I was lucky enough to be one of the first APAC partner engineers to get my hands on Juniper’s new QFabric gigantic scalable switch technology. I have even beat some of Juniper’s own SEs. In general, it rocks, but does have some features and fine tuning, this will come. This post is an introduction to [ View Post… ]
QFabric Part 1 – Explained and Explored First Hand
Junos Aggregated Ethernet w/LACP and Cisco Nexus Virtual Port Channel
So when I was googiling around looking for working configurations of Junos (EX in this case) AE working with a Cisco vPC (Virtual Port Channel) I could not find any examples … So I said that I would post one. I will not be covering how to set up a VPC, if you’re interested in [ View Post… ]
Juniper SRX Screens + Dynamic VPNs
Little tip with SRX Dynamic VPNs and ‘security screens’ on the VPN’s ingress zone I stumbled across during my JNCIE-SEC study. UPDATE (20120401): Seems Juniper has addressed and fixed this bug … More info: http://kb.juniper.net/InfoCenter/index?page=content&id=KB21713&actp=RSS It seems you can not have the ‘IP Spoofing’ screen enabled when sending IPSec Dynamic VPN traffic ingressing into the zone with [ View Post… ]
Valentines – Junos Style !
Awesome – This would get the chicks …
Juniper 5 in 5 – QFrabric
@cooperlees is yours truely [youtube https://www.youtube.com/watch?v=al71G4Isunc]
Juniper EX Virtual Chassis Specific Member Config
EX VC tip of the moment: Use apply-groups to add specific config to each node. For example: [plain] set groups member0 system host-name member0 set groups member1 system host-name member1 set groups member2 system host-name member2 set apply-groups member0 set apply-groups member1 set apply-groups member2 [/plain]
Junos IPv6 Management …
What IPv6 system user output looks like … [plain] cooper@noona-gw> show system users 9:15AM up 13:29, 1 user, load averages: 0.36, 0.28, 0.23 USER TTY FROM LOGIN@ IDLE WHAT cooper p0 2001:470:1f05:78b:224:1dff:fe71:9f70 9:15AM – -cli (cli) [/plain]
SRX110 and ADSL2+
So work was awesome this year and bought me an SRX110 for Xmas. I thought that I would share, to configure it’s vDSL interface to use adsl (with Australian VPI and VCI), you just configure the interface as if it was an ADSL PIM. Here is the config: [plain] set interfaces at-1/0/0 description "ADSL Interface" [ View Post… ]
Microsoft NPS Server + Juniper JUNOS VSA
A lot of companies run Microsoft’s Active Directory AAA infrastructure. A nice add on to AD (apart from my favorite ‘Services for UNIX’) is the Network and Policy Server (NPS). Using this RADIUS server with any radius speaking client is a nice addon that allows the majority of Network infrastructure to use AD as it’s authoriative [ View Post… ]
Handy Internet Interface JUNOS Firewall Filters
Here are two handy firewall filters to apply to any internet facing interface on your JUNOS network device. BOGON List – Apply as input on Internet facing interface – You should also add any Public Address space that you have inside your network [plain] set firewall family inet filter BOGON-DENY term discard-bogon-net from source-address 10.0.0.0/8 [ View Post… ]
Recent Comments