I will demonstrate a very simple icmp-probe check, and if the route to the target is lost, we will inject a new route. In this case, I'm injecting a specific /24 route but the route could be a new default thru a 2nd ISP provider.
1st here's how we do a basic icmp-probe-type ( interval 1 sec probe-count of 5x , the probe is deem failed when we have a total loss , target = 100.100.100.100 )
The monitor that will make the route adjustments based on the assigned probe
The above should be self explanatory, but if the name probe SOCpup should fail, we will execute a route change to add dest.net 188.8.131.52/24 and with a next-hop of 192.168.1.99
We can validate this in route table ip monitor status & status of our active-probes
( notice the failed when our target became unreachable ? )
( status of an active successful probe )
( route injected due to a fail icmp-probe )
Juniper SRX version
NSE ( Network Security Expert) and Route/Switching Engineer.
kfelix -----a----t---- socpuppets ---dot---com
=( * * )=