Re: [j-nsp] Juniper SRX and ssh freeze
On 23/12/10 21:34, Florian Weimer wrote: * Julien Goodwin: For my SRX at the office back when I installed it (9.6 IIRC) *TCP* keepalives would not extend session timeouts, but *SSH* keepalives worked very well, that's the ServerAliveInterval setting in OpenSSH. Typically, TCP keepalives happen at such long intervals that they do not keep firewall state alive. In my specific case (whinging admin in internal IT, not production) they were at least every minute. We do actually have some systems that are so old/weird they don't support the ServerAliveInterval, but they're all fairly minor so it's not usually a problem. -- Julien Goodwin Studio442 Blue Sky Solutioneering ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] Juniper SRX and ssh freeze
* Julien Goodwin: For my SRX at the office back when I installed it (9.6 IIRC) *TCP* keepalives would not extend session timeouts, but *SSH* keepalives worked very well, that's the ServerAliveInterval setting in OpenSSH. Typically, TCP keepalives happen at such long intervals that they do not keep firewall state alive. -- Florian Weimerfwei...@bfk.de BFK edv-consulting GmbH http://www.bfk.de/ Kriegsstraße 100 tel: +49-721-96201-1 D-76133 Karlsruhe fax: +49-721-96201-99 ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] EX4200: VC incremental upgrade ?
On Mon, Oct 25, 2010 at 03:31:47PM +0200, Philipp Geschke wrote: On Mon, 25 Oct 2010 17:10:46 +0400, Alexandre Snarskii s...@snar.spb.ru wrote: Hi! Silly question: is it possible to perform incremental upgrade on ex-series virtual-chassis ? I.e., upgrade some switches (using 'request system software add member NN'), switchover master to 'upgraded' part, then upgrade remaining switches ? no, that is currently not possible. You can always take single switches out of the stack and upgrade them outside of the stack, however, a hitless upgrade is not really possible. Looks like it is possible. In progress of building new virtual-chassises I found that one of VC's periodically flapped (pfem coredumps with corresponding interface flaps) right after commits. Investigation shown that it was because of version mismatch on one of stack members: s...@vsw02# run show version | match Base OS boot|fpc fpc0: -- JUNOS Base OS boot [10.3R2.11] fpc1: -- JUNOS Base OS boot [10.3R2.11] fpc2: -- JUNOS Base OS boot [10.3R2.11] fpc3: -- JUNOS Base OS boot [10.3R2.11] fpc4: -- JUNOS Base OS boot [10.3R1.9] and after upgrading JunOS on fpc4 to match others I see no more errors. However, the fact that 10.3R1 switch was able to join 10.3R2 virtual-chassis leads me to interesting conclusion - looks like incremental upgrade within the same major version, like 10.3R1 to 10.3R2 to 10.3R3 is possible, while upgrade from 10.3 to 10.4 is not. And, of course, there must be no configuration changes during upgrade. PS: or it is well-known bug to be fixed in some next release ? -- In theory, there is no difference between theory and practice. But, in practice, there is. ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] JNCIS-ENT - Software to prepare for exam
When you pass the assessment it also gives you a prometric discount code :) Nick -Original Message- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of david@orange-ftgroup.com Sent: 22 December 2010 15:15 To: 'Jared Gull'; juniper-nsp@puck.nether.net Subject: Re: [j-nsp] JNCIS-ENT - Software to prepare for exam Thank you. David Roy Orange France - RBCI IP Technical Assistance Center Tel. +33(0)299876472 Mob. +33(0)685522213 Email. david@orange-ftgroup.com -Message d'origine- De : Jared Gull [mailto:jmg...@yahoo.com] Envoyé : mercredi 22 décembre 2010 15:53 À : juniper-nsp@puck.nether.net; ROY David DTF/DERX Objet : Re: [j-nsp] JNCIS-ENT - Software to prepare for exam Hi David, I'm not aware of any Boson or boson-like tests out there but the fast track portal does offer free routing and switching study guides and assessment tests. These study guides and assessment tests are great resources for this test. If you don't have it, the URL for the fast track is below: http://www.juniper.net/us/en/training/fasttrack/ Jared --- On Wed, 12/22/10, david@orange-ftgroup.com david@orange-ftgroup.com wrote: From: david@orange-ftgroup.com david@orange-ftgroup.com Subject: [j-nsp] JNCIS-ENT - Software to prepare for exam To: juniper-nsp@puck.nether.net juniper-nsp@puck.nether.net Date: Wednesday, December 22, 2010, 3:24 AM Hi all, Is there a tool, like Boson software, to prepare for the new JNCIS-ENT exam ? thks, regards, David * This message and any attachments (the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited. Messages are susceptible to alteration. France Telecom Group shall not be liable for the message if altered, changed or falsified. If you are not the intended addressee of this message, please cancel it immediately and inform the sender. ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp * This message and any attachments (the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited. Messages are susceptible to alteration. France Telecom Group shall not be liable for the message if altered, changed or falsified. If you are not the intended addressee of this message, please cancel it immediately and inform the sender. ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp -- This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender. Any offers or quotation of service are subject to formal specification. Errors and omissions excepted. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Lumison. Finally, the recipient should check this email and any attachments for the presence of viruses. Lumison accept no liability for any damage caused by any virus transmitted by this email. ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] RE accessories
Dear Juniper, I will deploy one of these on every router until all my cases are resolved. :) http://cluepon.net/ras/juniper-accessory.wmv Love, ras -- Richard A Steenbergen r...@e-gerbil.net http://www.e-gerbil.net/ras GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC) ___ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp