Здравствуйте господа.
Уже голову сломал, понять не могу, помогите, кто чем может.
Есть Juniper srx100, держит линк с провайдером, туннели и т.д., подключен к нему 3-com l2, просто для агрегации, воткнут в порт 7, я воткнут в 3-com, захожу на juniper через web отлично.
Теперь хочу подключить Juniper ex2200 в 6й порт srx100. Предварительно настраиваю порт, для теста делаю vlan клиентский нативный, включаю комп в 6й порт, на вебку srx100 заходит. Теперь перевожу порт в транк, включаю ex2200 в 6й порт на srx100, комп включаю в ex2200 в 0 порт. Теперь пингаю обоих, SSH работает на обоих, а вот на web достучаться не могу.
В чём может быть проблемка??? На портах есть опция "енабле аксесс траффик веб-менеджмент" ? О_оВот конфиг Juniper ex2200
version 11.4R5.7;
system {
arp;
root-authentication {
encrypted-password xxxxxxxxxx
}
services {
ssh;
web-management {
http {
interface vlan.3;
}
https {
system-generated-certificate;
interface vlan.3;
}
}
}
syslog {
user * {
any emergency;
}
file messages {
any notice;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
}
interfaces {
ge-0/0/0 {
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ my_clients my_telephony ];
}
native-vlan-id my_clients;
}
}
}
ge-0/0/1 {
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ my_clients my_telephony ];
}
native-vlan-id my_clients;
}
}
}
...............
ge-0/0/47 {
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ my_clients my_telephony ];
}
}
}
}
..............
me0 {
unit 0 {
family inet;
}
}
vlan {
unit 0 {
family inet;
}
unit 3 {
family inet {
address 172.21.0.250/24;
}
}
unit 6 {
family inet {
address 172.21.128.250/24;
}
}
}
}
routing-options {
static {
route 0.0.0.0/0 next-hop 172.21.0.1;
}
}
protocols {
igmp-snooping {
vlan all;
}
rstp;
lldp {
interface all;
}
lldp-med {
interface all;
}
}
ethernet-switching-options {
voip;
storm-control {
interface all;
}
}
vlans {
my_clients {
description "users from office";
vlan-id 3;
l3-interface vlan.3;
}
my_telephony {
description "telephones to office";
vlan-id 6;
l3-interface vlan.6;
}
one_vlan {
vlan-id 1;
}
}
poe {
interface all;
}
-------------------
--- А это логи: ---
-------------------
root@:RE:0% rm /var/log/httpd.log
root@:RE:0% cli
root> restart web-management
Web management gatekeeper process started, pid 4368
root> show log httpd.log
default:2 main Configuration for J-Web
default:2 main --------------------------------------------
default:2 main Host:
default:2 main CPU: i386
default:2 main OS: FREEBSD
default:2 main Distribution: unknown Unknown
default:2 main OS: FREEBSD
default:2 main Version: 2.4.0.0
default:2 main BuildType: RELEASE
default:2 main Started at: Sun Jan 6 16:51:46 2013
default:2 main Log rotation count: 0
default:2 main --------------------------------------------
default:2 main Set log level for all modules to 2
default:2 main Server Root "/jail"
default:2 main Document Root for NoName:
"/html"
default:2 main Setting Cache Max Age to: 5184000 seconds
default:2 main Add webauthHandler
default:2 main Add dirHandler
default:2 main Activating module (Builtin) upload
default:2 main Add uploadHandler
default:2 main Add uploadHandler
upload:2 main Upload directory: /tmp/uploads
default:2 main Add captiveauthHandler
default:2 main Add cgiHandler for ".php"
default:2 main Add dirHandler
default:2 main Add copyHandler
httpServer:0 main Allowing HTTP connections on: vlan.3
default:1 main Error: Can't find module sslModule
default:1 main Error: Ignoring bad directive "LoadModule" at line 32 in /jail/var/etc/httpd.conf
default:2 main Document Root for NoName:
"/html"
default:0 main Initialized CaptivePortalHdrLogo - images/hdr_logo.gif
default:0 main Initialized CaptivePortalHdrBgColor - #1F499B
default:0 main Initialized CaptivePortalHdrMsg - User Authentication
default:0 main Initialized CaptivePortalBnrMsg - Terms & Conditions
default:0 main Initialized CaptivePortalFrmMsg - Captive Portal User Authentication
default:0 main Initialized CaptivePortalFrmHdrBgColor - #D7DFEE
default:0 main Initialized CaptivePortalFormSubmitLbl - Log In
default:0 main Initialized CaptivePortalFormResetLbl - Reset
default:0 main Initialized CaptivePortalFtrMsg - Copyright ©2010, Juniper Networks Inc.
default:0 main Initialized CaptivePortalFtrBgColor - #1F499B
default:0 main Initialized CaptivePortalURL - NOURL
default:0 main Initialized CaptivePortalURL - 0
default:2 main Starting host named: "NoName"
default:2 main Starting host named: "NoName"
default:2 main Listening for HTTP on *:80
default:2 main Listening for HTTPS on *:443
default:2 main chroot() into: /jail
default:2 main HTTP services are ready with 5 pool threads
httpServer:2 pool.0 New connection from 172.21.0.221 on ifc vlan.3 for :80
default:2 pool.1 Sending message to Gk
default:0 pool.1 GateKeeper returned failed [Rc - 0], [Type - 9 ], [Data 1 ], [GKTYPE-]
default:0 pool.1 Could not get interface index
Вариант для распечатки
