Thanks Dale/Stefan, that's fixed it. Much appreciated. Regards,
Josh Farrelly Senior Project Engineer P +64 9 630 4095 M +64 21 919 885 E [email protected] PO Box 24666, Royal Oak, Auckland 1345. 126 Valley Rd, Mt Eden, Auckland 1024. www.base-2.co.nz -----Original Message----- From: Stefan Fouant [mailto:[email protected]] Sent: Wednesday, 29 August 2012 01:13 To: Dale Shaw Cc: Josh Farrelly; [email protected] Subject: Re: [j-nsp] Config help with an SRX110 & ADSL Also, your DHCP propagate setting is referencing fe-0/0/0.0 whereas is should be referencing vlan.0, vlan.1 and vlan.2. Per the docs, the propagate option applies to the logical interface which will receive TCP/IP settings from the external network for propagation to the DHCP pool running on the device. Currently, fe-0/0/0.0 isn't a routing interface and it isn't part of any assigned zone. HTHs. Stefan Fouant JNCIE-SEC, JNCIE-SP, JNCIE-ENT, JNCI Technical Trainer, Juniper Networks Follow us on Twitter @JuniperEducate Sent from my iPad On Aug 28, 2012, at 7:41 AM, Dale Shaw <[email protected]> wrote: > [Apologies for top post] > > There are a few problems with the config (once you get basic comms up > you'll need to look at your IPsec settings) but I suspect the main > problem is that interface at-1/0/0.0 isn't assigned to a security zone > (untrust). > > Cheers, > Dale > > On Aug 28, 2012 8:10 PM, "Josh Farrelly" <[email protected]> wrote: > _______________________________________________ > juniper-nsp mailing list [email protected] > https://puck.nether.net/mailman/listinfo/juniper-nsp _______________________________________________ juniper-nsp mailing list [email protected] https://puck.nether.net/mailman/listinfo/juniper-nsp
