Configuring interface tracking on Juniper SSG550M

Hi,

I have a juniper active/standby cluster. I have 2 Internet links and want to use one as primary and the second as a backup. When the primary fails I want traffic to route down the backup link and when the primary comes backup, I want the firewall to failback to the primary link.

I have tried interface tracking but the route stays put and traffic doesn't go out the backup link. Is there anything I can do with regards to the vrouters? My Internet links terminate on 2 separate devices
davewexAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

dpk_walCommented:
Please have a look at the link below:
http://kb.juniper.net/KB11192

Please check if the configuration is correct and update.

Thank you.
0
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
If I understood correct, you do not want a device failover, but a interface failover. That requires that either the interface goes done physically (which will not be the case, I assume), or a monitoring of the remote gateway availability. I have to admint that I have not seen any option in ScreenOS to do the latter yet. If you can get RIP/OSPF updates from your ISP, that would work - the interface with a lower metric/cost will win over the other one, as long as it is available.

I assume you know about the consequences of interface failover - change of public IP aso., and the implications of that.

0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.