Hi Jon,
On 28/07/2011, at 1:15 PM, Paulhamus, Jon wrote:
> Hello all -
>
> I am in the process of replacing an aging Cisco ASA-5540 with an SRX-650.
> The ASA has a large number of static NAT translations, as well as many
> outbound source NAT pools. Does anyone have any suggestions on creat
Hi all,
I was just pulling out a list of different things to graph via SNMP and
I came across this strangeness on two J6350's (JUNOS 10.2R3.10). When I
have been pulling the data out to graph, the fan speed seems to jump
between 37,678 RPM and 9,820 RPM. This is consistant on both routers,
and the
Once upon a time, Chris Evans said:
> I'm trying to implement a firewall filter to implement IPv6 RA guard on an
> EX4200. I have the ACL written to block DHCP and icmp router-advertisements.
> However it appears that the EX4200 only supports IPv4 at this time for
> PACLs? I have applied the filte
I'm trying to implement a firewall filter to implement IPv6 RA guard on an
EX4200. I have the ACL written to block DHCP and icmp router-advertisements.
However it appears that the EX4200 only supports IPv4 at this time for
PACLs? I have applied the filter ingress to my interfaces and RA
advertiseme
Did anyone successfully run the packet-mode forwarding in a SRX Chassis
Cluster?
On Thu, Jul 28, 2011 at 12:29 PM, Craig Whitmore wrote:
> I have tried running 2500 BGP routes on a SRX 240 all in flow mode with no
> problems at all.
>
>
> On 28/07/11 4:19 PM, "Harris Hui" wrote:
>
> >Are you run
The only issue I have come across is unsupported command/feature causing the
config not load, and also preventing the startup of the management daemon. In
the case I worked on it was the link-speed option tied to a RETH interface on a
cluster. It doesn't appear to happen every time. I tried t
On Tuesday, July 26, 2011 07:51:10 AM David water wrote:
> Can someone please share the working Rosen MVPN
> configuration of Cisco and Juniper? Do I have to use
> vrf-table-label or VT interface on Juniper router to
> make it working?
Haven't worked with Rosen on this end, but NG-MVPN instead.
I'd set community on a static routes themselves for each netblock announced via
BGP and then use an export filter to filter external BGP announcements to that
specific community.
set routing-options static route x.x.x.x/y discard
set routing-options static route x.x.x.x/y preference 130
set rout
Ah, so I'm potentially not crazy (at least not for this reason).
See below, and thanks...
David
--- JUNOS 10.0R3.10 built 2010-04-16 07:14:00 UTC
{master}
me@router> show interfaces ge-1/1/0
Physical interface: ge-1/1/0, Enabled, Physical link is Up
Interface index: 173, SNMP ifIndex: 250
We will as of next week... running 10.4R3.4 with no issues no clustering
on our side though (yet - coming soon)
Paul
-Original Message-
From: juniper-nsp-boun...@puck.nether.net
[mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Daniel M Daloia Jr
Sent: Thursday, July 28, 2011
Hey Folks,
Anyone using the current recommended release 10.4R4.5 on the SRX650 series? We
have a pretty simple setup with clustering, IDP, BGP, OSPF. Just looking for
any got-chas!
Thanks!
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
htt
If/when supplementing with RSVP LSPs isn't an option for you, you
might also wish to consider enabling Loop-Free Alternates (LFA) for
your IGP along with an exported load-balance policy on each Juniper
device to (potentially) speed up convergence in the event of a
failure. Having a backup next-h
Hi guys,
in my policy-statement, i have this simple policy
term 1 {
from {
route-filter 123.123.123.123/32 exact;
}
then {
source-class scu-proxy-me-please;
accept;
}
}
term 2 {
then accept;
}
show policy-options prefix-list proxy-prefixes-poc
123.123
Hi,
Yes you could activate LDP everywhere, i.e on all links but you may also
want to run "per Link" single hop RSVP LSP between directly connected peers
with "ldp-tunnelling" enabled. This will activate LDPoverRSVP hence traffic
can be protected by FRR link protection when passes through these lin
On Wednesday, July 27, 2011, David Ball wrote:
> MX running 10.0 (DPCE-R-20GE-2XGE for int in question)
>
> Should I expect that a logical unit configured with 'vlan-tags outer
> 0x88A8.100' would also permit frames using TPID 8100 and VLAN ID 100 ?
> I kinda expected not (since it doesn't 'match
15 matches
Mail list logo
