Switching

 View Only
last person joined: 2 days ago 

Ask questions and share experiences about EX and QFX portfolios and all switching solutions across your data center, campus, and branch locations.
  • 1.  PVLAN question

    Posted 03-17-2021 16:03
    I have the following topology:

    I have the following configuration
    SW-1 and Sw-2
    set vlans vlan-hr vlan-id 102
    set vlans vlan-hr private-vlan community
    set vlans vlan-iso vlan-id 103
    set vlans vlan-iso private-vlan isolated
    set vlans vlan-pri vlan-id 101
    set vlans vlan-pri isolated-vlan vlan-iso
    set vlans vlan-pri community-vlans vlan-hr
    
    set interfaces xe-0/0/2 unit 0 family ethernet-switching vlan members vlan-hr
    set interfaces xe-0/0/3 unit 0 family ethernet-switching interface-mode trunk
    set interfaces xe-0/0/3 unit 0 family ethernet-switching inter-switch-link
    set interfaces xe-0/0/3 unit 0 family ethernet-switching vlan members vlan-pri
    
    
    
    ​

    Two hosts in vlan-hr can't ping each other.

    The following is from SW-2 on interface xe-0/0/2


    I repeated listening to Juniper AJEX training video and expected to see untagged packet leaving that interface xe-0/0/2.0, but I saw tragged packet. What did I miss here ?

    Some show output as follows

    root@SW-1# run show ethernet-switching table 
    
    MAC flags (S - static MAC, D - dynamic MAC, L - locally learned, P - Persistent static, C - Control MAC
               SE - statistics enabled, NM - non configured MAC, R - remote PE MAC, O - ovsdb MAC)
    
    
    Ethernet switching table : 1 entries, 1 learned
    Routing instance : default-switch
        Vlan                MAC                 MAC         Age    Logical                NH        RTR 
        name                address             flags              interface              Index     ID
        vlan-hr             50:00:00:02:00:02   D             -   xe-0/0/2.0             0         0    
    
    root@SW-1# run show ethernet-switching interface xe-0/0/2 
    Routing Instance Name : default-switch
    Logical Interface flags (DL - disable learning, AD - packet action drop,
                             LH - MAC limit hit, DN - interface down,
                             MMAS - Mac-move action shutdown,  AS - Autostate-exclude enabled,
                             SCTL - shutdown by Storm-control, MI - MAC+IP limit hit)
    
    Logical         Vlan                   TAG   MAC    MAC+IP STP         Logical          Tagging
    interface       members                      limit  limit  state       interface flags
    xe-0/0/2.0                                   8192   8192                                untagged 
                    vlan-hr                102   1024   1024   Forwarding                   untagged 
                    vlan-pri               101   1024   1024   Forwarding                   untagged 
    
    root@SW-1# run show ethernet-switching interface xe-0/0/3    
    Routing Instance Name : default-switch
    Logical Interface flags (DL - disable learning, AD - packet action drop,
                             LH - MAC limit hit, DN - interface down,
                             MMAS - Mac-move action shutdown,  AS - Autostate-exclude enabled,
                             SCTL - shutdown by Storm-control, MI - MAC+IP limit hit)
    
    Logical         Vlan                   TAG   MAC    MAC+IP STP         Logical          Tagging
    interface       members                      limit  limit  state       interface flags
    xe-0/0/3.0                                   8192   8192                                tagged   
                    vlan-pri               101   1024   1024   Forwarding                   tagged   
                    vlan-hr                102   1024   1024   Forwarding                   tagged   
                    vlan-iso               103   1024   1024   Forwarding                   tagged   


    Appreciate any insights and coach !!



  • 2.  RE: PVLAN question

    Posted 03-17-2021 23:06
    I tested it in Juniper Training AJEX lab, it works as expected. 

    The above I tested in EVE with vQFX. not sure whether Pvlan might not work for vQFX.

    thanks !!!