Quantcast
Channel: Ethernet Switching topics
Viewing all 2326 articles
Browse latest View live

who controls redundancy? ae on EX4550 to reth SRX1400

July 24, 2017, 6:36 pm
$
0
0

hi there,

 

Sorry if this has been answered somewhere, but I've searched high and low without a clear cut answer.

 

We have a setup of two AE links (both with a single 10g member, configured as trunks) originaiting from a VC master and backup respectively, to an SRX cluster reth which will do vlan tagging:

 

LACPactive                                                  LACPpassive

EXmaster0Smiley Sadxe-0/0/1)ae0<--------------->SRX:node0:reth1(xe-0/0/1)

EXbackup1Smiley Sadxe-1/0/1)ae1<-------------->SRX:node1:reth1(xe-4/0/1)

 

It's my understanding that AE will load balance across links, essentially behaving in an active/active state, where as reth traffic is more active/passive behaviour. 

 

I'm wondering which takes precedence when there is:

 

A.is no redundancy group interface monitoring on the srx configured:

 

>show configuration interfaces reth1

vlan-tagging;
redundant-ether-options {
    redundancy-group 1;
    lacp {
        passive;
        periodic slow;
    }
}

 

 

 

B. is redundancy group interface monitoring configured such as below:

 

redundancy-group 1 {
    node 0 priority 100;
    node 1 priority 1;
    preempt;
    gratuitous-arp-count 4;
    interface-monitor {
        xe-0/0/1 weight 255;
        xe-4/0/1 weight 255;

    }

}

 

 

any insight into the above will be much appreciated

 

cheers!

 

Search

Overlapping subnet is configured under irb ERROR

July 27, 2017, 2:33 am
$
0
0

EXISTING
set interfaces irb unit 1 family inet address 10.205.35.115/24


CHANGE REQUIRED
set interfaces irb unit 1 family inet address 10.205.35.115/25


STEPS FOLLOWED
delete interfaces irb unit 1 family inet address 10.205.35.115/24
set interfaces irb unit 1 family inet address 10.205.35.115/25


FACING ERROR
error: Overlapping subnet is configured under irb
[edit interfaces irb unit 1 family inet]
  'address 10.205.35.115/25'
error: configuration check-out failed

QFX10k disable port 0 & 2 when port 1 is 100g

July 27, 2017, 8:01 am
$
0
0

Hello,

 

I'm using Ansible to configure my QFX10k.

I've got an error when I configure my ports in 100g :

fatal: [SD-SRV-C012-1]: FAILED! => {"changed": false, "failed": true, "msg": "Unable to load config: ConfigLoadError(severity: warning, bad_element: None, message: warning: Port 24 and 26 will be disabled or enabled when port 25 in 100g mode is enabled or disabled\nwarning: Port 27 and 28 will be disabled or enabled when port 29 in 100g mode is enabled or disabled\nwarning: Port 30 and 32 will be disabled or enabled when port 31 in 100g mode is enabled or disabled\nwarning: Port 33 and 34 will be disabled or enabled when port 35 in 100g mode is enabled or disabled)"}

In my template, I just configured the port to 100g:

set chassis fpc 0 pic 0 port 25 speed 100g
set chassis fpc 0 pic 0 port 29 speed 100g
set chassis fpc 0 pic 0 port 31 speed 100g
set chassis fpc 0 pic 0 port 35 speed 100g

I've tried to disable port 24 and 26:

set interfaces et-0/0/24 disable
set interfaces et-0/0/26 disable

The problem is the same.

How can I disable this ports in CLI ?

 

Thank you

2 members Virtual chassis traffic handling

July 28, 2017, 1:46 am
$
0
0

Hi all,

 

I 've tested 2 x EX4300 formed as virtual chassis in order to increase the port density but it seems not work, as we all know, one switch will be the master and other will be backup under virtual chassis technology. However, when I plug the cable connect to the backup switch, it can not transit traffic while connecting to master switch is work. Is there any misconfiguration? Or backup switch will not handle any data traffic?

 

 

Strange log messages in EX2300

July 28, 2017, 7:09 am
$
0
0

Hello! I have brand new EX2300-48. After basic configuration I've notice a strange lines in message logs:

 

fpc0 PFESVCS: Input IFL not found
dc-pfe: PFESVCS: Input IFL not found

They appear in log constantly with interval 10-30 seconds.

 

Model: ex2300-48t
Junos: 15.1X53-D55.5

I did googled and didn't find anything about this messages. What can be a reason? Thank you!

Upgrading JUNOS on 2 EX3300 switches in a Virtual Chassis setup Using J-WEB

July 31, 2017, 10:08 am
$
0
0

Can someone provide me the step by step instructions on how to upgrade the JUNOS on 2 EX3300 switches in a Virtual Chassis setup using J-WEB. If it is not possible using J-WEB, can someone please provide me the step by step instructions using CLI.

EX4500 Dropped Packets

July 31, 2017, 11:42 am
$
0
0

We were running Junos 12.3 R11.2 on our EX4500 Core, an EX4500 in our DR site, and all of our EX4200 edge switches

We upgraded all of them to Junos 15.1 R5

We use Veeam for backup and replication and two Nimble arrays, one in production and one in DR

While a backup or replication job runs which pipes data through the EX4500 in production to the EX4500 in DR., we are seeing dropped packets. This is a 10 gig connection that we are not even close to saturating. This did not happen under the previous version of Junos.

 

Any idea on where to start with troubleshooting this?

 

Here is the 10 gig interface from the EX4500 in our DR site to the Nimble array showing the output drops

 

Output errors:
Carrier transitions: 0, Errors: 0, Drops: 834, Collisions: 0, Aged packets: 0,
FIFO errors: 0, HS link CRC errors: 0, MTU errors: 0, Resource errors: 0

New to JunOS configuration

August 1, 2017, 5:16 am
$
0
0

I have an EX3300 stack in my core MDF closet and various model Cisco stacks in the edge closets.I need to configure a VLAN and associated ports on the EX3300 stack and I'm very familiar with the JunoOS CLI. For comparison purposes, here's a working VLAN:

 

interface-range mdf_ports {
member "ge-3/0/[0,1]";
member ge-3/0/26;
member-range ge-0/0/0 to ge-0/0/47;
member-range ge-1/0/0 to ge-1/0/34;
member-range ge-2/0/0 to ge-2/0/47;
member-range ge-4/0/0 to ge-4/0/47;
member-range ge-3/0/9 to ge-3/0/15;
member-range ge-3/0/18 to ge-3/0/24;
member-range ge-3/0/32 to ge-3/0/35;
member-range ge-3/0/40 to ge-3/0/46;
member-range ge-1/0/36 to ge-1/0/47;
unit 0 {
family ethernet-switching {
port-mode access;
vlan {
members OBHS_MDF;

 

The VLAN I need to configure currently looks like this:

 

interface-range OBHS_Security {
member-range ge-4/0/1 to ge-4/0/22;
unit 0 {
family ethernet-switching {
port-mode access;
vlan {
members OBHS_Security

 

I get as far as the unit 0 command and the CLI will not except that input...also need to confirm if I have the VLAN created and configured correctly.

Search

Heat output from EX switches

August 3, 2017, 2:53 am
$
0
0

Does anyone know what the heat output is for the EX3400 & EX2200-C? I can not find this information anywhere.

QFX5100 MC-LAG with QinQ

August 3, 2017, 1:26 pm
$
0
0

I have a problem with my qfx5100.

 

we have a downstream device that is connected into the mc-lag pair.

this downstream device sends up 4 vlan tags.

 

we want to add an S-TAG to these vlans and send out via the uplink.

 

when we add the downstream interface as:

 

unit 0 family ethernet-switching interface-mode trunk vlan members [ w x y z ]

 

we see that the MC-LAG part is working properly and that when looking at the ethernet table we can see MAC addresses learnt DL and DR ( Dynamic Local and Dynamic Remote ).

But we cant determine how to perform QinQ with this syntax.

 

when we look at the QinQ documentation we switch the configuration to the following syntax:

 

set flexible-vlan-tagging

encapsulation extended-vlan-bridge

unit 100 vlan-id-list [ w x y z ]

unit 100 input-vlan-map push

unit 100 output-vlan-map pop

 

in this case we achieve the QinQ functionality but the MC-LAG learning doesnt seem to be working correctly.

 

any ideas??

Private VLAN

August 4, 2017, 7:37 pm
$
0
0

Hi all, 

I have a topology shown below
Capture.GIF
Two switches run VLAN with two primary VLAN 100 and 200. Two primary VLAN 100 and 200 also have secondary VLAN community VLAN 40. The interface connects between two switches is run trunk member VLAN 100 and VLAN 200 as well as pvlan-trunk 

[edit vlans]
root@sw1# show pvlan-100
vlan-id 100;
interface {
   ge-0/0/12.0 {
      pvlan-trunk;
   }
no-local-switching;

[edit vlans]
root@sw1# show pvlan-200
vlan-id 200;
interface {
   ge-0/0/12.0 {
      pvlan-trunk;
   }
no-local-switching;

[edit interface ge-0/0/12.0 family ethernet-switching]
root@sw1# show
vlan members [pvlan-100 pvlan-200]
interface-mode trunk



So, is the configuration valid? And Does PC2 ping PC3 successfully? Does the same result with PC1 ping PC4?

Thank all,
Hoang Nguyen HUy 

Set Switch as a DHCP server, using DHCP relay. Which takes precedence over the other?

August 5, 2017, 1:40 am
$
0
0

Hi folk, 

Between configuring a switch as a DHCP server and deploying simultaneous DHCP reply.
Which configuration takes precedence over the other?

Topology:

[Client PC] --- ge-0/0/0 [EX Switch] ge0/0/1 --- [DHCP Server: 20.20.20.2]

    • Client PC is in VLAN 10.

 

    • The DHCP server is in VLAN 20 with the 20.20.20.2 IP address.

 

  • The EX switch is configured as DHCP relay and performs inter VLAN routing between VLANs 10 and 20.


Configuration:

set vlans vlan10 vlan-id 10
set interfaces ge-0/0/0 unit 0 family ethernet-switching vlan members vlan10
set vlans vlan10 l3-interface vlan.10
set interfaces vlan unit 10 family inet address 10.10.10.1/24

set vlans vlan20 vlan-id 20
set interfaces ge-0/0/1 unit 0 family ethernet-switching vlan members vlan20
set interfaces vlan unit 20 family inet address 20.20.20.1/24
set vlans vlan20 l3-interface vlan.20

// dhcp relay
set forwarding-options helpers bootp server 20.20.20.2
set forwarding-options helpers bootp interface vlan.10

// as a dhcp server
set system services dhcp pool 10.10.10.0/24 address-range low 10.10.10.2
set system services dhcp pool 10.10.10.0/24 address-range high 10.10.10.252
set system services dhcp pool 10.10.10.0/24 router 10.10.10.1

 Thank all, Smiley Happy 

Duplicate Frames IRB

August 5, 2017, 9:40 pm
$
0
0

Noticed that even after a factory reset to defaults, the switch will will duplicate broadcast frames if the default vlan is attached to a L3 IRB interface. When two switches are connected, end hosts see 4 double frames instead of 1, the more switches in a chain the more multiplication of frames at the furthest switch. Noticed this behaviour on the EX3400, can anyone else confirm this on their end? Very easy to spot with DHCP messages.

vQFX MC-LAG ICCP issue

August 6, 2017, 6:45 am
$
0
0

Hello,

I'm trying to setup vQFX nodes to run MC-LAG. Unfortunetlly without any success. I can't ping over ICP-PL link and can't see any MAC entries or ARP.

 

Model: vqfx-10000
Junos: 15.1X53-D63.9

 

set interfaces ae0 description "ICP-PL Link"
set interfaces ae0 aggregated-ether-options lacp active
set interfaces ae0 aggregated-ether-options lacp periodic fast
set interfaces ae0 unit 0 family ethernet-switching interface-mode trunk
set interfaces ae0 unit 0 family ethernet-switching vlan members MGMT
set interfaces ae0 unit 0 family ethernet-switching vlan members ICCP

!

set protocols iccp local-ip-addr 10.4.10.1
set protocols iccp peer 10.4.10.2 session-establishment-hold-time 50
set protocols iccp peer 10.4.10.2 redundancy-group-id-list 3
set protocols iccp peer 10.4.10.2 backup-liveness-detection backup-peer-ip 10.1.50.231
set protocols iccp peer 10.4.10.2 liveness-detection minimum-receive-interval 1000
set protocols iccp peer 10.4.10.2 liveness-detection transmit-interval minimum-interval 1000

!

set vlans ICCP vlan-id 54
set vlans ICCP l3-interface irb.54
set vlans MGMT vlan-id 50
set vlans MGMT l3-interface irb.50

set interfaces irb unit 50 family inet address 10.1.50.230/24
set interfaces irb unit 54 family inet address 10.4.10.1/24

====================================================

 

download vqfx10k-re-1x53-d60.vmdk

August 6, 2017, 9:44 pm
$
0
0

Hello,

 

How can i download image vqfx10k-re-1x53-d60.vmdk trial for gns3?

its for study porpuse.

 

Thanks

Search

QFX10002-36Q as internet router

August 7, 2017, 10:14 am
$
0
0

Anyone using the QFX10002-36Q as an internet router? 

Looking at using it in a site with about +3M routes in the RIB and about 650K in the FIB.

I know there are some new licneses required to unlock those features, but curious if anyone is running them at this scale

Can a VC be migrated from 10G SFP+ to 40G QSFP+ live?

August 8, 2017, 7:45 am
$
0
0
Hello jnet community,

I have a 6 node EX4600 vitual chassis that was initially installed over 10G SFP+ links while the 40G QSFP+ cables are on the way. Is it possible to switch the VC links without downtime? Would adding the 40g links with "request virtual-chassis vc-port set ..." Configure the VC ports with both 10g and 40g links? I know that the different media will not LAG together into in the VCs.

These switches are iSCSI so no interruption can occur with connected hosts. I would love to be able to do this live.

Thanks

Troubles with communicating to Switch on any interface.

August 8, 2017, 3:06 pm
$
0
0

Good afternoon everone,

Our EX3300 died recently and i purchased a EX3400 to replace it. Unfortunately the language is slightly different. Uploading the configuration from 3300 to 3400 does not work. I attemped to use the translation software but had problems with RVI. 

 

Currently my symptoms include the following. 

When plugged into any port on switch i am unable to ping switch or pass any traffic. It was like this right after ezsetup. I had to use out of band management to start config. Below is a copy of our configuration. Take a look. Hopefully someone here can see what i am missing. 

 

vccpd[1206]: vccpd_copy_role_info: role_info add id:54.4b.8c.aa.f1.20

August 9, 2017, 11:56 am
$
0
0

Hi ,

I'm seeing messages file flooded with the following message (id varies)

 

Jul  7 11:12:28  RZ_DTCPI_SWC_CORE_03 vccpd[1206]: vccpd_copy_role_info: role_info add id:54.4b.8c.aa.f1.20

 

to what it might be related to?

 

QFX mixed mode (QFX5100 e EX4300)

version 14.1X53-D30.3

 

thanks and regards

High Latency Pings in Local VLAN Gateway

August 9, 2017, 9:47 pm
$
0
0

Hi, I have an EX3300 network with QFX5100 at core switch and i am experiencing slow ping times when pinging the default gateway (10.107.14.1) from user end (say 10.107.14.145).
Ping times are greater than 15ms is typical.

This is from a client to the gateway.
Reply from 10.107.14.1: bytes=32 time=25ms TTL=64
Reply from 10.107.14.1: bytes=32 time=30ms TTL=64
Reply from 10.107.14.1: bytes=32 time=18ms TTL=64
Reply from 10.107.14.1: bytes=32 time=45ms TTL=64
Reply from 10.107.14.1: bytes=32 time=17ms TTL=64
Reply from 10.107.14.1: bytes=32 time=21ms TTL=64


The topology is that VLAN Gateway is on QFX5100 and ping is being send from end user system connected to EX3300.


What makes it weirder is when I do a ping to any other system in the VLAN (say 10.107.14.30), it consistently gives me =1ms/=2ms which is what it should be.

This is from a client to one of the other IP in VLAN.
Reply from 10.107.14.30: bytes=32 time=1ms TTL=64
Reply from 10.107.14.30: bytes=32 time=2ms TTL=64
Reply from 10.107.14.30: bytes=32 time=2ms TTL=64
Reply from 10.107.14.30: bytes=32 time=2ms TTL=64
Reply from 10.107.14.30: bytes=32 time=1ms TTL=64
Reply from 10.107.14.30: bytes=32 time=2ms TTL=64


How can I improve the default gateway ping response? Any help is greatly appreciate.

Viewing all 2326 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>