Juniper JunOS Configuring Filter-Based Forwarding

Examples: Configuring Filter-Based Forwarding

Configure a filter to direct traffic to ISP1 or ISP2 based on source address matching:

[edit firewall]

family inet {

filter classify-customers {

term isp1-customers {

from {

source-address 10.1.1.0/24;

source-address 10.1.2.0/24;

}

then {

routing-instance isp1-route-table;

}

}

term isp2-customers {

from {

source-address 10.2.1.0/24;

source-address 10.2.2.0/24;

}

then {

routing-instance isp2-route-table;

}

}

term default {

then {

accept;

}

}

}

}

Juniper JunOS Configuring Policy-Based Routing

Examples: Configuring Policy-Based Routing

For some reasons you need to configure PBR on your Juniper.
Here the step by step how to configure this policy like route-map in Cisco Router.

The Scenario :

a)- Redirecting 192.168.100.0/24 to Provider B with IP Address : 192.168.224.2
b)- The rest of outgoing traffic stick on Provider A
c)- 192.168.100.0/24 located behind interface fe-0/2/2 (routed statically via 192.168.5.2 for e.g
Your directly connected via alias / secondary IP.

The Config Looks Like :

interfaces {
fe-0/2/2 {
description LAN;
unit 0 {
family inet {
filter {
input ROUTE-MAP-NET-100-0;
}
address 192.168.5.1/29;
}
}
}

routing-options {
interface-routes {
rib-group inet all-ribs;
}

rib-groups {
all-ribs {
import-rib [ inet.0 REDIRECT-100-0.inet.0 ];
}
}

firewall {
family inet {
filter ROUTE-MAP-NET-100-0 {
term 1 {
from {
source-address {
192.168.100.0/24;
}
}
then routing-instance REDIRECT-100-0;
}
term 2 {
then accept;
}
}
}

routing-instances {
REDIRECT-100-0 {
instance-type forwarding;
routing-options {
static {
route 0.0.0.0/0 next-hop 192.168.224.2;
}
}
}
}

The steps :

you@JunOS#(edit prompt)
you@JunOS#set routing-instances REDIRECT-100-0 instance-type forwarding
you@JunOS#set routing-instances REDIRECT-100-0 routing-options static route 0.0.0.0/0 next-hop 192.168.224.2
you@JunOS#commit

you@JunOS#set routing-options interface-routes rib-group inet all-ribs (just the name)
you@JunOS#set routing-options rib-groups all-ribs import rib [ inet.0 REDIRECT-100-0.inet.0 ]
(make sure REDIRECT-100-0 similar to your routing-instances name, unless it won’t work).
you@JunOS#commit

you@JunOS#set firewall family inet filter ROUTE-MAP-NET-100-0 term 1 from source-address 192.168.100.0/24
you@JunOS#set firewall family inet filter ROUTE-MAP-NET-100-0 term 1 then then routing-instance REDIRECT-100-0
you@JunOS#set firewall family inet filter ROUTE-MAP-NET-100-0 term 2 then accept
you@JunOS#commit

you@JunOS#set interfaces fe-0/2/2 unit 0 family inet filter input ROUTE-MAP-NET-100-0
you@JunOS#commit

Perseverance

How did you react when you were not successful at the last things that you do? I bet you were down with disappointment for a day or two and then got ready for the next task. You did not quit. You eventually got the task accomplished.

Perseverance - a term for human endurance is key to achieving your goals/dreams. The road to accomplishing your goal will always be full of challenges and obstacles. To be able to navigate through them and come up on top you need to possess the ability to weather the storms as you go through life. Not giving up in the face of setbacks makes you tougher to face the next challenge.

Sometimes we get goal obsessed and in the process loose sight of the bigger picture. Persisting on a particular goal that is not worth pursuing only slows down your progress. Having a strategy to take stock and track progress will help you focus on the goals, plans or opportunities that are attainable.

If you persevere long enough and have a positive attitude you will be successful. No matter how slow things are moving, hang in there. If you can 'take it' you will succeed. You must have a burning desire to achieve your goals. Goal setting is just the beginning. It takes more than goal setting to achieve greatness. You need the concentration and focus to enable you go through the tough times. Commitment to what has been started is important.

To develop a burning desire you must plan and continually act to keep your dreams on course. That desire can be acquired and maintained through self-development. To persevere through to attain set objectives you have to train your mind. Achievement is a state of mind. Don’t allow your mind to play tricks on you–you own it! Sometimes the going gets tough to the point where you may want to give up. When you get to that point always remember that ‘Winners do not quit and quitters do not win.’ If you master perseverance you will accomplish your goals and own your life.

Persevering through the rough times gives us wisdom. Patience and perseverance have a magical affect before which difficulties disappear and obstacles vanish. In Islam, patience is the best and most valuable virtues in life. Allah is with those who are patient, more specifically during suffering. We as a Muslim faith believes that without a good spirit while enduring, the struggle will not bear its full reward, thus, Patiently persevering, striving and going forward, despite the difficulty, is the pinnacle of behavior during challenging times.

SSG5 VPN SIte2Site LAN

Do you know how to configure VPN Tunneling LAN Site-to-site? use this configuration:-

Ssg5 VPN Lan-To-lan Tunnelling