Browsed by
Month: July 2017

Juniper EVPN useful links

Juniper EVPN useful links

Comments 0 Comment

For study of Juniper EVPN technology I recommend to read this materials (in this particular order): Juniper QFX10000 Series book; EVPN whitepaper; Advanced Data Center Switching (ADCX) course materials; EVPN Day One book; L3GW VMTO whitepaper; MX L2VPN Feature Guide; QFX EVPN/VXLAN Feature Guide. EVPN is definitely the core topic of JNCIE-DC lab, so I need to study all of this thoroughly. Firstly I need to read (and understand) all this stuff, and later on I plan to heavily practice all…

Read More Read More

VXLAN Multicast

VXLAN Multicast

Comments 0 Comment

VXLAN with Multicast control plane is not explicitly stated in JNCIE-DC lab exam topics, so I not expect it on the exam. But anyway I decided to start Overlay topics from the simple case and later on continue to more advanced ones. Firstly, for Multicast VXLAN of course you need to configure Multicast protocol in the Underlay. Nothing complex, just basic PIM stuff: configure PIM interfaces and some kind of RP (static/local/anycast-RP). Configure VTEP source interface: set switch-options vtep-source-interface lo0.0 …

Read More Read More

Class of Service

Class of Service

Comments 2 comments

If you want to study Juniper Class of Service on MX routers, use this materials: Junos Class of Service (JCOS) course; Juniper MX Series book (caution! really hard stuff in there); Class of Service Feature Guide for Routing Devices. Unfortunately there is no decent book about QFX5100 Class of Service implementation (at least I didn’t find one), so there is nothing left but to use QFX Traffic Management Feature Guide. It’s a hell lot of material to study of you…

Read More Read More

SRX Security Zones and Policies

SRX Security Zones and Policies

Comments 0 Comment

I recently read Junos Security book and Junos Security course materials, so I pretty confident in my knowledge of basic SRX security functions. For configuration examples use Security Zones and Interfaces Feature Guide and Security Policies Feature Guide. Complete SRX Security zones configuration hierarchy: security {     zones {         functional-zone {             management {                 description text;            …

Read More Read More

JUNOS Control plane protection

JUNOS Control plane protection

Comments 0 Comment

This Day One Book provides a good coverage of Control plane protection firewall filters. Or you can use Juniper MX Series book – same material there. Also take a look at QFX Security Feature Guide, Firewall Filters Configuration Guide and User and Access Management Feature Guide. All of this are not the core topics of JNCIE-DC lab, so I don’t expect any really complex tasks in this chapter – just basic stuff. Just ensure you have basic understanding how to configure and apply CoPP…

Read More Read More

IP Fabric

IP Fabric

Comments 0 Comment

Next topic – Layer 3 Underlay – Clos IP fabric. Please refer to Juniper QFX5100 Series book and this whitepaper. Pretty basic stuff if you already have some experience with BGP and policies. Make sure you know the differences between various IBGP and EBGP design options, although there is only EBGP option stated explicitly in JNCIE-DC lab exam topics. Learn different schemas of AS numbers assignment. BGP configuration example: bgp {     log-updown;     import bgp-clos-in;     export bgp-clos-out;    …

Read More Read More

MC-LAG

MC-LAG

Comments 0 Comment

If you look for a comprehensive explanation of MC-LAG technology – Juniper MX Series book is the best choice. For all configuration details refer to MC-LAG Feature Guide. MC-LAG configuration can be broken up into four important pieces: Inter Chassis Control Protocol (ICCP), Inter Chassis Link (ICL), MC-LAG interface and IRB interface. So let’s start with ICCP: user@switch2 > show configuration protocols iccp local-ip-addr 10.2.2.2; peer 10.1.1.1 {     session-establishment-hold-time 50;     redundancy-group-id-list 1;     backup-liveness-detection {  …

Read More Read More

QFX interface breakout

QFX interface breakout

Comments 0 Comment

To configure a block of 40-Gigabit Ethernet (et) ports on QFX3500, QFX3600, QFX5100, EX4600 switches to operate as 10-Gigabit Ethernet ports, specify a port range and channel speed: [edit chassis fpc fpc-slot pic pic-slot] user@switch# set port-range port–range-low port-range-high channel-speed speed For example, to configure ports 0 through 3 on PIC 1 to operate as 10-Gigabit Ethernet ports: [edit chassis fpc 0 pic 1] user@switch# set port-range 0 3 channel-speed 10g To configure just one single port to…

Read More Read More

VCF

VCF

Comments 0 Comment

Juniper QFX5100 Series book has pretty good coverage of VCF related topics, but I think VCF feature guide is better suited for lab preparation. Unfortunately I don’t have real QFX5100 gear, so my VCF study would be completely theoretical. But the good news are that all that complexity of VCF has nothing to do with end user, and to just configure it is a pretty simple task. Definitely no rocket science… VCF can be configured in two different ways: autoprovisioned and…

Read More Read More

Zero Touch Provisioning

Zero Touch Provisioning

Comments 4 comments

ZTP process is well explained in the Data Center Swithing cource (DCX) – read about it there if you can find this material. Especially the lab module for ZTP. Also there is fine free ZTP Day One book. The core part of ZTP process is the configuration of DHCP server, that looks something like this: set vendor-string = option vendor-class-identifier; option space ZTPDEMO; option ZTPDEMO.image-file-name code 0 = text; option ZTPDEMO.config-file-name code 1 = text; option ZTPDEMO.image-file-type code 2 = text;…

Read More Read More