[j-nsp] SRX and loopback devices
Thomas Eichhorn
te at te3networks.de
Sat May 29 05:52:02 EDT 2010
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi all,
I'm currently having a conceptual problem with the SRX series:
All of my interfaces are in a zone - but not lo0. It seems even
in default config it has no zone assigned... Now I just wonder what
happens if I assign it to a zone - should I put it into trust or
just create a new zone loopback? If I do this, do I need special
rules for allowing some stuff?
I just remember the very bad effects on MX series, if you put a
filter on loopback and don't remember which internal services
needs this..
Any ideas and comments?
Thanks,
Tom
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAkwA48IACgkQrUvjMoak8ZfWhwCggXPFvR4eyVCD1nyrfeev9Hxf
iv0AoJzwmRB396LxuoqGhenu3EjXGDNm
=Nhak
-----END PGP SIGNATURE-----
More information about the juniper-nsp
mailing list