[j-nsp] Basic VLAN setup on a J2320
Morten Isaksen
misak at misak.dk
Thu Apr 8 11:48:01 EDT 2010
I think I found the problem.
The switching mode only works for uPIM cards and not the 4 internal
ports on the J2320.
I am at home right now, so I have not testet if that is the problem,
but I think so.
/Morten
On Thu, Apr 8, 2010 at 5:37 PM, Chris Kawchuk <juniperdude at gmail.com> wrote:
> 1. Check your security zone to ensure you're allowing ping on both devices, and that the vlan.xxx interfaces are part of the zone:
>
> i.e.:
>
> security {
> zones {
> security-zone trust {
> interfaces {
> vlan.99 {
> host-inbound-traffic {
> system-services {
> all;
> }
> protocols {
> all;
> }
> }
> }
> vlan.10 {
> host-inbound-traffic {
> system-services {
> all;
> }
> protocols {
> all;
> }
> }
> }
>
>
> 2. Also check your policies on the trust zone (just to ensure its there);
>
> policies {
> from-zone trust to-zone trust {
> policy allow-all {
> match {
> source-address any;
> destination-address any;
> application any;
> }
> then {
> permit;
> }
> }
> }
>
>
>
>
>
> On 2010-04-08, at 9:26 AM, Morten Isaksen wrote:
>
>> I forgot the members [ ... ] part and that caused the vlan to be down.
>> But after I added the members line the vlan was up but I was not able
>> to ping bettween the two J2320, so same result.
>
>
--
Morten Isaksen
More information about the juniper-nsp
mailing list