Re: [j-nsp] SSG 140 Software
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Jimmy, The latest release version of ScreenOS for the SSG-140 series is 6.3.0r2. However, Juniper also has a knowledge base document [https://www.juniper.net/customers/csc/software/netscreen_versions.jsp] showing the latest *recommended* ScreenOS version. This version is usually much more stable than the maintenance releases. Cheers, /toph Jimmy Stewpot wrote: > Hi All, > > I am interested to know if anyone can provide me with what the latest version > of software is for the SSG140? > > Regards, > > Jimmy. > ___ > juniper-nsp mailing list juniper-nsp@puck.nether.net > https://puck.nether.net/mailman/listinfo/juniper-nsp -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkuysZoACgkQg4DtNh1wGhoTGwCePzgwCd1FjeNNqBAPSsFNg+Q6 KQ4AoILWwk7oV+9dgyXq7ghPh/lEgw20 =qc0r -END PGP SIGNATURE- ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] SSG 140 Software
Hi All, I am interested to know if anyone can provide me with what the latest version of software is for the SSG140? Regards, Jimmy. ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] JNCIE-ER
Stefan- Thank you very much for the kind words. I'm sure you did well and passed your exam! Regards, Joe Joseph Soricelli CEO Proteus Networks 703-980-3999 j...@proteus.net www.proteus.net Twitter - @proteusnetworks On Mar 27, 2010, at 7:34 PM, Stefan Fouant wrote: -Original Message- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp- boun...@puck.nether.net] On Behalf Of Dilip Srivastava Sent: Friday, March 26, 2010 9:26 AM To: adnan Cc: Richard A Steenbergen; juniper-nsp@puck.nether.net Subject: Re: [j-nsp] JNCIE-ER I am also looking for JNCIE-ER please share the documents or study material regards dilip On Thu, Mar 25, 2010 at 10:25 PM, adnan wrote: Dear All I am preparing my JNCIE-ER . if anyone is also preparing contact me so we can share the material . Well I just took the exam yesterday and I don't want to count my chickens before they hatch, but I feel that I did pretty good so here is a quick synopsis of what I used for the exam: - 'JUNOS Enterprise Routing' by Harry Reynolds and Doug Marschke. Read it twice if you can :) - 'Advanced Juniper Networks Routing in the Enterprise' courseware and labs which can be found on the Juniper FastTrack site. I definitely recommend going through the labs because they are extremely representative of the types of things that you are likely to see on the exam. - 'Adaptive Services' chapter in the JUNOS 'Services Interfaces Configuration Guide' - its 500 pages but will definitely school you on all the variants of JUNOS Services - The 'JNCIP-M Study Guide' by Harry Reynolds is another really useful addition if you can go through that book and do the labs this will really help with routing policy and configuration of OSPF, RIP, and BGP. - In addition to reading the above and getting a good strong foundational level of understanding, I would say the *single* most useful preparation tip I can give to anyone is to take the JNCIE-ER Bootcamp and/or the Remote Proctored lab exams offered by Proteus Networks. I haven't personally taken the bootcamp, but I did see the materials from a colleague who sat through it and after sitting the exam I can tell you that Bootcamp is spot on. I did however take their Remote Proctored exams and once again I am not disappointed with my experience with them. Rick Schenderlein was my proctor with Proteus and he really took the time to help me understand the areas that I could use improvement on. Their products are truly a notch above and will more than prepare you to sit the exam. These are the guys who "wrote the book" in more ways than one with the JNCIE-ER... their offerings should be considered insurance... you're already shelling out some pretty big bucks to sit the exam, why not do yourself the favor and take a look at what they have to offer - http://www.proteus.net All in all, I didn't think the exam was that tough, but I also have 12+ years of experience working with JUNOS and I also have a JNCIE-M. I actually finished the exam in a little over 5 hours and spent another 1-2 hours going over everything just to make sure I had it right. I've heard that most people going in are pretty much down to the wire with time so I'm not sure what happened in my case but I hope I can attribute it to just being over-prepared. Oh one other tip, thanks Addy for passing this on to me - make sure you read the full exam in its entirety before starting a single configuration element. This is truly an expert level exam, one which requires you to think through your design decisions. There are often things later on in the exam that might require you to go back and reconfigure something you've set up in an earlier section. Reading ahead will allow you to save yourself some time when you've thought your design through fully in advance. I'll let you know in a few days when I receive my pass/fail status... Stefan Fouant, CISSP, JNCIE-M/T www.shortestpathfirst.net GPG Key ID: 0xB5E3803D ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] Remove EX-4200 stack member
Personally, I would halt the third member ("request system halt member 3"),
then pull the cables, and then change the VC configuration. But, that is
just my preferred way of doing it.
-Jon
On Tue, Mar 30, 2010 at 10:49 AM, Kevin Wormington wrote:
> I'm running a production stack of 3 EX-4200s using the stacking ports on
> 9.6R1.3. I would like to remove the 3rd member (no ports in use or
> configured) which is just in line-card mode without effecting the other two.
> The units were all pre-provisioned. I'm curious if anyone has attempted
> this and if they just pulled the stacking cables first and then made
> software changes or made software changes and then pulled the cables?
>
> Thanks,
>
> Kevin
> ___
> juniper-nsp mailing list juniper-nsp@puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] Remove EX-4200 stack member
I'm running a production stack of 3 EX-4200s using the stacking ports on 9.6R1.3. I would like to remove the 3rd member (no ports in use or configured) which is just in line-card mode without effecting the other two. The units were all pre-provisioned. I'm curious if anyone has attempted this and if they just pulled the stacking cables first and then made software changes or made software changes and then pulled the cables? Thanks, Kevin ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] High memory usage on EX4200 stack
Matrin, We have been experiencing kernel memory leaks on a EX4200 virtual chassis containing 2 devices after we upgraded to a 10 release. We were supplied version 10.0S3.1 to fix these problems. You might want to give that version a try and see if our problems were related. Regards, Wouter -Oorspronkelijk bericht- Van: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] Namens Martin Levin Verzonden: dinsdag 30 maart 2010 15:53 Aan: juniper-nsp@puck.nether.net Onderwerp: [j-nsp] High memory usage on EX4200 stack Hi! We have 3 EX4200 virtual chassis all running 10.0S1.1, one consisting of 4 EX4200 and the other two och two switches each. The problem below only affects the two stacks with two switches each, the 2 switch stack does not se this. The problem we're seeing is that member 0, regardless of wether its the master routing engine or not sees very high memory usage (89%) and the boxes then become very slow. These switches operate on layer 2 only. If I try to do "request session member 0" i get "could not create child process" as an error and I can't login to that member. Traffic seems to flow without problem however. Any thoughts? --- Martin Levin IT-strategy & planning Mölndals stad ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] High memory usage on EX4200 stack
Hi! We have 3 EX4200 virtual chassis all running 10.0S1.1, one consisting of 4 EX4200 and the other two och two switches each. The problem below only affects the two stacks with two switches each, the 2 switch stack does not se this. The problem we're seeing is that member 0, regardless of wether its the master routing engine or not sees very high memory usage (89%) and the boxes then become very slow. These switches operate on layer 2 only. If I try to do "request session member 0" i get "could not create child process" as an error and I can't login to that member. Traffic seems to flow without problem however. Any thoughts? --- Martin Levin IT-strategy & planning Mölndals stad ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] JUNOS - TACACS - Cisco ACS Allowed Commands
Hello,
I have been trying to get a few Juniper EX4200 switches working with Cisco ACS
through TACACS+ utilizing "allowed commands". I have followed the example doc
on Cisco site here:
http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a0080af7d1d.shtml
Which didn't work at all until I added the "remote" user on the EX 4200, but
then it would only allow access and the user would be mapped to the "remote"
username which had "read-only" access.
I have tried different combinations of syntax on the Cisco ACS in terms of the
"local-username" and "allowed-commands" with no success ( I also added the
"set" keyword in front of the commands as some examples demonstrated). I
believe I almost have it configured but I missing some simple thing. I
searched the forum but all the past posts have made mention of things I have
already tried.
Anyone have any suggestions?
Config on the EX4200 (JUNOS version 10.0S1.1):
system {
authentication-order [ tacplus password ];
tacplus-server {
1.2.3.4 {
secret "stuff; ## SECRET-DATA
timeout 5;
source-address 5.5.5.5.;
}
}
}
class LIMITED {
permissions all;
}
user LIMITED-USER {
uid 2002;
class LIMITED;
}
user remote {
uid 2001;
class read-only;
}
ACS Config (version 4.2):
Setup per the link above with the following attributes in the "custom
attributes" box:
local-user-name = LIMITED-USER
allow-commands = "monitor | help | show | ping | traceroute"
Thanks,
Ralph
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] Troubleshooting J6350 Boot
Kessler, Ben wrote: Hello - I'm in the process of upgrading a lot of J6350 routers and have one that is failing on boot after the upgrade. I'm getting the following messages on the console when the router tries to boot: OK reboot Rebooting... elf32_loadfile: can't load module before kernel elf32_loadfile: can't load module before kernel elf32_loadfile: can't load module before kernel Unable to load a kernel! \ elf32_loadfile: can't load module before kernel can't load '/kernel' elf32_loadfile: can't load module before kernel can't load '/kernel.old' I have a case open with JTAC but they're a bit slow to respond. Any suggestions would be appreciated. I suspect you'll have to boot from install media and try a reinstallation - something appears to have broken during the upgrade. Worst case, the internal flash is damaged. We've had that happen every once in a while, and a boot & reinstall from install media usually fixed it. Kind regards, Felix -- Felix Schüren Head of Network --- Host Europe GmbH - http://www.hosteurope.de Welserstraße 14 - 51149 Köln - Germany Telefon: 0800 467 8387 - Fax: +49 180 5 66 3233 (*) HRB 28495 Amtsgericht Köln - USt-IdNr.: DE187370678 Geschäftsführer: Uwe Braun - Alex Collins - Mark Joseph - Patrick Pulvermüller (*) 0,14 EUR/Min. aus dem dt. Festnetz; maximal 0,42 EUR/Min. aus den dt. Mobilfunknetzen ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] Troubleshooting J6350 Boot
Hello - I'm in the process of upgrading a lot of J6350 routers and have one that is failing on boot after the upgrade. I'm getting the following messages on the console when the router tries to boot: OK reboot Rebooting... elf32_loadfile: can't load module before kernel elf32_loadfile: can't load module before kernel elf32_loadfile: can't load module before kernel Unable to load a kernel! \ elf32_loadfile: can't load module before kernel can't load '/kernel' elf32_loadfile: can't load module before kernel can't load '/kernel.old' I have a case open with JTAC but they're a bit slow to respond. Any suggestions would be appreciated. Thanks, Ben ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] Cos model for l2vpn
hello Community, Can anyone suggest a Cos model related to L2VPNs ? Also what are the limitations for this type of VPNs? Thanks in advance. Regards. _ Hotmail : une messagerie performante et gratuite avec une sécurité signée Microsoft https://signup.live.com/signup.aspx?id=60969 ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] Using fxp0 as a routed interface
Hello! I know I can use fxp0 as a routed interface on M7i by setting: sysctl -w net.pfe.transit_re=1 but this seems to be not possible for M160? Has anyone been able to do to it on it? P.S. It is for training purposes, so the CPU will be OK Regards, V.Vasilev ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
