Hello,
Ive set up 3 virtual instances on a SRX running ospf between them and it works fine. I have 1 instance with physical interface which connects to another router for wan access. (fe-0/0/0 has IP from 192.168.0.0/24 SN)
I can ping 8.8.8.8 from routing-inst1 which has interface on it.
Ive then added static route 0.0.0.0/0 next hop 192.168.0.1 and propagate it to OSPF
I can ping ospf links between routers but I cannot ping 8.8.8.8 from routing-inst2 or 3.
Im using SRX in packet forward mode.
So what Im trying to achieve is that I can ping WAN from any route instance. There must be something Im missing.
Below is my config
interfaces {
fe-0/0/0 {
unit 0 {
description p2p-to-upstream;
family inet {
address 192.168.0.100/24;
}
}
}
lt-0/0/0 {
unit 0 {
description "p2p-route-inst2-lt-0/0/0.1";
encapsulation ethernet;
peer-unit 1;
family inet {
address 10.10.10.1/30;
}
}
unit 1 {
description "p2p-route-inst1-lt-0/0/0.0";
encapsulation ethernet;
peer-unit 0;
family inet {
address 10.10.10.2/30;
}
}
unit 2 {
description "p2p-route-inst3-0/0/0.3";
encapsulation ethernet;
peer-unit 3;
family inet {
address 10.10.10.5/30;
}
}
unit 3 {
description "p2p-route-inst2-lt-0/0/0.2";
encapsulation ethernet;
peer-unit 2;
family inet {
address 10.10.10.6/30;
}
}
unit 4 {
description "p2p-route-inst1-lt-0/0/0.5";
encapsulation ethernet;
peer-unit 5;
family inet {
address 10.10.10.9/30;
}
}
unit 5 {
description "p2p-route-inst3-lt-0/0/0.4";
encapsulation ethernet;
peer-unit 4;
family inet {
address 10.10.10.10/30;
}
}
}
lo0 {
unit 1 {
family inet {
address 172.16.1.1/32;
}
}
unit 2 {
family inet {
address 172.16.2.2/32;
}
}
unit 3 {
family inet {
address 172.16.3.3/32;
}
}
}
}
policy-options {
prefix-list mgmt-prefix {
192.168.0.0/24;
}
policy-statement export-routes {
term export_dir_loc_con {
from protocol [ direct local static ];
then accept;
}
}
}
security {
forwarding-options {
family {
mpls {
mode packet-based;
}
}
}
}
firewall {
family inet {
filter mgmt {
term ssh {
from {
source-address {
0.0.0.0/0;
}
source-prefix-list {
mgmt-prefix except;
}
protocol [ tcp udp ];
destination-port ssh;
}
then {
discard;
}
}
term other {
then accept;
}
}
}
}
routing-instances {
route-inst1 {
description route-instance-1;
instance-type virtual-router;
interface fe-0/0/0.0;
interface lt-0/0/0.0;
interface lt-0/0/0.5;
interface lo0.1;
routing-options {
static {
route 0.0.0.0/0 next-hop 192.168.0.1;
}
}
protocols {
ospf {
export export-routes;
area 0.0.0.0 {
interface lt-0/0/0.0;
interface lt-0/0/0.5;
}
}
}
}
route-inst2 {
description route-instance-2;
instance-type virtual-router;
interface lt-0/0/0.1;
interface lt-0/0/0.2;
interface lo0.2;
protocols {
ospf {
area 0.0.0.0 {
interface lt-0/0/0.1;
interface lt-0/0/0.2;
}
}
}
}
route-inst3 {
description route-instance-3;
instance-type virtual-router;
interface lt-0/0/0.3;
interface lt-0/0/0.4;
interface lo0.3;
protocols {
ospf {
area 0.0.0.0 {
interface lt-0/0/0.3;
interface lt-0/0/0.4;
}
}
}
}
}