> I'd say the idea of splitting a firewall cluster into two geographically
> remote parts is itself worth to be revised twice. The chassis
> interconnect pitfalls are not the main caveat in such a design.
>
> The most important thing about FW clusters (or even any other statefull
> devices, like,
16.07.2012 16:49, Spam пишет:
> Thanks for the info guys. I know it is not a recommended solution, but I
> have
> 2 ISP links in 2 different locations, which are connected together via a
> single 10GB
> vlan trunk between 2 switches, so I'm kinda stuck.
>
>
I'd say the idea of splitting a firewa
Thanks for the info guys. I know it is not a recommended solution, but I
have
2 ISP links in 2 different locations, which are connected together via a
single 10GB
vlan trunk between 2 switches, so I'm kinda stuck.
Spammy
-Original Message-
From: Clay Haynes
To: "spam...@fioseurope.n
SRX Technical Note 21 will have the Design Considerations and Deployment
Scenarios you need. This link does require an account to login first.
http://kb.juniper.net/InfoCenter/index?page=content&id=TN21
- Clay
On 7/16/12 5:04 AM, "Spam" wrote:
>Is it possible to connect 2 SRX devices t
Also make sur you have jumbo frame for fab link and igmp snooping deactivated
- Message d'origine -
De : Mark Menzies [m...@deimark.net]
Envoyé : 16.07.2012 10:16 CET
À : spam...@fioseurope.net
Cc : juniper-nsp@puck.nether.net
Objet : Re: [j-nsp] Quick Question About HA Setup
Hiya bu
Good point.
Basically if we use a single switch to connect 2 SRXs in a cluster we
introduce the switch as a single point of failure here. If you are dead
set on separating your cluster nodes with switches, use 2 separate
switches, one for control, one for data and keep the traffic on different
vl
Although it can work, its recommended that you dont.
Any latency spikes between the switches can cause clustering to split, and
you will suddenly be in a split brain scenario.
I had a short talk with A-TAC about it a while back and they highly
recommended against it for our build out.
On Mon, Ju
Hiya bud
Yes that can work here.
Just make sure that the SRXs are less than 100ms apart and each sync
connection, both fabric and control, is on separate VLANs.
HTH
On 16 July 2012 10:04, Spam wrote:
> Is it possible to connect 2 SRX devices together into a HA Cluster by
> connecting
> the
Is it possible to connect 2 SRX devices together into a HA Cluster by
connecting
the Control & Fabric Interlinks via switches or must they be directly
connected.
My planned setup is as follows:
SRX<->Switch<->10GB Xconnect<->Switch<->SRX
I can also give each connection is own dedicated VLAN if
can you share the configuration?
Thx
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
10 matches
Mail list logo
