Browsed by
Tag: QFX

Juniper EVPN BGP options – eBGP-only design

Juniper EVPN BGP options – eBGP-only design

Comments 12 comments

In another part of his never-ending EVPN/BGP saga Ivan Pepelnjak argued with Juniper fanboys once again about sanity of iBGP-over-eBGP and eBGP-over-eBGP designs and all that fun stuff. I’ve already written my opinion about that topic in my previous post and numerous comments to Ivan’s posts (TL;DR: iBGP-over-eBGP design has its advantages, just implement it wisely – don’t place RR on spine switches). But there is one thing that worries me. In almost every one of his posts Ivan talks…

Read More Read More

EVPN lab – EVPN-VXLAN to EVPN-MPLS stitching

EVPN lab – EVPN-VXLAN to EVPN-MPLS stitching

Comments 5 comments

Last big topic that I need to practice – Data Center Interconnect (DCI). Fortunately I pretty confident in my skills in the MPLS L3VPN area, so I think I shouldn’t spend much time for this topic. The most complex DCI option remains – EVPN stitching. In this topic I will show you my example of EVPN-VXLAN to EVPN-MPLS stitching (there is also option of EVPN-VXLAN to EVPN-VXLAN stitching, but configuration should be similar to my example). EVPN stitching concept is…

Read More Read More

EVPN-VXLAN lab – IRB functionality

EVPN-VXLAN lab – IRB functionality

Comments 0 Comment

Firstly, QFX5100 series doesn’t support EVPN-VXLAN inter-VXLAN routing, so I practice all IRB related topics on vMX devices. vQFXs acts as a simple L2 EVPN gateways. This post continues the EVPN-VXLAN lab from the previous ones. Full vMX IRB interfaces configuration: alex@vMX1# show interfaces irb unit 100 {     proxy-macip-advertisement;     family inet {         address 172.16.0.251/24 {             virtual-gateway-address 172.16.0.254;         }     }  …

Read More Read More

EVPN-VXLAN lab – RT assignment methods

EVPN-VXLAN lab – RT assignment methods

Comments 2 comments

This post continues the EVPN-VXLAN lab from the previous one. For now I configured the simplest possible variant of RT assignment – one vrf-target for all ES and VNI routes (vrf-target target:65000:1): alex@vQFX1# show switch-options service-id 1; vtep-source-interface lo0.0; route-distinguisher 11.11.11.11:1; vrf-target target:65000:1;    ### This RT applies to ALL EVPN routes alex@vMX1# show routing-instances evpn {     vtep-source-interface lo0.0;     instance-type virtual-switch;     interface ge-0/0/4.0;     interface ae0.0;     route-distinguisher 1.1.1.1:1;    …

Read More Read More

EVPN-VXLAN lab – basic L2 switching

EVPN-VXLAN lab – basic L2 switching

Comments 1 comment

My EVPN-VXLAN lab topology: There is IP Fabric in DC1 (2 vMX and 2 vQFX), and 2 vMX_v14 to emulate CE devices. Each CE device connected to EVPN via LACP LAG ae0 (EVPN Active-Active ethernet segment on service side). vMX_old-1 also has sigle-homed interface ge-0/0/4 (just to show you the difference). Each CE device split into two logical systems for more convenient testing of routing functionality (global device context for Vlan100 and logical-system second for Vlan200). You could also use…

Read More Read More

MC-LAG lab – advanced IRB functionality

MC-LAG lab – advanced IRB functionality

Comments 3 comments

For simplified Layer 3 gateway services, where Layer 3 routing protocols are not run on the MC-LAG peers, you simply configure the same Layer 3 gateway IP address on both MC-LAG peers and enable IRB MAC address synchronization. This IP address is used as the default gateway for the MC-LAG servers or hosts. For more advanced Layer 3 gateway services, where Layer 3 routing protocols and Layer 3 multicast operations are required on the MC-LAG peers, you configure unique IRB…

Read More Read More

MC-LAG lab – basic L2 connectivity

MC-LAG lab – basic L2 connectivity

Comments 2 comments

My topology for MC-LAG practice: I already configured IP fabric between vQFX and vMX nodes using EBGP (to save space, I show the configuration for only one device – the rest are configured the same way): alex@vMX1> show configuration protocols bgp group underlay type external; export direct; local-as 65001; multipath multiple-as; neighbor 192.168.0.1 {     ###vQFX1     peer-as 65011; } neighbor 192.168.0.3 {     ###vQFX2     peer-as 65022; } alex@vMX1> show configuration policy-options policy-statement direct term…

Read More Read More

QFX EVPN basic config

QFX EVPN basic config

Comments 0 Comment

The overall structure of QFX5100 EVPN-VXLAN configuration is almost identical to MX configuration, but QFX configuration statements are scattered across three different stanzas: switch-options, protocols evpn and vlans. First is the switch-options config: set switch-options vtep-source-interface lo0.0 set switch-options route-distinguisher 10.0.0.3:1 set switch-options vrf-import EVPN_VRF_IMPORT set switch-options vrf-target target:65000:2 set switch-options vrf-target auto           ### depends on AS number in routing-options Vtep-source-interface and route-target policices are configured here. Configuration of vrf-import policy: set policy-options…

Read More Read More

Class of Service

Class of Service

Comments 2 comments

If you want to study Juniper Class of Service on MX routers, use this materials: Junos Class of Service (JCOS) course; Juniper MX Series book (caution! really hard stuff in there); Class of Service Feature Guide for Routing Devices. Unfortunately there is no decent book about QFX5100 Class of Service implementation (at least I didn’t find one), so there is nothing left but to use QFX Traffic Management Feature Guide. It’s a hell lot of material to study of you…

Read More Read More

QFX interface breakout

QFX interface breakout

Comments 0 Comment

To configure a block of 40-Gigabit Ethernet (et) ports on QFX3500, QFX3600, QFX5100, EX4600 switches to operate as 10-Gigabit Ethernet ports, specify a port range and channel speed: [edit chassis fpc fpc-slot pic pic-slot] user@switch# set port-range port–range-low port-range-high channel-speed speed For example, to configure ports 0 through 3 on PIC 1 to operate as 10-Gigabit Ethernet ports: [edit chassis fpc 0 pic 1] user@switch# set port-range 0 3 channel-speed 10g To configure just one single port to…

Read More Read More