Hello,
@alkavana wrote:
. Why is the default classifier on an access interface a ieee802.1p classifier (ieee 802.1untrust)?
I don't see this happening (meaning default classifier is not present on L2 interfaces) in my lab with VMX and JUNOS 19.1R3. Configuration below:
set routing-instances VS1 instance-type virtual-switch
set routing-instances VS1 interface ge-0/0/9.0
set routing-instances VS1 interface ae6.0
set routing-instances VS1 interface ae7.0
set routing-instances VS1 bridge-domains BDOM vlan-id-list 100-110
set interfaces ge-0/0/9 encapsulation ethernet-bridge
set interfaces ge-0/0/9 unit 0 family bridge interface-mode access
set interfaces ge-0/0/9 unit 0 family bridge vlan-id 100
set interfaces ae6 flexible-vlan-tagging
set interfaces ae6 encapsulation extended-vlan-bridge
set interfaces ae6 aggregated-ether-options lacp active
set interfaces ae6 unit 0 family bridge interface-mode trunk
set interfaces ae6 unit 0 family bridge vlan-id-list 100-110
set interfaces ae7 encapsulation ethernet-bridge
set interfaces ae7 aggregated-ether-options lacp active
set interfaces ae7 unit 0 family bridge interface-mode access
set interfaces ae7 unit 0 family bridge vlan-id 100
Verification:
show class-of-service interface ge-0/0/9 detail
Physical interface: ge-0/0/9, Enabled, Physical link is Up
Link-level type: Ethernet-Bridge, MTU: 1514, MRU: 1522, LAN-PHY mode, Speed: 1000mbps, Loopback: Disabled,
Source filtering: Disabled, Flow control: Enabled, Auto-negotiation: Enabled, Remote fault: Online
Device flags : Present Running
Interface flags: SNMP-Traps Internal: 0x20004000
Link flags : None
Physical interface: ge-0/0/9, Index: 161
Maximum usable queues: 8, Queues in use: 4
Exclude aggregate overhead bytes: disabled
Logical interface aggregate statistics: disabled
Scheduler map: <default>, Index: 2
Congestion-notification: Disabled
Logical interface ge-0/0/9.0
Flags: Up SNMP-Traps 0x24024000 Encapsulation: Ethernet-Bridge
bridge
Interface Admin Link Proto Input Filter Output Filter
ge-0/0/9.0 up up bridge
Interface Admin Link Proto Input Policer Output Policer
ge-0/0/9.0 up up
bridge
Logical interface: ge-0/0/9.0, Index: 381
show class-of-service interface ae6 detail
Physical interface: ae6, Enabled, Physical link is Up
Link-level type: Extended-VLAN-VPLS, MTU: 9192, Speed: 1Gbps, Loopback: Disabled, Source filtering: Disabled,
Flow control: Disabled
Device flags : Present Running
Interface flags: SNMP-Traps Internal: 0x20004000
Physical interface: ae6, Index: 147
Maximum usable queues: 8, Queues in use: 4
Exclude aggregate overhead bytes: disabled
Logical interface aggregate statistics: disabled
Scheduler map: <default>, Index: 2
Congestion-notification: Disabled
Logical interface ae6.0
Flags: Up SNMP-Traps 0x20024000 VLAN-Tag [ ] Encapsulation: Extended-VLAN-Bridge
bridge
Interface Admin Link Proto Input Filter Output Filter
ae6.0 up up bridge
Interface Admin Link Proto Input Policer Output Policer
ae6.0 up up
bridge
Logical interface: ae6.0, Index: 364
Logical interface ae6.32767
Flags: Up SNMP-Traps 0x24004000 VLAN-Tag [ 0x0000.0 ] Encapsulation: Extended-VLAN-Bridge
multiservice
Interface Admin Link Proto Input Filter Output Filter
ae6.32767 up up multiservice
Interface Admin Link Proto Input Policer Output Policer
ae6.32767 up up
multiservice __default_arp_policer__
Logical interface: ae6.32767, Index: 365
show class-of-service interface ae7 detail
Physical interface: ae7, Enabled, Physical link is Up
Link-level type: Ethernet-VPLS, MTU: 9192, Speed: 1Gbps, Loopback: Disabled, Source filtering: Disabled, Flow control: Disabled
Device flags : Present Running
Interface flags: SNMP-Traps Internal: 0x20004000
Physical interface: ae7, Index: 148
Maximum usable queues: 8, Queues in use: 4
Exclude aggregate overhead bytes: disabled
Logical interface aggregate statistics: disabled
Scheduler map: <default>, Index: 2
Congestion-notification: Disabled
Logical interface ae7.0
Flags: Up SNMP-Traps 0x24024000 Encapsulation: Ethernet-Bridge
bridge
Interface Admin Link Proto Input Filter Output Filter
ae7.0 up up bridge
Interface Admin Link Proto Input Policer Output Policer
ae7.0 up up
bridge
Logical interface: ae7.0, Index: 380
show bridge domain
Routing instance Bridge domain VLAN ID Interfaces
VS1 BDOM-vlan-0100 100
ae6.0
ae7.0
ge-0/0/9.0
VS1 BDOM-vlan-0101 101
ae6.0
VS1 BDOM-vlan-0102 102
ae6.0
VS1 BDOM-vlan-0103 103
ae6.0
VS1 BDOM-vlan-0104 104
ae6.0
VS1 BDOM-vlan-0105 105
ae6.0
VS1 BDOM-vlan-0106 106
ae6.0
VS1 BDOM-vlan-0107 107
ae6.0
VS1 BDOM-vlan-0108 108
ae6.0
VS1 BDOM-vlan-0109 109
ae6.0
VS1 BDOM-vlan-0110 110
ae6.0
Could You please share Your router/switch model, JUNOS version and exact configuration where You see "ieee8021p-untrust" classifier applied by default to L2 interfaces?
HTH
Thx
Alex