Quick way is to set mpls to packet-based which essentially makes the router
packet-based as well (so you'll need to go back to standard firewall filters
for router protection). I have about 60 or so RPM probes running on this J2350:
j...@rpm01. show configuration security
forwarding-options
I agree. One thing that we do fairly often is create a multifield classifier
like this to just accept a couple of values to place into the appropriate
forwarding-class, then for a default action reset to BE forwarding-class for
all non-matching traffic. This works well in situations where you
Nick, the correct terminology would be a Behavior Aggregate (which is what you
are doing with the Classifier on the interface) or a MultiField Classifier
(MFC), which is what you are proposing with a Src/Dst filter. These work just
fine together, but just remember that an MFC is processed after
This has been there for a while, so if it was overlooked it has been ongoing. :)
We ran in to this when migrating from some M20s/M40e's to M320s. Had to
remember to deactivate the interface on the old router as it was still showing
the /32 side of the connected as active even when the fiber was
David, did ATAC give any indication if this was a widespread issue over all
releases of JUNOS, or are they thinking it is more localized to one more more
specific versions? I am still doing a 9.5R3.7 lab evaluation with GRES and NSR
on MX960s, and I know we have seen a couple of strange issues
it, but it is good that they can see it, I suppose.
Thanks,
-Jeff
From: David Ball [davidtb...@gmail.com]
Sent: Thursday, January 07, 2010 10:12 AM
To: Richmond, Jeff
Cc: Felix Schueren; juniper-nsp@puck.nether.net; Richard A Steenbergen
Subject: Re: [j-nsp] KRT Queue
I agree. I broke protocol and opened a P1 case on this yesterday as I was
irritated by the whole thing an I needed the SR software asap. Got a quick
response, but still took them a couple of hours to get me the link. If you are
going to list a specific SR release in the PSN, then include the
There is nothing to it. We do it all the time for lab testing. Here is a config
snippet from an MX960:
j...@cor01 show configuration protocols rsvp
interface ge-0/0/0.0;
interface ge-0/0/6.0;
interface ge-0/1/6.0;
interface ge-1/0/0.0;
interface fxp0.0 {
disable;
}
interface xe-1/0/0.0;
Yes, they support it. I have several lab 2320s and 2350s with ls-0/0/0 mlppp
interfaces.
-Jeff
From: juniper-nsp-boun...@puck.nether.net [juniper-nsp-boun...@puck.nether.net]
On Behalf Of Flavio Schappo [fscha...@gmail.com]
Sent: Wednesday, December 09,
Definitely cool but be aware that there are limitations/issues with
some HA features when using logical systems at least on the MX
platform. I had to revert to a true JPOC lab to test as the logical
systems in my lab were killing my test results.
Sent from my iPhone
On Dec 2, 2009, at 3:40 PM,
I have done a number of the years and most of them are pretty good. I
started teaching OJRE and AJRE a while ago as well and those are
pretty good for someone new to JUNOS. Ping me offlist if you have any
specific questions.
Sent from my iPhone
On Dec 2, 2009, at 5:53 PM, Paul Stewart
I am using these today, on both M-series and J-series and they work relatively
well. There are some caveats when dealing with Jitter, however, so I would
suggest that you do test in your own lab to see if it will provide an
acceptable solution. I had a very good JTAC engineer work with me to
Jeff,
This isn't typically something that can be described in just a few short
emails, as there are so many ways to do things. However, that said, here is a
short sample config for an L3VPN VRF:
j...@br01. show configuration routing-instances
VPN.TEST {
instance-type vrf;
interface
Kevin, I am not using them in production but I have a personal lab of 3 J4350s
that I am pretty much doing anything and everything on. Right now I am not
currently listening to full routes, but if you don't get any decent answers
before Monday, I'll throw a couple full tables on them and give
Not sure. I know that none of my cases have ever been auto-escalated either. I
haven't had any problems manually escalating, but I agree, that is BS.
-Jeff
From: juniper-nsp-boun...@puck.nether.net [juniper-nsp-boun...@puck.nether.net]
On Behalf Of
Agreed, we had this happen on older M20s as well. Depending on your routing
table, a quick bandaid fix might be to just clean up more specific prefixes if
you can so that your forwarding table doesn't have as many entries. For
example, I have had cases where we have a bunch of smaller internal
From: The Drifter [prophecy...@hotmail.com]
Sent: Wednesday, January 07, 2009 9:26 PM
To: Richmond, Jeff; s...@clarke-3.demon.nl; faizal...@gmail.com
Cc: juniper-nsp@puck.nether.net
Subject: RE: [j-nsp] multiple lsp between 2 router
On top of this is it possible to assign b/w onto each
or differences with other junos knobs. I would
suggest getting with your SE and having them dig up the detailed info for you.
Take care,
-Jeff
From: snort bsd [snort...@yahoo.com.au]
Sent: Wednesday, December 24, 2008 10:12 PM
To: juniper-nsp; Richmond, Jeff
Subject
Here is a sample from one of my lab routers. I am just using a loopback IP
inside VRF 300, but as you can see, it is now seen in inet.0.
j...@r2 show configuration routing-instances 300
description Customer 2 VRF;
instance-type vrf;
interface lo0.300;
vrf-target target:65100:300;
How did it fail? I do this without issue. You might want to check your IBGP
next-hop policy though if your problem is just missing routes. Also, if you
have an RR client, make sure you add a static discard route in inet.3 or a
1-way LSP from the RR server to the client.
Regards,
-Jeff
One HUGE difference that should be pointed out in all fairness is that while
the M/T/J routers run JUNOS and were developed in-house, the E-series was
acquired from Unisphere and as such are nothing at all like the other routers
in terms of OS (JUNOSe is nothing like JUNOS) or hardware (even
Maybe I am not understanding what you are asking, but this is exactly what the
copy command is for:
For example:
[EMAIL PROTECTED] copy interfaces ge-0/0/0 to ge-1/0/0
That will move over the interface and all logical units associated to it.
Or, if you are doing it from router to router, just
It has been almost 2 years (if memory serves), but I did have this configured
in our lab between a couple of M10i/M7i's and a 7750. It took a bit to actually
get it to work from what I remember, but if you'd like I can dig up my old
notes and see if I have the 7750 config archived (this would
Unless something has changed in recent code versions, you cannot Telnet/SSH in
to a VR other than Default. This is very annoying to say the least...
-Jeff
From: [EMAIL PROTECTED] [EMAIL PROTECTED] On Behalf Of sunnyday [EMAIL
PROTECTED]
Sent: Monday,
You can just do a mastership switch on the CFEB, just like you would an RE. You
will experience an outage during the switch, however, so be prepared for that.
[EMAIL PROTECTED] request chassis cfeb ?
Possible completions:
master Set CFEB mastership
offline Take
You want compare. See example below:
[EMAIL PROTECTED] show system host-name
host-name br01.mcln;
[edit]
[EMAIL PROTECTED] set system host-name testrouter
[edit]
[EMAIL PROTECTED] show | compare
[edit system]
- host-name br01.mcln;
+ host-name testrouter;
Regards,
-Jeff
Just be aware that you can only do this with local routes in the VRF, not
remotely learned routes from other PEs. At one point I was wanting to make a
gateway PE using auto-export and RIB groups to enter/exit the VRF on a single
PE, which works great with local routes (interface, static, etc.),
I would really need some more info to really help, but are you pinging via the
routing instance from PE2 to PE1 and that is working (as opposed to pinging via
inet.0)? When you say PE1 has no routes, are you saying at all, or just the
VRF, inet.0, or both?
-Jeff
-Original Message-
There are a number of differences. The E320 is the way Juniper wants to go
going forward, as it addresses some of the deficiencies of the older E series
line. While we have had growing pains with the E320s in our network, some of
the new features, like LM redundancy, work great. Contact me
Indeed. What really stinks is when you have a mix of M and E series, as well as
IOS in your network. One forgets how much better JUNOS really is until you have
to go back to IOS or JUNOSe...
-Jeff
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of john
If you just mean you want to look at changes you just made in config mode but
haven't committed yet, just do a show conf. Your uncommitted changes will be
there. To compare to the running (committed) configuration, do a show |
compare rollback 0
Hth,
-Jeff
-Original Message-
From:
31 matches
Mail list logo
