![]() Inet.0: 9 destinations, 10 routes (9 active, 0 holddown, 0 hidden) Secondly add ospf protocol and have run show route Set security zones security-zone untrust interfaces lo0.0 host-inbound-traffic protocols all Set security zones security-zone untrust interfaces lo0.0 host-inbound-traffic system-services all Set protocols ospf area 0.0.0.0 interface ge-0/0/1.0 Set protocols ospf area 0.0.0.0 interface lo0.0 Set interfaces lo0 unit 0 family inet address 2.2.2.2/32 Set interfaces ge-0/0/1 unit 0 family inet address 35.48.27.2/24 Set security zones security-zone untrust interfaces ge-0/0/2.0 host-inbound-traffic protocols all Set security zones security-zone untrust interfaces ge-0/0/2.0 host-inbound-traffic system-services all Set security zones security-zone untrust interfaces ge-0/0/1.0 host-inbound-traffic protocols all Set security zones security-zone untrust interfaces ge-0/0/1.0 host-inbound-traffic system-services all Set security zones security-zone untrust interfaces ge-0/0/0.0 host-inbound-traffic protocols all Set security zones security-zone untrust interfaces ge-0/0/0.0 host-inbound-traffic system-services all Set security zones security-zone untrust host-inbound-traffic protocols all Set security zones security-zone untrust host-inbound-traffic system-services all Set protocols ospf area 0.0.0.0 interface ge-0/0/0.0 Set system services web-management http interface ge-0/0/0.0 Set system root-authentication encrypted-password "$1$MZSDeWoR$.e1KicC9QzerG.7NWwg8w/" I have two Firefly 12.1x47-D15.4 virtual machines with this configuration: Hi mans, can you help me with similar problem. What am I missing, or is this just not possible on the SRX? Set security zones security-zone trust interfaces lo0.0 host-inbound-traffic system-services all Set security zones security-zone trust interfaces vlan.1 host-inbound-traffic protocols ospf ![]() Set security zones security-zone trust interfaces vlan.1 host-inbound-traffic system-services all Set security policies from-zone trust to-zone trust policy trust-to-trust then permit Set security policies from-zone trust to-zone trust policy trust-to-trust match application any Set security policies from-zone trust to-zone trust policy trust-to-trust match destination-address any Set security policies from-zone trust to-zone trust policy trust-to-trust match source-address any Set protocols ospf area 0.0.0.0 interface lo0.0 passive Set protocols ospf area 0.0.0.0 interface vlan.1 priority 1 Set interfaces vlan unit 1 family inet address 10.10.10.2/24 Set interfaces vlan unit 1 description trust Set interfaces lo0 unit 0 family inet address 10.10.10.1/32 Set interfaces lo0 unit 0 description loopback Set interfaces fe-0/0/2 unit 0 family ethernet-switching vlan members vlan1 Set interfaces fe-0/0/2 unit 0 description trust Set system services dhcp propagate-settings vlan.1 I have intra zone traffic in the zone enabled and can confirm that I can reach the loopback address from a layer 3 hop, but it's not working over a layer 2. ![]() I am unable to ping my loopback address from a connected host in the same zone.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |