Support Support Downloads Knowledge Base Service Request Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

How to configure a secondary default route in case the primary route fails

0

0

Article ID: KB15691 KB Last Updated: 30 Jul 2010Version: 2.0
Summary:
This article describes how to add a secondary default route that will become active if the primary default route fails.
Symptoms:

Solution:
A secondary default route can be added to the firewall as a backup in case the primary route fails, by adding this with a higher preference on the routing table.

The command line to do this would be:

set route 0.0.0.0/0 interface ethx/x gateway xx.xx.xx.xx preference 25


This will set the default route, out the interface specified, to the gateway, with route preference of 25.  The default preference of static routes on the Juniper Firewalls is 20, so by setting this at a preference of 25, this route will be inactive, unless the primary route fails.  This route would then become active immediately if the primary route goes down, due to the interface going down.

An example of the routing table with this set would be:

IPv4 Dest-Routes for <trust-vr> (7 entries)
--------------------------------------------------------------------------------------
ID          IP-Prefix       Interface    Gateway P Pref Mtr Vsys
--------------------------------------------------------------------------------------
* 8      0.0.0.0/0           eth1/1      172.18.68.1 S 20 1 Root
7         0.0.0.0/0           eth2/1      172.18.72.1 S 25 1 Root

This shows that the primary default route is set for gateway 172.18.68.1, preference 20, and the backup route that is currently inactive is set for gateway 172.18.72.1, and will be come active if the primary fails.

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Security Alerts and Vulnerabilities

Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search