This article describes how you can control the scope of polled data by specifying the name of logical-system and/or routing-instance in the community string. It is applicable for SNMP v1 or SNMP v2c. Note: Logical-systems are supported only on High-End SRX Series. The rest is applicable both for High-End SRX and for Branch SRX Series. When monitoring an SRX device with … [Read more...]
Can an IPsec VPN tunnel be terminated when the external interface belongs to a routing instance?
Unable to terminate an IPSec VPN tunnel, when the external interface belongs to a routing-instance. Assume the following: Ge-0/0/2 is the external interface with the 1.1.1.2/30 IP address. Remote IPSec peer is 2.2.2.2. You want to route traffic from the 10.10.10.0/24 virtual router LAN to the 10.10.20.0/24 remote LAN. Both the internal LAN and external Internet … [Read more...]
Import routes from the default routing table into other routing instance tables using policies
This article describes the procedure for importing all the routes of a default routing table, inet.0, into the routing instances on SRX and J Series devices. The Problem: When a term is added in the routing-policy and is specified with a from-condition, it does not give the instance name to import from: [edit] # set policy-options policy-statement … [Read more...]