Hi everyone,
I want to limit bandwidth on the interface of switch EX3200 so what I have to do for this?
Please help me, thanks very much.
↧
How to limit bandwidth on the interface of ethernet switch EX3200
↧
VCP status on QFX5110-48S Virtual Chassis
Hello community,
I am required to do two-members virtual chassis on QFX5110-48S with single 100GE port. Before put it into production, I am testing with single 40GE port instead. I notice that Trunk ID is -1.
> show virtual-chassis vc-port
localre:
--------------------------------------------------------------------------
Interface Type Trunk Status Speed Neighbor
or ID (mbps) ID Interface
PIC / Port
0/48 Configured -1 Up 40000 1 vcp-255/0/48
fpc1:
--------------------------------------------------------------------------
Interface Type Trunk Status Speed Neighbor
or ID (mbps) ID Interface
PIC / Port
0/48 Configured -1 Up 40000 0 vcp-255/0/48
Questions are:
1. Is it ok and traffic working normally with -1 value?
2. Is it ok to do with single 100GE for VPC?
Thanks and regards,
↧
↧
unrequested reboot of EX2300
Hi, we have three EX2300 switches (2x 48T , 1x 24P). Today all three switches performed an unrequested reboot, all of them within only some minutes. It was the second time that this happened.
All switches are running "18.3R1.9",
All show "Last reboot reason 0x20000
wizzle reboot".
All show "% sysctl hw.re.reboot_reason
hw.re.reboot_reason: 131072".
Any ideas what is going wrong here?
Thank you for your help
Regards
↧
1GE copper on QFX5110-48S
Hello,
I read some documents and still not be able to find a good understanding whether QFX5110-48S support 1GE copper?
Appreciate any input.
↧
Difference between SFP-1GE-T and GLC-T/1000BASE-T SFP
Can anyone tell me the difference between Junper compatible SFP-1GE-T and Cisco GLC-T (or Generic IEEE std 1000BASE-T) SFP and why? Our EX2300-24P swith's SFP/SFP+ ports don't recognize GLC-T or 1000BASE-T.
↧
↧
Moved uplink module to a different switch won't work
Hello,
Basically what i'm trying to do is replace a couple of EX3200 edge switches, each with their own fibre uplink module, with a stacked pair of EX4200s thus reducing the number of fibre connections to the core switch from 2 to 1. I have take the uplink module out of one of the EX3200s and put it into the master EX4200. I created a new IP address for accessing the new switch on vlan interface unit 0 and gave it a new host name.
I just can't get any IP connectivity to the core switch, nor from the core switch to the new edge switch. They do see each other as LLDP neighbours though.
As on the old switch I set a static route to the core using the routing-options command.
I also tried moving the SFP/fibre connector to a different slot on the uplink module.
I made sure the link is set as trunk, with all vlans tagged and default as the native VLAN all on both ends of the connection exactly the same.
I made sure the speed and duplex are the same and the link negotiation has completed.
Rebooted the switch.
Nothing seems to work. When I ping the core I get 100% packet loss and likewise from the core to the new edge switch. I can ping the IP of the new switch locally though just fine.
However as soon as I put the uplink module back into the old switch it works just fine.
Happy to provide any further details.
Any suggestions would be greatly appreciated!
↧
QinQ Tunneling on QFX5110
Hello,
I have read some documents but I could not find a good solution to make QinQ tunneling work on QFX5110-48s with Junos 17.3R3.10. The attached file is the sample network connectivity.
Appreciate for any advices or example configuration.
Thanks and regards,
↧
QFX-5100 DHCP Relay Broken under 18.4?
I've upgraded a pair of QFX5100s to run 18.4R1, and DHCP relaying is now broken... I rolled-back to 18.3 on one of them, and the previous functionality was restored. Looks like new functionality with "tenants" was implemented, but that appears to break the base functionality.
Looking to see if anyone else is seeing this, and to give a heads-up to Juniper Support. PM me for a PCAP.
↧
Firewall filter for ethernet-switching issue
Hi,
I have a couple of access-ports in a vlan (on an EX3300 running 12.3R7.7, one particular port should only allow traffic from specific ip-addresses.
I thought that would be straight forward so i configured it like this:
> show configuration firewall family ethernet-switching filter server-oob
term oob-access {
from {
source-address {
10.146.77.15/32;
172.16.18.44/32;
}
}
then accept;
}> show configuration interfaces ge-1/0/26
description "Server OOB";
unit 0 {
family ethernet-switching {
port-mode access;
vlan {
members s-oob;
}
filter {
output server-oob;
}
}
}So the servers OOB port is connected to ge-1/0/26 and the addresses that should be allowed access to that interface is coming from other vlans.
When i commit this all traffic stops to that interface, why is that? And why is the traffic from the specific addresses not allowed?
If i remove the filter on the port, traffic flows fine.
Kind Regards
↧
↧
Cisco qos to Juniper cos config
Hi,
Please find attached cisco layer 2 switch configuraiton and help me to convert the same into Juniper COS.
Thank you...
↧
EX-SFP-1GE-T for SRX1500 HA Control Port
Hi All,
Good day!
Had anyone from this group experienced on using EX-SFP-1GE-T as the transceiver module for SRX1500 HA Control Port?
Your response is highly appreciated.
Thank you in advanced.
↧
EX4300-32F QSFP+ ports on the rear.
Hi everyone.
By default 2 QSPF+ ports on the rear are configured for VCP. Can we use 10G SFP+ to build Virtual chasis for longer distance on QSFP+ ports ? For example, in Brocade , we can use QSPF+ ports with 10GSFP+ to build chassis , the trade off is speed.
Additional info:
We have three EX4300-32F which are 80 meter apart, these switches have no uplink module ( 10GSFP+) but do have built in QSFP+ ports .
Thanks,
Have a good night!!
↧
Traffic not pass through l2circuit while it is showing UP - EX4550
Hi all,
I'm facing an issue with traffic through l2circuit, no traffic is going on that circuit while is showing UP others l2circuit is working (pass traffic).
I have a bockbone with 13 juniper EX4550 running all 12.3R12-S7, ldp and rsvp all enable on mpls interfaces.
between EX4550 cg-sw1 and cg-sw1 a circuit is configure as below
cg-sw1#
set interfaces xe-0/0/10 description "L2L Customer A"
set interfaces xe-0/0/10 mtu 9216
set interfaces xe-0/0/10 encapsulation ethernet-ccc
set interfaces xe-0/0/10 unit 0 family ccc
set protocols l2circuit neighbor 192.168.200.6 interface xe-0/0/10.0 virtual-circuit-id 2006
cg-sw6#
set interfaces xe-0/0/2 description "L2L Customer A"
set interfaces xe-0/0/2 mtu 9216
set interfaces xe-0/0/2 encapsulation ethernet-ccc
set interfaces xe-0/0/2 unit 0 family ccc
set protocols l2circuit neighbor 192.168.200.1 interface xe-0/0/2.0 virtual-circuit-id 2006
The circuit is UP has below but not traffic is passed:
cg-sw1> show l2circuit connections neighbor 192.168.200.6 interface xe-0/0/10.0
Layer-2 Circuit Connections:
Legend for connection status (St)
EI -- encapsulation invalid NP -- interface h/w not present
MM -- mtu mismatch Dn -- down
EM -- encapsulation mismatch VC-Dn -- Virtual circuit Down
CM -- control-word mismatch Up -- operational
VM -- vlan id mismatch CF -- Call admission control failure
OL -- no outgoing label IB -- TDM incompatible bitrate
NC -- intf encaps not CCC/TCC TM -- TDM misconfiguration
BK -- Backup Connection ST -- Standby Connection
CB -- rcvd cell-bundle size bad SP -- Static Pseudowire
LD -- local site signaled down RS -- remote site standby
RD -- remote site signaled down XX -- unknown
Legend for interface status
Up -- operational
Dn -- down
Neighbor: 192.168.200.6
Interface Type St Time last up # Up trans
xe-0/0/10.0(vc 2006) rmt Up Jan 7 18:40:49 2019 1
Remote PE: 192.168.200.6, Negotiated control-word: Yes (Null)
Incoming label: 308432, Outgoing label: 306320
Negotiated PW status TLV: No
Local interface: xe-0/0/10.0, Status: Up, Encapsulation: ETHERNET
{master:0}
cg-sw1>
What is very strange to me is, if I disable and enable port, traffic start going trough but, an other l2circuit stop forwarding traffic at the same time on the equipement traffic while is showing UP and all others continue to work.
I have done traceoptions under [protocols l2circuit] no trace collect as all l2circuit is showing UP, note that on juniper EX4550 I can't perform ping mpls (not support), do some one faced already this issue ? do you have an idea, who to troubleshoot well and solve this issue ?
I was thinking may be the issue is the PFE (Packet Forwarding Engine), I checked "show pfe route ip/mpls" all labels are exchange well.
Any suggestion will be wellcome.
Thank you.
↧
↧
Interface won't come on
Hi there
I noticed that any interface NOT assigned to a interface-range will not power on. Case in point
ge0/0/16 will not come on when assigned to a specific vlan. However when it assigned as part of a member range it comes on with no issues. What am I missing? I'm really new to Junos and learning as I go. The cisco side of my brain is screaming!!!
↧
pem_tvp_periodic
Hi,
in my chassis Logfile I've tons of those messages:
Jan 10 01:47:59 pem_tvp_periodic cbd=9518940 slot=1, state=1
Jan 10 01:48:04 pem_tvp_periodic cbd=9518940 slot=1, state=1
Jan 10 01:48:04 pem_tvp_periodic cbd=9518940 slot=1, state=1
Jan 10 01:48:09 pem_tvp_periodic cbd=9518940 slot=1, state=1
this repeats every few seconds and it is always the same message. I allready google and search the forum but didn't found anything about it. Can anyone explain where they came from and how to stop it?
System is a QFX5200 in VC with 2 Members.
THX
--Manuel
↧
EX2300 fpc0 LBCM-L2,pfe_bcm_l2_mac_add()
I do not remember seeing this many log messages before, is this normal for the switch to enter alot of these.?
Jan 12 09:20:25 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:25 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:27 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:27 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:27 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:27 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:28 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:14:38:5B:99:F3 Jan 12 09:20:28 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:14:38:5B:99:F3 Jan 12 09:20:28 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:14:38:5B:99:F3 Jan 12 09:20:28 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:14:38:5B:99:F3 Jan 12 09:20:28 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:14:38:5B:99:F3 Jan 12 09:20:28 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:14:38:5B:99:F3 Jan 12 09:20:28 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:14:38:5B:99:F3 Jan 12 09:20:28 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:14:38:5B:99:F3 Jan 12 09:20:29 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:29 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:29 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:29 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:29 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:29 132-SITE dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 1 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9 Jan 12 09:20:29 132-SITE fpc0 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:0B:AB:F6:D4:B9
↧
4300-MP Optics question
Swapped out 4300-48p with a 4300-48MP yesterday .. Im getting this a log about ever 10 minutes or so..
My google fu is not helping me understand what and why im getting this message. ? Im going to swap out the SFP Monday with a Juniper SFP just to see if that fixes the issue.. We never seen this log before when we ran the ex4300-48P.. Heck maybe its the new mondule for the 4300-MP..
Anyways here is my log if anyone can tell me about this warning..
Jan 12 10:20:51 rni2 fpc1 sfp-1/2/2 link 2 SFP voltage high warning cleared
Jan 12 10:20:57 rni2 fpc1 sfp-1/2/2 link 2 SFP voltage high warning set
snip show chassis hardware
PIC 2 REV 05 650-080740 XS0218490032 4x10G SFP+
Xcvr 2 NON-JNPR SPC191000MG SFP+-10G-LR
show interfaces diagnostics optics xe-1/2/2
Physical interface: xe-1/2/2
Laser bias current : 30.838 mA
Laser output power : 0.5870 mW / -2.31 dBm
Module temperature : 27 degrees C / 80 degrees F
Module voltage : 3.4650 V
Laser receiver power : 0.1870 mW / -7.28 dBm
Laser bias current high alarm : Off
Laser bias current low alarm : Off
Laser bias current high warning : Off
Laser bias current low warning : Off
Laser output power high alarm : Off
Laser output power low alarm : Off
Laser output power high warning : Off
Laser output power low warning : Off
Module temperature high alarm : Off
Module temperature low alarm : Off
Module temperature high warning : Off
Module temperature low warning : Off
Module voltage high alarm : Off
Module voltage low alarm : Off
Module voltage high warning : On
Module voltage low warning : Off
Laser rx power high alarm : Off
Laser rx power low alarm : Off
Laser rx power high warning : Off
Laser rx power low warning : Off
Laser bias current high alarm threshold : 80.000 mA
Laser bias current low alarm threshold : 12.000 mA
Laser bias current high warning threshold : 75.000 mA
Laser bias current low warning threshold : 15.000 mA
Laser output power high alarm threshold : 2.2380 mW / 3.50 dBm
Laser output power low alarm threshold : 0.0600 mW / -12.22 dBm
Laser output power high warning threshold : 1.1220 mW / 0.50 dBm
Laser output power low warning threshold : 0.1510 mW / -8.21 dBm
Module temperature high alarm threshold : 75 degrees C / 167 degrees F
Module temperature low alarm threshold : -5 degrees C / 23 degrees F
Module temperature high warning threshold : 70 degrees C / 158 degrees F
Module temperature low warning threshold : 0 degrees C / 32 degrees F
Module voltage high alarm threshold : 3.630 V
Module voltage low alarm threshold : 2.970 V
Module voltage high warning threshold : 3.465 V
Module voltage low warning threshold : 3.135 V
Laser rx power high alarm threshold : 2.2387 mW / 3.50 dBm
Laser rx power low alarm threshold : 0.0145 mW / -18.39 dBm
Laser rx power high warning threshold : 1.1220 mW / 0.50 dBm
Laser rx power low warning threshold : 0.0363 mW / -14.40 dBm
↧
↧
dot1x default config.
Hi everyone,
Please consider the following example:
PC ---------f1 EX SEf2--10.10.10.1----10.10.10.2 Radius server.
PC and radius server are configured for username test, password test . EX and radius server uses secret key king.
Design goal:
As long as PC provides correct user name test password test, port should be moved to authenticated state on EX.
Assume PC and radius server are correctly configured, what is the minimum config needed to acheive the above goal?
Below are my config:
set protocols dot1x authenticator authentication-profile-name test
set protocols dot1x authenticator interface f1/1
set protocols access radius-server 10.10.10.2 port 1812
set protocols access radius-server 10.10.10.2 secret king
set protocols access profile test authentication-order radius
set protocols access profile test radius authentication-server 10.10.10.2
Am I missing anything?
Thanks and have a nice weekend!!
↧
QFX -5200 Jumbo frame
more looking for a best practice here
do I need to:
1. set the MTU on the phsical ports or
2. set the MTU on the IRB or
3 both ?
on cisco i was able to just set the SVI and it was good to go
↧
Interface-range question
I have to configure a bunch of EX4200 switch ports in prepartion for IP Phones. Here are the commands for just three ports
set ethernet-switching-options voip interface ge-1/0/0 vlan PhonesDO_ECS
set ethernet-switching-options voip interface ge-1/0/0 forwarding-class assured-forwarding
set ethernet-switching-options voip interface ge-1/0/1 vlan PhonesDO_ECS
set ethernet-switching-options voip interface ge-1/0/1 forwarding-class assured-forwarding
set ethernet-switching-options voip interface ge-1/0/2 vlan PhonesDO_ECS
set ethernet-switching-options voip interface ge-1/0/2 forwarding-class assured-forwarding
Can I use an interface-range command to accomplish the same thing? Here are the commands I am thinking about
set interface interface-range Phones member-range ge-1/0/0 to ge-1/0/2
set ethernet-switching-options voip interface Phones vlan PhonesDO_ECS
set ethernet-switching-options voip interface Phones forwarding-class assured-forwarding
↧