Quantcast
Channel: All Ethernet Switching posts
Viewing all 10307 articles
Browse latest View live

What is Protocol Group: Redirect?

July 3, 2018, 8:28 am
$
0
0

Aggregate bandwidth is being violated for Redirect. I need to diagnostic the problem. What is the services being part of Protocol Redirect?

 

Protocol Group: Redirect

Packet type: aggregate (Aggregate for all redirect-trigger traffic)
Aggregate policer configuration:
Bandwidth: 100 pps
Burst: 10 packets
Recover time: 300 seconds
Enabled: Yes
Flow detection configuration:
Detection mode: Automatic Detect time: 0 seconds
Log flows: Yes Recover time: 0 seconds
Timeout flows: No Timeout time: 0 seconds
Flow aggregation level configuration:
Aggregation level Detection mode Control mode Flow rate
Subscriber Automatic Drop 0 pps
Logical interface Automatic Drop 0 pps
Physical interface Automatic Drop 100 pps
System-wide information:
Aggregate bandwidth is being violated!
No. of FPCs currently receiving excess traffic: 1
No. of FPCs that have received excess traffic: 1
Violation first detected at: 2018-07-03 12:17:34
Violation last seen at: 2018-07-03 12:26:16
Duration of violation: 00:08:42 Number of violations: 804
Received: 685842693 Arrival rate: 193 pps
Dropped: 498841234 Max arrival rate: 932940 pps

 

Search

Re: What is Protocol Group: Redirect?

July 3, 2018, 9:18 am

Re: What is Protocol Group: Redirect?

July 4, 2018, 8:38 am
$
0
0

Hi Hugleo

 

https://www.juniper.net/documentation/en_US/junos/topics/concept/protocol-redirect-mechanism-ex-series.html

 

Max arrival rate: 932940 pps is way higher than the default  Bandwidth: 100 pps
Duration of violation: 00:08:42 Number of violations: 804

Which platform is this ? Could you please give me the show log messages | last 100 

If its EX9200 then we can enable flow detection to check further. 

 

https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/scfd-enable-globally.html

Re: QSFPP-4X10GE-LR @ 40Gb?

July 4, 2018, 8:51 am
$
0
0

This optics supports both the 40GE in 4 parallel single mode fiber (PSM4) link configuration and 10GBASE-LR IEEE Standard in 4xbreakout application.

EX4300 inter vlan + gateway in one of the VLANs

July 4, 2018, 12:22 pm
$
0
0

Hi! We have two VLANs (10.16.11.1/24 and 10.16.12.1/24), and we are doing inter vlan routing. The inter vlan works as expected.

 

The problem is the gateway, which is at 10.16.11.3, and this is an external device, with only the 10.16.11.1/24 network configured. Now, if we set the default route to 10.16.11.3, only the 10.16.11.1/24 network will have access to it.

 

How can we reach that gateway from the network 10.16.12.1/24?

Re: What is Protocol Group: Redirect?

July 4, 2018, 2:00 pm
$
0
0

I end up using set system no-redirects for now

Re: QSFPP-4X10GE-LR @ 40Gb?

July 4, 2018, 6:45 pm
$
0
0

To use this Optic in 4 x 10GE, one would need to go in and configure channelization of the interface.  Otherwise functions as 40GE (via 4 x 10GE parallel wavelengths).

 

YES?

Re: EX4300 inter vlan + gateway in one of the VLANs

July 4, 2018, 6:51 pm
$
0
0

So, 10.16.11.3 is some other router.  Does it know how to reach 10.16.12.0?  10.16.12.0 knows how to reach rest of the world via default static route pointing to 10.16.11.3, but 10.16.11.3 also needs to know how to get back to 10.16.12.0.  Your internal VLAN routing of the switch allows 10.16.11.1 to know how to reach 10.16.12.0 (via 10.16.12.1) but that does not mean 10.16.11.3 (external router) knows the same.

 

I assume 10.16.12.0 or 10.16.20.1 knows how to reach 10.16.11.3, but not the other way around.  It is the replies that are lost.

 

YES?

Search

Re: EX4300 inter vlan + gateway in one of the VLANs

July 4, 2018, 10:21 pm
$
0
0

Hi,

 

10.16.11.3 (yes, some other router) does not know how to reach 10.16.12.0.

 

Is it possible to use 10.16.11.1 on our switch as a proxy or something, or do we just have to reconfigure the external router so it can find 10.16.12.0?

QFX5100 l2circuit CCC MTU issue

July 5, 2018, 3:31 am
$
0
0

Hello fellow switchers,

 

Recently we started configuring l2circuit ccc's between our QFX5100 switch and an MX80 router. 

We noticed that our customers using these l2circuits can only send packets not bigger than 1470 bytes.

 

At the MX80 side the interface is configured with an overall MTU of > 9000 and under the unit X family ccc hierarchy an MTU of > 1500 (usually 1520 or 1530).

 

At the QFX5100 side the interface is as well configured with an MTU of > 9000. Under family ccc we are unable to configure any MTU at all. 

We hoped to be able to up the MTU there as well, but thought since the command is not available at that hierarchy it would automatically derive the MTU size from the interface itself.

But still, no packets larger than 1470.

 

Between two MX routers there is no issue at all..

 

I'll be happy to share the configuration if that helps with this matter.

 

Please advise what we can do here to help our customers.

 

Beeelze

Re: QFX5100 l2circuit CCC MTU issue

July 5, 2018, 4:09 am

Re: EX4300 inter vlan + gateway in one of the VLANs

July 5, 2018, 4:14 am
$
0
0

The feature that would allow this to work without changing the routes on the 10.16.11.3 upstream router is NAT (network address translation).  But this is only supported on the SRX and MX not on the EX series.

 

And even then the best solution is to add the route to 10.16.11.3.

 

Re: QFX5100 l2circuit CCC MTU issue

July 5, 2018, 5:01 am
$
0
0

Hi Spuluka,

 

This does work on local-switching l2circuits.

I have added an MTU size of 1530 on both l2circuit configurations.

Still no luck.

 

A-side:

beeelze@core-gbs-01# show interfaces ge-1/1/2 
flexible-vlan-tagging;
mtu 9100;
encapsulation flexible-ethernet-services;
gigether-options {
    ethernet-switch-profile {
        tag-protocol-id [ 0x8100 0x88a8 ];
        mac-learn-enable;
    }
}
unit 10103 {
    encapsulation vlan-ccc;
    vlan-tags outer 0x88a8.103 inner 0x8100.103;
    input-vlan-map pop-pop;
    output-vlan-map push-push;
    family ccc {
        mtu 1530;
    }
}

B-side:

beeelze@core-nkh-02# show interfaces ge-1/1/0 
speed 1g;
mtu 9100;
link-mode full-duplex;
encapsulation ethernet-ccc;
gigether-options {
    no-auto-negotiation;
}
unit 0 {
    family ccc {
    }
}

L2circuit:

neighbor XXX.XXX.XXX.XXX {
    interface ge-1/1/0.0 {
        virtual-circuit-id 111971;
        mtu 1530;
    }
}

Beeelze

Re: EX4300 inter vlan + gateway in one of the VLANs

July 5, 2018, 4:58 am

EX3300 - Sub Interface (New to Junos)

July 5, 2018, 8:46 pm
$
0
0

I'm new to JUNOS and trying to understand sub-interfaces; what I'm trying to source is how to use ge-0/1/3 as a trunk port for VLAN 24 & 25 traffice while adding a Sub-Interface IP address to VLAN 25 to manage the device.  Unlike Cisco, I'm finding this not so easy with the unit 0 family ethernet-switching.

interfaces {
interface-range Mail {
member-range ge-0/0/0 to ge-0/0/12;
unit 0 {
family ethernet-switching {
vlan {
members Mail;
}
}
}
}
interface-range MGT {
member-range ge-0/0/13 to ge-0/0/23;
unit 0 {
family ethernet-switching {
vlan {
members IMP;

 

 ge-0/1/3 {
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ Mail IMP ];
}
}
}
}
xe-0/1/3 {
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ Mail MGT ];
 

vlans {
MGT {
vlan-id 24;
}
Mail {
vlan-id 25;
}
default {
l3-interface vlan.0;

Search

Re: EX3300 - Sub Interface (New to Junos)

July 6, 2018, 12:32 am
$
0
0

Hi,

 

If you want to have IP address for VLAN 25 you can define an L3 interface under the VLAN as vlan.25.

 

To define L3 interface " set vlan Mail l3-inteface vlan.25"

 

To assign IP address use "set inteface vlan.25 family inet address x.x.x.x/x "

 

Thanks,

Kiran

Re: EX3300 - Sub Interface (New to Junos)

July 6, 2018, 3:51 am
$
0
0

Hi Shawno,

 

Junos software on EX3300 supports routed vlan functionality, wherein a vlan can provide both bridging and routing functionality. To configure routing functionality for a vlan, follow the below steps.

1. Configure the vlan with vlan name/vlan-id

2. Configure the vlan as l3 interface for layer 3 functionality 

3. Assign ip address for the vlan l3 interface

4. Allow the vlan on physical ports which needs connectivity to the vlan.

 

Add following configuration for your existing configuration on EX3300
set vlans Mail l3-interface vlan.25

set interfaces vlan.25 family inet address xxx.xxx.xxx.xxx/xx

 

Please refer following documentation.

https://kb.juniper.net/InfoCenter/index?page=content&id=KB10972&cat=SWITCH_PRODUCTS&actp=LIST

 

Re: EX3300 - Sub Interface (New to Junos)

July 6, 2018, 3:32 am
$
0
0

@Shawno, actually EX3300 does NOT use IRB CLI syntax, as it does not use ELS CLI (https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/getting-started-els.html). Older EX switches, EX2200/3300/4200, use original CLI with syntax "vlan" while newer switches EX2300/EX3400/EX4300/all QFX5K/10K, EX9200, etc. use ELS CLI with syntax "irb".

 

L3 for VLAN (or later IRB) is configured under 'interface' stanza.  It uses a unit number (can be more than one for multiple IPs) which must be unique and "usually" is assigned using the same number as "vlan-id".  This can be expressed as vlan unit X, or vlan.X.  This is why in @kparamei reply, he used vlan.25 so that the assigned unit number for the vlan L3, matches the vlan-id.

 

@kparamei's response is accurate.  Hopefully, this explanation may further assist you (and others).  ELS CLI is 100% dependant on product family and has nothing to do with SW Release.  There is no way to use SW to move from Original VLAN CLI to ELS CLI.  The only method to do this is to change the switch hardware model.

Re: QFX5100 l2circuit CCC MTU issue

July 6, 2018, 3:41 am
$
0
0

The sub interfaces should inherit the mtu.  You can verify that by using the extensive option on the interface.

 

show interface ge-1/1/0 extensive

 

The l2circuit does also inherit the associated interface mtu unless overridden by the explicit mtu command.  But this does require that the path support the larger mtu end to end.

 

I am confused, you want 9000 but are only setting up the l2circuit with 1530?

 

Re: EX4300 inter vlan + gateway in one of the VLANs

July 6, 2018, 3:45 am
$
0
0

No, proxy arp allows an ip address inside a given subnet to respond to layer 2 arp requests on behalf of other ip addresses INSIDE THAT SAME SUBNET.  It will not allow you to respond to requests for another subnet.

 

Further the upstream router would still have no idea that the unknow subnet exists here and needs a route back to support that connection.

 

And finally proxy-arp is also not supported on the ex platform anyway.

 

Viewing all 10307 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>