CoS; ethernet-switching firewall filter; source port and not destination port ?
Hi community,At, http://www.juniper.net/techpubs/en_US/junos12.3/topics/example/cos-ex-series-configuring.html, I couldn't help notice the ethernet-switching family firewall filter rule-set marks...
View ArticleNo Ethernet Switching - vSRX Firefly with Virtualbox
Hi all, I just wanted to have a hands-on experience with Juniper ethernet switching using virtual box. One of the options was to use vSRX firefly. But unfortunatley it provides limited support...
View ArticleRe: CoS; ethernet-switching firewall filter; source port and not destination...
In the example you cite, the filters in question are written to capture the traffic from the SERVERS to the clients. Your note above describes the port situation from the CLIENT to the server. That...
View ArticleRe: 802.1x auth failed but client gets access to voice VLAN
Could you pull the series of log messages you get on the affected port? And the relevant configuration stanzas?
View ArticleRe: DHCP Relay
You will need to configure the server and interfaces on ex2200 1 to convert the request from broadcast to unicast....
View ArticleRe: CoS; ethernet-switching firewall filter; source port and not destination...
Hmm.. Makes sense.And I guess UDP being stateless doesn't follow this principle ?Which is why.. citing the same KB example.. a voip phone.. is having it's media traffic matched.. Which should be...
View ArticleClik here to view.
VLAN routing between different IP segments not working
We are bringing online a new virtual switch core in our colo, this will eventuall be our production stack.In the picture, we have CORPORATE, current production. Then the Data Site Orlando - COLO is...
View ArticleRe: 802.1x auth failed but client gets access to voice VLAN
Hello, unfortunately I can't see anything useful in the monitor log, just the successful DHCP request matching the voip vlan subnet. 802.1x was disabled on the phone. after auth: ge-1/0/2.0 Role:...
View ArticleRe: show interface description JWEB failed
now, update jweb to 15.1A2.2problem still exist
View ArticleRe: 802.1x auth failed but client gets access to voice VLAN
The output seems to indicate that this is successfully puting the interface into the Guest VLAN. Are you saying this status changes after a time? How is the guest VLAN configured?show configuration...
View ArticleRe: CoS; ethernet-switching firewall filter; source port and not destination...
The whole firewall filter setups in Junos are stateless and not session based like security policies. So you create the match conditions that make sense for the particular application. a voip phone.....
View ArticleRe: 802.1x auth failed but client gets access to voice VLAN
Hello, it "stays" in the guest vlan as shown in the output "after auth" but the problem is the phone moves to the voip vlan via lldp-med, which shouldn't happen since 802.1x failed. Guests {...
View ArticleBetreff: No Ethernet Switching - vSRX Firefly with Virtualbox
Hi Afaq, true - the vSRX lacks some L2 Features, but VLAN-Trunking is possible. I use several vSRX / Firefly Machines for my JNCIE Training Lab and Trunking and VLAN's run perfectly fine on VMware 5.5...
View ArticleRe: DHCP Relay
Thanks you for the information. I will give that a shot. Also I did some troubleshooting over the past few days and something I noticed on the SSG140 was if the interfaces were in seperate security...
View ArticleNew EX4300 stack - [14.1X53-D35.3 problems
We have installed EX4300 - 4 switches in stack. Also to that stack are connected other IDF's EX3300. We switched from cisco to juniper and since that time I have noticed aerohive access points are...
View ArticleRe: New EX4300 stack - [14.1X53-D35.3 problems
ALL Access Pints are on the same vlan as hive manager and apple tvs are on separate vlans, all traffic between vlans are enambed.
View ArticleAmplify from 3 Mbps to tens and hundreds Gbps
If you need some performance test for your equipment and if you have a Juniper EX switch, for example EX4550, you can do it very easy. You can amplify from 3 Mbps to tens and hundreds Gbps. Today I...
View ArticleClik here to view.
Re: Amplify from 3 Mbps to tens and hundreds Gbps
Hello,Yes and well done.Just for completeness - there is an equivalent port-mirroring traffic amplification trick on routers that is more powerful - it allows to create a controlled bps stream, not...
View ArticleRe: 802.1x auth failed but client gets access to voice VLAN
The behavior does seem incorrect. Can you verfiy the configuration details against this sample. Particularly the interface assignments with lldp and do1x. and verify the output of the status commands...
View Article