Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Example: Configure IP Monitoring on SRX Series Firewalls

This example shows how to monitor IP on an SRX Series Firewall.

Requirements

Before you begin:

Configure the following RPM options for RPM test:

  • target-address

  • probe-count

  • probe-interval

  • test-interval

  • thresholds

  • next-hop

Overview

This example shows how to set up IP monitoring on an SRX Series Firewall.

Configuration

Procedure

CLI Quick Configuration

To quickly configure this example, copy the following commands, past them into a text file, remove any line breaks, change any details to match your network configuration, copy and paste the commands into the CLI at the [edit] hierarchy level, and then enter commit from configuration mode.

Step-by-Step Procedure

The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode in the Junos OS CLI User Guide .

To configure IP monitoring on an SRX Series Firewall:

  1. Configure the target address under the RPM probe.

  2. Configure the probe count under the RPM probe.

  3. Configure the probe interval (in seconds) under the RPM probe.

  4. Configure the test interval (in seconds) under the RPM probe.

  5. Configure the threshold successive loss count under the RPM

  6. Configure the next-hop IP address under the RPM probe.

  7. Configure the IP monitoring policy under services.

    Note:

    The following steps are not mandatory. You can configure interface actions and route actions independently, or you can configure both the interface action and the route action together in one IP monitoring policy.

  8. Configure the IP monitoring preferred route under services.

  9. Configure the IP monitoring interface actions.

    • Enable

    • Disable

  10. Configure the no-preempt option.

Verification

Verifying IP Monitoring

Purpose

Verify the IP monitoring status of a policy.

Action

To verify the configuration is working properly, enter the following command:

show services ip-monitoring status <policy-name>