Quantcast
Channel: All Ethernet Switching posts
Viewing all 10307 articles
Browse latest View live

Re: Unable to upgrade EX3300 stack members to JunOS 12.3R12.

January 16, 2020, 8:49 am
$
0
0

There are even KB articles for the affected platforms:

 

https://kb.juniper.net/InfoCenter/index?page=content&id=KB20570

 

I have lots of experience with EX4200 (VC) flash pain. The main reason for flash corruption are locally written syslog messages, which corrupt the internal flash. And the only way to recover completely is to perform an "install --format". The only way to prevent this corruption is to disable locally written syslog messages completely and never use traceoptions or anything else that writes to the local flash.

 

By the way, flash corruption actually does affect the operation of the Switch. We saw very strange behavior and if you perform a commit on such a device, the device may crash and creates a vmcore dump.

Search

BPDU hanadling on a port with rstp disabled (per port)

January 16, 2020, 1:17 pm
$
0
0

Hi,

 

Lets assume that a switch has RSTP globally enabled, but on some ports it has RSTP disabled (set protocols rstp interface <name> disable).

What happens when it receives a RSTP BPDU on one of the ports with rstp disabled? Does it forward them to all the rest of the “rstp disabled” ports? Drops them? Floods to ALL ports?

 

Regards,

Pawel

Re: BPDU hanadling on a port with rstp disabled (per port)

January 16, 2020, 1:35 pm
$
0
0

In general, it should flood.  This is the "standard (?)" behavior I have experienced with most switches.  I do not believe this an formal RFC type document for how to handle this, and do believe not covered under 802.1D or w.

 

Some recent testing of QFX5100/5110 for an PVST situation we found that QFX5100/5110 drops -  the 'standard' BPDU packet always; enabled or disabled never floods.  So depending on the product this might change.  Unfortunately to know for sure, you probably have to run a local test on the product you want to use, with what ever code release you are using.

 

Good Luck

Re: BPDU hanadling on a port with rstp disabled (per port)

January 16, 2020, 7:28 pm
$
0
0

I believe if the port is not enabled for rstp then the bpdu frame will be treated as any other multicast frame and would be flooded to other ports. This is similar to a bpdu frame received which the switch doesnt recognize so it will flood. However the behavior may vary across different juniper platforms as suggested by rccpgm in the last reply.

Re: BPDU hanadling on a port with rstp disabled (per port)

January 16, 2020, 7:39 pm
$
0
0

Greetings pmazurkiewicz,

 

If you have RSTP configured but disabled on some ports as you described, It will prevent the RSTP BPDU from the peer device on the configured interface and also never transits such RSTP BPDU to the peer device. However, other BPDU's from STP, MSTP, or VSTP enabled device, will not be prevented by the above configuration, if you want to prevent those BPDU's you will have to use this configuration as well "set ethernet-switching-options bpdu-block interface ge-x/x/x drop"

 

For more information, refer to the following link:

http://www.juniper.net/techpubs/en_US/junos12.2/topics/task/configuration/spanning-trees-bpdu-block-cli.html#bpdu-block-drop

 

 

If this solves your problem, please mark this post as "Accepted Solution" so we can help others too.
If you consider that my input was helpful, giving me a kudos would make my daySmiley Happy

Re: BPDU hanadling on a port with rstp disabled (per port)

January 16, 2020, 7:51 pm
$
0
0

Hi Gentleman,

 

If the device receives a BPDU packet, BPDU will be flooded to the same segment only if you don't have anything configured for STP or any of its variations/flavors.

layer2-protocol-tunneling lacp Decapsulation does not work on EX4500

January 18, 2020, 6:40 pm
$
0
0

Hi

 

I have an issue where LACP traffic is being punted to the route processor on EX4500 even though layer2-protocol-tunneling has been enabled on the relevant VLAN. I have tried this with the trunk port having only the tunneled VLAN, a combination of tunneled and untunneled VLANs or all tunneled VLANS. The issue is the same:

 

Model: ex4500-40f

Junos: 14.1X53-D49.1

 

I have the following configuration which enables dot1q tunneling.

 

vl267 {

    vlan-id 267;                        

}

vl400 {

    vlan-id 400;

    dot1q-tunneling {

        layer2-protocol-tunneling {

            all;

         }

    }

}

 

I have the following configuration facing the carrier PE/NNI:

 

show interfaces xe-0/0/37 

mtu 1552;

unit 0 {

    family ethernet-switching {

        port-mode trunk;

        vlan {

            members [ vl400 vl267 ]

        }

    }

}

 

> monitor traffice interface xe-0/0/37 no-resolve layer2-headers

Listening on xe-0/0/37, capture size 96 bytes

21:26:43.176559  In 20:x:x:x:x:x > 01:80:c2:00:00:02, ethertype 802.1Q (0x8100), length 74: vlan 400, p 0, ethertype Slow Protocols, LACPv1, length 56

 

As you can see, the LACP packet is being punted to the route processor because otherwise it would not be seen in monitor traffic output. I do not see any LACP packets turn up on access or trunk interfaces on the same VLAN which means it is being consumed by the control plane and not forwarded. I have also confirmed this with an analyzer port.

 

> show ethernet-switching layer2-protocol-tunneling statistics vlan 400

...

vl400 xe-0/0/37.0 lacp      Decapsulation   0          0          0        

 

Clearly there LACP packets being received above. If I add another UNI/CE access port to the vlan stanza configuration and I configure the CE device to generate LACP traffic, I can see it encapsulating the LACP ports:

vl400 ge-0/0/10.0 lacp      Encapsulation   5217       0          0   

 

Clearly, the VLAN is configured correctly. The issue is the ingress (Decapsulation) traffic.

 

Have I missed something configuration wise?

 

Thanks

 

 

 

Re: layer2-protocol-tunneling lacp Decapsulation does not work on EX4500

January 18, 2020, 8:06 pm
Search

Re: layer2-protocol-tunneling lacp Decapsulation does not work on EX4500

January 18, 2020, 10:40 pm
$
0
0

Yes, I am. The configuration will not apply otherwise.

 

> show configuration ethernet-switching-options 

dot1q-tunneling {

    ether-type 0x8100;

}

storm-control {

    interface all;

}

 

I have already looked through that link before posting. I'm confident my configuraiton is as per the documentation. The issue is pretty simple, the EX4500 punts the LACP to the route processor/control plane for no apparent reason. I have also tried Junos: 15.1R7-S5.1 and the problem still exists.

 

 

 

EX4600: IPv6 multicast traffic causing all IRB interfaces to become unresponsive

January 19, 2020, 12:36 pm
$
0
0

Hi,

I'm hoping that before I contact support, someone could maybe guide me to the right direction over this thing, as I'm not sure whether I'm just not understanding some fundamental aspect of the box.

 

I have been testing streaming over the IPv6 multicast recently with decent bandwidth (~ 40Mbps). I tested that from a computer connected to EX2300, which is then connected to EX4600 (typical star topology), from where we go to the router.

Weirdly, just running the test for a few seconds caused the management traffic on EX4600 to become very slow, and I could no longer ping or SSH to the box, even though it was different VLAN. It was still forwarding traffic, but it was impossible to manage. Ping showed increasingly higher latency times, up to several seconds, then failing to respond.

 

I have determined that the issue was that I had an irb.20 interface with family inet6, which was a L3-interface for our VLAN 20. There was only a link-local address assigned (the use case was a MLD querier/router at the time). Weirdly, when I ran

show system processes extensive

there was no change in CPU utilization during the incident. It therefore looks like some resources or queues became full / exhausted, although I'm not sure which ones.

Also, the multicast traffic was very well visible using

 

monitor traffic interface irb.20

 

This issue does not happen with IPv4 multicast at all.
Also it does not matter whether mld, mld-snooping or igmp-snooping is enabled, the issue is still happening. The issue disappears when family inet6 is deactivated on the irb.20.

 

The situation seems particularly similar to this issue, although I'm sure that the causes are different (my issue does not exhibit on EX2300):
https://forums.juniper.net/t5/Ethernet-Switching/irb-interface-dhcp-periodically-stops-being-reachable/m-p/467620

 

EX4600 SW version: JUNOS 18.4R2-S2.4

 

I'd be very grateful for any hint or advice.
Best regards,
-Pavel

Re: EX4600: IPv6 multicast traffic causing all IRB interfaces to become unresponsive

January 19, 2020, 7:16 pm
$
0
0

Hi paulosv,

 

Did you try to access the device out of band? Check if there are any CPU queues hit using the following:

show chassis routing-engine
start shell
cprod -A fpc0 -c 'set dc bc "show c cpu"' <<<<<<<<<check a few times repeatedly to find any queue drops.

 

Hope this helps.

Regards,
-r.

--------------------------------------------------

If this solves your problem, please mark this post as "Accepted Solution."
Kudos are always appreciated Smiley Happy.

 

SRX1500 cluster issues

January 19, 2020, 8:20 pm
$
0
0

Hello,

 
Model: srx1500
Junos: 15.1X49-D110.4
 
I run a chassis cluster of 2x SRX1500 devices and monitor two interfaces (one from each node) in redundancy-group 1:
 
set chassis cluster redundancy-group 1 interface-monitor xe-0/0/16 weight 100
set chassis cluster redundancy-group 1 interface-monitor xe-7/0/16 weight 100
An issue recently took down xe-0/0/16 and the reth0 interface went down! I was expecting that xe-7/0/16 will keep the reth interface up and running. I do not have LACP enabled on this cluster, however, I can see in the log that kernel throws out this message stating mini-links not met? Confused as to how JunOS decides to show this up without LACP or any sort of min-links config for reth0 (as well as no config of min-links on the box)
 
/kernel: ae_bundlestate_ifd_change: bundle reth0: bundle IFD minimum bandwidth or minimum links not met, Bandwidth (Current : Required) 0 : 1 Number of links (Current : Required) 0 : 1
Is this expected where reth0 internally runs some sort of min-link code? It is clear that if does that, its incorrect as another interface is available for its operation.
 
set interfaces xe-0/0/16 gigether-options redundant-parent reth0
set interfaces xe-7/0/16 gigether-options redundant-parent reth0
 
any thoughts?
 
thanks in advance,
-muddasir

EX4300 crash while attempting to bring up 10G interface

January 19, 2020, 8:21 pm
$
0
0

Hello, 

I was attempting to bring up a 10G interface on Model: ex4300-48t and JunOS: 13.2X51-D26.2, noticed that the box crashed and generated a core-dump:
 
/var/tmp/pfex_junos.core.0.gz
 
The 10G interface is a trunk allowing a couple of vlan's, I have ruled out PR1089483 as we currently do not use flexible-vlan-tagging in our environment.
 
Also noticed IPC connection logs, and thought it may be due to the new 10G SFP that was brought in, but the same SFP was tried a couple of times on a different juniper box in the past and they were no such issues then:
 
CHASSISD_IPC_CONNECTION_DROPPED: Dropped IPC connection for FPC 0
CHASSISD_IFDEV_DETACH_FPC: ifdev_detach_fpc(0)
 
Has anyone seen this before? thoughts?
 
thanks in advance,
-muddasir

Re: EX4300 crash while attempting to bring up 10G interface

January 19, 2020, 8:28 pm
$
0
0

Hello

 

Is this a non-juniper sfp inserted ? Do you see the logs related to sfp around the carsh time ?

Re: EX4300 crash while attempting to bring up 10G interface

January 19, 2020, 8:36 pm
$
0
0

thanks for your response.

no logs of SFP, the other 4300 in the same rack worked perfectly fine with the same made of sfp.

PS: its a third-party sfp.

Search

Re: EX4300 crash while attempting to bring up 10G interface

January 19, 2020, 8:49 pm
$
0
0

If this is non-juniper sfp and the timing of the insertion of sfp matches with the time the crash happened ( given the crash occurred after the insertion of sfp) then it is most likely due to the non juniper sfp. To further confirm this you may open a JTAC case and get the core dump analyzed to find the exact root cause. 

Re: EX4300 crash while attempting to bring up 10G interface

January 19, 2020, 9:34 pm
$
0
0

The 13.2 version you're running is the first release for the EX4300 and is very old and very buggy. My recommendation is to upgrade to a modern JUNOS release and check again.

Re: layer2-protocol-tunneling lacp Decapsulation does not work on EX4500

January 20, 2020, 1:57 am
$
0
0

If the configuration is correct on both PE switches then i would suggest to try the following:

1. Try to change the ether type to 0x9100

2. Try to configure the native-vlan-id on the trunk interface and check if that helps

Re: SRX1500 cluster issues

January 20, 2020, 2:10 am
$
0
0

turned out to be the weight not decrementing to <255 and RG failover did not take place.

modifying weight to 255 and simulating a failover seems to have done the trick.

 

set chassis cluster redundancy-group 1 interface-monitor xe-0/0/16 weight 255
set chassis cluster redundancy-group 1 interface-monitor xe-7/0/16 weight 255

 

and regarding the min-link:

 

Redundant Ethernet interface configuration also includes a minimum-links setting that allows you to set a minimum number of physical child links on the primary node in a given redundant Ethernet interface that must be working for the interface to be up. The default minimum-links value is 1. Note that the minimum-links setting only monitors child links on the primary node. Redundant Ethernet interfaces do not use physical interfaces on the backup node for either ingress or egress traffic.

 (https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-chassis-cluster-redundant-ethernet-lag-interfaces.html#jd0e477)

Betreff: EX4300 crash while attempting to bring up 10G interface

January 20, 2020, 6:24 am
$
0
0

Just to let you know, you can download new Junos releases here:

https://support.juniper.net/support/downloads/

 

You can find the currently recommended Junos release here:

https://kb.juniper.net/InfoCenter/index?page=content&id=KB21476

 

I'd suggest you to upgrade either to 18.1R3-S9 or 18.4R3, both are considered as stable. If you want to see the new features between the releases, you can see them here:

 

https://apps.juniper.net/feature-explorer/compare-softwares.html?category=Switching&typ=1#bm=cmpsw&pl=EX4300&rel1=19.3R1&rel2=14.1X53D47&sw1=Junos%20OS&sw2=Junos%20OS

Viewing all 10307 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>