@sarahr202 wrote:Hi everyone,Please consider following set up:host--tagged traffic v8-----ge0/0/0 EX4600SW--ae0------trunk---ae0 RouterAbove EX 4600 is layer 2 switch, router is gateway for hostSecurity requirement:Traffic arriving from host, on ge0/0/0 on EX 4600, must use routing instance to separate the layer2 traffic. Simply segementing traffic using vlan alone is not enough for security folks.
Let me guess what these security folks are afraid of - is it VLAN hopping?
Then VPLS does not improve it compared to plain VLAN bridging/switching.
@sarahr202 wrote:EX4600 does not support routing-instance tpe Virtual switch, so I am looking into VPLS to provide switching and also separation
As I mentioned above, separation with VPLS is no better than with plain VLAN bridging/switching.
Anyway - VPLS is not supported on EX4600 switch, only L2circuit and EVPN-VXLAN. Please check out JUNOS feature explorer