[j-nsp] EX series questions

2016-04-22 Thread joe mcguckin 
In playing around with a couple of switched yesterday, I managed to wedge them 
so they wouldn’t boot. I later fixed that problem.
Do Ex2200, EX3300, etc run the same image? Can I use a 3300 snapshot to recover 
a 2200 that won’t boot?


Joe McGuckin
ViaNet Communications

j...@via.net
650-207-0372 cell
650-213-1302 office
650-969-2124 fax



___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

Re: [j-nsp] CGNat PBA - MX104 w/MS-MIC

2016-04-22 Thread Aaron 
Ugh, I hate when it clumps it all together like that... here it is again,
hopefully that's better...


agould@eng-lab-mx104-cgn> show configuration services service-set cgn-sset |
display set

set services service-set cgn-sset syslog host 172.22.14.247 services any

set services service-set cgn-sset syslog host 172.22.14.247
facility-override daemon

set services service-set cgn-sset syslog host 172.22.14.247 class
session-logs open

set services service-set cgn-sset syslog host 172.22.14.247 class nat-logs

set services service-set cgn-sset syslog host 172.22.14.247 source-address
10.101.12.243

set services service-set cgn-sset nat-rules rule1

set services service-set cgn-sset next-hop-service inside-service-interface
ms-1/0/0.1

set services service-set cgn-sset next-hop-service outside-service-interface
ms-1/0/0.2


agould@eng-lab-mx104-cgn> show configuration services nat | display set

set services nat pool nat1 address-range low 1.2.3.128 high 1.2.3.255

set services nat pool nat1 port automatic

set services nat rule rule1 match-direction input

set services nat rule rule1 term other1 from source-address 10.144.0.0/24

set services nat rule rule1 term other1 then translated source-pool nat1

set services nat rule rule1 term other1 then translated translation-type
napt-44

- Aaron
 


___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

Re: [j-nsp] CGNat PBA - MX104 w/MS-MIC

2016-04-22 Thread Aaron 
Incase y'all need to see this...

agould@eng-lab-mx104-cgn> show configuration services service-set cgn-sset |
display set
set services service-set cgn-sset syslog host 172.22.14.247 services any
set services service-set cgn-sset syslog host 172.22.14.247
facility-override daemon
set services service-set cgn-sset syslog host 172.22.14.247 class
session-logs open
set services service-set cgn-sset syslog host 172.22.14.247 class nat-logs
set services service-set cgn-sset syslog host 172.22.14.247 source-address
10.101.12.243
set services service-set cgn-sset nat-rules rule1
set services service-set cgn-sset next-hop-service inside-service-interface
ms-1/0/0.1
set services service-set cgn-sset next-hop-service outside-service-interface
ms-1/0/0.2

agould@eng-lab-mx104-cgn> show configuration services nat | display set
set services nat pool nat1 address-range low 1.2.3.128 high 1.2.3.255
set services nat pool nat1 port automatic
set services nat rule rule1 match-direction input
set services nat rule rule1 term other1 from source-address 10.144.0.0/24
set services nat rule rule1 term other1 then translated source-pool nat1
set services nat rule rule1 term other1 then translated translation-type
napt-44



-Original Message-
From: juniper-nsp [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of
Aaron
Sent: Friday, April 22, 2016 7:28 PM
To: 'juniper-nsp List' 
Subject: [j-nsp] CGNat PBA - MX104 w/MS-MIC

I'm trying to enable port block allocation (pba) for lessening the tons of
translation logs I'm seeing in my syslog server. 

 

I'm getting an error, shown below.  Anyone know how to enable PBA ?  I'm
using an MX104 with MS_MIC-16G.

 

agould@eng-lab-mx104-cgn# set services nat pool nat1 port
secured-port-block-allocation block-size 1000

[edit]

agould@eng-lab-mx104-cgn# commit

error: ms-interface does not support PBA and Deterministic NAT configuration
for pool nat1

error: configuration check-out failed

[edit]

agould@eng-lab-mx104-cgn#

 

 

___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

[j-nsp] CGNat PBA - MX104 w/MS-MIC

2016-04-22 Thread Aaron 
I'm trying to enable port block allocation (pba) for lessening the tons of
translation logs I'm seeing in my syslog server. 

 

I'm getting an error, shown below.  Anyone know how to enable PBA ?  I'm
using an MX104 with MS_MIC-16G.

 

agould@eng-lab-mx104-cgn# set services nat pool nat1 port
secured-port-block-allocation block-size 1000

[edit]

agould@eng-lab-mx104-cgn# commit

error: ms-interface does not support PBA and Deterministic NAT configuration
for pool nat1

error: configuration check-out failed

[edit]

agould@eng-lab-mx104-cgn#

 

 

___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

[j-nsp] options for adding communities to an EVPN routing-instance?

2016-04-22 Thread Michael Hare 
Does anyone know if it is possible and how to add communities to routes to an 
EVPN routing-instance in the instance configuration itself?  For example, in 
bgp.evpn.0, I have

2:a.b.c.d:200::1900::00:1f:45:a0:1b:bb/304 (2 entries, 0 announced)
...
Communities: target:64900:200

I'd like to be able to add, for example, $MYISP:12345 to the mac announcements. 
 I haven't tried but am guessing I could do this in the IBGP export policy 
using 'from instance' but this is suboptimal because then my PE will need 
different export policies whereas they are currently now all congruent.

Sorry if this is a rookie question, I don't have experience with l3vpns or 
route leaking.

-Michael
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

Re: [j-nsp] ACX5048 - vlan-map conflict with routing-instance with vlan-id tags

2016-04-22 Thread Aaron 
H, ok then, I wonder if anyone knows if there's a way to configure a vlan 
list with tags 10 and 17 into the same unit number ?  that way when I put that 
unit/logical interface into a vlan (aka BD) then it's only one unit/logical 
interface.

Aaron

-Original Message-
From: dverl...@gmail.com [mailto:dverl...@gmail.com] On Behalf Of Daniel Verlouw
Sent: Friday, April 22, 2016 12:34 PM
To: Aaron 
Cc: juniper-nsp List 
Subject: Re: [j-nsp] ACX5048 - vlan-map conflict with routing-instance with 
vlan-id tags

Hi Aaron,

On Thu, Apr 21, 2016 at 10:20 PM, Aaron  wrote:
> agould@eng-lab-5048-1# commit
> [edit vlans vlan10]
>   'interface ge-0/0/38.17'
> l2ald ACX: On a bd, for each ifd only one ifl can be added [edit 
> vlans]
>   Failed to parse vlan hierarchy completely
> error: configuration check-out failed

that's a different issue from the vlan-swap problem you had, and is actually a 
known limitation described in the manual/rel.notes;

"A bridge domain cannot have two or more logical interfaces that belong to the 
same physical interface."

   --Daniel.

___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

Re: [j-nsp] ACX5048 - vlan-map conflict with routing-instance with vlan-id tags

2016-04-22 Thread Daniel Verlouw 
Hi Aaron,

On Thu, Apr 21, 2016 at 10:20 PM, Aaron  wrote:
> agould@eng-lab-5048-1# commit
> [edit vlans vlan10]
>   'interface ge-0/0/38.17'
> l2ald ACX: On a bd, for each ifd only one ifl can be added
> [edit vlans]
>   Failed to parse vlan hierarchy completely
> error: configuration check-out failed

that's a different issue from the vlan-swap problem you had, and is
actually a known limitation described in the manual/rel.notes;

"A bridge domain cannot have two or more logical interfaces that
belong to the same physical interface."

   --Daniel.
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

[j-nsp] Flexible Ethernet Services on QFX5100

2016-04-22 Thread Joe Freeman 
Is anyone using this feature on the QFX5100? Anyone been able to get an
answer from Juniper as to the chances it will be pulled in the next major
release?

Thanks-
Joe
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp