JuniperForum.com

Security => SRX Platform and J-series => Topic started by: Farade on February 08, 2017, 03:33:12 pm

Title: show route command output, shows one interface as reject
Post by: Farade on February 08, 2017, 03:33:12 pm
Hi,

Running SRX firewall, and when running command show route, one of the outputs shows as reject
could you help in troubleshooting the reason for this

10.14.224.193/32   *[Local/0] 24w6d 22:05:53
                      Reject
Title: Re: show route command output, shows one interface as reject
Post by: Farade on February 09, 2017, 04:20:11 pm
Hi,

In need for your help please,

to know the reason of getting
reject
to one of the interfaces!

is it because no route defined to use it?

is it because no use of related zone, in any security policy as from-zone (but it does exist in other security policies as to-zone)

is it something not related to the firewall configuration, i mean its related to any of the devices later, routers, or the subnet is not defined properly?

or, is it something in configuration for sure, but need to go through to identify it
Title: Re: show route command output, shows one interface as reject
Post by: glm07 on September 09, 2017, 11:36:02 pm
Hi Farade,

2 reasons for this:

- Could be due to same IP address assigned to 2 different interfaces.
- The interface is down.

BR.