HA on Juniper SRX650

Thanks deimark,
So that means I need to configure a WAN IP on fxp0 for remote management, is that correct?

Nope. The fxp0 is ONLY for management bud. It cannot be used for transit traffic.

Clustering on srx requires 3 clustering interfaces. The mgmt link on fxp0 and also 2 sync connections for the control and data planes. None of these cluster links can be used for production traffic. It is a bit of a drawback that on the branch office devices you end up losing 3 revenue ports for the clustering but on the high end devices the mgmt and control connections are on specific ports.

Hth

Thanks again, and I guess I have a little confusion regarding "management"
Since fxp0 is for management, do I physically connect it somewhere?
If I want to configure the firewall via J-Web portal through the internet, what IP should use, and which port should I configure this IP on?

Jimmy

The mgmt net is a net specifically designed for log and control traffic. Historically this was used in more service provider areas so that this extra traffic did not touch the production customer networks. You can still use the reth interfaces for j web and ssh but this will only ever take you to the active routing engine. That us why we use the fxp0 to allow us to connect to both nodes. P

Then how do I  physically connect fxp0 interfaces? For instance, I want to manage each individual node via internet.
Thanks!

Great! Thanks deimark for the prompt answer!
I will give it a try, and let you know how everything goes.

This question has been classified as abandoned and is being closed as part of the Cleanup Program.  See my comment at the end of the question for more details.