VRRP with zone based firewall problem


#1

I’ve tried VRRP and zone zone-based firewall without any result; after setting up zone-based firewall the vrrp break immediately. Although the zones permitted without restriction, the vrrp interfaces can’t see each other.


#2

Are you allowing the ips you assigned to each interface through your firewall?
set interfaces ethernet eth0 address ‘192.168.20.1/24’
set interfaces ethernet eth1 address ‘192.168.21.1/24’
set firewall name WAN_LOCAL rule 12 action ‘accept’
set firewall name WAN_LOCAL rule 12 description ‘Allow vrrp’
set firewall name WAN_LOCAL rule 12 log ‘disable’
set firewall name WAN_LOCAL rule 12 source address ‘192.168.20.2’
set firewall name WAN_LOCAL rule 13 action ‘accept’
set firewall name WAN_LOCAL rule 13 description ‘Allow vrrp’
set firewall name WAN_LOCAL rule 13 log ‘disable’
set firewall name WAN_LOCAL rule 13 source address ‘192.168.21.2’
set firewall name WAN_IN rule 12 action ‘accept’
set firewall name WAN_IN rule 12 description ‘Allow vrrp’
set firewall name WAN_IN rule 12 log ‘disable’
set firewall name WAN_IN rule 12 source address ‘192.168.20.2’
set firewall name WAN_IN rule 13 action ‘accept’
set firewall name WAN_IN rule 13 description ‘Allow vrrp’
set firewall name WAN_IN rule 13 log ‘disable’
set firewall name WAN_IN rule 13 source address ‘192.168.21.2’

set interfaces ethernet eth0 firewall in name WAN_IN
set interfaces ethernet eth0 firewall local name WAN_LOCAL