I am having strange routing issues and seeing duplicate packets galore when interfacing 2 x MX5's to a checkpoint cluster XL over a shared switched infrastructure . The MX5's are configured in a fairly basic multi-VRF (VRF-Lite) configuration, checkpoint requires static "multicast ethernet" arp addresses to be set on tthe MX5's to even establish OSPF adjacencies on dot1q tagged subinterfaces per vrf-instance with the cluster virtual ip addr . The MX5 are OSPF ABR's all areas/vrfs . They are multihomed to the upstream checkpoint cluster which to the MX5 appears as a single "appliance" /neighbor per VRF. My route tables appear to be pointing in the right directions for area 0.0.0.0 . If I shutdown an interface physical or a subinterface on one of my MX5's so only single path in and out of area 0.0.0.0 on one of my ABR's thngs look ok... well better at least . I was beginning to think routing loops and the like on the multiaccess portion in area 0.0.0.0 but not so sure now. Surely this has been attempted before and if there is anything special that needs setting it will soon be revealed... actually I'm more like praying at this point to be fair. Config file is attached for one of my MX5's thay are both similar ip addr aside . Have tries to set the arp entry as a unicast static without the multicast-mac knob without success, cli errors out
I need a version of junos that permits this type of setting per vrf subinterface unicast static arp with a layer 2 muticast ethernet address
set interfaces ge-1/0/6 unit 11 proxy-arp
set interfaces ge-1/0/6 unit 11 vlan-id 11
set interfaces ge-1/0/6 unit 11 family inet no-redirects
set interfaces ge-1/0/6 unit 11 family inet filter input rts-mf-classifier
set interfaces ge-1/0/6 unit 11 family inet address 10.169.250.7/27 arp 10.169.250.1 mac 01:00:5e:29:fa:01
higher level diagram attached