Configure Sub-Interfaces - Juniper SRX/vSRX

 ## Configure VLAN

set vlans VLAN10 vlan-id 10

set vlans VLAN20 vlan-id 20


## Configure VLAN Tagging

set interfaces ge-0/0/7 vlan-tagging

set interfaces ge-0/0/7 unit 10 vlan-id 10

set interfaces ge-0/0/7 unit 10 family inet address 10.10.10.1/24

set interfaces ge-0/0/7 unit 20 vlan-id 20

set interfaces ge-0/0/7 unit 20 family inet address 20.20.20.1/24


## Configure Security Zone Policy

set security zones security-zone LAN-1 interfaces ge-0/0/7.10 host-inbound-traffic system-services all

set security zones security-zone LAN-1 interfaces ge-0/0/7.10 host-inbound-traffic protocols all

set security zones security-zone LAN-1 interfaces ge-0/0/7.20 host-inbound-traffic system-services all

set security zones security-zone LAN-1 interfaces ge-0/0/7.20 host-inbound-traffic protocols all


## Configure Security Policy

set security policies from-zone LAN-1 to-zone LAN-1 policy ALLOW1 match source-address any

set security policies from-zone LAN-1 to-zone LAN-1 policy ALLOW1 match destination-address any

set security policies from-zone LAN-1 to-zone LAN-1 policy ALLOW1 match application any

set security policies from-zone LAN-1 to-zone LAN-1 policy ALLOW1 then permit

commit

Comments

Post a Comment

Popular posts from this blog

Export SCP

## CLI mode scp export logdb to root@x.x.x.x:/logdbPA-Swan scp export logdb to maintence@x.x.x.x:/home/maintenance/logdbPA-Swan scp export logdb to maintence@x.x.x.x.x:/home/maintenance/logdbPA-Swan > set cli config-output-format set > configure # show > set cli config-output-format xml > configure # show scp export log traffic start-time equal 2019/01/01@00:00:00 end-time equal 2020/06/26@00:00:00 to maintenance@x.x.x.x:/logs-traffic-pa-swan scp export log system start-time equal 2019/01/01@00:00:00 end-time equal 2020/06/26@00:00:00 to maintenance@x.x.x.x:/logs-system-pa-swan scp export log alarm start-time equal 2019/01/01@00:00:00 end-time equal 2020/06/26@00:00:00 to maintenance@x.x.x.x:/logs-alarm-pa-swan scp export log config start-time equal 2019/01/01@00:00:00 end-time equal 2020/06/26@00:00:00 to maintenance@x.x.x.x:/logs-config-pa-swan scp export log data start-time equal 2019/01/01@00:00:00 end-time equal 2020/06/26@00:00:00 to maintenance@172.18.65.18...
Read more