Support for Juniper SRX Clusters #1614

New Issue

Closed

opened 2025-12-29 16:33:29 +01:00 by adam · 8 comments

adam commented 2025-12-29 16:33:29 +01:00

Owner

Copy Link

Originally created by @domel138 on GitHub (Mar 9, 2018).

Issue type

[x] Feature request
[ ] Bug report
[ ] Documentation

Environment

• Python version: 3.5.5
• NetBox version: 2.3.1

Description

Im wondering if you were considering adding support for Juniper SRX Firewall Clusters. Basically they relay on reth (redundant Ethernet interfaces) - ideally i would see this implemented in similar way that Virtual Chassis is (single control-plane) but there is couple of caveat's like reth interfaces, management ip etc.
I would like to have for this functinality to have:

• in-band management via reth interface sharing same ip-address across two nodes
• out-of-band management via fxp0 with separate ip-addresses (it is possible now i believe)
• sharing any ip-address across reth interface with virtual mac-address

Basically i think it should be simillar to Virtual Chassis with different roles - instead of master/members it should say node0/node1 with respective roles

Use case would be to add SRX clusters into Netbox - have no idea on what changes on postgres end this will require but maybe someone will help with it

Originally created by @domel138 on GitHub (Mar 9, 2018). ### Issue type [x] Feature request <!-- An enhancement of existing functionality --> [ ] Bug report <!-- Unexpected or erroneous behavior --> [ ] Documentation <!-- A modification to the documentation --> ### Environment * Python version: 3.5.5 * NetBox version: 2.3.1 ### Description Im wondering if you were considering adding support for Juniper SRX Firewall Clusters. Basically they relay on reth (redundant Ethernet interfaces) - ideally i would see this implemented in similar way that Virtual Chassis is (single control-plane) but there is couple of caveat's like reth interfaces, management ip etc. I would like to have for this functinality to have: - in-band management via reth interface sharing same ip-address across two nodes - out-of-band management via fxp0 with separate ip-addresses (it is possible now i believe) - sharing any ip-address across reth interface with virtual mac-address Basically i think it should be simillar to Virtual Chassis with different roles - instead of master/members it should say node0/node1 with respective roles Use case would be to add SRX clusters into Netbox - have no idea on what changes on postgres end this will require but maybe someone will help with it

adam closed this issue 2025-12-29 16:33:29 +01:00

adam commented 2025-12-29 16:33:30 +01:00

Author

Owner

Copy Link

@PeepOks commented on GitHub (Mar 9, 2018):

In some way it's similar to https://github.com/digitalocean/netbox/issues/1950

@PeepOks commented on GitHub (Mar 9, 2018): In some way it's similar to https://github.com/digitalocean/netbox/issues/1950

adam commented 2025-12-29 16:33:30 +01:00

Author

Owner

Copy Link

@jeremystretch commented on GitHub (Mar 9, 2018):

Any representation of SRX clusters will need to be done within the virtual chassis model. We can look at tweaking it somewhat if needed, but we definitely won't be adding any new models to support this.

@jeremystretch commented on GitHub (Mar 9, 2018): Any representation of SRX clusters will need to be done within the virtual chassis model. We can look at tweaking it somewhat if needed, but we definitely won't be adding any new models to support this.

adam commented 2025-12-29 16:33:30 +01:00

Author

Owner

Copy Link

@domel138 commented on GitHub (Mar 9, 2018):

Hi Jeremy,

Sorry im completely new at github society - however i can take a look at VC
implementation and propose some enhancements to support SRX platform - is
it a good way to comment it via github request or shall i create new thread
for this?

Pozdrawiam, Dominik Siecinski.

2018-03-09 20:47 GMT+01:00 Jeremy Stretch notifications@github.com:

Any representation of SRX clusters will need to be done within the virtual
chassis model. We can look at tweaking it somewhat if needed, but we
definitely won't be adding any new models to support this.

—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
https://github.com/digitalocean/netbox/issues/1959#issuecomment-371925999,
or mute the thread
https://github.com/notifications/unsubscribe-auth/AQT88jRNaAG-Nis6UUQsllEgoqMBiGPrks5tctxagaJpZM4SjjG_
.

@domel138 commented on GitHub (Mar 9, 2018): Hi Jeremy, Sorry im completely new at github society - however i can take a look at VC implementation and propose some enhancements to support SRX platform - is it a good way to comment it via github request or shall i create new thread for this? Pozdrawiam, Dominik Siecinski. 2018-03-09 20:47 GMT+01:00 Jeremy Stretch <notifications@github.com>: > Any representation of SRX clusters will need to be done within the virtual > chassis model. We can look at tweaking it somewhat if needed, but we > definitely won't be adding any new models to support this. > > — > You are receiving this because you authored the thread. > Reply to this email directly, view it on GitHub > <https://github.com/digitalocean/netbox/issues/1959#issuecomment-371925999>, > or mute the thread > <https://github.com/notifications/unsubscribe-auth/AQT88jRNaAG-Nis6UUQsllEgoqMBiGPrks5tctxagaJpZM4SjjG_> > . >

adam commented 2025-12-29 16:33:30 +01:00

Author

Owner

Copy Link

@DanSheps commented on GitHub (Mar 12, 2018):

My personal opinion on the virtual chassis setup right now, is it seems to work best for something like a switch stack, where there is 1 management and control plane (and a semi-shared data plane).

I think the current VC model fails for things like vPC, VSS, SRX clusters and ASA clusters, where there are sometimes independent interfaces on all devices but also can be shared interfaces (or HSRP/VRRP/GLBP/etc interfaces tied to both devices).

I am not sure the best way to correct this "problem" though, as a tweak the other way would not be suitable for stacked switches. Perhaps a VC model "type" that changes the behavior of the VC based on the type (for example, vPC/VSS would not show shared interfaces, might add things like vPC domain and such). This seems like a big job though and I honestly think it might be easier to try a parent/child device relationship where the parent is a psuedo device and the child is the individual devices. Not sure how that works out either though.

That said, with the virtual chassis, I do wish it was represented as a device itself, instead of the master device showing all interfaces, as this makes it difficult for quickly adding connections from another device to the master unit (slave units you can individually pick and set the interface from the interface list without seeing all interfaces).

Just my thoughts, I am sure I have more rattling around in there as well...

@DanSheps commented on GitHub (Mar 12, 2018): My personal opinion on the virtual chassis setup right now, is it seems to work best for something like a switch stack, where there is 1 management and control plane (and a semi-shared data plane). I think the current VC model fails for things like vPC, VSS, SRX clusters and ASA clusters, where there are sometimes independent interfaces on all devices but also can be shared interfaces (or HSRP/VRRP/GLBP/etc interfaces tied to both devices). I am not sure the best way to correct this "problem" though, as a tweak the other way would not be suitable for stacked switches. Perhaps a VC model "type" that changes the behavior of the VC based on the type (for example, vPC/VSS would not show shared interfaces, might add things like vPC domain and such). This seems like a big job though and I honestly think it might be easier to try a parent/child device relationship where the parent is a psuedo device and the child is the individual devices. Not sure how that works out either though. That said, with the virtual chassis, I do wish it was represented as a device itself, instead of the master device showing all interfaces, as this makes it difficult for quickly adding connections from another device to the master unit (slave units you can individually pick and set the interface from the interface list without seeing all interfaces). Just my thoughts, I am sure I have more rattling around in there as well...

adam commented 2025-12-29 16:33:30 +01:00

Author

Owner

Copy Link

@luqasz commented on GitHub (Jun 14, 2018):

That said, with the virtual chassis, I do wish it was represented as a device itself, instead of the master device showing all interfaces, as this makes it difficult for quickly adding connections from another device to the master unit (slave units you can individually pick and set the interface from the interface list without seeing all interfaces).

Same here. I have a stack of juniper EX4300 and I'd like to add interfaces to virtual chassis and not individual nodes.

@luqasz commented on GitHub (Jun 14, 2018): > That said, with the virtual chassis, I do wish it was represented as a device itself, instead of the master device showing all interfaces, as this makes it difficult for quickly adding connections from another device to the master unit (slave units you can individually pick and set the interface from the interface list without seeing all interfaces). Same here. I have a stack of juniper EX4300 and I'd like to add interfaces to virtual chassis and not individual nodes.

adam commented 2025-12-29 16:33:30 +01:00

Author

Owner

Copy Link

@jeremystretch commented on GitHub (Jun 14, 2018):

That said, with the virtual chassis, I do wish it was represented as a device itself, instead of the master device showing all interfaces

This is the way NetBox represents a virtual chassis. If you need to model virtual chassis differently, NetBox may not be the right tool for you.

@jeremystretch commented on GitHub (Jun 14, 2018): > That said, with the virtual chassis, I do wish it was represented as a device itself, instead of the master device showing all interfaces This is the way NetBox represents a virtual chassis. If you need to model virtual chassis differently, NetBox may not be the right tool for you.

adam commented 2025-12-29 16:33:30 +01:00

Author

Owner

Copy Link

@jeremystretch commented on GitHub (Jun 14, 2018):

Closing this out as no one has proposed a specific model for representing an SRX cluster or similar arrangement.

@jeremystretch commented on GitHub (Jun 14, 2018): Closing this out as no one has proposed a specific model for representing an SRX cluster or similar arrangement.

adam commented 2025-12-29 16:33:31 +01:00

Author

Owner

Copy Link

@luqasz commented on GitHub (Jun 14, 2018):

Closing this out as no one has proposed a specific model for representing an SRX cluster or similar arrangement.

What about assigning ips, interfaces etc to a virtual chassis ?

@luqasz commented on GitHub (Jun 14, 2018): > Closing this out as no one has proposed a specific model for representing an SRX cluster or similar arrangement. What about assigning ips, interfaces etc to a virtual chassis ?

adam referenced this issue 2025-12-29 22:20:24 +01:00

[PR #1614] [MERGED] Release v2.2.2 #12235

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

update-changelog-comments-docs

feature-removal-issue-type

20911-dropdown

20239-plugin-menu-classes-mutable-state

21097-graphql-id-lookups

feature

fix_module_substitution

20923-dcim-templates

20044-elevation-stuck-lightmode

feature-ip-prefix-link

v4.5-beta1-release

20068-import-moduletype-attrs

20766-fix-german-translation-code-literals

20378-del-script

7604-filter-modifiers-v3

circuit-swap

12318-case-insensitive-uniqueness

20637-improve-device-q-filter

20660-script-load

19724-graphql

20614-update-ruff

14884-script

02496-max-page

19720-macaddress-interface-generic-relation

19408-circuit-terminations-export-templates

20203-openapi-check

fix-19669-api-image-download

7604-filter-modifiers

19275-fixes-interface-bulk-edit

fix-17794-get_field_value_return_list

11507-show-aggregate-and-rir-on-api

9583-add_column_specific_search_field_to_tables

v4.5.0

v4.4.10

v4.4.9

v4.5.0-beta1

v4.4.8

v4.4.7

v4.4.6

v4.4.5

v4.4.4

v4.4.3

v4.4.2

v4.4.1

v4.4.0

v4.3.7

v4.4.0-beta1

v4.3.6

v4.3.5

v4.3.4

v4.3.3

v4.3.2

v4.3.1

v4.3.0

v4.2.9

v4.3.0-beta2

v4.2.8

v4.3.0-beta1

v4.2.7

v4.2.6

v4.2.5

v4.2.4

v4.2.3

v4.2.2

v4.2.1

v4.2.0

v4.1.11

v4.1.10

v4.1.9

v4.1.8

v4.2-beta1

v4.1.7

v4.1.6

v4.1.5

v4.1.4

v4.1.3

v4.1.2

v4.1.1

v4.1.0

v4.0.11

v4.0.10

v4.0.9

v4.1-beta1

v4.0.8

v4.0.7

v4.0.6

v4.0.5

v4.0.3

v4.0.2

v4.0.1

v4.0.0

v3.7.8

v3.7.7

v4.0-beta2

v3.7.6

v3.7.5

v4.0-beta1

v3.7.4

v3.7.3

v3.7.2

v3.7.1

v3.7.0

v3.6.9

v3.6.8

v3.6.7

v3.7-beta1

v3.6.6

v3.6.5

v3.6.4

v3.6.3

v3.6.2

v3.6.1

v3.6.0

v3.5.9

v3.6-beta2

v3.5.8

v3.6-beta1

v3.5.7

v3.5.6

v3.5.5

v3.5.4

v3.5.3

v3.5.2

v3.5.1

v3.5.0

v3.4.10

v3.4.9

v3.5-beta2

v3.4.8

v3.5-beta1

v3.4.7

v3.4.6

v3.4.5

v3.4.4

v3.4.3

v3.4.2

v3.4.1

v3.4.0

v3.3.10

v3.3.9

v3.4-beta1

v3.3.8

v3.3.7

v3.3.6

v3.3.5

v3.3.4

v3.3.3

v3.3.2

v3.3.1

v3.3.0

v3.2.9

v3.2.8

v3.3-beta2

v3.2.7

v3.3-beta1

v3.2.6

v3.2.5

v3.2.4

v3.2.3

v3.2.2

v3.2.1

v3.2.0

v3.1.11

v3.1.10

v3.2-beta2

v3.1.9

v3.2-beta1

v3.1.8

v3.1.7

v3.1.6

v3.1.5

v3.1.4

v3.1.3

v3.1.2

v3.1.1

v3.1.0

v3.0.12

v3.0.11

v3.0.10

v3.1-beta1

v3.0.9

v3.0.8

v3.0.7

v3.0.6

v3.0.5

v3.0.4

v3.0.3

v3.0.2

v3.0.1

v3.0.0

v2.11.12

v3.0-beta2

v2.11.11

v2.11.10

v3.0-beta1

v2.11.9

v2.11.8

v2.11.7

v2.11.6

v2.11.5

v2.11.4

v2.11.3

v2.11.2

v2.11.1

v2.11.0

v2.10.10

v2.10.9

v2.11-beta1

v2.10.8

v2.10.7

v2.10.6

v2.10.5

v2.10.4

v2.10.3

v2.10.2

v2.10.1

v2.10.0

v2.9.11

v2.10-beta2

v2.9.10

v2.10-beta1

v2.9.9

v2.9.8

v2.9.7

v2.9.6

v2.9.5

v2.9.4

v2.9.3

v2.9.2

v2.9.1

v2.9.0

v2.9-beta2

v2.8.9

v2.9-beta1

v2.8.8

v2.8.7

v2.8.6

v2.8.5

v2.8.4

v2.8.3

v2.8.2

v2.8.1

v2.8.0

v2.7.12

v2.7.11

v2.7.10

v2.7.9

v2.7.8

v2.7.7

v2.7.6

v2.7.5

v2.7.4

v2.7.3

v2.7.2

v2.7.1

v2.7.0

v2.6.12

v2.6.11

v2.6.10

v2.6.9

v2.7-beta1

Solcon-2020-01-06

v2.6.8

v2.6.7

v2.6.6

v2.6.5

v2.6.4

v2.6.3

v2.6.2

v2.6.1

v2.6.0

v2.5.13

v2.5.12

v2.6-beta1

v2.5.11

v2.5.10

v2.5.9

v2.5.8

v2.5.7

v2.5.6

v2.5.5

v2.5.4

v2.5.3

v2.5.2

v2.5.1

v2.5.0

v2.4.9

v2.5-beta2

v2.4.8

v2.5-beta1

v2.4.7

v2.4.6

v2.4.5

v2.4.4

v2.4.3

v2.4.2

v2.4.1

v2.4.0

v2.3.7

v2.4-beta1

v2.3.6

v2.3.5

v2.3.4

v2.3.3

v2.3.2

v2.3.1

v2.3.0

v2.2.10

v2.3-beta2

v2.2.9

v2.3-beta1

v2.2.8

v2.2.7

v2.2.6

v2.2.5

v2.2.4

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.6

v2.2-beta2

v2.1.5

v2.2-beta1

v2.1.4

v2.1.3

v2.1.2

v2.1.1

v2.1.0

v2.0.10

v2.1-beta1

v2.0.9

v2.0.8

v2.0.7

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v2.0-beta3

v1.9.6

v1.9.5

v2.0-beta2

v1.9.4-r1

v1.9.3

v2.0-beta1

v1.9.2

v1.9.1

v1.9.0-r1

v1.8.4

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.7.3

v1.7.2-r1

v1.7.1

v1.7.0

v1.6.3

v1.6.2-r1

v1.6.1-r1

1.6.1

v1.6.0

v1.5.2

v1.5.1

v1.5.0

v1.4.2

v1.4.1

v1.4.0

v1.3.2

v1.3.1

v1.3.0

v1.2.2

v1.2.1

v1.2.0

v1.1.0

v1.0.7-r1

v1.0.7

v1.0.6

v1.0.5

v1.0.4

v1.0.3-r1

v1.0.3

1.0.0

Labels

Clear labels

beta

breaking change

complexity: high

complexity: low

complexity: medium

needs milestone

netbox

pending closure

plugin candidate

pull-request

Mirrored from GitHub Pull Request

severity: high

severity: low

severity: medium

status: accepted

status: backlog

status: blocked

status: duplicate

status: needs owner

status: needs triage

status: revisions needed

status: under review

topic: GraphQL

topic: Internationalization

topic: OpenAPI

topic: UI/UX

topic: cabling

topic: event rules

topic: htmx navigation

topic: industrialization

topic: migrations

topic: plugins

topic: scripts

topic: templating

topic: testing

type: bug

type: deprecation

type: documentation

type: feature

type: housekeeping

type: translation

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

adam

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/netbox#1614