Hello,
I have an MX80 and 3 EX4200s connected via 10GigE running MPLS, OSPF, etc. I
have some ethernet-ccc links working between the gear.
I'm trying to setup my first MPLS based routing VRF (L3VPN ???) between a new
SRX210 and the MX80 (going through the EX4200s).
Eventually the configurat
The EX4200s will be P routes so I should be ok. I'll get BGP running on the
SRX & EXs tomorrow. The SRX & MX80 will be PE.
I'll update tomorrow if I can't get it working.
Thanks.
--
Matthew S. Crocker
President
Crocker Communications, Inc.
PO BOX 710
Greenfield, MA 01302-0710
E: matt...@cro
24, 2012, at 8:17 PM, "Caillin Bathern" wrote:
> Hi Matt,
>
> You should only need iBGP between the PE routers, eg the SRX and the MX.
> Just configure family inet-vpn unicast to pass the VRF/VPN routes.
>
> Cheers,
> Caillin
>
> From: Matthew Cro
Damn, so it looks like I'm stuck with ethernet-ccc on the SRX through the EX to
the MX. It'll work in my application but is not what I planned on doing.
-Matt
--
Matthew S. Crocker
President
Crocker Communications, Inc.
PO BOX 710
Greenfield, MA 01302-0710
E: matt...@crocker.com
P: (413) 746
I'm having trouble getting bidirectional packets to flow on this configuration.
--[GigE]--> MX80 --[MPLS]--> EX4200-1 --[MPLS]--> EX4200-2
--[GigE]-- SRX
The plan is to have two VLANS coming out of the SRX, 1 VLAN (id:100) is to be
terminated on the EX4200 as layer 3 and routed (basic Inte
Hello,
I have a weird routing issue where my MX80 is not doing what it is supposed to
do. I have a customer configured with BGP announcing two subnets to me. The
subnets end up in the routing table. One subnet works fine, the other routes
to the wrong machine in my network. Everything l
Hello,
I’m trying to setup a port-mirror to see the traffic in/out on a XE interface
of my MX80. The port-mirror is working but it is only showing layer 3, not
layer 2 data.I would like to be able to see the VLAN & MAC addresses used
in the original packets. Right now the Ethernet fram
I’ve had very good luck with SFPs from http://approvedoptics.com/They ship
quickly (same day most times) and have worked great in all my Cisco, Juniper,
HP, … gear
I have no connection with them other than a satisfied customer.
--
Matthew S. Crocker
President
Crocker Communications, Inc.
Hello,
I’m turning up some peering in New York in the coming weeks (NYIIX, DE-CIX) and
will need to configure several hundred BGP sessions. Is there an easy (open
source) way of managing the BGP sessions & generating automatic configurations?
Would be great if you could pull down from peeri
Hello,
I'm running an Enhanced MX480 Midplane with RE-S-2X00x6 and Enhanced MX SCB 2
with MPC3E NG PQ & Flex Q & MPC7E 3D MRATE-12xQSFPP-XGE-XLGE-CGE cards.
Currently running : Junos: 15.1F7.3 it appears stable but I don't' have it in
production yet and want to upgrade if needed before it s
Hello,
I currently have 4 MX480s (RE-S-2X00x6) running my core network and I’m
looking to manage about 20k FTTH residential subscribers. The customers are
running DHCP clients (Calix ONT, Netgear residential router). What are my
options for managing each DHCP request in JunOS would the su
Hello,
I have a customer WAN with 20ish SRX300s & 1 MX80 connected and need to setup
RFC2544 to prove out the WAN circuits.
Is RFC2544 supports on the SRX in later JunOS versions?
I don’t want to go through the process of upgrading the OS and not get access
to the feature.
Current versions r
supported platforms, so perhaps you could
create a loopback on the SRX, or do your tests between routing-instances on the
MX.
-Original Message-
From: juniper-nsp [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of
Matthew Crocker
Sent: Wednesday, April 1
Hello,
I have a couple MX480s and need to send Netflow data to multiple flow
collectors. Is there a JunOS version that supposed multiple flow-servers
instead of just one. I’d like to avoid running a flow replicator if I can.
Thanks
-Matt
___
jun
I’d like to do some PM on my MX480s and replace the filter, FLTR-KIT-MX480-S
is $1,000 for a piece of foam and some stamped sheet metal. Does anyone have
any alternatives?
-Matt
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puc
Hello,
I have a network configured with a QFX core, 10 ACX2200 & 10 SRX300s. The ACXs
are connected to the QFX via 10G links and the SRX300s are connected via a
Transparent LAN type service.The ACX & SRX have LDP,OSPF & BGP running to
support MPLS on the QFX facing interfaces. The QFX i
: [j-nsp] Jumbo frames / mismatch MTU
CAUTION: This email originated from outside of Crocker. Do not click links or
open attachments unless you recognize the sender and know the content is safe.
On Fri, Apr 23, 2021 at 01:23:32PM +, Matthew Crocker wrote:
> The SRX devices are limited to
Howdie,
I just purchased my very first Juniper router (J6350). Coming
from the land of Cisco this is a huge step for me.I need to setup
BGP (full routes) between on of my upstreams and my Cisco 12008 (GigE
xconnect) and OSPF on my local LAN between a bunch of internal
devices (Cis
Hello,
I'm new to JUNOS please bear with me.
I have the following network setup
ISP1 (AS7018) connected via OC-3 to GSR
ISP2 (AS1239) connected via GigE to GSR
ISP3 (AS16657) connected via GigE to J6350
I have a GigE between the J6350 & GSR, My AS7849
BGP with full tables running to all 3
If it is for a lab, throw a switch on a real Ethernet port and create
a bunch of VLANs
On Nov 20, 2007, at 10:04 AM, Bit Gossip wrote:
> I certainly will not do it on a production router, but I kind of
> need an
> hack for that for my lab.
> Thanks,
> Bit.
>
>
> On Tue, 2007-11-20 at 15:36,
I wonder if the EX4200 can have layer 3 on all ports. A 48 port GigE
router would be nice, I just ordered two Cisco 3750G-Es for that
exact purpose. I like the stacking capabilities of the EX4200
-Matt
On Jan 29, 2008, at 11:57 AM, Scott Morris wrote:
> These aren't core... If you're ne
I need some Juniper-Foo for my OSPF config.
I have 3 routers connected to a GigE switch.
Router A is a Cisco 12000
Router B is a Juniper J6350
Router C is a Redback SE-400
I have A&C talking OSPF and sharing routes just fine.
I have A&B & C&B complaining about what the Juniper is sending ou
Doesn't MRV sell a CDWM 'thingy' that will take two GigE links and
combine them onto a single 2.5 gb Lambda? You would still need to
eat up to SFP ports on your routers but you would get 2 gbps over the
same fiber pairs with EtherChannel bonding.
Note: 'thingy' is a highly technical term
It would be cheaper & easier in the long run to teach your customers about
multi-hop BGP. Give them code snippets they can cut-n-paste into their
router. Offer to configure their router. Adding complexity to your side for
something a customer is unable/unwilling to do is wrong (IMHO)
Goo
I have an EX4200 with the current interface:
ge-0/0/4 {
description “XX";
enable;
unit 0 {
family inet {
address A.B.C.D/30;
}
}
I need to reconfigure it to support a VLAN
ge-0/0/4 {
description “X
I want to add an anti-spoofing filter on my inbound Internet facing interfaces.
discard when source IP is one of my IPs. Is there an automated ‘apply-path’
way to build a prefix-list or do I just need to build it and keep track of it
manually?
My prefixes are pretty stable but I also prov
Hello,
A customer with two connections to my mx240. I want to police their total
bandwidth to 800mbps. Right now I have a 800mbps policer but that gives them
800mbps on each circuit.
Customer Interface 1 is a VLAN on a 10G interface
Customer Interface 2 is a VLAN on a 1G interface
Each int
> On Apr 30, 2015, at 4:43 PM, Colton Conor wrote:
>
> I know legally you are not supposed to use the four 10G built in ports on a
> Juniper MX5 unless you buy an upgrade license to a MX40 or MX80 level. I
> would like to know if technically will these ports work, or has Juniper
> software locke
controller. Most
firewall ALGs are complete garbage.
—
Matthew Crocker
President - Crocker Communications, Inc.
Managing Partner - Crocker Telecommunications, LLC
E: matt...@corp.crocker.com
E: matt...@crocker.com
> On May 28, 2015, at 2:36 PM, Andy Litzinger
> wrote:
>
> Hi a
via e0.302
A ‘show run bgp sum’bgp.l3vpn.0 with 0 routes
Do I need to build a MPLS connection interface between the two
routing-instances?
—
Matthew Crocker
President - Crocker Communications, Inc.
Managing Partner - Crocker Telecommunications, LLC
E: matt...@corp.crocker.com
E
The issue was LDP wasn’t working due
to the protect-re filter blocking the LDP sessions. Once I fixed the
firewall filter LDP came up and I can ping across the VRFs.
Thanks again
-Matt
—
Matthew Crocker
President - Crocker Communications, Inc.
Managing Partner - Crocker Telecommunications, L
-Matt
—
Matthew Crocker
President - Crocker Communications, Inc.
Managing Partner - Crocker Telecommunications, LLC
E: matt...@corp.crocker.com
E: matt...@crocker.com
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net
Hello,
What is the current best practice for carrying full tables in MX series
routers? I have 3 new MX480s coming soon and will use them to rebuild my core
network (currently a mix of MX240 & MX80 routers). MPC-NG (w/ 20x1g & 10x10g
MICS )& RE-S-X6-64G-BB.
I’m running MPLS now and have f
Control Board, Base Bundle —
extra but cheap
—
Matthew Crocker
President - Crocker Communications, Inc.
Managing Partner - Crocker Telecommunications, LLC
E: matt...@corp.crocker.com
E: matt...@crocker.com
> On Apr 4, 2016, at 4:43 AM, Robert Hass wrote:
>
> On Mon, Apr 4, 2016 at 4:42
> On Apr 16, 2016, at 12:58 PM, Chris Adams wrote:
>
>
> MX5 through MX80 are the same physical hardware, with all the same
> physical ports built-in. The lower models have some ports disabled by
> licenses; only buy what you need today, and you can "upgrade" with a
> license purchase later to
96 Kbytes ( 1%)
Wired memory: 294748 Kbytes ( 14%)
Active memory: 1390992 Kbytes ( 67%)
Inactive memory: 122924 Kbytes ( 5%)
Cache memory: 143348 Kbytes ( 6%)
Free memory: 82920 Kbytes ( 4%)
—
Matthew Crocker
President - Crocker Communications, Inc.
vlan-bridge;
vlan-id 24;
family bridge;
}
unit 25 {
encapsulation vlan-bridge;
vlan-id 25;
family bridge;
}
unit 26 {
encapsulation vlan-bridge;
vlan-id 26;
family bridge;
}
Thanks
—
Matthew Crocker
President - Crocker Communica
show system processes summary
last pid: 34226; load averages: 0.24, 0.31, 0.23 up 477+00:51:09
18:31:50
142 processes: 4 running, 110 sleeping, 28 waiting
Mem: 1367M Active, 117M Inact, 295M Wired, 68M Cache, 112M Buf, 140M Free
Swap: 2915M Total, 2915M Free
—
Matthew Crocker
Preside
Rumors only at this point. Certainly would be a nice upgrade.
—
Matthew Crocker
President - Crocker Communications, Inc.
Managing Partner - Crocker Telecommunications, LLC
E: matt...@corp.crocker.com
E: matt...@crocker.com
> On Jul 28, 2016, at 2:49 PM, Josh Baird wrote:
>
> Isn&
Couldn’t you just use your local pref on the BGP sessions for Internet prefixes
to push the traffic over the other links?
Or, if you never want INET traffic over the link put a filter on the
announcements for the two neighbors and don’t send full tables.
—
Matthew Crocker
President
;
}
}
then {
community add blackhole;
accept;
}
}
prefix-list blackhole-prefixes {
A.B.C.D/32;
}
community blackhole members [ 7922:666 1239:66 ];
I’ve added pl-blockhole to my upstream BGP group export statement.
Am I on the right track? What am I missing?
--
Matthew
, just need to verify and add all my other upstreams
Thanks
On 9/15/16, 12:55 PM, "Jared Mauch" wrote:
> On Sep 15, 2016, at 12:53 PM, Matthew Crocker
wrote:
>
> Am I on the right track? What am I missing?
Are you generating the rou
: Matthew Crocker
Cc: "juniper-nsp@puck.nether.net"
Subject: Re: [j-nsp] need HELP black holing a /32 via BGP community.
Looks good. You may just want to add a /32 route so you have one to send.
set routing-options static route A.B.C.D/32 discard
Looks like you may be missing a 6 from a com
{
shortcuts;
}
family inet6 {
shortcuts;
}
}
interface xe-1/1/0.1151;
interface xe-1/3/0.0;
interface lo0.0;
The routes are in OSPF but I don’t see them in the ISIS routes on the other
routers.
What am I missing?
--
Matthew Crocker
President – Crocker Communications
matt
I found the issue, export-customer-bgp had a reject clause to the route
wasn’t getting to the export-ospf policy at all.
Thanks Peter
On 10/6/16, 9:49 AM, "juniper-nsp on behalf of Matthew Crocker"
wrote:
Hello,
I in the process of migrating from OSPF to I
I’m sending IPFIX flows to Scrutinizer and can generate the type of reports you
are looking for. ‘All bandwidth from X ASN’, ect
https://www.plixer.com/products/scrutinizer/
On 12/30/16, 2:16 AM, "juniper-nsp on behalf of Santanu Mandal"
wrote:
Dear all,
I want to measure traffic
’?
Not sure why Juniper didn’t remove this from their Linux install
-Matt
--
Matthew Crocker
Crocker Communications, Inc.
President
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
JunOS is BSD but on the NG-RE JunOS is running in a VM on Linux (KVM)
The message came during the Linux vmhost reboot, so linux driver
-Matt
--
Matthew Crocker
Crocker Communications, Inc.
President
From: Dermot Williams
Date: Monday, October 9, 2017 at 7:44 PM
To: "junipe
I'm running mine on
-Matt
--
Matthew Crocker
Crocker Communications, Inc.
President
On 2/12/18, 5:41 PM, "juniper-nsp on behalf of Dave Peters - Terabit Systems"
wrote:
Hi all--
Forgive my ignorance, but I've got an RE-S-X6-64G running in an MX480
Model RE-S-2X00x6
-Matt
--
Matthew Crocker
Crocker Communications, Inc.
President
On 2/12/18, 5:41 PM, "juniper-nsp on behalf of Dave Peters - Terabit Systems"
wrote:
Hi all--
Forgive my ignorance, but I've got an RE-S-X6-64G running in an MX480 (BP3)
wi
Hello,
I’m working with a Juniper MX204 to support DHCP subscriber management over
stacked-VLANs with dynamic profiles. I’ve followed a bunch of examples and I
can’t seem to get the DHCP server & clients to communicate properly.
I believe I have the stacked-vlan demuxing working but I can’t
I have an MX204 running 20.2R3-S5.6 current and I want to upgrade to something
newer.When I do upgrade it goes through smoothly but the FPC will not come
online. It looks like an I2C error, may need a firmware update.
So far I’ve tried to upgrade to:
junos-vmhost-install-mx-x86-64-21.4R
That was it! Thanks, I would of never found that. I’m now running Junos:
22.3R1.11 with a working FPC 😊
-matt
From: Michael Hare
Date: Sunday, October 16, 2022 at 6:47 PM
To: Matthew Crocker , juniper-nsp@puck.nether.net
Subject: RE: MX204 FPC won't start after upgrade.
CAUTION:
Hello,
I have a filter setup :
term DDOS {
from {
destination-prefix-list {
DDOS-Customers;
}
}
then {
count DDOS;
next-ip 192.168.126.2/32;
}
}
The 192.168.126.2 IP is the DDOS mitigation device. Is there a way I can
setup the rou
54 matches
Mail list logo
