Re: [j-nsp] j series query not answered on the KB

Thanks for the quick feedback. Looks like it will be ospf. Thanks for pointing me in the right direction. Nick -Original Message- From: Fahad Ali Khan [mailto:faha...@cyber.net.pk] Sent: 07 April 2009 16:15 To: Nick Ryce; juniper-nsp-boun...@puck.nether.net; juniper-nsp

[j-nsp] Source (1 to 1) and dynamic nat

Hi Guys I have recently installed a j2320 with source nat using the following guide:- http://www.juniperforum.com/index.php/topic,7261.0.html Can dynamic nat also be applied for the remainder of internal ip's that are not defined in the source nat list? If so is there any guides on how to

Re: [j-nsp] Source (1 to 1) and dynamic nat

Sorry, forgot to mention im using [9.3R2.8] Enhanced Services -Original Message- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Nick Ryce Sent: 16 June 2009 11:09 To: juniper-nsp@puck.nether.net Subject: [j-nsp] Source (1 to 1

[j-nsp] UK adsl config

Hi Guys, I am having difficulties getting an adsl pim module to work in a j2320 running 9.3R2.8 Enhanced services. SP is using ppoa whith chap authentication and I have confirmed the adsl line is working by using a netgear adsl modem. We are seeing sync but cannot establish a PPP connection.

Re: [j-nsp] UK adsl config

] Sent: 30 June 2009 15:55 To: Nick Ryce; juniper-nsp@puck.nether.net Subject: RE: [j-nsp] UK adsl config Hey Nick, AFAIK, the access-profile configuration should work if the client name matches the service provider BRAS hostname. Try to use passive knob under ppp-options chap also add local-name

Re: [j-nsp] UK adsl config

Of Nick Ryce Sent: 01 July 2009 11:53 To: juniper-nsp@puck.nether.net Subject: Re: [j-nsp] UK adsl config Gave that a try and still nothing. Forgot to mention that i have set keepalives as the adsl line is a backup and no traffic is flowing. Would the interface come up without traffic going

[j-nsp] Juniper IPSEC VPN

established but packets continue to be lost. Any ideas? Nick -- Nick Ryce Network Engineer Lumison 0845119 P.S. do you love Lumison? Why not take a moment and vote for us? http://bit.ly/Vote_Lumison -- This email and any files transmitted with it are confidential and intended solely

Re: [j-nsp] Juniper IPSEC VPN

Spec sheets say it should be able to hand a couple of hundred vpn tunnels so not sure if that would be? Is there a hardware encryption module for the junipers? Nick From: Chris Evans [mailto:chrisccnpsp...@gmail.com] Sent: 30 April 2010 12:13 To: Nick Ryce Cc: juniper-nsp@puck.nether.net

Re: [j-nsp] Juniper IPSEC VPN

To: Nick Ryce Subject: Re: [j-nsp] Juniper IPSEC VPN OFF-LIST PRIVATE RESPONSE. Spec sheet of 1000265-en.pdf indicates a j2320 should be able to do 140mb/s IPsec VPN... Also 1000206-en.pdf says that crypto module you found is for a 2350 only. If you are not pushing more than that published limit

Re: [j-nsp] Juniper IPSEC VPN

a difference. Nick -Original Message- From: Kerry Milestone [mailto:k...@sanger.ac.uk] Sent: 06 May 2010 15:32 To: Nick Ryce Cc: juniper-nsp@puck.nether.net Subject: Re: [j-nsp] Juniper IPSEC VPN Hi, i batteed me head on this one... turns out, to get our VPN stable even though the Checkoint's

[j-nsp] Encrypt GRE tunnel with ipsec

-srx240.txt but dont think that would encrypt everything going down the tunnelor would it. Im using 9.6 at the moment. Any help appreciated -- Nick Ryce Network Engineer Lumison 0845119 P.S. do you love Lumison? Why not take a moment and vote for us? http://bit.ly/Vote_Lumison

Re: [j-nsp] Encrypt GRE tunnel with ipsec

[mailto:jonloo...@gmail.com] Sent: 24 May 2010 14:21 To: Nick Ryce Cc: juniper-nsp@puck.nether.net Subject: Re: [j-nsp] Encrypt GRE tunnel with ipsec Are you using SRX/J-series or AS PIC/MS PIC/ASM/Services DPC? The configuration will be different for those two classes of platform. -Jon On Mon

Re: [j-nsp] Encrypt GRE tunnel with ipsec

Hi Ben, Its 9.6 im using which I believe ES was rolled into this. I will look at the docs provided :) Sounds like exactly what I require. Nick -Original Message- From: Ben Dale [mailto:bd...@comlinx.com.au] Sent: 25 May 2010 12:03 To: Nick Ryce Cc: Jonathan Looney; J NSP Subject: Re

[j-nsp] J2320 rollback

Hi Guys, This is such a newb question that im slightly embarrassed to ask but I just cant get any joy from the Juniper KB. Im remotely upgrading junos software from 9.1 to 9.3 and I have a usb device where I have issued the command 'request system snapshot media usb' Now if I upgrade and the

[j-nsp] unabel to archive to ftp

errors enabled 2010-06-24 16:35:02 BST: Rotate backup configs 2010-06-24 16:35:06 BST: commit complete commit complete Any ideas? -- Nick Ryce Network Engineer Lumison 0845119 P.S. do you love Lumison? Why not take a moment and vote for us? http://bit.ly/Vote_Lumison

Re: [j-nsp] unabel to archive to ftp

Hi Thomas, Its on a j2320 9.6R3.8 Nick -Original Message- From: Thomas Eichhorn [mailto:t...@te3networks.de] Sent: 25 June 2010 08:08 To: Nick Ryce Cc: juniper-nsp@puck.nether.net Subject: Re: [j-nsp] unabel to archive to ftp -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 What is about

Re: [j-nsp] J series users bitten by the massive memory useincrease with flow mode add, please file jtac cases.

On the back of this I have a j6350 running 10.0R3.10 and am using for some bgp and ospf. Is the best guide to following to move from flow to packet-based this http://juniper.cluepon.net/index.php/Enabling_packet_based_forwarding or does anyone have any other suggestions? Nick -Original

Re: [j-nsp] J series users bitten by the massive memory useincrease with flow mode add, please file jtac cases.

I haven't implemented. I was asking if the below link is the best way to do it as I would prefer to go back to packet-based. Nick -Original Message- From: Jay Hanke [mailto:jha...@myclearwave.net] Sent: 21 July 2010 15:10 To: Nick Ryce; juniper-nsp@puck.nether.net Subject: RE: [j-nsp

[j-nsp] BFD

Hi Guys, I have searched through this list and also on juniper and cant find an answer. Is it possible to use BFD on a j2320/j6350 to make the router become either backup/master on a vrrp group? Nick -- This email and any files transmitted with it are

[j-nsp] J series OID/MIB help

which return counter32 and OctetString but not an integer. Any help would be much appreciated. Nick -- Nick Ryce Network Engineer Lumison t: 0845 1199 900 d: +44 131 514 4049 P.S. Fancy some light reading? Clouds to networks, download a Lumison whitepaper now at http://www.lumison.net/why

Re: [j-nsp] J series OID/MIB help

And 30 seconds after I posted I think I have found it .1.3.6.1.4.1.2636.3.50.1.1.1.3.6.80.114.111.98.101.49.3.69.68.73.1 -Original Message- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Nick Ryce Sent: 03 September 2010 16:03

[j-nsp] st0 speeds

Hi Guys, Is there a set speed for the st0 interface. The physical line is 100meg that the st0 is bound to but I only seem to get 10meg out of it. Any help appreciated. Nick -- This email and any files transmitted with it are confidential and intended solely

[j-nsp] flow based v packet based routing

Hi Guys, Quick question. We have 2 x 6350's on 100mb connections to the internet and a secure tunnel between them. Both run 9.6R3.8. We were only seeing 40mb/s throughput on this and as a last gasp before faulting to the carriers we moved it onto packet based forwarding with the below:-

[j-nsp] BGP Blackhole communities

Hi Guys, I am starting to play with BGP and have set up some communities to separate customer, peer and transit routes. I am trying to figure out how to allow customers to send me a blackhole community number and then blackhole this. Does anyone have any examples? I have set up most of my

Re: [j-nsp] BGP Blackhole communities

Thanks for all the replies and help :) Nick -Original Message- From: Jonas Frey (Probe Networks) [mailto:j...@probe-networks.de] Sent: 20 October 2010 16:03 To: Nick Ryce Cc: juniper-nsp@puck.nether.net Subject: Re: [j-nsp] BGP Blackhole communities Hi, its easy: - you need multihop

[j-nsp] Ex2200

Hi Guys, Just having a look through the ex2200 datasheet and cant see if the switch can do L3 policing. I understand that it does basic L3 functionality like static routing but I would have thought that policing would be a basic L3 function. Can anyone else confirm? Nick

Re: [j-nsp] Egress Policing / Layer2

Did anyone ever get this resolved as we are facing the same issue. Nick -Original Message- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Paul Stewart Sent: 11 August 2010 00:52 To: juniper-nsp@puck.nether.net Subject: [j-nsp] Egress

Re: [j-nsp] JNCIS-ENT - Software to prepare for exam

When you pass the assessment it also gives you a prometric discount code :) Nick -Original Message- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of david@orange-ftgroup.com Sent: 22 December 2010 15:15 To: 'Jared Gull';

[j-nsp] EX series ipv6

Anyone know if Juniper plan to allow IPV6 routing without the extortionate advanced license? Nick -- This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you

Re: [j-nsp] Routing to tunnel interfaces on M10i

Do you have a return route on the other device for the network you are trying to ping from? -Original Message- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Alexander Shikoff Sent: 18 January 2011 13:43 To:

[j-nsp] Cisco ACL converter

specified. I have a about 150 customer ACLS each with about 40 lines of code which I really don't want to do manually. Thanks. -- Nick Ryce Network Engineer Lumison t: 0845 1199 900 d: +44 131 514 4049 P.S. Fancy some light reading? Clouds to networks, download a Lumison whitepaper now

[j-nsp] output-list for ex4200

ACL we use on most customer vlans and then a customer specific vlan? Nick -- Nick Ryce Network Engineer Lumison t: 0845 1199 900 d: +44 131 514 4049 P.S. Fancy some light reading? Clouds to networks, download a Lumison whitepaper now at http://www.lumison.net/why-lumison/whitepapers

[j-nsp] ex4200 egress filter

use tcp-established in cisco land ). Is there any known work around? Nick -- Nick Ryce Network Engineer Lumison t: 0845 1199 900 d: +44 131 514 4049 P.S. Fancy some light reading? Clouds to networks, download a Lumison whitepaper now at http://www.lumison.net/why-lumison/whitepapers

Re: [j-nsp] ex4200 egress filter

Ryce Subject: Re: [j-nsp] ex4200 egress filter Why not perform this at the routed layer? Or, are you routing into the VLAN at the EX4200? (i.e. using the EX4200 as a router, not a switch which then uplinks the VLAN to something bigger like an MX...) - Chris. On 2011-04-28, at 7:35 PM, Nick

Re: [j-nsp] ex4200 egress filter

Thankfully only using ospf and vlans on our ex4200's :) Nick -Original Message- From: Richard A Steenbergen [mailto:r...@e-gerbil.net] Sent: 28 April 2011 14:05 To: Nick Ryce Cc: Chris Kawchuk; juniper-nsp@puck.nether.net Subject: Re: [j-nsp] ex4200 egress filter On Thu, Apr 28, 2011

Re: [j-nsp] good filter to protect RE

Especially using apply-path to build dynamic prefix-lists can help greatly and remove a lot of overhead from adding/removing when things change. Nick -Original Message- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Kurt Bales Sent:

Re: [j-nsp] SRX best practices in SP and EP networks

Do you have any figures for throughput required? What functionality do the SRX's need to support? Nick On 14/08/2011 02:41, uk2usa uk2...@gmail.com wrote: Experts, Please share the best practices for SRX deployment in service provider and enterprise networks? Also, recommend SRX options I

Re: [j-nsp] SRX cluster and route failover

Hi Mark, Maybe something like http://kb.juniper.net/InfoCenter/index?page=contentid=KB22052pmv=print is what you are looking for? Nick On 18/02/2013 13:34, Mark Menzies m...@deimark.net wrote: Hi all I hope someone here can help. I have an SRX cluster with 3 reth interfaces, 2 for WAN

Re: [j-nsp] Best route reflector platform

/swmpls.html#wp1285989 Nick -- Nick Ryce Fluency Communications Ltd. e. n...@fluency.net.uk w. http://fluency.net.uk/ t. 0845 874 7000 On 14/04/2013 17:47, Mark Tinka mark.ti...@seacom.mu wrote: On Monday, February 25, 2013 04:56:39 PM Benny Amorsen wrote: Dedicating an MX routing engine

Re: [j-nsp] RSVP Sessions

You can set optimize timers to something low so it will check for underlying IGP changes and reroute. Ideally you will want to look at fast reroute etc so a backup path is already there in the event of a failure. Nick -- Nick Ryce Fluency Communications Ltd. e. n...@fluency.net.uk w. http

Re: [j-nsp] 3rd optics on MX/EX/SRX

We can't speak highly enough of Flexoptix. Very well priced SFP's and you can even buy a box which can program them to look like sfp's from most of the current hardware vendors. DOM is also on their optical SFP's too. Nick -- Nick Ryce Fluency Communications Ltd. e. n...@fluency.net.uk w

Re: [j-nsp] KRT queue stalls fixed in 11.4R8?

It doesn't appear to mention anything about sampling. I assume this is the fix for the BGP convergence issues per RAS's Nanog presso http://www.nanog.org/meetings/nanog57/presentations/Tuesday/tue.lightning2. steenbergen.juniper-slowfib.pdf Nick -- Nick Ryce Fluency Communications Ltd. e. n

Re: [j-nsp] One way VPLS

Can you provide a sanitised config for the routing instance and LSP's? -- Nick On 16/07/2013 15:50, Gabriel Blanchard g...@teksavvy.ca wrote: I'm attempting to turn up an VPLS circuit and it appears that only one side is showing as Up while the other is showing as VC-Dn I turned on a

Re: [j-nsp] Spanning tree RJ45 SFP on QFX5100

Hi Richard, Are you able to swap the RJ45¹s for SM 1G and see if the issue is still present which could indicate a possible port fault? N Nick Ryce On 20/10/2014 18:12, Michael Loftis mlof...@wgops.com wrote: On Mon, Oct 20, 2014 at 7:41 AM, Richard Hartmann richih.mailingl

Re: [j-nsp] transmit-rate percent shaping-rate working together

You may be able to use output-traffic-control-profile to achieve this N Nick Ryce Fluency Communications (Commsworld Ltd T/A) T: +44 (0) 330 121 1000 www.fluency.net.uk http://www.fluency.net.uk/ n...@fluency.net.uk mailto:char...@fluency.net.uk On 19/06/2015 16:00, Adam

Re: [j-nsp] Segment Routing ( SPRING )

If you speak to a friendly Juniper SE, they have a release that features spring. Julian Lucek mentioned this when I saw a presentation from him back in November. N Nick Ryce Fluency Communications (Commsworld Ltd T/A) T: +44 (0) 330 121 1000 www.fluency.net.uk <http://www.fluency.net.uk/

Re: [j-nsp] Switch in a Virtual Chassis EX between VC-Port and front port

Hi Andres, If you do show virtual-chassis vc-port does it show the new ports? N On 03/04/2017, 17:46, "juniper-nsp on behalf of Andres Diaz via juniper-nsp" wrote: Hi, I have two EX switches in Virtual