Work for 8 years, did not develop an effective accumulation of experience, from today began to recall some of the problems encountered in the process and solutions.
From last week after the company changed the firewall all the external MIP and VIP failure to say:
Background: Juniper Firewall replacement, the old firewall configuration directly into the new firewall, after the line switch intranet access to all normal, testing outside the network released the MIP and VIP mapping all do not pass. Troubleshooting 10 minutes after the discovery does not solve the problem, and then cut back to the old firewall.
Solution: After an afternoon of hardware and software configuration reasons for troubleshooting, unable to determine the cause, and then contacted a predecessor, gave a method, contact the operator technical staff to clear the Internet connection to our switch port ARP cache. Follow this method to contact the Telecom Network Management Center, replace the firewall problem is lifted!
PS: Waiting for the telecommunications network management telephone, I restarted the telecommunications in my company room equipment hope to be clear ARP cache, the result is still the fault! In addition, the port ARP cache is automatically cleared by default for 4 hours, this remains to be confirmed, not tested.
Above I think it is necessary to focus on the record
This article is from the "Essays" blog, make sure to keep this source http://78108020.blog.51cto.com/718049/1591159
Experience: Replacement of firewall external MIP and VIP failure