as fragments and dropped
in receiver's loopback filters.
Even though MTU is high, we've come across unnecessary (IPv6)
fragmentation when certain conditions are met - PR/571596
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems
equipment :P
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp
BGP advertise a non-active
BGP route as well. But this has no impact in this specific case.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
it. Then as 'ether type' in
GRE header you could put 0x6558 or 0x8100 (IEEE 802.1q VLAN-tagged
frames *). The former is also supported in Linux
[http://lwn.net/Articles/303062/]
*) http://www.iana.org/assignments/ethernet-numbers
--
Pekka Savola You each name yourselves king, yet
it isn't supported, I think, though.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list
, 4 in RIB and 1 in
FIB, or something else. I thought the second. A more recent RE could
do the trick, but it's a different issue if that's the most sensible
approach in the grand scheme of things..
--
Pekka Savola You each name yourselves king, yet the
Netcore Oy
On Thu, 4 Feb 2010, sth...@nethelp.no wrote:
Not for the M7i/M10i.
We have explicitly asked Juniper about a beefier RE for M7i/M10i, and
the answer so far has been no plans.
Well, I don't know about i's, but FWIW plain old M10 runs e.g. RE-600
(2G memory etc.) just fine.
--
Pekka Savola
, M20). But now I can't find any mention of this in
the release notes and I'm pretty sure it was there. In our case, the
old non-EFPC seated a I-1OC48-SON-SMIR. I wonder if JNPR brought the
support back or something..
--
Pekka Savola You each name yourselves king, yet
#section-4.1
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
On Thu, 17 Dec 2009, Masood Shah wrote:
Here you go...
http://www.juniper.net/techpubs/software/junos/junos91/swconfig-system-basics/configuring-a-dhcp-server.html
According to that doc, DHCP server functionality is only available in
J-series, not MX series.
of it).
Do you have a bug open on this? We did investigate it (on 9.3
though), but the result was it's working as designed, Juniper
couldn't replicate the issue and we had to close the case :-(.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oy
, you need to crank it up to
4488.. A thing to keep in mind and/or to monitor using scripts.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
L2
broadcast traffic that's hitting the RE. 'Family any' L2 policer on
loopback would be interesting to test; I've been intending to do that
for a while but haven't gotten around to doing so.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oy
FPC won't
run on software newer than 8.5.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing
to support all flavours of traceroute as some of
those use the equivalent of ping. Maybe you could match by both TTL
and ICMP type/code but that would be hackish. To learn more about how
traceroute works, see:
http://en.wikipedia.org/wiki/Traceroute
--
Pekka Savola You each name
. There have also been bugs wrt this
behaviour, but I recall at least some of them were specific to 8.5 and
you were running 8.4.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash
will do performance testing in these
kind of scenarios as well; I don't recall seeing such a test myself.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
old, memory/CPU
constrained T320 FPCs). But the bad news is that JTAC's response is
that this is working as designed.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash
experience.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
route resolution for unresolved could
also help.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp
Juniper would have sane defaults but
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing
. It's possible
that more load was caused by non-ARP broadcast looped traffic though.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
-BGP unicast-only
routes.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp
this
fixed internally.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp
list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
feasibility
algorithm.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp
. It consumes this memory linear to
the fib size (regardless of how it's used and on which interfaces).
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
table size. It
seems to replicate all the routing tables for its own purposes. This
would make little sense (even less than the current dumb algorithm) if
it just used routes in PFE.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom
/swconfig-cos/assigning-the-rewrite-rules-configuration-to-the-output-logicalinterface.html
Pretty annoying. Too bad these kinds of issues seem to crop up more
and more, usually after you've already bought the box or a new kind of
interface :-/
--
Pekka Savola You each name
an interface was caused problems under certain kind
of ip address configurations, AFAIR w/ vrrp or with ipv6 link-locals.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
On Thu, 8 May 2008, Pekka Savola wrote:
You can use the 'show chassis spmb/feb/ssb/...' to view DRAM memory
utilization on the switch board.
How can you find out what's taking DRAM memory? 'show route summary'
on 'vty ssb' (or similar) shows how much your routing table takes but
that's all
...)
Similarly, figuring out the SRAM usage might be interesting.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
will not come up).
I guess this persists in 9.1 as well (not tested). We've a case open
asking clarification on this but haven't heard back in a while.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security
routing protocol preferences
(e.g. make IS-IS preferred over OSPF).
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
reboots and
similar events.
If you just have one routing engine and it dies (and you replace it
with a new one, just copying the config), you will lose the indexes;
but the same happens with Cisco unless you copy ifIndex table from
NVRAM manually as well.
--
Pekka Savola You
this these things should be added to the Juniper cluepon wiki
-- any volunteers?)
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
JTAC case on this but as the card is unsupported and
they don't see the problem on their cards, it's closed.
I've added this to:
http://juniper.cluepon.net/index.php/Flash_compatibility
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom
.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https
, this information has
been lost.
For example, it's also pretty much impossible to find out that
Enhanced Plus FPC is required if you want to use P-4GE-TYPE1-SFP-IQ2.
[1]
http://www.juniper.net/techpubs/hardware/m20/m20-pic/gigabit-ethernet-pic-with-sfp.html
--
Pekka Savola You each name
://puck.nether.net/mailman/listinfo/juniper-nsp
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp
of this as longest prefix matching wins every time, if
you have the same prefixes with the same length, you select one and
the rest are considered feasible.
RFC 3704 section 2.3 tries to explain this but probably doesn't make
it much better than above.
HTH,
--
Pekka Savola You each
the same more specifics to you as well, but use a
community to mark them so that you won't readvertise them.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
to use that link depending on your BGP
path selection and the choice of VRRP primar(y|ies).
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
is
still be supported but it's a no-op.
I wonder if there is a valid deployment scenario where you will want
to force full-duplex instead of doing auto-negotiation. Now would
probably be a good time to start talking to your local Juniper reps
:-)
--
Pekka Savola You each
of the routes you export upstream?
- where do you get the routes for those nexthops?
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
important feature there.
On Fri, 7 Sep 2007, Lei Zhang wrote:
Pekka Savola wrote:
Apply-path is a nice feature, but for some reason it doesn't seem to
work for interface addresses, e.g.:
apply-path interfaces lo0 unit 0 family inet address *;
This works for me. Use config mode command show
).
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https
PRs on this.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
___
juniper-nsp mailing list juniper-nsp
there is a further limit
of 500pps per PFE.
There is an ER open for raising the ICMP generation rate-limit as well
as making that configurable.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George
of years that we've seen them, I've just
filtered them out in syslogs.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
--
Pekka Savola You each name yourselves
On Sun, 18 Mar 2007, Pekka Savola wrote:
On Sun, 18 Mar 2007, Phil Sykes wrote:
A couple of caveats that may be relevant to people configuring this:
- It doesn't work on aggregated Ethernet interfaces
- It doesn't work on the fixed-optic Gigabit Ethernet PICs (e.g.
P-1GE-SX), only
if another route were to disappear.
InPrefixesRejected is clearly meant to show the filtered routes, but
alas, the current implementation does not.
--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security
53 matches
Mail list logo
