is it the same MAC that showing when doing the command
show lldp neighbors?
↧
Re: MC-lag question
↧
Re: MC-lag question
I believe yes, maybe someone else could confirm 100%.
↧
↧
How to disable channelization on EX9253?
Hi,
It would appear that on the EX9253 all of the interfaces are channelized from 40G to 10G by default. After a 'show interfaces terse' all of the interfaces show up as xe-0/0/0:0 and so on. I have been totally unable to find any documentation regarding channelization specific to the EX9200s. I have only really found this document which only mentions EX4600s and QFX10Ks. The disable-auto-speed-detection doesn't work as it isn't supported on the EX9253.
I did find that I could set the speed specific to the port or pic but that didn't work even after a system reboot.
↧
Re: New User question about VLANS
Hi, That is basically correct but I was going to leave the remaining ports in vlan 1 which is the default on the junos version I am running. Also I am connecting to a Cisco whose default vlan is 1. (We are slowly trying to clean up bad practices but we haven't changed the default vlan yet.)
I wasn't going to create a trunk because I intended ports 0-11 to be entirely separated from the rest of the network. They are connected to a separate set of computers. I upgraded the firmware to a newer version and after the reboot all the ports worked as intended. Thanks for getting back to me on this.
↧
every time i log in i get "You have pending changes from previous commit"
After commiting my changes i get "configuration delivery succes" but then i log out and log back in and it comes back again "You have pending changes from previous commit".
↧
↧
Re: every time i log in i get "You have pending changes from previous commit"
Hi,
When you get message "You have pending changes from previous commit", could you log into the device and get
"show | compare" output?
↧
configure QoS for a port with specific ACL match.
I am looking to configure my QFX5100 32Q switch with a QoS for a specific ACL match.
1) I would like to specifiy a ACL rule (with match field based on 5-tuple)
2) For the traffic that matches the 5-tuple I would like to define QoS metric with action such as: DSCP marking and Rate-limiting. Can some one please suggest appropriate configuration commands.
I have already looked into:
https://www.juniper.net/documentation/en_US/junos/topics/example/cos-ex-series-configuring.html
but couldn't find correct commands for configuration.
↧
Re: configure QoS for a port with specific ACL match.
I see one option is to do it via the edit firewall command.
set firewall family inet filter sample term block-bad from source-address 10.21.2.1/24
set firewall family inet filter sample term block-bad then dscp 10
set firewall family inet filter sample term block-bad then policer
But how is this different from Class of Service feature.
↧
Looking for documentation on these messages in syslog...
I have a VC'd pair of EX 3400s running 15.1X53-D56 (fpc0) and 15.1X53-D58.3 (fpc1), and I'm getting a bunch of these MAC adds/drops (sensitive details omitted):
dc-pfe: LBCM-L2,pfe_bcm_l2_mac_delete(),848:l2_mac_delete: Iterating BCM units: 0 hw-tok 4 mac= 10:62:E5 fpc1 LBCM-L2,pfe_bcm_l2_mac_delete(),848:l2_mac_delete: Iterating BCM units: 0 hw-tok 5 mac= D0:27:88 dc-pfe: LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:1C:25 fpc1 LBCM-L2,pfe_bcm_l2_mac_add(),735:l2_mac_add: BCM unit: 0 hw-tok 4 Success add mac= 00:1C:25
They seem to be running primarily on fpc1, but I'm wondering if there's any documentation on what these messages are.
I need to get the switches on the same version (clearly), but is this expected behavior?
Any further reading would be fantastic.
Thanks.
edit- missing word or two.
↧
↧
Re: Looking for documentation on these messages in syslog...
Hi, you can ignore these debug messages, they will be removed in future releases.
And you can remove them from syslog with this config
match "!(pfe_bcm_l2_mac_delete|pfe_bcm_l2_mac_add)"
↧
storm control on 2200C 3300 & 4300 EX
Experts,
I use 2200C 3300 and 4300 EX in idf's. "Storm control enables you to prevent network outages caused by broadcast storms on the LAN. You can configure storm control on an EX Series switch to rate-limit broadcast traffic, multicast traffic, and unknown unicast traffic at a specified level so that the switch drops packets when the specified traffic level is exceeded, thus preventing packets from proliferating and degrading the LAN."
Looks like storm control on EX 4300 should be enabled by default, but on 2200C & 3300 is not. After looking into my config on 2200C and 3300 I see:
{master:0}[edit ethernet-switching-options]
user@idf1# show storm-control
interface all;
on 3300:
storm-control {
interface all;
}
per this article:
I should have storm control value enabled for 2200C and 3300 EX with 1GB ports - correct me if I am wrong.
I have vlans configured with VOIP vlan 80:
interface ge-0/0/30.0 {
vlan 80;
forwarding-class ezqos-voice-fc;
I am not sure if storm control should be limit to some vaules when having VOIP vlan enabled. Can you advise what storm control limit value should be?
Thank You,
↧
Help With Trunking between 2 EX4200's
Hi so yesterday I wanted to test out some network equipment. I had previously done this testing a month or two ago and it worked fine. however either i'm running into a bug or i'm not setting it up correctly.
I have 2 Ex4200's both 48 port.
Switch 1 is the " Distribution Switch" It has one trunk port 0 that leads to a sonicwall nsa2650. this trunk caries all customer vlans. IE vlan101 thru vlan125. The vlans are separate from each other so no vlans can communicate, this is handled at the sonicwall level with firewall rules.
All the other Ports on Switch 1 are also trunk ports. For example Port 1 goes to Rack1, Which for example sake could contain vlan101 and vlan102.
port 2 on switch 1 goes to rack2 and could contain whatever customer is located on that rack.
Ok so Switch 2 is basically any switch that sits at the rack level. We have 16 racks so each rack gets one switch the each trunks back to switch 1 to the appropriate port.
Lets focus on Switch 2 that goes to rack one. Port 0 on Switch 2 Rack 1 trunks back to Switch 1 Port 1. This trunk handles vlan101 and vlan102.
Ports 1-5 are access ports for vlan101
ports 6-10 are access for vlan 102.
to me this seems like it all should work, Trunk from sonicwall to SW1 carrying vlan101 and 102. Port 1 Trunked to SW2R1 on port 0. Access ports on SW2R1 for client machines.
However it doesn't and I cant seem to figure out why, I had tested it months ago and it worked perfect.
So I said ok lets take out Switch 2 and just try to accomplish this off switch 1 to see if my vlans are even making it from there to the sonicwall. So I left port 0 on Switch1 as the trunk to the sonicwall, Port1 as an access for vlan101 and port 2 as an access for vlan102.
plug my laptop into port1, perfect obtain ip in vlan101 range
plug into port2, again perfect obtain ip in vlan102 range.
So I know that the vlans are working from sonicwall to switch1
But when I add in the 2nd switch I don't get anything.
Anyone have any ideas? I don't have the switches with me right now so I cant post the config file, I also don't remember the exact version of junos they are running. I think its 12. something. Also both of these switches are running the same version of junos and I factory reset them to see if that eliminated problems, it did not 
Any help is appreciated!!
↧
Re: Help With Trunking between 2 EX4200's
The outline and process is correct so there is a problem with the configuration on one of the switches. We will need to look at the port configurations involved to troubleshoot.
↧
↧
Re: storm control on 2200C 3300 & 4300 EX
Storm control prevents a broadcast storm when someone accidently plugs two access ports into each other on the same vlan. This generally happens on ports extended to jacks out in office space.
It will not affect any normal traffic like voip on the switch.
↧
Re: MC-lag question
thanks
dose this worning looks familiar to you
"warning: prefer-status-control-active is used with status-control standby. Use this command only if BLD is configured"
its showing while commiting i didnt do the backup-liveness-detection since you mentioned its optional.
↧
Re: Help With Trunking between 2 EX4200's
here is the port info from Switch1
interfaces {
ge-0/0/0 {
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ Customer1 Customer2 Customer3 Customer4 Customer5 ];
}
}
}
}
ge-0/0/1 {
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ Customer1 Customer2 ];
Here is the port info from Switch2
interfaces {
ge-0/0/0 {
unit 0 {
family ethernet-switching {
port-mode trunk;
vlan {
members [ Customer1 Customer2 ];
}
}
}
}
ge-0/0/1 {
unit 0 {
family ethernet-switching;
}
I'm looking at this and im thinking port 1 on switch2 is missing something. Its supposed to be an access port for vlan101
↧
Re: Help With Trunking between 2 EX4200's
Ok so I have it working now, Sort of though.
I use the default vlan for managment of the switches. Switch1 is 172.16.1.11 Switch 2 is 172.16.1.12 the subnet mask is /24 and the gateway is 172.16.1.1. I use port 46 on each switch to act as the "managment port" from there all the switches connect to a seperate switch that serves as the "managament switch" where all the switches managment lines plug into. The managment switch connects to the sonicwall on the lan port which is seperate from the customers. this works fine as I am able to hook up to the managment switch and access all the switches.
However When I go to test out the customers like I was trying to do in the original post, It doesnt work. I cant grab an ip etc etc. If I unplug the managment line to the switch though Almost instantly I grab an ip and it works as it should.
I think the problem is in the static routing. By default there is one static route and its 0.0.0.0/0 next hop 172.16.1.1
anyone have any ideas why this is screwing up the trunking/ vlan access ports?
↧
↧
Re: Looking for documentation on these messages in syslog...
Thanks for this.
Is that any documentation about what these messages are?
↧
configure QoS for a port with specific Access List match
I am looking to configure my QFX5100 32Q switch with a QoS for a specific ACL match.
1) I would like to specifiy a ACL rule (with match field based on 5-tuple)
2) For the traffic that matches the 5-tuple I would like to define QoS metric with action such as: DSCP marking and Rate-limiting. Can some one please suggest appropriate configuration commands.
I have already looked into:
https://www.juniper.net/documentation/en_US/junos/topics/example/cos-ex-series-configuring.html
but couldn't find correct commands for configuration. I see one option is to do it via the edit firewall command.
set firewall family inet filter sample term block-bad from source-address 10.21.2.1/24
set firewall family inet filter sample term block-bad then dscp 10
set firewall family inet filter sample term block-bad then policer
set interfaces so-0/1/0 unit 0 family inet filter input filter1
In every other vendor, e.g. cisco and arista these are part of QoS related commands where as in Junos this is part of firewall.
Then what is the specific relavence of ClassOfService ?
ALso how can I define the IN/ OUT direction for the port ??
Thank you
↧
Re: storm control on 2200C 3300 & 4300 EX
Thank You, Steve, I was thinking more about this:
"You can use storm control to prevent broadcast storms by specifying the amount, also known as the storm control level, of broadcast traffic, multicast traffic, and unknown unicast traffic to be allowed on an interface. You specify the storm control level as the traffic rate in kilobits per second (Kbps) of the combined applicable traffic streams."
can I use this:
interface all {
level 80;
}
So only 20% of bandwidth can be used. And what should be default outcome if 20% of bandwidth is exhausted?
↧