Mailing List Archive

https://kb.juniper.net/InfoCenter/index?page=content&id=KB24362

On Jun 24, 2013, at 8:38 AM, Alberto Santos wrote:

> Hi there,
>
> I'm swapping a cisco ASA and I found myself stuck on how configure any
> similar to cisco RRI(reverse route injection) feature on junos,I'm load
> balacing with a BigIP between them and I need to know where the tunnel is
> active in order to advertise it on OSPF, has anyone experience any in the
> past? please send your thoughts, just keep in my that I can't run any IGP
> over the tunnel .
>
>
> BR/Alberto
> _______________________________________________
> juniper-nsp mailing list juniper-nsp@puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp


_______________________________________________
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

Hi,

it looks like a possibility, but the remote IP address keeps changing
because it is dialup connection. can't monitor the next hop.


BR


*Alberto Santos *
CCIE #26648
JNCIS-SP - ITIL-F
*"...Fix your DNS, make it dual-stack, take your mail server and make it
dual-stack, take your web server and make it dual-stack..." by Randy
Bush/RIPE IPv6*


On 24 June 2013 13:15, OBrien, Will <ObrienH@missouri.edu> wrote:

> https://kb.juniper.net/InfoCenter/index?page=content&id=KB24362
>
> On Jun 24, 2013, at 8:38 AM, Alberto Santos wrote:
>
> > Hi there,
> >
> > I'm swapping a cisco ASA and I found myself stuck on how configure any
> > similar to cisco RRI(reverse route injection) feature on junos,I'm load
> > balacing with a BigIP between them and I need to know where the tunnel is
> > active in order to advertise it on OSPF, has anyone experience any in the
> > past? please send your thoughts, just keep in my that I can't run any IGP
> > over the tunnel .
> >
> >
> > BR/Alberto
> > _______________________________________________
> > juniper-nsp mailing list juniper-nsp@puck.nether.net
> > https://puck.nether.net/mailman/listinfo/juniper-nsp
>
>
_______________________________________________
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

You can just point the route at the st0.x interface. When it's down, the route won't install in the table.


On Jun 24, 2013, at 3:57 PM, Alberto Santos wrote:

Hi,

it looks like a possibility, but the remote IP address keeps changing because it is dialup connection. can't monitor the next hop.


BR


Alberto Santos
CCIE #26648
JNCIS-SP - ITIL-F
"...Fix your DNS, make it dual-stack, take your mail server and make it dual-stack, take your web server and make it dual-stack..." by Randy Bush/RIPE IPv6


On 24 June 2013 13:15, OBrien, Will <ObrienH@missouri.edu<mailto:ObrienH@missouri.edu>> wrote:
https://kb.juniper.net/InfoCenter/index?page=content&id=KB24362

On Jun 24, 2013, at 8:38 AM, Alberto Santos wrote:

> Hi there,
>
> I'm swapping a cisco ASA and I found myself stuck on how configure any
> similar to cisco RRI(reverse route injection) feature on junos,I'm load
> balacing with a BigIP between them and I need to know where the tunnel is
> active in order to advertise it on OSPF, has anyone experience any in the
> past? please send your thoughts, just keep in my that I can't run any IGP
> over the tunnel .
>
>
> BR/Alberto
> _______________________________________________
> juniper-nsp mailing list juniper-nsp@puck.nether.net<mailto:juniper-nsp@puck.nether.net>
> https://puck.nether.net/mailman/listinfo/juniper-nsp



_______________________________________________
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

On 25/06/2013, at 7:08 AM, "OBrien, Will" <ObrienH@missouri.edu> wrote:

> You can just point the route at the st0.x interface. When it's down, the route won't install in the table.
>
>

Just watch this in 11.4R5.5 (and others nearby) - there was a bug introduced that kept the state of the tunnel sub-interface up even once the security associations were cleared. Fixed in 12.1R4 (at least).



> On Jun 24, 2013, at 3:57 PM, Alberto Santos wrote:
>
> Hi,
>
> it looks like a possibility, but the remote IP address keeps changing because it is dialup connection. can't monitor the next hop.
>
>
> BR
>
>
> Alberto Santos
> CCIE #26648
> JNCIS-SP - ITIL-F
> "...Fix your DNS, make it dual-stack, take your mail server and make it dual-stack, take your web server and make it dual-stack..." by Randy Bush/RIPE IPv6
>
>
> On 24 June 2013 13:15, OBrien, Will <ObrienH@missouri.edu<mailto:ObrienH@missouri.edu>> wrote:
> https://kb.juniper.net/InfoCenter/index?page=content&id=KB24362
>
> On Jun 24, 2013, at 8:38 AM, Alberto Santos wrote:
>
>> Hi there,
>>
>> I'm swapping a cisco ASA and I found myself stuck on how configure any
>> similar to cisco RRI(reverse route injection) feature on junos,I'm load
>> balacing with a BigIP between them and I need to know where the tunnel is
>> active in order to advertise it on OSPF, has anyone experience any in the
>> past? please send your thoughts, just keep in my that I can't run any IGP
>> over the tunnel .
>>
>>
>> BR/Alberto
>> _______________________________________________
>> juniper-nsp mailing list juniper-nsp@puck.nether.net<mailto:juniper-nsp@puck.nether.net>
>> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
>
>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp@puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>


_______________________________________________
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp