close

keyboard_arrow_left

Table of Contents Expand all

play_arrow Overview
play_arrow Operation, Administration, and Management Features
- play_arrow Ethernet OAM and Connectivity Fault Management for Routers
- play_arrow Link Fault Management for Routers
- play_arrow Ethernet OAM Link Fault Management for Switches
- play_arrow Ethernet OAM Connectivity Fault Management for Switches
- play_arrow Ethernet Frame Delay
- play_arrow Ethernet Service OAM (ITU-TY.1731) for Routers
play_arrow Network Monitoring by using SNMP
play_arrow Remote Network Monitoring (RMON) with SNMP Alarms and Events
play_arrow Accounting Options
- Accounting Options Overview
- Configure Accounting Options, Source Class Usage and Destination Class Usage Options
play_arrow Monitoring Options
- play_arrow Interface Alarms
  - Alarm Overview
  - Example: Configure Interface Alarms
- play_arrow IP Monitoring
- play_arrow sFlow Monitoring Technology
- play_arrow Adaptive Sampling for Routers and Switches
  - Adaptive Sampling Overview
- play_arrow Packet Flow Accelerator Diagnostics Software
play_arrow Monitoring Common Security Features
play_arrow Performance Management
- Network Analytics
- Configure Hardware Resource Threshold Monitoring for Capacity Planning
play_arrow Port Mirroring
- play_arrow Port Mirroring and Analyzers
play_arrow System Log Messages
play_arrow Network Management and Troubleshooting
play_arrow Configuration Statements and Operational Commands
- Junos CLI Reference Overview

list Table of Contents

English

Example: Configure IP Monitoring on SRX Series Firewalls

date_range 28-Jul-23

arrow_backward

arrow_forward

This example shows how to monitor IP on an SRX Series Firewall.

Requirements

Before you begin:

Configure the following RPM options for RPM test:

target-address
probe-count
probe-interval
test-interval
thresholds
next-hop

Overview

This example shows how to set up IP monitoring on an SRX Series Firewall.

Configuration

CLI Quick Configuration

To quickly configure this example, copy the following commands, past them into a text file, remove any line breaks, change any details to match your network configuration, copy and paste the commands into the CLI at the [edit] hierarchy level, and then enter commit from configuration mode.

content_copy zoom_out_map
set services rpm probe Probe-Payment-Server test paysvr target address 1.1.1.10
set services rpm probe Probe-Payment-Server test paysvr probe-count 10
set services rpm probe Probe-Payment-Server test paysvr probe-interval 5
set services rpm probe Probe-Payment-Server test paysvr test-interval 5
set services rpm probe Probe-Payment-Server test paysvr thresholds successive-loss 10
set services rpm probe Probe-Payment-Server test paysvr next-hop 2.2.2.1
set services ip-monitoring policy Payment-Server-Tracking match rpm-probe Probe-Payment-Server
set services ip-monitoring policy Payment-Server-Tracking then preferred-route route 1.1.1.0/24 next-hop 1.1.1.99

Step-by-Step Procedure

The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode in the Junos OS CLI User Guide .

To configure IP monitoring on an SRX Series Firewall:

Configure the target address under the RPM probe.

content_copy zoom_out_map
[edit ]
user@host# set services rpm probe Probe-Payment-Server test paysvr target address 1.1.1.10

Configure the probe count under the RPM probe.

content_copy zoom_out_map
[edit ]
user@host# set services rpm probe Probe-Payment-Server test paysvr probe-count 10

Configure the probe interval (in seconds) under the RPM probe.

content_copy zoom_out_map
[edit ]
user@host# set services rpm probe Probe-Payment-Server test paysvr probe-interval 5

Configure the test interval (in seconds) under the RPM probe.

content_copy zoom_out_map
[edit ]
user@host# set services rpm probe Probe-Payment-Server test paysvr test-interval 5

Configure the threshold successive loss count under the RPM

content_copy zoom_out_map
[edit ]
user@host# set services rpm probe Probe-Payment-Server test paysvr thresholds successive-loss 10

Configure the next-hop IP address under the RPM probe.

content_copy zoom_out_map
[edit ]
user@host# set services rpm probe Probe-Payment-Server test paysvr next-hop 2.2.2.1

Configure the IP monitoring policy under services.
```
[edit ]
user@host# set services ip-monitoring policy Payment-Server-Tracking match rpm-probe Probe-Payment-Server 
```
Note:
The following steps are not mandatory. You can configure interface actions and route actions independently, or you can configure both the interface action and the route action together in one IP monitoring policy.

Configure the IP monitoring preferred route under services.

content_copy zoom_out_map
[edit ]
user@host# set services ip-monitoring policy Payment-Server-Tracking then preferred-route route 1.1.1.0/24 preferred-metric 4

Configure the IP monitoring interface actions.

Enable

content_copy zoom_out_map
[edit ]
user@host# set services ip-monitoring policy Payment-Server-Tracking then interface ge-0/0/1 enable

Disable

content_copy zoom_out_map
[edit ]
user@host# set services ip-monitoring policy Payment-Server-Tracking then interface fe-0/0/[4-6] disable

Configure the no-preempt option.

content_copy zoom_out_map
[edit ]
user@host# set services ip-monitoring policy Payment-Server-Tracking no-preempt

Verification

Verifying IP Monitoring

Purpose
Action

Purpose

Verify the IP monitoring status of a policy.

Action

To verify the configuration is working properly, enter the following command:

show services ip-monitoring status <policy-name>

arrow_backward PREVIOUS IP Monitoring Overview

NEXT arrow_forward Example: Configure IP Monitoring on SRX5000 line

Network Management and Monitoring Guide

ON THIS PAGE