Re: 10Gb SFP+ Autonegotiation
All 10GE interfaces have auto-neg enabled by default per the 10GE standard. Auto-neg enabled is default setting.
View ArticleMAC attack - What happens when MAC table is full?
Hi all, When an attacker sends MAC attack make MAC table of a switch is full, what's behavior switch now? Does the switch change behave as a hub? So the switch now doesn't know VLAN terminology?...
View ArticleSwitch configure DHCP snooping, however end-user set IP address manually
Hi all, I imagine a scenario like here with topologyClient A (set manually IP address) ---------- Switch ------------- Client B (Hacker) Client A and B same VLAN and switch configure DHCP snooping,...
View ArticleRe: MAC attack - What happens when MAC table is full?
Generally speaking, switches behave like a hub when their CAM table overflows. I'll try to find some Juniper-specific documentation to prove this, but my recollection is that in the event of a CAM...
View ArticleRe: Switch configure DHCP snooping, however end-user set IP address manually
I believe your solution is to set the interface with the static IP as a "trusted" port, verse default value for all access ports, which is "untrusted". Trunk/tagged ports by default are trusted ports....
View ArticleRe: Storm Control on trunk interfaces ?
Hi guys,thanks for your respond.The most trunks will be used to connect the servers (hypervisor) with the infrastructur.I think I will lab this out, and will have a test if it is usefull for our need...
View ArticleRe: Storm Control on trunk interfaces ?
I think this really comes down to if you expect users of that port to be able to create loops from their connection. If the architecture is such that looping the vlan is not possible or very unlikely...
View ArticleRe: QFX10002-36Q as internet router
The QFX is not really designed as an internet router but a data center matrix switching. For internet peering I would recommend the MX series.
View ArticleClik here to view.
BOOTP configuration on QFX
Hi Team, I need your help to confirm the configuration syntax for BOOTP relay on the QFX. This is the current configuration on the NetScreen firewall that we would like to replicate: set interface...
View ArticleRe: BOOTP configuration on QFX
These should be correct. Some of the relay overrides facilitate using dhcp/relay with vrrp. set forwarding-options dhcp-relay forward-snooped-clients all-interfaces set forwarding-options dhcp-relay...
View ArticleCore L3 with L2 access VLAN IRB/RBI setup
I have a security system that is running OSPF with Multicasting. I have 1 L3 switch running the routing protocols and several L2 access switches. I am confused about the VLAN setup on the access...
View ArticleRe: Core L3 with L2 access VLAN IRB/RBI setup
You configure the rvi only on the core, the access switches should remain layer 2 only. If you need an rvi on the access switches for some reason (maybe management access) it should not overlap with...
View ArticleEX 4200 Switch Configuration guide
Hi everyone, I am looking for configuration guide for EX4200 Switch , some configuration are different on EX , for example, EX 4300 vlan l3 interface requires irb interface.I googled it , all I see...
View ArticleRe: EX 4200 Switch Configuration guide
Look for original EX Day One book - this covers all older EX products, including EX4200, and takes you through 90% of what you generally need to do.
View ArticleRe: EX 4200 Switch Configuration guide
Thanks ,I just read through it. But it did not cover sysyem services such as NTP, TACPLUS, SNMP, SYSLOG, I am not sure if they use the same syntax on EX 4200 just like they do on EX 4300. I did notice...
View ArticleRe: EX 4200 Switch Configuration guide
Which release are you using? You can check below link. https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/getting-started-els.html
View ArticleRe: Core L3 with L2 access VLAN IRB/RBI setup
Since the IP address of IRB is same on both Access and Core Switch. It will definetly create IP address conflit. In turn, your setup will not work correct. If you would need any IP on switch, you may...
View ArticleRe: EX 4200 Switch Configuration guide
But it did not cover sysyem services such as NTP, TACPLUS, SNMP, SYSLOG, I am not sure if they use the same syntax on EX 4200 just like they do on EX 4300.These services are the same in both switches...
View ArticleRe: Ouput drops on ex3300/ex4200 after upgrading to 15.1R5.5
HI,Did you get this resolved? We are seeing similar issues on our 4200s that we just upgraded to 15.1.
View Article