX beneath. Two circuits connect in to the EX on independant VLANs are trunked to the SRX on different interfaces.
EX ge-0/0/1_vlan1 > SRX reth0.1
EX ge-0/0/2_vlan2 > SRX reth0.2
Both circuits are VDSL, so basic from a carrier perspective. I have no control over their IP schema. They're just expecting something to plug in and DHCP for each circuit, we're statically assigning.
reth0.1 192.168.1.5
reth0.2 192.168.1.6
Carrier devices are both 192.168.1.1 within each VLAN.
I see this creates an ARP problem, although it should be able to ARP within each VLAN? The second one (reth0.2) seems to lose its ARP and not be reachable.
I have a static route pointing to 192.168.1.1
set routing-options static route 0/0 next-hop 192.168.1.1
Now, I worry about the following:
1. reth0.2 doesn't ARP, will it failover clean?
2. Being on the SRX the interfaces will always be up, so the route will always be valid
3. If it does failover will it fail back? Will it get stuck on reth0.2 when failing over from current circuit reth0.1?
4. Is this actually what will work? It just will mean whichever is active is luck, but it'll route as long as the device can find a path to either of the 192.168.1.1 via reth0.1 or reth0.2? ... My educated guess says this is a nightmare waiting to happen in production.
I've looked at qualified next-hop but can't quite find the right way to set a preference on reth0.2 of something higher even when using a tiebreaker of mac or interface. Interface routes used to exist on SSG but on SRX, which makes some sense, they're quite tricky to set under these terms.
Any thoughts?
------------------------------
LIAM ENTICKNAP
------------------------------