High Availability
-
ADVPN support on node-local tunnels in Multinode High Availability (SRX1500, SRX1600, SRX2300, SRX4100, SRX4200, SRX4300, SRX4600, SRX5400, SRX5600, SRX5800, and vSRX3.0)—Starting in Junos OS Release 24.2R1, we support Auto Discovery VPN (ADVPN) on node-local tunnels configured with Multinode High Availability.
Node-local tunnels enhance Multinode High Availability by providing separate tunnels from a VPN peer device to both nodes in the setup. With ADVPN, VPN tunnels can be established dynamically between spokes. Combining ADVPN with Multinode High Availability in a node-local tunnel deployment ensures robust network connectivity, efficient resource utilization, and seamless failover capability.
-
Features support for asymmetric traffic flows in Multinode High Availability (SRX1500, SRX1600, SRX2300, SRX4100, SRX4200, SRX4300, SRX4600, SRX5400, SRX5600, and SRX5800)—Starting in Junos OS Release 24.2R1, a Multinode High Availability setup supports the following features for asymmetric traffic flows:
- Network Address Translation (NAT)
- Carrier-Grade NAT (CGNAT)
- Application Layer Gateway (ALG)
- GPRS Tunneling Protocol (GTP)
- User firewall and firewall authentication
- Layer 7 services (intrusion detection and prevention (IDP), application identification (AppID), Content Security, application quality of service (AppQoS), advanced policy-based routing (APBR), unified policy, user firewall authentication, onbox-logging, and SSL proxy)
See [Asymmetric Traffic Flow Support for Multinode High Availability] and [Known Limitations].