• October 31, 2020, 02:40:58 AM
Welcome, Guest. Please login or register. Registration is free.
Did you miss your activation email?

Author Topic: Avaya ERS5698 SMLT Connection to Juniper NS5400s  (Read 4640 times)

0 Members and 1 Guest are viewing this topic.

Offline brazenhead

  • Sr. Member
  • ****
  • Posts: 132
Avaya ERS5698 SMLT Connection to Juniper NS5400s
« on: October 16, 2013, 04:12:32 PM »
Hi all,

I am working on connecting an Avaya IST cluster of 2 x ERS5698's to our Active/Passive NS5400 cluster as shown in the attached file

The links on the Avaya side will be SMLT. On the Juniper side it will be an aggregate interface consisting of 4 interfaces (on each firewall). Has anybody every deployed a similar setup with Avaya switches and Juniper NS5400 firewalls? If so do you have any advice? i have a few inter-operability concerns such as:

-  the NS5400 supports aggregate port configuration but is not 802.3ad compliant”, does that pose any risks when connecting an Avaya switch SMLT to the NS5400 aggregate links? 

-  the Avaya SMLT will not have Spanning Tree enabled by default and it is recommended that the other end has it disabled too, this does not appear to be an option on the Juniper NS5400 aggregate link – should I enable STP on the Avaya SMLT or leave it disabled?

- Are there any other settings that come to mind that I might need to adjust when connecting an Avaya SMLT to Juniper LAG?

Thanks in advance.


Offline Dominik

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 1564
    • Networkautobahn
Re: Avaya ERS5698 SMLT Connection to Juniper NS5400s
« Reply #1 on: October 17, 2013, 12:16:52 PM »
Did some installations with Juniper ScreenOS devices aggregated Links to Avaya SMLT.
Works with ERS8k without any issues, so I would suggest it will also work with your ERS5698.

Not 100% sure but if I remeber it correct to get 4 Gigabit of firewalled throuput out of your NS5400
you have to distribute the links to different modules.

Good Luck
Itīs always the networks fault!
networkautobahn.com

Offline brazenhead

  • Sr. Member
  • ****
  • Posts: 132
Re: Avaya ERS5698 SMLT Connection to Juniper NS5400s
« Reply #2 on: October 17, 2013, 12:20:42 PM »
Thanks Dominik,

Did you have to enable STP on the Avaya SMLT links?

I've actually since revised the NS5400 LAG to only use 2 firewall interfaces to save on ifc's - but thanks for that info too.

Offline TankII

  • Hero Member
  • *****
  • Posts: 556
Re: Avaya ERS5698 SMLT Connection to Juniper NS5400s
« Reply #3 on: October 17, 2013, 02:33:03 PM »
The IST handles the traffic, so do not enable STP on SLT/SMLT links.

TankII

Offline brazenhead

  • Sr. Member
  • ****
  • Posts: 132
Re: Avaya ERS5698 SMLT Connection to Juniper NS5400s
« Reply #4 on: October 17, 2013, 08:37:26 PM »
Thanks Tankll,

have you implemented a similar setup without STP enabled on the Avaya SMLT links to a Juniper NS5400 Active/Passive firewall pair?

To clarify a bit: the reason I posed the question about STP on the SMLT links to the NS5400 LAG in the first place is because it was recommended to me by a knowledgeable source (that I leave STP enabled). This is contrary to what I expected to hear - I always thought it was recommended to disable  STP on all Avaya SLT/SMLT links, in addition to disabling it on the other end. (but I don't think there is an option to disable STP on an NS5400 LAG).
« Last Edit: October 17, 2013, 08:39:39 PM by brazenhead »

Offline Dominik

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 1564
    • Networkautobahn
Re: Avaya ERS5698 SMLT Connection to Juniper NS5400s
« Reply #5 on: October 18, 2013, 08:14:03 AM »
As @Tankll mentioned I also recommand to disable STP on all uplinks ERS5k to NS5400.
The Juniper STP implemantation make sometimes crazy thinks that I donīt like to have in a production network.
Itīs always the networks fault!
networkautobahn.com

Offline brazenhead

  • Sr. Member
  • ****
  • Posts: 132
Re: Avaya ERS5698 SMLT Connection to Juniper NS5400s
« Reply #6 on: October 18, 2013, 03:06:46 PM »
k. Thanks for the advice guys. Much appreciated.

Offline fizal.f

  • Rookie
  • **
  • Posts: 4
Re: Avaya ERS5698 SMLT Connection to Juniper NS5400s
« Reply #7 on: October 29, 2013, 10:57:15 AM »
Dear Dominik,

Can you please share the configuration for SMLT (redundant core 8800) and LACP with Juniper SRX.

Thanks in advance
Fizal

Offline Dominik

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 1564
    • Networkautobahn
Re: Avaya ERS5698 SMLT Connection to Juniper NS5400s
« Reply #8 on: October 29, 2013, 11:15:24 AM »
Take a look at this blogpost from Michael, here you can find a detailed guide how to configure LACP on
a ERS8k Switchclsuter:

http://blog.michaelfmcnamara.com/2009/08/lacp-configuration-examples-part-2/
Itīs always the networks fault!
networkautobahn.com