Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[Archive] Unable to track different network segment on a firewall running in Transparent Layer 2 mode

0

0

Article ID: KB28541 KB Last Updated: 25 Sep 2020Version: 2.0
Summary:

This article explains how to configure NSRP Track IP monitoring to track different network segments on a firewall running in Transparent Layer 2 mode.

Symptoms:

Is NSRP TrackIP monitoring supported in transparent mode?

Solution:

NSRP TRACK-IP monitoring is supported in Transparent mode.

  1. In NSRP, VLAN1 interface IP should be configured and, at the same time, there should be a manage-ip on the vlan1 interface (different from the interface IP) for the track-ip to work. This is a prerequisite for devices in NSRP.
     
    set interface vlan1 ip 10.204.8.32/24
    set interface vlan1 manage-ip 10.204.8.33

     
  2. Then, configure track-ip for interface vlan1, or simply do not specify any interface:

    set nsrp monitor track-ip ip
    set nsrp monitor track-ip ip 4.2.2.2 interface vlan1 OR set nsrp monitor track-ip ip 4.2.2.2

     
  3. Make sure there is a route to reach the tracked IP (the route must be in a different network segment). To track a different network segment, you must have a route to reach that segment.

    set route 0.0.0.0/0 interface vlan1 gateway 10.204.8.254
     
  4. Now, execute the command below to check the status of TRACK-IP:
get nsrp track-ip
ip address interval threshold wei tmout interface meth fail-count success-rate
4.2.2.2      1         3       1   1     vlan1    ping      0           100%
failure weight: 255, threshold: 255, not failed: 0 ip(s) failed, weighted sum = 0
Modification History:
2020-09-24: Archived.
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search