{"id":941,"date":"2022-09-02T07:17:26","date_gmt":"2022-09-02T07:17:26","guid":{"rendered":"https:\/\/rudestack.com\/?p=941"},"modified":"2025-03-01T07:16:16","modified_gmt":"2025-03-01T07:16:16","slug":"juniper-srx-link-aggregate-to-layer-3-cisco","status":"publish","type":"post","link":"https:\/\/www.rudecloud.web.id\/index.php\/2022\/09\/02\/juniper-srx-link-aggregate-to-layer-3-cisco\/","title":{"rendered":"Juniper SRX Link Aggregate to Layer 3 Cisco"},"content":{"rendered":"\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"579\" height=\"440\" src=\"http:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/Juniper-LAG-2.png\" alt=\"\" class=\"wp-image-956\" srcset=\"https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/Juniper-LAG-2.png 579w, https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/Juniper-LAG-2-300x228.png 300w, https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/Juniper-LAG-2-110x83.png 110w\" sizes=\"auto, (max-width: 579px) 100vw, 579px\" \/><\/figure>\n\n\n\n<p>Pada pembahasan kali ini saya akan membahas tentang link anggregat atau LAG di juniper SRX, case kali ini saya menggabungkan dengan cisco layer 3, kalian bisa combine dengan switch L2\/L3 lainnya. jadi LAG ini terdapat 2 opsi, dapat berjalan di Layer 2\/Layer 3, Layer 2 main di Vlan karena basenya Mac Address, sedangkan Layer 3 basenya IP, Lengkapnya bisa explore di google ya seperti LACP dll. <\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>#Pertama kita setting Juniper SRX, aktifkan Chasiss LAG nya lalu kita set sebagai LACP Active\n\nroot#set chassis aggregated-devices ethernet device-count 2\nroot#set interfaces ge-0\/0\/1 gigether-options 802.3ad ae0\nroot#set interfaces ge-0\/0\/2 gigether-options 802.3ad ae0\n\nroot#set interfaces ae0 aggregated-ether-options lacp active\nroot#set interfaces ae0 unit 0 family inet address 172.16.1.1\/24\n\n#Setting Zones\nroot#edit security zones security-zone trust\n\n&#91;edit security zones security-zone trust]\nroot# set host-inbound-traffic system-services all\n\n&#91;edit security zones security-zone trust]\nroot# set host-inbound-traffic protocols all\n\n#Karena kita main interface trafic sementara di buka semua\n&#91;edit security zones security-zone trust]\nroot# set interfaces ae0 host-inbound-traffic system-services all\n\n&#91;edit security zones security-zone trust]\nroot# set interfaces ae0 host-inbound-traffic protocols all\n \n<\/code><\/pre>\n\n\n\n<p>Setting Port Chanell di cisco Layer 3 <\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Switch#configure terminal\n\nSwitch(config)#interface range gigabitEthernet 0\/0-1\nSwitch(config-if-range)#no swichport\nSwitch(config-if-range)#no ipaddress\nSwitch(config-if-range)#channel-group 1 mode active\n\nSwitch(config)#interface port-channel 1\nSwitch(config-if)#ip address 172.16.1.2 255.255.255.0\nSwitch(config-if)#no swichport\nSwitch(config-if)#no sh\n\n<\/code><\/pre>\n\n\n\n<p>Dari sini kita harusnya sudah dapat terhubung ke Juniper SRX dan jika di tes link down 1, maka masih tetap terhubung, tetapi switch belum dapat akses internet untuk akses internet, harus membuat rule nat, routing di srx <\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>#Setting DNS dan IP internet\nset system name-server 8.8.8.8\nset interfaces ge-0\/0\/5 unit 0 family inet address 10.10.55.236\/24\nset interfaces ge-0\/0\/6 unit 0 family inet address 10.10.100.239\/24\n\n#Setting Zone Untrust\nset security zones security-zone untrust screen untrust-screen\nset security zones security-zone untrust host-inbound-traffic system-services all\nset security zones security-zone untrust host-inbound-traffic protocols all\nset security zones security-zone untrust interfaces ge-0\/0\/5.0\nset security zones security-zone untrust interfaces ge-0\/0\/6.0\n\n#Setting Nat &amp; Policy\nset security nat source rule-set Lan-to-inet from zone trust\nset security nat source rule-set Lan-to-inet to zone untrust\nset security nat source rule-set Lan-to-inet rule lan-to-inet match source-address 0.0.0.0\/0\nset security nat source rule-set Lan-to-inet rule lan-to-inet match destination-address 0.0.0.0\/0\nset security nat source rule-set Lan-to-inet rule lan-to-inet then source-nat interface\nset security policies from-zone trust to-zone trust policy default-permit match source-address any\nset security policies from-zone trust to-zone trust policy default-permit match destination-address any\nset security policies from-zone trust to-zone trust policy default-permit match application any\nset security policies from-zone trust to-zone trust policy default-permit then permit\nset security policies from-zone trust to-zone untrust policy default-permit match source-address any\nset security policies from-zone trust to-zone untrust policy default-permit match destination-address any\nset security policies from-zone trust to-zone untrust policy default-permit match application any\nset security policies from-zone trust to-zone untrust policy default-permit then permit\n\n#Static Route\nset routing-options static route 0.0.0.0\/0 next-hop 10.10.100.254\nset routing-options static route 0.0.0.0\/0 next-hop 10.10.55.254<\/code><\/pre>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"535\" height=\"188\" src=\"http:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/Ping.png\" alt=\"\" class=\"wp-image-959\" srcset=\"https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/Ping.png 535w, https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/Ping-300x105.png 300w\" sizes=\"auto, (max-width: 535px) 100vw, 535px\" \/><figcaption>Ping ke gateway SRX done<\/figcaption><\/figure>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"427\" height=\"194\" src=\"http:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/2.png\" alt=\"\" class=\"wp-image-961\" srcset=\"https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/2.png 427w, https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/2-300x136.png 300w\" sizes=\"auto, (max-width: 427px) 100vw, 427px\" \/><figcaption>Ping dari SRX ke Switch done<\/figcaption><\/figure>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"532\" height=\"98\" src=\"http:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/3.png\" alt=\"\" class=\"wp-image-962\" srcset=\"https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/3.png 532w, https:\/\/www.rudecloud.web.id\/wp-content\/uploads\/2022\/09\/3-300x55.png 300w\" sizes=\"auto, (max-width: 532px) 100vw, 532px\" \/><figcaption>Ping internet dari switch done<\/figcaption><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>Pada pembahasan kali ini saya akan membahas tentang link anggregat atau LAG di juniper SRX, case kali ini saya menggabungkan dengan cisco layer 3, kalian bisa combine dengan switch L2\/L3 lainnya. jadi LAG ini terdapat 2 opsi, dapat berjalan di Layer 2\/Layer 3, Layer 2 main di Vlan karena basenya Mac Address, sedangkan Layer 3 &hellip; <\/p>\n","protected":false},"author":1,"featured_media":956,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[86],"tags":[82,83,64,63],"class_list":["post-941","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-juniper","tag-ip","tag-ipv4","tag-nat","tag-network"],"_links":{"self":[{"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/posts\/941","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/comments?post=941"}],"version-history":[{"count":10,"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/posts\/941\/revisions"}],"predecessor-version":[{"id":964,"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/posts\/941\/revisions\/964"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/media\/956"}],"wp:attachment":[{"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/media?parent=941"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/categories?post=941"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.rudecloud.web.id\/index.php\/wp-json\/wp\/v2\/tags?post=941"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}