After recovering from a bad upgrade by reinstalling clean from usb, EX3400 standalone (new install) can't reach login: prompt from serial console.

Seems like I am missing something simple as all the ports are active. Couldn't find any solutions in my searching. Hoping someone has seen this before.

Full details:

I ran an upgrade on my EX3400 switch (new switch, was setting up first time) using

request system software add /tmp/usb/junos-arm-32-18.2R3.4.tgz

which failed because the configuration didnt match this version. I looked that up and found a thread stating this was a problem introduced in version 17 for certain configs and I could use the `no-validate` option to ignore. I tried that, install worked, but caused a kernel panic on restart (hindsight tells me I should have been more careful with this).

So I went ahead and followed the steps to recover here (usb boot): https://kb.juniper.net/InfoCenter/index?page=content&id=KB31265&actp=METADATA

Worked great, rebooted and no kernel panic. I tried this with an 18.x version, got the no serial console login prompt issue.

So, I decided to reinstall to the original version as well just for sanity, 15.1X53-D55.5.

Still got the no login prompt when connected to serial console. I am certain my serial console is fine because it logs output right up untill here every time I reboot.

I tried running a factory-reset on config by holding the reset button on the front, no luck.

Last few lines of output always look ike this:

Starting casperd.
Starting jlaunchhelperd.
/etc/rc: WARNING: run_rc_command: cannot run 
kern.rtc_retries: 0 -> 5
Starting cron.

Thu Jan  1 00:02:18 UTC 1970
                 

Can't interact with console at all from here. Enter does nothing nor does pressing any combination of keys I could think of. My other switch shows `FreeBSD/arm (TEST) (ttyu1)` right after this and then the login prompt which this switch never reaches.

Two EX-4300 devices in virtual-chassis (master/backup RE)

VC mgmt IP: 10.232.1.100; MAC 10:0e:7e:a1:65:c0 (from the master; and from show int me0)

When debugging an intermittent mgmt ip connectivity issues (netconf/ssh) to this virtual-chassis, I noticed this on a connected ubuntu server which is acting as a gateway through which the connectivity to mgmt is established.

# tcpdump -ni ens224f1.926 'arp'
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on ens224f1.926, link-type EN10MB (Ethernet), capture size 262144 bytes
12:25:10.143623 ARP, Request who-has 10.232.1.100 tell 10.232.1.2, length 28
12:25:10.143877 ARP, Reply 10.232.1.100 is-at 44:f4:77:54:f4:80, length 46 <<<<
12:25:25.252111 ARP, Request who-has 10.232.1.1 tell 10.232.1.100, length 46
12:25:31.135626 ARP, Request who-has 10.232.1.100 tell 10.232.1.2, length 28
12:25:31.135948 ARP, Reply 10.232.1.100 is-at 10:0e:7e:a1:65:c0, length 46 <<<<

In the second line, note that the arp response comes with the backup device's mac address

Subsequent request gets a correct response (last line)

1. Is this a known issue? 

2. I fixed the mac address on me0 with a locally administered mac; after then I didn't see any connectivity issues. Is this a right approach? Would there be any issues if master failover occurs? 

> show version
fpc0:
--------------------------------------------------------------------------
Hostname: tb2-dist
Model: ex4300-48t
Junos: 19.1R3-S1
JUNOS EX Software Suite [19.1R3-S1]
JUNOS FIPS mode utilities [19.1R3-S1]
JUNOS Crypto Software Suite [19.1R3-S1]
JUNOS Online Documentation [19.1R3-S1]
JUNOS Phone-Home Software Suite [19.1R3-S1]
JUNOS jsd [powerpc-19.1R3-S1-jet-1]
JUNOS SDN Software Suite [19.1R3-S1]
JUNOS EX 4300 Software Suite [19.1R3-S1]
JUNOS Web Management Platform Package [19.1R3-S1]
JUNOS py-base-powerpc [19.1R3-S1]
JUNOS py-extensions-powerpc [19.1R3-S1]
JUNOS Openconfig [0.0.0.10-1]

fpc1:
--------------------------------------------------------------------------
Hostname: tb2-dist
Model: ex4300-24p
Junos: 19.1R3-S1
JUNOS EX Software Suite [19.1R3-S1]
JUNOS FIPS mode utilities [19.1R3-S1]
JUNOS Crypto Software Suite [19.1R3-S1]
JUNOS Online Documentation [19.1R3-S1]
JUNOS Phone-Home Software Suite [19.1R3-S1]
JUNOS jsd [powerpc-19.1R3-S1-jet-1]
JUNOS SDN Software Suite [19.1R3-S1]
JUNOS EX 4300 Software Suite [19.1R3-S1]
JUNOS Web Management Platform Package [19.1R3-S1]
JUNOS py-base-powerpc [19.1R3-S1]
JUNOS py-extensions-powerpc [19.1R3-S1]
JUNOS Openconfig [0.0.0.10-1]

helo

i know juniper EX series come with warranty 1 year support called JNPR

however, if we purchase without JNPR.  it mean if we receive defect product, ] do we have ability to claim or request RMA?

thanks

I observe a strange situation with the learning of mac addresses.

Scheme is attached.

Fact:

If any host from internet (like 2.2.2.2) try setup tcp session with my host (1.1.1.1) - my switch (QFX10002-1 and QFX10002-2) does not learn the address from the downstream switch EX4550.

In result "switch" downgrade to "hub" and "broadcast" traffic 2.2.2.2 -> 1.1.1.1 to all ports.

If I in my router MX480 try:

1) ping 1.1.1.1 from router

or

2) clear arp hostname 1.1.1.1

admin@QFX10002-nl-1> show ethernet-switching table | grep 90:b1:1c:30:3b:1e
vlan_350 90:b1:1c:30:3b:1e DR - ae3.0 0 0

admin@QFX10002-nl-2> show ethernet-switching table | grep 90:b1:1c:30:3b:1e
vlan_350 90:b1:1c:30:3b:1e DL - ae3.0 0 0

Ok. mac here.

admin@QFX10002-nl-2> show configuration protocols l2-learning

{master:0}

admin@QFX10002-nl-1> show configuration protocols l2-learning

{master:0}

MX480:

start shell
% sysctl -a | grep arp_cache
net.link.ether.inet.arp_cache_size: 2565
net.link.ether.inet.arp_cache_perm_size: -365
net.link.ether.inet.arp_cache_size_threshold: 0
net.link.ether.inet.arp_cache_timeout_size: 2034
net.link.ether.inet.arp_cache_rearp_size: 0
net.link.ether.inet.arp_cache_retry_size: 170
%

If any other details are needed, then I will write. How to properly troubleshouting and fix it.

https://imgur.com/u9Cuvf7

Hello There,

Hope All is well, I need to extend a copper cable for around 40 meter maximum as an uplink from EX 2300 to EX 4600 

what will be the part number of the SFP I shall purchase to give me a speed of 10 G for copper connection  ..

Dear,

we have upgrade our EX4550-VC with ex4550-em-2qsfp-Modules.
And also update Junos to the last recommened Version (15.1R7-S6).

If we plug 40G-QSFP+ Modules into the Devices, they will successfully detected and availible as et-0/1/0 and et-0/1/1.

If we not plugged a cable into the modules, nothing happens - no link.

But, if we remove the QSFP+, plugged in the Cable into the QSFP+ and then insert the QSPF+ with cable plugged in, then the link comes up. I have never seen such a behavior before ...

We have tested different EX4550, different ex4550-em-2qsfp-Modules and different QSFP+. Same reproducible Problem.

In our MX204 the QSFP+ work fine - so we think, that we dont have a hardware-problem.

Does any of you have an idea?

And i have seen, that since 05.06.2020 a new Junos is out (15.1R7-S7). Where can i find, if there is a possible bug in the software and fixed in this SR?

Thanks

tcz

I have 6 EX2300-24P. One of the switch will be the core switch and together with remaining five will form hub and spoke topology. There will be 3 VLANS on each switch including Management VLAN.
My questions are:
1. Do I need to define IRB L3-interface for each VLAN on every switch or just the core which will be doing the inter-vlan routing?
2. Do I at least configure RB L3-interface for Management VLAN on every switch? This is how I intend to manage the switches.
3. If I want to restrict internet access (default gateway) on one of the VLANs, how do I do that?
4. Can I setup DHCP server on the core switch for each VLANS?
5. When I try to delete the irb interface for VLANs that I defined in access switch, I get following error: 

'l3-interface irb.48'
Interface must already be defined under [edit interfaces]
error: commit failed: (statements constraint check failed)

6. How do I delete or undo configuration changes made by set command, e.g.

user@switch# set vlans support vlan-id 111
user@switch# set interfaces irb unit 111 family inet address 10.0.0.X/8
user@switch# set vlans support l3-interface irb.111

How do I untie vlan 111 from irb.111 and delete it?

hi all, I have issue when powerd up EX4200, poe is configured on all ports but seems that opeational status is off, this is config: 

set poe interface all
set poe interface all telemetries
set poe interface ge-0/0/0 disable
set poe interface ge-0/0/1 disable
set poe interface ge-0/0/2 disable
set poe interface ge-0/0/10 disable
set poe interface ge-0/0/11 disable

output of show commands:

# run show poe interface
Interface    Admin       Oper    Max        Priority       Power          Class
             status      status  power                     consumption
 ge-0/0/0    Disabled    Disabled 0.0W      Low            0.0W           not-applicable
 ge-0/0/1    Disabled    Disabled 0.0W      Low            0.0W           not-applicable
 ge-0/0/2    Disabled    Disabled 0.0W      Low            0.0W           not-applicable
 ge-0/0/3    Enabled     OFF     15.4W      Low            0.0W           not-applicable
 ge-0/0/4    Enabled     OFF     15.4W      Low            0.0W           not-applicable
 ge-0/0/5    Enabled     OFF     15.4W      Low            0.0W           not-applicable
 ge-0/0/6    Enabled     OFF     15.4W      Low            0.0W           not-applicable
 ge-0/0/7    Enabled     OFF     15.4W      Low            0.0W           not-applicable
 ge-0/0/8    Enabled     OFF     15.4W      Low            0.0W           not-applicable
 ge-0/0/9    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/10    Disabled    Disabled 0.0W      Low            0.0W           not-applicable
ge-0/0/11    Disabled    Disabled 0.0W      Low            0.0W           not-applicable
ge-0/0/12    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/13    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/14    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/15    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/16    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/17    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/18    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/19    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/20    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/21    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/22    Enabled     OFF     15.4W      Low            0.0W           not-applicable
ge-0/0/23    Enabled     OFF     15.4W      Low            0.0W           not-applicable

# run show poe controller
Controller  Maximum   Power         Guard    Management   Status        Lldp
index       power     consumption   band                                Priority
   0**      410.00W   0.00W           0W     Static       AF_MODE       Disabled

# run show poe telemetries
Interface  Sl No    Timestamp                Power    Voltage
 ge-0/0/4     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
 ge-0/0/5     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
 ge-0/0/6     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
 ge-0/0/7     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
 ge-0/0/8     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
 ge-0/0/9     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/12     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/13     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/14     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/15     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/16     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/17     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/18     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/19     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/20     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/21     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/22     1     03-13-2014 10:06:05 UTC  0.0W     51.6V
ge-0/0/23     1     03-13-2014 10:06:05 UTC  0.0W     51.6V

any idesa why operational status is off? hoiw can I convert port to supply 24V instead 51.6V? 51.6V might be to high for APs

Hello,

Recently we used Arista with MLAG feature for redundancy and now are have in mind to use 2x QFX 3500 for one of our pop sites, can any one explain me how can i configure mc-lag between this 2x qfx3500 ?

i have 5 rack and every rack has ex4200 as top of rack switch and one of the ex4200 10gb port is connected to qfx3500 #1 and other one is connecte to qfx3500 #2

THanks,

Hi

I want to discover neighbor through LLDP but there's no LLDP command on M120.

Any features can do like that?

Hello,

We have some qfx3500 that their airflow are front to back so the cool air is entering from front of the chassis and exit from back of the chassis which 48x 10g is located, so my question is when hot air exit from 48x 10g port side, it does not cause warm/hot air cause failure for fibers or optics?

because we have cold coridor and hot coridor and then the cold air enter from front and exit from back, i am curoius if fibers or optics fail due to warm/hot air ,

THank you.

I installed Junos 18.3R3.4 on an EX2300 switch.  I also updated JWeb to 18.2A1.  The switch passes traffic without issue.  The problem is that after a week or two the switch itself cannot be contacted.  JWeb doesn't work.  SSH doesn't work.  I cannot ping the switch's IP address.  But devices connected to the switch are still communicating to the rest of the network fine.

If I reboot the switch, I can connect to it again.  However this will go away after a week or two.

Hi, can anyone that has sucsessfully configured vlan translation on an double tag frame please share a working configuration. I have managed to do this a MX, and also suceeded on doing a single tag translation on the QFX, but for some reason i just can not get it working on a dual tagged frame. An example is a have a frame with outer tag 10 and inner tag 20 coming from router 1. When it exsit the eggress interface toward router 2 the frame must be outer tag 11 and inner tag 20.Obviously when the response returns it should be translated back to outer 10 inner 20. As mentioned i got this working on a single tag, what i did notice is when i do a wire shark capture i see that the outer tag did get translated by now there is no inner tag anymore, so incoming frame is outer 11 inner 20 and on eggress it now only tag 10, inner 20 got lost, Anyone that has done this sucsessfully will appriciate your feedback.

Hello,

Please can any one explain to me what is the main difference between these :

EX4600-40F-AFI-T

EX4600-40F-AFO

EX4600-40F-AFI

I just  checked the datasheet but didn't get it well ..

I think front to back and back to front is one reason but , How to choose the suitable ?

Hiya.

I am fairly new at JunOS so grateful for any help on the below:

I am attempting to configure mac security on access ports on my EX2300 (18.1R3) but I just want to trap the mac violation and not shutdown or drop the packet.

According to the manual it is a simple case of doing the following:

set switch-options interface ge-0/0/0 interface-mac-limit 1 packet-action log

The command takes but on a commit check I get the following:

interface mac limit should be configured with drop/drop-and-log/shutdown action

Does anyone know why I can't set a mac limit of 1 and just log a violation?

Is it a limitation of the firmware?

Grateful for any help

Hi All,

I would like to understand how to read the value "Age" when I run the command show ethernet-switching table on ex-3300.

From here: https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/mac-table-aging-time-bridging.html

Default
Entries remain in the Ethernet switching table for 300 seconds.

Now, if i run the command

show ethernet-switching table vlan 123

I see for example

show ethernet-switching table vlan 123
Ethernet-switching table: 82 unicast entries
  VLAN              MAC address       Type         Age    Interfaces
  vlan123           *                 Flood                            - All-members
  vlan123           00:xx:xx:xx:xx:xx Learn            0           xe-0/1/2.0
  vlan123           00:yy:yy:yy:yy:yy Learn          0          xe-0/1/2.0

The "Age" field is set to 0 but the mac-address 00:xx:xx:xx:xx:xx seems to me that is not removed from mac addrees table and keep on appearing in the above output.

Reading documentation i was expecting that the switch after 300 second is simply removing the mac that so is considered inactive so i would not see it again the ethernet-swithcing table output. Am I missing something?

Thanks.

Hi All,

We are currently running with OS 14.1X53-D46.7 on EX4300-48p VC (total -6 switches). I would like to upgrade with new junos suggested released version - Junos 18.4R2-S3. 

Can I directly go from 14.1X53-D46.7 to 18.4R2-S3? 

Can I reboot single member in the VC? If yes, do I need to issue reboot cmd from the master or member?

Thank you.