JUNOS_LAG(不具合対処メモ)
JUNOSのLACP不具合のメモ
Versionは以下
Junos: 15.1R1.8
LACPの設定を入れた後に下記コマンドを実行したらエラーとなった。
> show lacp interfaces
warning: lacp subsystem not running - not needed by configuration.
調べてみたら、「LACPモードが入っていないから表示される」という内容だったけど、実際には投入している。
set interfaces ae0 aggregated-ether-options lacp active
set interfaces ae0 aggregated-ether-options lacp periodic fast
set interfaces ae0 unit 0 family ethernet-switching
なので、色々と調べて以下で解決。
続きを読むJUNOS_VLAN(Native VLAN)
Ciscoのノリでやってしまったのでメモ
CiscoでTagging&Native Vlan設定は以下
interface gi0/0
switchport mode trunk
switchport trunk allowed vlan 10-12
switchport trunk native vlan 10
こうすれば、vlan10がNative VLANとしてタグなし
このノリでJUNOSに入れる。
set vlans v10 vlan-id 10
set vlans v11 vlan-id 11
set vlans v12 vlan-id 12set interfaces ge-0/0/2 unit 0 family ethernet-switching port-mode trunk
set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members v10
set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members v11
set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members v12
set interfaces ge-0/0/2 unit 0 family ethernet-switching native-vlan-id 10
確認すると・・・
root# run show vlans detail
VLAN: v10, 802.1Q Tag: 10, Admin State: Enabled
Number of interfaces: 1 (Active = 0)
Untagged interfaces: ge-0/0/2.0
Tagged interfaces: ge-0/0/2.0VLAN: v11, 802.1Q Tag: 11, Admin State: Enabled
Number of interfaces: 1 (Active = 0)
Tagged interfaces: ge-0/0/2.0VLAN: v12, 802.1Q Tag: 12, Admin State: Enabled
Number of interfaces: 1 (Active = 0)
Tagged interfaces: ge-0/0/2.0
↑をみると、v10のTag/Untagともにge-0/0/2が表示
調べてみると、この場合の挙動は着信はUntagだけど送信はTagの模様。
正しくは以下
set interfaces ge-0/0/2 unit 0 family ethernet-switching port-mode trunk
set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members v11
set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members v12
set interfaces ge-0/0/2 unit 0 family ethernet-switching native-vlan-id 10
要は、memberからはv10は外す。
VLAN: v10, 802.1Q Tag: 10, Admin State: Enabled
Number of interfaces: 1 (Active = 0)
Untagged interfaces: ge-0/0/2.0
ちなみに、VLAN-IFは、以下
set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members v10
set interfaces irb unit 10 family inet address 1.1.1.1/32
set vlans v10 vlan-id 10
set vlans v10 l3-interface irb.10
特段難しいわけでもないけど、irb / vlan でアドレス振って、set vlanで割り当てる感じなので、Ciscoよりワンクッション必要なので忘れてしまいがち
後は、STP/RSTP/MST関連も検証したい。
これはCatalystがあればいいけど処分してしまったのが非常に悔やまれる。。。
DHCP snoopingとSPAN、dot1x関連位で見切りをつけるとしよう・・・
JUNOS_RTG
JuniperのRTG検証。
RTGはCiscoでいうところのFlex-Link機能
↑で検証
EX2200-24T-4G側のAE0をプライマリ、AE1をセカンダリとして検証
EX2200-24T側Config
set interfaces ge-0/0/0 ether-options 802.3ad ae0
set interfaces ge-0/0/1 ether-options 802.3ad ae0
set interfaces ge-0/0/2 ether-options 802.3ad ae1
set interfaces ge-0/0/3 ether-options 802.3ad ae1set interfaces ae0 aggregated-ether-options lacp active
set interfaces ae0 aggregated-ether-options lacp periodic fast
set interfaces ae0 unit 0 family ethernet-switching
set interfaces ae1 aggregated-ether-options lacp active
set interfaces ae1 aggregated-ether-options lacp periodic fast
set interfaces ae1 unit 0 family ethernet-switchingset protocols rstp interface ae0.0 disable
set protocols rstp interface ae1.0 disableset ethernet-switching-options redundant-trunk-group group RTG interface ae0.0 primary
set ethernet-switching-options redundant-trunk-group group RTG interface ae1.0
VC側Config
set interfaces interface-range AE0-RANGE member ge-0/0/0
set interfaces interface-range AE0-RANGE member ge-0/0/1
set interfaces interface-range AE0-RANGE ether-options 802.3ad ae0
set interfaces interface-range AE1-RANGE member ge-1/0/0
set interfaces interface-range AE1-RANGE member ge-1/0/1
set interfaces interface-range AE1-RANGE ether-options 802.3ad ae1set interfaces ae0 aggregated-ether-options lacp active
set interfaces ae0 aggregated-ether-options lacp periodic fast
set interfaces ae0 unit 0 family ethernet-switching
set interfaces ae1 aggregated-ether-options lacp active
set interfaces ae1 aggregated-ether-options lacp periodic fast
set interfaces ae1 unit 0 family ethernet-switching
VC側は普通のLAGと同じ
EX220-24T側で確認
root> show interfaces ae[0,1]* terse
Interface Admin Link Proto Local Remote
ae0 up up
ae0.0 up up eth-switch
ae1 up up
ae1.0 up up eth-switch
root> show redundant-trunk-group
Group Interface State Time of last flap Flap
name countRTG ae0.0 Up/Pri/Act 2017-07-13 13:53:25 UTC (00:08:08 ago) 1
ae1.0 Up Never 0root>
AE0をVC側で落としてみる。
root> show interfaces ae[0,1]* terse
Interface Admin Link Proto Local
ae0 up down
ae0.0 up down eth-switch
ae1 up up
ae1.0 up up eth-switch
root> show redundant-trunk-group
Group Interface State Time of last flap Flap
name countRTG ae0.0 Dwn/Pri 2017-07-13 14:03:05 UTC (00:00:53 ago) 2
ae1.0 Up/Act Never
ちゃんとPingでの疎通確認は後日