I am trying to set up a redundant GRE interface to a remote site between 2 SRX devices. Both sites have redundant ISPs and i have them configured into routing instances r1 and r2. Each routing instances has a Site to Site tunnel bound to it. s0.0 >> r1 and s0.1 >> r2. My current GRE interface gr-0/0/0.0 uses a source address that is lo0 on both sides. I have a route on each srx for the destination of the remote GRE going through s0.0 and i had to use "set gr-0/0/0 unit 0 tunnel routing-instsance destination r1" to get the tunnel to come up. I have a rpm probe set up and i am using ip-monitoring to fail over my default gateway to R2, I tried using that to just failover my GRE tunnel to R2, but that didn't work because of the "routing-instance destination r1" stanza.
my next through was 2 seperate GRE Tunnels
GR-0/0/0.0 >>source lo0.0 >> destination lo0.0 on remote srx >> route to s0.0 through r1
GR-0/0/0.1 >>source lo0.1 >> destination lo0.1 on remote srx >> route to s0.1 through r2
I quikly found out that i can't have multiple loopback interfaces in the same routing instance so i moved the Lo interfaces to their respective routing interface. gr-0/0/0.0 > r1 and gr-0/0/0.1 > r2 but the tunnels don't come up.
any sugestions?
I am currently running srx 240s in both locations, but they are slated to be upgraded later this summer to 340s. however, i am not running this configuration on my production firewalls. I have duplicated my network both using older hardware and virtually and i am running these configs in vSRX machines.
thanks.