View
219
Download
0
Category
Tags:
Preview:
Citation preview
Juniper ESCR TescoDay 1
OverviewDay #1
Maintenance and monitoringRouting
protocolsLab
Day #2
Introduction to Juniper devices
Junos CLI System and interface
configurationLab
DAY #4
QoS
FHRP
Lab
DAY #3
Routing policy
Firewall
filters
Lab
FreeBSD (UNIX) Separate control and forwarding plane Control plane
Maintains the routing tables, bridging table, and primary forwarding table. (RE)
Forwarding plane Forwarding packets, rate-limiting, cos, stateless firewall, built on ASICs. (PFE, PIC/PIM, cFEB)
Control and Forwarding plane are connected through an internal link.
Transit and exception traffic
Transit traffic handled solely by PFE. Traffic going only through the router.
Exception traffic is handled by RE.
Packets addressed to the RE (telnet, ssh, pings) IP packets with option field set Traffic that requires special processing (ICMP reply messages)
Processes
Root> show system processes extensiveLast pid: 1527; load averages: 0.26, 0.10, 0.16 up 0+00:12:31 14:17:54107 processes: 2 running, 87 sleeping, 18 waitingMem: 144m active, 61m inact, 52m wired, 224m cache, 60m buf, 7512k freeSwap: 1024M total, 1024M free Pid username thr pri nice size res state time wcpu command 11 root 1 171 52 0K 12K RUN 10:07 88.18% idle 1313 root 1 96 0 11876K 7956K select 0:01 0.00% snmpd 1315 root 1 4 0 42536K 10720K kqread 0:01 0.00% rpd 1320 root 1 96 0 10256K 4604K select 0:01 0.00% pfed 1343 root 3 20 0 7396K 2472K sigwai 0:09 0.05% jddosd 1494 root 1 96 0 109M 6232K select 0:00 0.00% chassisd
Juniper routers
M-series – Service provider edge, enterprise edge (M-7i, M-320) J-series – Branch edge (J-2320)
T-series – Service provider core (ie. T-640) PTX-series – Service provider supercore (ie. PTX5000) SRX-series – Firewalls (Branch - SRX210, Enterprise SRX1400) EX-series – L2/L3 switches (ie. EX4200)
Initial configuration Initial login into Juniper router (Amnesiac prompt) Root and the others
Help topic, reference, appropos Configure exclusive, private Login and announcement banners
Life of configuration file
Users and classes
User can belong to single class Single class can be assigned to multiple users
Syslog messages
IP address and routes
Assign IP address to an interface Vlan tagging Protocol independent routing
Aggragete route Generated route Static route
Primary and preferred address Primary
Lowest IP address on the interface unless overriden by operator Only one per interface
Preferred Lowest IP address of each subnet One per subnet = One interface can have multiple preferred addresses
Protocol independent routing / Static
Recommended