• April 25, 2018, 08:04:13 PM
Welcome, Guest. Please login or register. Registration is free.
Did you miss your activation email?

Recent Posts

Pages: [1] 2 3 ... 10
1
Juniper Routers and Switches / Juniper EX2200's and v15.1 Software
« Last post by Telair on April 23, 2018, 06:15:03 PM »
I hope this can help someone, but I would really recommend not upgrading Juniper EX2200 and EX2200-C switches to v15.1 software loads.  The EX2200 series switches have a minimal amount of RAM on them (512MB) which the v15.1 series of code uses up to a high degree.  This tends to cause switch problems with reboots and problems installing new code.  Unless there is an overriding need to use v15.1 code, stay using the v12.3 code stream as it is much more friendly to your RAM on these resource limited switches.
2
Juniper Routers and Switches / Juniper EX Switches
« Last post by Telair on April 23, 2018, 06:08:26 PM »
I am using Juniper EX2200/2300/3400/4200 switches on a daily basis now, so I'll try to help anyone if they have questions.  :-)
3
Juniper SRX and Netscreen Appliances / Juniper SRX's
« Last post by Telair on April 23, 2018, 06:06:52 PM »
Just so people know, I am now using Juniper SRX 100/210/300/340's on a daily basis.  So if people have questions I'll try my best to help. :-)
4
Extreme / Avaya / Nortel Ethernet Switching / Re: Nortel 5520-24T-PWR updating
« Last post by MatzeKS on April 23, 2018, 02:03:12 AM »
The syntax is correct (and can be verified with "?" after each single part of this command) and it seems your tftpd service is not running and/or incorrect permissions on tftp servers filesystem and/or blocked by local firewall.

Good luck

I can recommend this TFTP-Server for Windows based systems x86/x64:

http://tftpd32.jounin.net/tftpd32_download.html

https://codeplexarchive.blob.core.windows.net/archive/projects/tftpd64/tftpd64.zip

5
The connection to open tftp on my windows machine is not happening from the switch :(

I can validate that its serving the files because i did a test transfer using the tftp client on ubuntu (windows subsystem for linux)

switch 192.168.1.10
tftp: 192.168.1.12

is this the correct syntax?

download address 192.168.1.12 diag 55x0_50002_diags.bin


6
Hi MatzeKS!

I switched to another machine and changed the IPs a bit.. switch 192.168.1.10 PC: 192.168.1.12
It looks as if the laptop was blocking ICMP i guess. Its working now.

Thank you for your response.

5520-24T-PWR#sho mac-address-table port 1
Mac Address Table Aging Time: 300
Number of addresses: 1

   MAC Address      Source          MAC Address      Source
-----------------  --------      -----------------  --------
BC-5F-F4-XX-XX-XX  Port:  1


5520-24T-PWR#show ip
BootP Mode: BootP When Needed

                     Configured        In Use        Last BootP
                   --------------- --------------- ---------------
Stack IP Address:  0.0.0.0                         0.0.0.0
Switch IP Address: 192.168.1.10    192.168.1.10    0.0.0.0
Subnet Mask:       0.0.0.0         255.255.255.0   0.0.0.0
Default Gateway:   0.0.0.0                         0.0.0.0

5520-24T-PWR#show vlan mgmt
Management VLAN: 1
5520-24T-PWR#show vlan interface info 1
      Filter     Filter
     Untagged Unregistered
Port  Frames     Frames    PVID PRI    Tagging    Name
---- -------- ------------ ---- --- ------------- ----------------
1    No       Yes          1    0   UntagAll      Port 1
5520-24T-PWR#show ipmgr
TELNET Access: Enabled
SNMP Access:   Disabled
WEB Access:    Enabled
TELNET IP List Access Control: Enabled
SNMP IP List Access Control:   Enabled
WEB IP List Access Control:    Enabled
Allowed Source IP Address  Allowed Source Mask
-------------------------  -------------------
1  0.0.0.0                    0.0.0.0
2  255.255.255.255            255.255.255.255
...
50 255.255.255.255            255.255.255.255

5520-24T-PWR#ping 192.168.1.12
Host is reachable. time=1 ms


ipconfig on PC

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . :
   Link-local IPv6 Address . . . . . : fe80::245f:6fdb:cef7:dbb6%14
   IPv4 Address. . . . . . . . . . . : 192.168.1.12
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . :
7
Extreme / Avaya / Nortel Ethernet Switching / Re: inter-vrf routing - OSPF
« Last post by MatzeKS on April 20, 2018, 03:44:13 AM »
maybe you can try to build "Route Policy" in each VRF, which suppresses the unwanted subnet(s) from the other VRF? After that you can use this Policy and assign this in Route Redistribution with SrcVRFId.
On EDM you'll find this: VRF Context View => Choose the right VRFID => Launch VRF Conext View

The additional EDM Tab gives you access limited to that VRF, here you can create/assign the Route Policies under IP => Policy => [Prefix List] + [Route Policy] + [Route Redistribution]

Good luck
 
8
Extreme / Avaya / Nortel Ethernet Switching / Re: inter-vrf routing - OSPF
« Last post by adgobs on April 20, 2018, 03:13:57 AM »
Hi MatzeKS,

Yes I have tried also using subnet mask instead of wildcard mask. Still not working  :-[
9
Extreme / Avaya / Nortel Ethernet Switching / Re: inter-vrf routing - OSPF
« Last post by MatzeKS on April 20, 2018, 02:39:43 AM »
Hi adgobs,

I never tried to build this with ACLs - normally a local Firewall should taken care of that.

I'm not sure, if your src-ip/dst-ip mask "0.0.0.255" are used right - did you tried "255.255.255.0" instead?

Good luck
10
Extreme / Avaya / Nortel Ethernet Switching / Re: inter-vrf routing - OSPF
« Last post by adgobs on April 20, 2018, 02:22:49 AM »
Hi MatzeKS,

Have you tried filtering between VRF?
Attached file is my VRF topology. I redistributed intervrf to allow internet access. However VRF TENANTS and VRF APO-AGUA should not have connectivity. Both are reachable via VRF INET. I need to filter the network from VRF TENANTS (10.10.40.0/24) and VRF APO-AGUA (10.10.50.0/24).

I tried using filtering, but is not working  :-[

filter acl 1 type inVlan name TENANTS
filter acl vlan 1 40
filter acl ace 1 1 name DENY-APO-AGUA
filter acl ace ethernet 1 1 ether-type eq ip
filter acl ace ip 1 1 src-ip mask 10.10.40.0 0.0.0.255
filter acl ace ip 1 1 dst-ip mask 10.10.50.0 0.0.0.255
filter acl ace action 1 1 deny
filter acl ace 1 1 enable

filter acl ace 1 2 name PERMIT-ALL
filter acl ace ethernet 1 2 ether-type eq ip
filter acl ace ip 1 2 src-ip mask 10.10.40.0 0.0.0.255
filter acl ace ip 1 2 dst-ip mask 0.0.0.0 0.0.0.0
filter acl ace action 1 2 permit
filter acl ace 1 2 enable
!
!
filter acl 2 type inVlan name APO-AGUA
filter acl vlan 2 50

filter acl ace 2 1 name DENY-TENANTS
filter acl ace ethernet 2 1 ether-type eq ip
filter acl ace ip 2 1 src-ip mask 10.10.50.0 0.0.0.255
filter acl ace ip 2 1 dst-ip mask 10.10.40.0 0.0.0.255
filter acl ace action 2 1 deny
filter acl ace 2 1 enable

filter acl ace 2 2 name PERMIT-ALL
filter acl ace ethernet 2 2 ether-type eq ip
filter acl ace ip 2 2 src-ip mask 10.10.40.0 0.0.0.255
filter acl ace ip 2 2 dst-ip mask 0.0.0.0 0.0.0.0
filter acl ace action 2 2 permit
filter acl ace 2 2 enable

I appreciate the help. Thank you.
Pages: [1] 2 3 ... 10