[j-nsp] SSG140 - Configure Ethernet ports as switch ports?
Stefan Fouant
sfouant at shortestpathfirst.net
Wed Mar 17 15:00:35 EDT 2010
> -----Original Message-----
> From: juniper-nsp-bounces at puck.nether.net [mailto:juniper-nsp-
> bounces at puck.nether.net] On Behalf Of TCIS List Acct
> Sent: Wednesday, March 17, 2010 12:46 PM
> To: juniper-nsp at puck.nether.net
> Subject: [j-nsp] SSG140 - Configure Ethernet ports as switch ports?
>
> Is it possible in a SSG-140 to configure a few of the Ethernet
> interfaces as a
> L2 segment/VLAN to emulate a switch, but also have L3 functions
> (firewall rules,
> MIPs, etc) work for hosts in that L2 segment? (without having the
> device in
> transparent mode)
Yup, it's called a bridge-group in ScreenOS terminology. Very easy to set
up. Simply bind your interfaces to the bridge-group interface, and then you
configure your VLANs, IP assignments, DIPs, MIPs, etc. on the bridge-group
interface.
Stefan Fouant, CISSP, JNCIE-M/T
www.shortestpathfirst.net
GPG Key ID: 0xB5E3803D
More information about the juniper-nsp
mailing list