Introduction IP tracking can be used to change routing based on the connectivity of configured IP addresses. This can be used with either default routes or static routes which in normal circumstances would not change in the event of reachability
Introduction The problem I was having was as follows. 3 Juniper devices in a hub and spoke topology, 1 HQ and 2 Branch. The 2 Branch firewalls were actually just basically identical configs in one branch on separate DSL lines.
Introduction This is a reminder for me where to find the commands because there is a bug in the web gui that means whenever you try to apply an action-group it will implement it with a next-hop address and next-hop
Introduction Thought I would write a quick one on this as I often need to look it up as it is incredibly helpful. Cisco ASA has the packet-tracer command for testing but netscreen firewalls have something a bit different. Debug