Re: [j-nsp] ACX Questions

I don't think there are many SEs on this list. I also think your questions would take a lot of time to research, and an SE on this list would likely have to research that on their own time. You are far more likely to get an answer by asking the SE for your account. -- Eldon On Fri, Apr 9,

Re: [j-nsp] MX204: 802.3ad LAG 2 x 1 G with a Palo Alto firewall

We have noticed issues with autonegotiation 1G links on mx10003 which caused one side to be up while the other is down. Disabling autonegotiation allowed the link to come up. We have not attempted link aggregation on gig ports, though. -- Eldon On Thu, Mar 18, 2021, 07:51 Emmanuel Halbwachs

Re: [j-nsp] Why local learned ARP in EVPN has "permanent remote" flags

As I understand it, this is because ARP learning is handled by EVPN (including aging) and not the normal ARP handling mechanism. Marking it as permanent in the ARP table prevents race conditions between EVPN and normal ARP processing. EVPN will delete the permanent entry when the mac-ip entry

Re: [j-nsp] SRX300 Sudden Reboot

You should be able to use "file copy " if the device has internet access. You can also scp the file directly to the device or use file copy to pull it from a management device. The customary place to put firmware files is /var/tmp/ before installing.

Re: [j-nsp] MX10K3 Experiences, ~2 years later

Replace absurd with unexpected, then. -- Eldon On Sat, Dec 21, 2019, 02:15 Saku Ytti wrote: > Many absurd things will become reasonable and logical when they are > sufficiently understood. > > On Fri, 20 Dec 2019 at 17:22, Eldon Koyle > wrote: > > > > My biggest

Re: [j-nsp] MX10K3 Experiences, ~2 years later

My biggest complaint about the mx10003 is the absurd port restrictions. If you use pic-level config, you can run all ports at 40G or 4x10G, but if you want to use port-level speed config you have to set one of every 4 ports to 100G on pic 1 in each slot to be able to use all of the ports. Be

Re: [j-nsp] LAG/ECMP hash performance

On Thu, Aug 29, 2019 at 2:52 AM James Bensley wrote: > Different parameters may or may not change the diffusion density, but > they may increase the range of results, i.e. perfect diffusion over > 2^2 outcomes vs. perfect diffusion over 2^6 outcomes. > > Also, ASR9Ks use a CRC32 on Typhoon cards

Re: [j-nsp] SRX dynamic vpn with Pulse Secure client - MacOS Apple laptop not working

I was not impressed with the Palo Alto VPN solution when I looked into it a couple years ago. I think it was designed to be an always-on VPN solution to protect corporate devices that are on the road, which is not our use case. They did not support all of the major platforms we needed at the

Re: [j-nsp] Link establishment issues with 1Gbps SX/LX SFPs on QFX5110

That is a fusion satellite device software version for an 18.x release. -- Eldon On Tue, Jul 2, 2019, 14:05 Colton Conor wrote: > Do you know when this will be fixed in the mainline releases? I have no > clue what 3.5R1-S4.1 is? > > On Fri, Jun 28, 2019 at 2:22 PM Timothy Creswick > wrote:

Re: [j-nsp] Link establishment issues with 1Gbps SX/LX SFPs on QFX5110

And a TSB: TSB17538 <https://kb.juniper.net/InfoCenter/index?page=content=TSB17538=SUBSCRIPTION> Traffic drop is seen on EX4300 when 10G Fiber port is using 1 Gigabit Ethernet SFP optics with Auto Negotiation enabled -- Eldon On Tue, Jun 25, 2019, 23:01 Eldon Koyle wrote:

Re: [j-nsp] Link establishment issues with 1Gbps SX/LX SFPs on QFX5110

Here is a sampling of PRs (there have been a _lot_ in the PR subscription emails recently): (EX4300) PR1420343 When using 1G SFP in 10G ports, neet to configure interface as no-autoneg PR1422958

Re: [j-nsp] QSFP28 oddities between Arista and QFX after upgrade

I had this happen between an mx and a Palo Alto firewall a few days ago (after upgrading the firmware on the firewall). I ended up rebooting the pic on the mx to get it back up. On Sat, May 11, 2019, 08:09 Jason Lixfeld wrote: > No dice for either reed-solomon/fec91 or no error-correction

Re: [j-nsp] EVPN all-active toward large layer 2?

On Fri, Apr 19, 2019 at 5:06 AM wrote: > > > Tarko Tikan > > Sent: Thursday, April 18, 2019 10:14 AM > > > > hey, > > > > > You have effectively created L2 loop over EVPN, so to cut it you need > > > a link between bridged network and EVPN to be a single link. There is > > > no STP in EVPN. > > >

Re: [j-nsp] Old JunOS upgrade path

Many (most?) network operating systems are an image file that the switch either writes over a partition (ie. block-level copy) or boots directly (ie. initrd/initramfs) with a separate partition for a config file. Junos is a full BSD operating system that installs packages to partitions on the

Re: [j-nsp] Junos and single IPv6 link-local address per IFL

He showed fe80::206:aff:fe0e:fffb/64 in his second example with the same result. -- Eldon On Tue, Jan 22, 2019, 07:11 Anderson, Charles R Link-Local addresses should be in fe80::/64, not fe80::/10. Try > configuring a second one that meets this criteria, such as: > > > + address

Re: [j-nsp] SRX WAN DHCP

; What features should I enable ? > > On Mon, 10 Dec 2018 at 17:40, Eldon Koyle < > ekoyle+puck.nether@gmail.com> wrote: > >> The firmware that ships on the SRX is missing a lot of features. I would >> recommend upgrading to the latest version in that

Re: [j-nsp] SRX WAN DHCP

The firmware that ships on the SRX is missing a lot of features. I would recommend upgrading to the latest version in that code train, which is 15.1X49-D150. -- Eldon On Mon, Dec 10, 2018 at 1:00 AM Mohammad Khalil wrote: > Hello all > I have an old SRX which I configured it is WAN IP

Re: [j-nsp] Opinions on fusion provider edge

elieve things like Junos Fusion > and MC-LAG, etc. may still be supported, but secondary to EVPN and > associated features. > > What is your planned SD devices? QFX5??? > > Richard McGovern > Sr Sales Engineer, Juniper Networks > 978-618-3342 > > > On 11/5/18, 8:32 P

[j-nsp] Opinions on fusion provider edge

What kind of experiences (good or bad) have people had with Juniper's Fusion Provider edge? Are there any limitations I should be aware of? I'm looking at it to simplify management in a campus network environment and to use features that are only available on the MX currently. -- Eldon -- I