Page 2 END USER LICENSE AGREEMENT The Juniper Networks product that is the subject of this technical documentation consists of (or is intended for use with) Juniper Networks software. Use of such software is subject to the terms and conditions of the End User License Agreement (“EULA”) posted at http://www.juniper.net/support/eula.html.
Page 4 High Availability Feature Guide for EX9200 Switches Part 2 Configuring Nonstop Bridging Chapter 4 Understanding How Nonstop Bridging Preserves Layer 2 Protocol Information During a Routing Engine Switchover ..... . 25 Nonstop Bridging Concepts .
Page 6 EX9200 Switches ........
Page 8 High Availability Feature Guide for EX9200 Switches Chapter 21 Configuration Statements: Graceful Restart ......233 disable ............234 graceful-restart (Enabling Globally) .
Page 9 (MX Series 3D Universal Edge Routers and EX9200 Switches) ........296 request system software validate in-service-upgrade .
Page 14 High Availability Feature Guide for EX9200 Switches Table 17: Unified ISSU Support: MX Series Router MPCs ....178 Table 18: Unified ISSU Support: MX Series Router MICs ....179 Chapter 17 Performing a Unified ISSU .
Page 15: About The Documentation
® To obtain the most current version of all Juniper Networks technical documentation, see the product documentation page on the Juniper Networks website at http://www.juniper.net/techpubs/ If the information in the latest release notes differs from the information in the documentation, follow the product Release Notes.
Page 16: Merging A Full Example
High Availability Feature Guide for EX9200 Switches If the example configuration does not start at the top level of the hierarchy, the example is a snippet. In this case, use the command. These procedures are load merge relative described in the following sections.
Page 17: Documentation Conventions
Table 2: Text and Syntax Conventions Convention Description Examples Bold text like this Represents text that you type. To enter configuration mode, type the configure command: user@host> configure Copyright © 2017, Juniper Networks, Inc. xvii...
Page 18 High Availability Feature Guide for EX9200 Switches Table 2: Text and Syntax Conventions (continued) Convention Description Examples Fixed-width text like this Represents output that appears on the user@host> show chassis alarms terminal screen. No alarms currently active Italic text like this...
Page 19: Documentation Feedback
We encourage you to provide feedback, comments, and suggestions so that we can improve the documentation. You can provide feedback by using either of the following methods: Online feedback rating system—On any page of the Juniper Networks TechLibrary site , simply click the stars to rate the content, http://www.juniper.net/techpubs/index.html and use the pop-up form to provide us with information about your experience.
Page 20: Opening A Case With Jtac
Download the latest versions of software and review release notes: http://www.juniper.net/customers/csc/software/ Search technical bulletins for relevant hardware and software notifications: http://kb.juniper.net/InfoCenter/ Join and participate in the Juniper Networks Community Forum: http://www.juniper.net/company/communities/ Open a case online in the CSC Case Management tool: http://www.juniper.net/cm/...
Page 21: Configuring Graceful Routing Engine Switchover (Gres)
PART 1 Configuring Graceful Routing Engine Switchover (GRES) Understanding How GRES Enables Uninterrupted Packet Forwarding During a Routing Engine Switchover on page 3 GRES System Requirements on page 11 Configuring GRES on page 17 Copyright © 2017, Juniper Networks, Inc.
Page 23: Understanding How Gres Enables Uninterrupted Packet Forwarding During A Routing Engine Switchover
To preserve routing during a switchover, GRES must be combined with either: Graceful restart protocol extensions Nonstop active routing Any updates to the master Routing Engine are replicated to the backup Routing Engine as soon as they occur. Copyright © 2017, Juniper Networks, Inc.
Page 24 High Availability Feature Guide for EX9200 Switches NOTE: Due to its synchronization requirements and logic, NSR/GRES performance is limited by the slowest Routing Engine in the system. Mastership switches to the backup Routing Engine if: The master Routing Engine kernel stops operating.
Page 25 After the interval expires, these routes are added to the appropriate routing tables. In an Ethernet VPN (EVPN)/VXLAN environment, we recommend that you specify a hold-time value of 300 seconds (5 minutes). Copyright © 2017, Juniper Networks, Inc.
Page 26: Figure 1: Preparing For A Graceful Routing Engine Switchover
High Availability Feature Guide for EX9200 Switches Figure 1 on page 6 shows the system architecture of graceful Routing Engine switchover and the process a routing platform follows to prepare for a switchover. Figure 1: Preparing for a Graceful Routing Engine Switchover...
Page 27: Figure 2: Graceful Routing Engine Switchover Process
The chassisd process is responsible for maintaining and retaining mastership and when it is restarted, the new chassisd is processed based on the router or switch load. As a result, any one of the Routing Engines is made the master. Copyright © 2017, Juniper Networks, Inc.
Page 28: Effects Of A Routing Engine Switchover
High Availability Feature Guide for EX9200 Switches Effects of a Routing Engine Switchover Table 3 on page 8 describes the effects of a Routing Engine switchover when different features are enabled: No high availability features Graceful Routing Engine switchover Graceful restart...
Page 29 'helper' routers time out, graceful restart can stop and cause interruptions in traffic. Related Understanding High Availability Features on Juniper Networks Routers Documentation Graceful Routing Engine Switchover System Requirements on page 11 Configuring Graceful Routing Engine Switchover on page 17...
Page 31: Gres System Requirements
MX960 router—Junos OS Release 8.3 or later MX480 router—Junos OS Release 8.4 or later (8.4R2 recommended) MX240 router—Junos OS Release 9.0 or later PTX5000 router—Junos OS Release 12.1X48 or later Standalone T1600 router—Junos OS Release 8.5 or later Copyright © 2017, Juniper Networks, Inc.
Page 32: Graceful Routing Engine Switchover Feature Support
High Availability Feature Guide for EX9200 Switches Standalone T4000 router—Junos OS Release 12.1R2 or later TX Matrix Plus router—Junos OS Release 9.6 or later TX Matrix Plus router with 3D SIBs—Junos Release 13.1 or later EX Series switches with dual Routing Engines or in a Virtual Chassis — Junos OS Release 9.2 or later for EX Series switches...
Page 33: Graceful Routing Engine Switchover Dpc Support
DPCs, see the MX Series DPC Guide. Graceful Routing Engine Switchover and Subscriber Access Graceful Routing Engine switchover currently supports most of the features directly associated with dynamic DHCP and dynamic PPPoE subscriber access. Graceful Routing Copyright © 2017, Juniper Networks, Inc.
Page 34: Graceful Routing Engine Switchover Pic Support
High Availability Feature Guide for EX9200 Switches Engine switchover also supports the unified in-service software upgrade (ISSU) for the DHCP access model and the PPPoE access model used by subscriber access. Graceful Routing Engine Switchover PIC Support Graceful Routing Engine switchover is supported on most PICs, except for the services PICs listed in this section.
Page 35: Requirements For Routers With A Backup Router Configuration
Ethernet interface for management purposes, you must specify the backup router configuration as follows: backup-router 172.29.201.62 destination [172.16.0.0/13 172.16.128.0/13] Related Understanding Graceful Routing Engine Switchover on page 3 Documentation Graceful Routing Engine Switchover System Requirements on page 11 Copyright © 2017, Juniper Networks, Inc.
Page 37: Configuring Gres
To ensure that these adjacencies are kept, change the hold-time for IS-IS protocols from the default of 27 seconds to a value higher than 40 seconds. Copyright © 2017, Juniper Networks, Inc.
Page 38: Synchronizing The Routing Engine Configuration
High Availability Feature Guide for EX9200 Switches Synchronizing the Routing Engine Configuration NOTE: A newly inserted backup Routing Engine automatically synchronizes its configuration with the master Routing Engine configuration. When you configure GRES, you can bring the backup Routing Engine online after the master Routing Engine is already running.
Page 39: Verifying Graceful Routing Engine Switchover Operation
Requirements for Routers with a Backup Router Configuration on page 15 Resetting Local Statistics on page 20 graceful-switchover on page 231 graceful-switchover Example: Configuring IS-IS for GRES with Graceful Restart on page 20 hold-time Copyright © 2017, Juniper Networks, Inc.
Page 40: Resetting Local Statistics
High Availability Feature Guide for EX9200 Switches Resetting Local Statistics When you enable graceful Routing Engine switchover, the master Routing Engine configuration is copied and loaded to the backup Routing Engine. User files, accounting information, and trace options information are not replicated to the backup Routing Engine.
Page 41 2 hold-time 41 routing-instance-name] Configuring the IS-IS Protocol Hold Time for Graceful Restart Step-by-Step To configure the IS-IS hold-time for graceful restart: Procedure Locate or set the interfaces. set protocols isis interface interface-name Copyright © 2017, Juniper Networks, Inc.
Page 42 High Availability Feature Guide for EX9200 Switches Set the network level and the hold-time in seconds for that level. set protocols isis interface interface-name level 1 hold-time 41 If the routing device functions on more than one level, set the value for the other level.
Page 43: Configuring Nonstop Bridging
PART 2 Configuring Nonstop Bridging Understanding How Nonstop Bridging Preserves Layer 2 Protocol Information During a Routing Engine Switchover on page 25 Nonstop Bridging System Requirements on page 29 Configuring Nonstop Bridging on page 31 Copyright © 2017, Juniper Networks, Inc.
Page 45: Understanding How Nonstop Bridging Preserves Layer 2 Protocol Information During A Routing Engine Switchover
Routing Engine switchover, see “Understanding Graceful Routing Engine Switchover” on page Figure 3 on page 26 shows the system architecture of nonstop bridging and the process a routing (or switching) platform follows to prepare for a switchover. Copyright © 2017, Juniper Networks, Inc.
Page 46: Figure 3: Nonstop Bridging Switchover Preparation Process
High Availability Feature Guide for EX9200 Switches Figure 3: Nonstop Bridging Switchover Preparation Process The switchover preparation process for nonstop bridging follows these steps: The master Routing Engine starts. The routing platform processes on the master Routing Engine (such as the chassis process [chassisd] and the Layer 2 Control Protocol process [l2cpd]) start.
Page 47: Figure 4: Nonstop Bridging During A Switchover
State information learned from the point of the switchover is updated in the system. Forwarding and bridging are continued during the switchover, resulting in minimal packet loss. Related Understanding High Availability Features on Juniper Networks Routers Documentation Nonstop Bridging System Requirements on page 29 Configuring Nonstop Bridging on page 31 Configuring Nonstop Bridging on Switches (CLI Procedure) Copyright ©...
Page 49: Nonstop Bridging System Requirements
Junos OS release. Protocol Support Nonstop bridging is supported for the following Layer 2 control protocols: Spanning Tree Protocol (STP) Rapid Spanning Tree Protocol (RSTP) Multiple Spanning Tree Protocol (MSTP) VLAN Spanning Tree Protocol (VSTP) Copyright © 2017, Juniper Networks, Inc.
Page 50 High Availability Feature Guide for EX9200 Switches Related Nonstop Bridging Concepts on page 25 Documentation Configuring Nonstop Bridging on page 31 Configuring Nonstop Bridging on Switches (CLI Procedure) Copyright © 2017, Juniper Networks, Inc.
Page 51: Configuring Nonstop Bridging
Routing Engines. commit If you issue the commit synchronize command at the [edit] hierarchy level on the backup Routing Engine, the Junos OS displays a warning and commits the candidate configuration. Copyright © 2017, Juniper Networks, Inc.
Page 52: Verifying Nonstop Bridging Operation
High Availability Feature Guide for EX9200 Switches NOTE: A newly inserted backup Routing Engine automatically synchronizes its configuration with the master Routing Engine configuration. When you configure nonstop bridging, you can bring the backup Routing Engine online after the master Routing Engine is already running. There is no requirement to start the two Routing Engines simultaneously.
Page 53: Configuring Nonstop Active Routing (Nsr)
Configuring Nonstop Active Routing (NSR) Understanding How Nonstop Active Routing Preserves Routing Protocol Information During a Routing Engine Switchover on page 35 Nonstop Active Routing System Requirements on page 39 Configuring Nonstop Active Routing on page 53 Copyright © 2017, Juniper Networks, Inc.
Page 55: Understanding How Nonstop Active Routing Preserves Routing Protocol Information During A Routing Engine Switchover
For more information about GRES, see “Understanding Graceful Routing Engine Switchover” on page NOTE: Starting with Junos OS Release 12.3, due to its synchronization requirements and logic, NSR/GRES performance is limited by the slowest Routing Engine in the system. Copyright © 2017, Juniper Networks, Inc.
Page 56: Figure 5: Nonstop Active Routing Switchover Preparation Process
High Availability Feature Guide for EX9200 Switches Figure 5 on page 36 shows the system architecture of nonstop active routing and the process a routing (or switching) platform follows to prepare for a switchover. Figure 5: Nonstop Active Routing Switchover Preparation Process...
Page 57: Figure 6: Nonstop Active Routing During A Switchover
CAUTION: We recommend that you do not restart the routing protocol process (rpd) on master Routing Engine after enabling NSR, as it disrupts the protocol adjacency/peering sessions, resulting in traffic loss. Copyright © 2017, Juniper Networks, Inc.
Page 58 High Availability Feature Guide for EX9200 Switches Release History Table Release Description 15.1R1 Starting with Junos OS Release 15.1R1, if you have NSR configured, it is never restart routing valid to issue the command in any form on the NSR master Routing Engine.
Page 59: Nonstop Active Routing System Requirements
Junos OS Release M10i router 8.4 or later M20 router 8.4 or later M40e router 8.4 or later M120 router 9.0 or later M320 router 8.4 or later MX Series routers 9.0 or later Copyright © 2017, Juniper Networks, Inc.
Page 60 High Availability Feature Guide for EX9200 Switches Table 5: Nonstop Active Routing Platform Support (continued) Platform Junos OS Release PTX Series Packet Transport Routers 12.1R4 or later NOTE: Nonstop active routing (NSR) switchover on PTX series is supported only for...
Page 61: Nonstop Active Routing Protocol And Feature Support
Labeled BGP (PTX Series Packet Transport Routers: only) 12.1R4 or later IS-IS 8.4 or later 8.4 or later LDP-based virtual private LAN service (VPLS) 9.3 or later LDP OAM (operation, administration, and management) features 9.6 or later Copyright © 2017, Juniper Networks, Inc.
Page 62 High Availability Feature Guide for EX9200 Switches Table 6: Nonstop Active Routing Protocol and Feature Support (continued) Protocol Junos OS Release LDP (PTX Series Packet Transport Routers only) 12.3R4 or later Nonstop active routing support for LDP includes: LDP unicast transit LSPs...
Page 63 On routers that have logical systems configured on them, NSR is only supported in the main instance. NOTE: Starting with Junos OS Release 13.3R5, on EX9214 switches, the VRRP master state might change during graceful Routing Engine switchover, even when nonstop active routing is enabled. Copyright © 2017, Juniper Networks, Inc.
Page 64: Nonstop Active Routing Bfd Support
100 ms for distributed BFD sessions. For very large-scale network deployments with a large number of BFD sessions, contact Juniper Networks customer support for more information. For BFD sessions to remain up during a Routing Engine switchover event when nonstop active routing is configured, specify a minimum interval of 10 seconds for Routing Engine-based sessions.
Page 65: Nonstop Active Routing Bgp Support
Address families are supported only on the main instance of BGP. Only unicast is supported on VRF instances. inet labeled-unicast inet-mdt inet multicast inet-mvpn inet unicast inet-vpn unicast inet6 labeled-unicast inet6 multicast inet6-mvpn inet6 unicast Copyright © 2017, Juniper Networks, Inc.
Page 66: Nonstop Active Routing Layer 2 Circuit And Vpls Support
High Availability Feature Guide for EX9200 Switches inet6-vpn unicast iso-vpn l2vpn signaling route-target BGP route dampening does not work on the backup Routing Engine when nonstop active routing is enabled. Nonstop Active Routing Layer 2 Circuit and VPLS Support Nonstop active routing supports Layer 2 circuit and VPLS on both LDP-based and RSVP-TE-based networks.
Page 67 Routing Engine, and keeps updating the default MDT state information. However, for data MDTs, the backup Routing Engine relies on the master Routing Engine to provide updates when data MDTs are created, updated, or deleted. The backup Routing Copyright © 2017, Juniper Networks, Inc.
Page 68: Nonstop Active Routing Msdp Support
High Availability Feature Guide for EX9200 Switches Engine neither monitors data MDT flow rates nor triggers a data MDT switchover based on variations in flow rates. Similarly, the backup Routing Engine does not maintain the data MDT delay timer or timeout timer. It does not send MDT join TLV packets for the data MDTs until it takes over as the master Routing Engine.
Page 69: Nonstop Active Routing Support For Rsvp-Te Lsps
However, Junos OS nonstop active routing support for RSVP point-to-multipoint LSPs does not include support for dynamically created point-to-multipoint LSPs, such as VPLS. Starting with Release 14.1, Junos OS extends nonstop active routing support to the next-generation multicast VPNs (MPVNs). Copyright © 2017, Juniper Networks, Inc.
Page 70 High Availability Feature Guide for EX9200 Switches command enables you to check the point-to-multipoint show rsvp session detail LSP remerge state information ( ; possible values are P2MP LSP re-merge head member none However, Junos OS does not support nonstop active routing for the following features:...
Page 71 Routing Engine switchover, even when nonstop active routing is enabled. Related Nonstop Active Routing Concepts on page 35 Documentation Configuring Nonstop Active Routing on page 53 Configuring Nonstop Active Routing on Switches Example: Configuring Nonstop Active Routing on Switches Copyright © 2017, Juniper Networks, Inc.
Page 73: Configuring Nonstop Active Routing
VPN routing instances. Automatic route distinguishers are enabled by configuring the statement route-distinguisher-id at the [edit routing-instances instance-name] hierarchy level; for more information, see the Junos OS VPNs Library for Routing Devices. Copyright © 2017, Juniper Networks, Inc.
Page 74: Synchronizing The Routing Engine Configuration
High Availability Feature Guide for EX9200 Switches If the routing protocol process (rpd) on the NSR master Routing Engine crashes, the master Routing Engine simply restarts rpd (with no Routing Engine switchover), which impacts routing protocol adjacencies and neighbors and results in traffic loss. To prevent...
Page 75: Verifying Nonstop Active Routing Operation
, and send options: [edit protocols] bgp { traceoptions { flag nsr-synchronization <detail> <disable> <receive> <send>; isis { traceoptions { flag nsr-synchronization <detail> <disable> <receive> <send>; Copyright © 2017, Juniper Networks, Inc.
Page 76 High Availability Feature Guide for EX9200 Switches ldp { traceoptions { flag nsr-synchronization <detail> <disable> <receive> <send>; mpls { traceoptions flag nsr-synchronization; flag nsr-synchronization-detail; msdp { traceoptions { flag nsr-synchronization <detail> <disable> <receive> <send>; (ospf | ospf3) { traceoptions { flag nsr-synchronization <detail>...
Page 77 Chapter 9: Configuring Nonstop Active Routing Related Configuring Nonstop Active Routing on page 53 Documentation Configuring Nonstop Active Routing on Switches Example: Configuring Nonstop Active Routing on Switches Example: Configuring Nonstop Active Routing on page 60 Copyright © 2017, Juniper Networks, Inc.
Page 78: Traceoptions
High Availability Feature Guide for EX9200 Switches traceoptions Syntax traceoptions { file filename <files number> <size size> <world-readable | no-world-readable>; flag flag <disable>; Hierarchy Level [edit logical-systems logical-system-name routing-instances routing-instance-name routing-options], [edit logical-systems logical-system-name routing-instances routing-instance-name routing-options multicast], [edit logical-systems logical-system-name routing-options],...
Page 80: Example: Configuring Nonstop Active Routing
High Availability Feature Guide for EX9200 Switches —(Optional) Allow any user to read the log file. world-readable Required Privilege routing and trace—To view this statement in the configuration. Level routing-control and trace-control—To add this statement to the configuration. Related Example: Tracing Global Routing Protocol Operations...
Page 81 192.168.10.1; neighbor 192.168.11.1; neighbor 192.168.12.1; isis { traceoptions { flag nsr-synchronization detail; # This logs nonstop active routing events # for IS-IS. interface all; interface fxp0.0 { disable; interface lo0.0 { passive; Copyright © 2017, Juniper Networks, Inc.
Page 82 High Availability Feature Guide for EX9200 Switches ospf { traceoptions { flag nsr-synchronization detail; # This logs nonstop active routing events # for OSPF. area 0.0.0.0 { interface all; interface fxp0.0 { disable; interface lo0.0 { passive; policy-options { policy-statement BGP_export {...
Page 83: Configuring Graceful Restart
PART 4 Configuring Graceful Restart Understanding How Graceful Restart Enables Uninterrupted Packet Forwarding When a Router Is Restarted on page 65 Graceful Restart System Requirements on page 73 Configuring Graceful Restart on page 75 Copyright © 2017, Juniper Networks, Inc.
Page 85: Understanding How Graceful Restart Enables Uninterrupted Packet Forwarding When A Router Is Restarted
Three main types of graceful restart are available on Juniper Networks routing platforms: Graceful restart for aggregate and static routes and for routing protocols—Provides...
Page 86: Graceful Restart For Aggregate And Static Routes
High Availability Feature Guide for EX9200 Switches Graceful restart works similarly for routing protocols and MPLS protocols and combines components of these protocol types to enable graceful restart in VPNs. The main benefits of graceful restart are uninterrupted packet forwarding and temporary suppression of all routing protocol updates.
Page 87: Bgp
When the restarting router receives replies from all the helper routers, the restarting router selects routes, updates the forwarding table, and discards the old routes. At this point, full OSPF adjacencies are reestablished and the restarting router receives and Copyright © 2017, Juniper Networks, Inc.
Page 88: Pim Sparse Mode
High Availability Feature Guide for EX9200 Switches processes OSPF LSAs as usual. When the helper routers no longer receive grace LSAs from the restarting router or the topology of the network changes, the helper routers also resume normal operation. NOTE: For more information about the standard helper mode implementation, see RFC 3623, Graceful OSPF Restart.
Page 89: Rip And Ripng
This time period is also typically the length of time that a neighboring router maintains its information about the restarting router, so it can continue to forward traffic. Copyright © 2017, Juniper Networks, Inc.
Page 90: Rsvp
High Availability Feature Guide for EX9200 Switches You can configure LDP graceful restart both in the master instance for the LDP protocol and for a specific routing instance. You can disable graceful restart at the global level for all protocols, at the protocol level for LDP only, and for a specific routing instance only.
Page 91: Graceful Restart On Logical Systems
Graceful Restart Concepts on page 65 Documentation Graceful Restart System Requirements on page 73 Configuring Logical System Graceful Restart on page 86 Verifying Graceful Restart Operation on page 220 Configuring Graceful Restart on page 87 Copyright © 2017, Juniper Networks, Inc.
Page 93: Graceful Restart System Requirements
Forwarding Engine, the peer node can help the peer with the graceful restart. Junos OS Release 9.2 or later for BGP to support helper mode without requiring that graceful restart be configured. Related Graceful Restart Concepts on page 65 Documentation Copyright © 2017, Juniper Networks, Inc.
Page 95: Configuring Graceful Restart
To configure [edit protocols protocol graceful-restart] a time period for complete restart, include the restart-duration statement. You can specify a number between 120 and 900. Copyright © 2017, Juniper Networks, Inc.
Page 96: Configuring Routing Protocols Graceful Restart
High Availability Feature Guide for EX9200 Switches For a list of hierarchy levels at which you can include this statement, see the statement summary section for this statement. When you include the statement at the hierarchy graceful-restart [edit routing-options] level, graceful restart is also enabled for aggregate and static routes.
Page 97: Configuring Graceful Restart Options For Bgp
{ graceful-restart { disable; restart-time seconds; stale-routes-time seconds; routing-options { graceful-restart; To disable BGP graceful restart capability for all BGP sessions, include the disable statement at the hierarchy level. [edit protocols bgp graceful-restart] Copyright © 2017, Juniper Networks, Inc.
Page 98: Configuring Graceful Restart Options For Es-Is
High Availability Feature Guide for EX9200 Switches NOTE: To set BGP graceful restart properties or disable them for a group, include the desired statements at the [edit protocols bgp group group-name graceful-restart] hierarchy level. To set BGP graceful restart properties or disable them for a specific neighbor...
Page 99: Configuring Graceful Restart Options For Ospf And Ospfv3
To disable strict LSA checking, include the no-strict-lsa-checking statement at the [edit protocols (ospf | ospf3) hierarchy level. graceful-restart] [edit] protocols { ospf | ospfv3{ graceful-restart { disable; helper-disable no-strict-lsa-checking; notify-duration seconds; restart-duration seconds; routing-options { graceful-restart; Copyright © 2017, Juniper Networks, Inc.
Page 100 High Availability Feature Guide for EX9200 Switches To disable OSPF/OSPFv3 graceful restart, include the disable statement at the [edit hierarchy level. protocols (ospf | ospf3) graceful-restart] Starting with Release 11.3, the Junos OS supports both the standard (based on RFC 3623, Graceful OSPF Restart) and the restart signaling-based (as specified in RFC 4811, RFC 4812, and RFC 4813) helper modes for OSPF version 2 graceful restart configurations.
Page 101: Configuring Graceful Restart Options For Rip And Ripng
To configure the duration of the PIM graceful restart period, include the restart-duration statement at the hierarchy level: [edit protocols pim graceful-restart] [edit] protocols { Copyright © 2017, Juniper Networks, Inc.
Page 102: Tracking Graceful Restart Events
High Availability Feature Guide for EX9200 Switches pim { graceful-restart disable; restart-duration seconds; routing-options { graceful-restart; To disable PIM sparse mode graceful restart capability, include the disable statement at the hierarchy level. [edit protocols pim graceful-restart] NOTE: Multicast forwarding can be interrupted in two ways. First, if the underlying routing protocol is unstable, multicast reverse-path-forwarding (RPF) checks can fail and cause an interruption.
Page 103: Configuring Graceful Restart For Mpls-Related Protocols
This value is applied to all neighboring routers, so it should be based on the time required by the slowest RSVP neighbor to restart. [edit] protocols { rsvp { graceful-restart disable; helper-disable; Copyright © 2017, Juniper Networks, Inc.
Page 104: Configuring Graceful Restart Options For Ldp
High Availability Feature Guide for EX9200 Switches maximum-helper-recovery-time; maximum-helper-restart-time; routing-options { graceful-restart; To disable RSVP, CCC, and TCC graceful restart, include the disable statement at the hierarchy level. To disable RSVP, CCC, and TCC [edit protocols rsvp graceful-restart] helper capability, include the...
Page 105: Configuring Vpn Graceful Restart
To configure the duration of the graceful restart period for the routing instance, include the statement at the restart-duration [edit routing-instances instance-name routing-options] [edit] routing-instances { instance-name { routing-options { graceful-restart disable; restart-duration seconds; Copyright © 2017, Juniper Networks, Inc.
Page 106: Configuring Logical System Graceful Restart
High Availability Feature Guide for EX9200 Switches You can disable graceful restart for individual protocols with the statement at disable [edit routing-instances instance-name protocols protocol-name graceful-restart] hierarchy level. Related Graceful Restart Concepts on page 65 Documentation Graceful Restart System Requirements on page 73...
Page 107: Configuring Graceful Restart For A Routing Instance
This enables graceful restart globally for all routing protocols. You can, optionally, modify or supplement the global settings at the individual protocol level. For example: protocols { bgp { group ext { graceful-restart { restart-time 400; Copyright © 2017, Juniper Networks, Inc.
Page 108: Figure 7: Layer 3 Vpn Graceful Restart Topology
High Availability Feature Guide for EX9200 Switches routing-options { graceful-restart; Figure 7 on page 88 shows a standard MPLS VPN network. Routers CE1 and CE2 are customer edge routers, PE1 and PE2 are provider edge routers, and P0 is a provider core router.
Page 109 CE-PE-INET { type external; export BGP_INET_LB_DIRECT; neighbor 10.96.103.1 { local-address 10.96.103.2; family inet { unicast; peer-as 65103; isis { export ISIS_L2VPN_LB_DIRECT; interface t3-3/1/0.512; ospf { export OSPF_LB_DIRECT; area 0.0.0.0 { interface t3-3/1/0.101; rip { Copyright © 2017, Juniper Networks, Inc.
Page 110 High Availability Feature Guide for EX9200 Switches group RIP { export RIP_LB_DIRECT; neighbor t3-3/1/0.102; policy-options { policy-statement OSPF_LB_DIRECT { term direct { from { protocol direct; route-filter 10.96.101.0/30 exact; route-filter 10.96.111.1/32 exact; then accept; term final { then reject; policy-statement RIP_LB_DIRECT {...
Page 111 10.96.102.1/30; family mpls; unit 103 { dlci 103; family inet { address 10.96.103.1/30; family mpls; unit 512 { encapsulation frame-relay-ccc; dlci 512; t1-0/1/0 { unit 0 { family inet { address 10.96.0.2/30; family mpls; Copyright © 2017, Juniper Networks, Inc.
Page 112 High Availability Feature Guide for EX9200 Switches lo0 { unit 0 { family inet { address 10.245.14.176/32; family iso { address 47.0005.80ff.f800.0000.0108.0001.0102.4501.4176.00; routing-options { graceful-restart; router-id 10.245.14.176; autonomous-system 69; protocols { mpls { interface all; bgp { group PEPE { type internal;...
Page 113 { community add L2VPN; accept; community BGP-INET members target:69:103; community L2VPN members target:69:512; community OSPF members target:69:101; community RIP members target:69:102; community STATIC members target:69:100; routing-instances { BGP-INET { instance-type vrf; interface t3-0/0/0.103; Copyright © 2017, Juniper Networks, Inc.
Page 114 High Availability Feature Guide for EX9200 Switches route-distinguisher 10.245.14.176:103; vrf-import BGP-INET-import; vrf-export BGP-INET-export; routing-options { graceful-restart; autonomous-system 65103; protocols { bgp { group BGP-INET { type external; export BGP-INET-import; neighbor 10.96.103.2 { local-address 10.96.103.1; family inet { unicast; peer-as 65100;...
Page 115 LDP. This allows the protocols on the PE routers to reach one another. [edit] interfaces { t3-0/1/3 { unit 0 { family inet { address 10.96.0.5/30; family mpls; t1-0/2/0 { unit 0 { family inet { address 10.96.0.1/30; family mpls; Copyright © 2017, Juniper Networks, Inc.
Page 116 High Availability Feature Guide for EX9200 Switches lo0 { unit 0 { family inet { address 10.245.14.174/32; family iso { address 47.0005.80ff.f800.0000.0108.0001.0102.4501.4174.00; routing-options { graceful-restart; router-id 10.245.14.174; autonomous-system 69; protocols { mpls { interface all; ospf { area 0.0.0.0 { interface t1-0/2/0.0;...
Page 117 612; lo0 { unit 0 { family inet { address 10.245.14.182/32; family iso { address 47.0005.80ff.f800.0000.0108.0001.0102.4501.4182.00; routing-options { graceful-restart; router-id 10.245.14.182; autonomous-system 69; protocols { mpls { interface all; bgp { group PEPE { Copyright © 2017, Juniper Networks, Inc.
Page 118 High Availability Feature Guide for EX9200 Switches type internal; neighbor 10.245.14.176 { local-address 10.245.14.182; family inet-vpn { unicast; family l2vpn { unicast; ospf { area 0.0.0.0 { interface t3-0/0/0.0; interface fxp0.0 { disable; interface lo0.0 { passive; ldp { interface all;...
Page 119 BGP-INET-import; vrf-export BGP-INET-export; routing-options { graceful-restart; autonomous-system 65203; protocols { bgp { group BGP-INET { type external; export BGP-INET-import; neighbor 10.96.203.2 { local-address 10.96.203.1; family inet { unicast; peer-as 65200; L2VPN { instance-type l2vpn; Copyright © 2017, Juniper Networks, Inc.
Page 120 High Availability Feature Guide for EX9200 Switches interface t1-0/1/3.612; route-distinguisher 10.245.14.182:612; vrf-import L2VPN-import; vrf-export L2VPN-export; protocols {# There is no graceful-restart statement for Layer 2 VPN instances. l2vpn { encapsulation-type frame-relay; site CE2-ISIS { site-identifier 612; interface t1-0/1/3.612 { remote-site-id 512;...
Page 121 202; family inet { address 10.96.202.2/30; unit 203 { dlci 203; family inet { address 10.96.203.2/30; unit 512 { dlci 512; family inet { address 10.96.252.2/30; lo0 { unit 0 { family inet { Copyright © 2017, Juniper Networks, Inc.
Page 122 High Availability Feature Guide for EX9200 Switches address 10.245.14.180/32 { primary; address 10.96.210.1/32; address 10.96.111.1/32; address 10.96.212.1/32; address 10.96.213.1/32; address 10.96.216.1/32; family iso { address 47.0005.80ff.f800.0000.0108.0001.0102.4501.4180.00; routing-options { graceful-restart; autonomous-system 65200; protocols { bgp { group CE-PE-INET { type external;...
Page 123 Router PE1 Status Before a Restart The following example displays neighbor relationships on Router PE1 before a restart happens: user@PE1> show bgp neighbor Peer: 10.96.103.2+3785 AS 65100 Local: 10.96.103.1+179 AS 65103 Type: External State: Established Flags: <> Copyright © 2017, Juniper Networks, Inc.
Page 124 High Availability Feature Guide for EX9200 Switches Last State: OpenConfirm Last Event: RecvKeepAlive Last Error: None Export: [ BGP-INET-import ] Options: <Preference LocalAddress HoldTime GracefulRestart AddressFamily PeerAS Refresh> Address families configured: inet-unicast Local Address: 10.96.103.1 Holdtime: 90 Preference: 170 Number of flaps: 0 Peer ID: 10.96.110.1...
Page 125 Octets 1073 Output Queue[0]: 0 Output Queue[1]: 0 Output Queue[2]: 0 Output Queue[3]: 0 Output Queue[4]: 0 Output Queue[5]: 0 Output Queue[6]: 0 Output Queue[7]: 0 Output Queue[8]: 0 user@PE1> show route instance detail master: Copyright © 2017, Juniper Networks, Inc.
Page 126 High Availability Feature Guide for EX9200 Switches Router ID: 10.245.14.176 Type: forwarding State: Active Restart State: Complete Path selection timeout: 300 Tables: inet.0 : 17 routes (15 active, 0 holddown, 1 hidden) Restart Complete inet.3 : 2 routes (2 active, 0 holddown, 0 hidden) Restart Complete iso.0...
Page 127 L2VPN.l2vpn.0: 2 destinations, 2 routes (2 active, 0 holddown, 0 hidden) Restart Complete + = Active Route, - = Last Active, * = Both 10.245.14.176:512:512:611/96 *[L2VPN/7] 00:06:01 Discard bgp.l2vpn.0: 1 destinations, 1 routes (1 active, 0 holddown, 0 hidden) Restart Complete Copyright © 2017, Juniper Networks, Inc.
Page 128 High Availability Feature Guide for EX9200 Switches Router PE1 Status During a Restart Before you can verify that graceful restart is working, you must simulate a router restart. To cause the routing process to refresh and simulate a restart, use the...
Page 129 : 2 routes (2 active, 0 holddown, 0 hidden) Restart Pending: OSPF LDP iso.0 : 1 routes (1 active, 0 holddown, 0 hidden) Restart Complete mpls.0 : 23 routes (23 active, 0 holddown, 0 hidden) Restart Pending: LDP VPN Copyright © 2017, Juniper Networks, Inc.
Page 130 High Availability Feature Guide for EX9200 Switches bgp.l3vpn.0 : 10 routes (10 active, 0 holddown, 0 hidden) Restart Pending: BGP VPN inet6.0 : 2 routes (2 active, 0 holddown, 0 hidden) Restart Complete bgp.l2vpn.0 : 1 routes (1 active, 0 holddown, 0 hidden)
Page 131 BGP-INET.inet.0: 5 destinations, 6 routes (5 active, 0 holddown, 0 hidden) Restart Pending: VPN OSPF.inet.0: 7 destinations, 8 routes (7 active, 1 holddown, 0 hidden) Restart Pending: OSPF VPN RIP.inet.0: 6 destinations, 8 routes (6 active, 2 holddown, 0 hidden) Restart Pending: RIP VPN Copyright © 2017, Juniper Networks, Inc.
Page 132: Example: Managing Helper Modes For Ospf Graceful Restart
High Availability Feature Guide for EX9200 Switches STATIC.inet.0: 4 destinations, 4 routes (4 active, 0 holddown, 0 hidden) Restart Pending: VPN iso.0: 1 destinations, 1 routes (1 active, 0 holddown, 0 hidden) Restart Complete mpls.0: 24 destinations, 24 routes (24 active, 0 holddown, 0 hidden)
Page 133 The last committed statement always takes precedence over the previous one. To enable one or both of the helper modes when the helper modes are disabled, delete helper-disable <both | restart-signaling | standard> statement from the [edit hierarchy level. protocols ospf graceful-restart] Copyright © 2017, Juniper Networks, Inc.
Page 134 High Availability Feature Guide for EX9200 Switches To enable both standard and restart signaling-based helper modes: [edit protocols ospf graceful-restart] user@host# delete helper-disable To enable the restart signaling-based helper mode: [edit protocols ospf graceful-restart] user@host# delete helper-disable restart-signaling To enable the standard helper mode:...
Page 137: Configuring Virtual Router Redundancy Protocol (Vrrp)
PART 5 Configuring Virtual Router Redundancy Protocol (VRRP) Understanding How the VRRP Router Failover Mechanism Prevents Network Failures on page 119 Configuring VRRP on page 129 Copyright © 2017, Juniper Networks, Inc.
Page 139: Network Failures
To minimize network traffic, VRRP is designed in such a way that only the router that is acting as the master sends out VRRP advertisements at any given point in time. The backup routers do not send any advertisement until and unless they take over mastership. Copyright © 2017, Juniper Networks, Inc.
Page 140: Figure 8: Basic Vrrp
High Availability Feature Guide for EX9200 Switches VRRP for IPv6 provides a much faster switchover to an alternate default router than IPv6 neighbor discovery procedures. Typical deployments use only one backup router. Figure 8 on page 120 illustrates a basic VRRP topology. In this example, Routers A, B, and C are running VRRP and together make up a virtual router.
Page 141: Junos Os Support For Vrrpv3
VRRP groups that inherit the state do send out VRRP advertisements every 120 seconds. Related Understanding High Availability Features on Juniper Networks Routers Documentation Junos OS Support for VRRPv3 on page 121 Configuring Basic VRRP Support on page 130...
Page 142: Ipv6 Vrrp Checksum Behavioral Differences
High Availability Feature Guide for EX9200 Switches NOTE: VRRP (for IPv6) on routers that use Junos OS Release 12.2 and later releases does not interoperate with VRRP (for IPv6) on routers with earlier Junos OS releases because of the differences in VRRP checksum calculations.
Page 143: Upgrading From Vrrpv2 To Vrrpv3
During the transition period, both VRRPv2 and VRRPv3 operate in the network. Changing VRRP versions restarts the state machine for all VRRP groups. VRRPv3 (for IPv4) routers default to the backup state when they get VRRPv2 (for IPv4) advertisement packets. Copyright © 2017, Juniper Networks, Inc.
Page 144: Table 7: Vrrpv2 To Vrrpv3 Transition Steps And Events
High Availability Feature Guide for EX9200 Switches VRRPv2 (for IPv4) packets are always given the highest priority. Checksum differences between VRRPv2 and VRRPv3 (for IPv6) can create multiple master routers. Disable VRRPv3 (for IPv6) on the backup routers while upgrading to avoid creating multiple master routers.
Page 145: Functionality Of Vrrpv3 Features
ISSU should not flap, which means that VRRP on the remote peer router should not flap. Maintain interoperability with competitive or complementary equipment. Maintain interoperability with other Junos OS releases and other Juniper Network products. The values of the following configurations (found at the...
Page 146: Improving The Convergence Time For Vrrp
High Availability Feature Guide for EX9200 Switches The VRRP unified ISSU takes care of VRRP only. Packet forwarding is the responsibility of the Packet Forwarding Engine. The Packet Forwarding Engine unified ISSU should ensure uninterrupted traffic flow. VRRP is not affected by any change event during unified ISSU, for example, the switchover of the master Routing Engine to backup or the backup Routing Engine to master.
Page 147 Related Configuring Inheritance for a VRRP Group on page 145 Documentation Configuring VRRP to Improve Convergence Time on page 149 delegate-processing on page 266 Copyright © 2017, Juniper Networks, Inc.
Page 149: Configuring Vrrp
Tracing VRRP Operations on page 154 Configuring the Startup Period for VRRP Operations To configure the startup period for VRRP operations, include the startup-silent-period statement at the hierarchy level: [edit protocols vrrp] [edit protocols vrrp] startup-silent-period seconds; Copyright © 2017, Juniper Networks, Inc.
Page 150: Configuring Basic Vrrp Support
High Availability Feature Guide for EX9200 Switches NOTE: During the silent startup period, the command output show vrrp detail shows a value of 0 for , and your own IP address for Master priority Master . These values indicate that the Master selection is not completed yet, router and these values can be ignored.
Page 151 VRRP-enabled interface on a PIC that does not support mixed tagging, VRRP on that interface is disabled. In the output of the show vrrp operational command, the interface status is listed as summary Down Copyright © 2017, Juniper Networks, Inc.
Page 152 High Availability Feature Guide for EX9200 Switches NOTE: If you enable MAC source address filtering on an interface, you must include the virtual MAC address in the list of source MAC addresses that you specify in the statement at the...
Page 153 The routing platform with the highest priority within the group becomes the master router. If there are two or more backup routers with the same priority, the router that has the highest primary address becomes the master. Copyright © 2017, Juniper Networks, Inc.
Page 154: Configuring Vrrp Authentication (Ipv4 Only)
High Availability Feature Guide for EX9200 Switches Release History Table Release Description 13.2 Starting in Junos OS Release 13.2, VRRP nonstop active routing (NSR) is enabled nonstop-routing [edit only when you configure the statement at the routing-options] [edit logical system logical-system-name routing-options] hierarchy level.
Page 155: Configuring The Advertisement Interval For The Vrrp Master Router
Junos OS Routing Protocols Library.) When an interface receives an IPv6 router solicitation message, it sends an IPv6 router advertisement to all VRRP groups configured on it. In the case of logical systems, IPv6 router advertisements are not sent to VRRP groups. Copyright © 2017, Juniper Networks, Inc.
Page 156: Modifying The Advertisement Interval In Seconds
High Availability Feature Guide for EX9200 Switches NOTE: The master VRRP for an IPv6 router must respond to a router solicitation message with the virtual IP address of the router. However, when statement is included at the interface interface-name [edit protocols...
Page 157 Configuring the Asymmetric Hold Time for VRRP Routers on page 139 Configuring the Silent Period to Avoid Alarms Due to Delay in Receiving VRRP Advertisement Packets on page 146 Configuring VRRP on page 150 Copyright © 2017, Juniper Networks, Inc.
Page 158: Configuring A Backup Router To Preempt The Vrrp Master Router
High Availability Feature Guide for EX9200 Switches Configuring a Backup Router to Preempt the VRRP Master Router By default, a higher-priority backup router preempts a lower-priority master router. To explicitly enable the master router to be preempted, include the statement: preempt preempt;...
Page 159: Configuring The Asymmetric Hold Time For Vrrp Routers
Configuring the Advertisement Interval for the VRRP Master Router on page 135 Documentation Configuring a Backup Router to Preempt the VRRP Master Router on page 138 Modifying the Preemption Hold-Time Value for the VRRP Master Router on page 138 Configuring VRRP on page 150 Copyright © 2017, Juniper Networks, Inc.
Page 160: Configuring An Interface To Accept All Packets Destined For The Virtual Ip Address Of A Vrrp Group
High Availability Feature Guide for EX9200 Switches Configuring an Interface to Accept All Packets Destined for the Virtual IP Address of a VRRP Group In VRRP implementations where the router acting as the master router is not the IP address owner—the IP address owner is the router that has the interface whose actual IP address is used as the virtual router’s IP address (virtual IP address)—...
Page 161: Configuring A Logical Interface To Be Tracked For A Vrrp Group
However, the current priority remains unchanged. A tracking event or a manual configuration change that occurs while the priority hold timer is on triggers a pending priority update. However, the current priority remains unchanged. Copyright © 2017, Juniper Networks, Inc.
Page 162 High Availability Feature Guide for EX9200 Switches This ensures that Junos OS does not initiate mastership elections every time a tracked interface flaps. When the priority hold time expires, the current priority inherits the value from the pending priority, and the pending priority ceases.
Page 163: Configuring A Route To Be Tracked For A Vrrp Group
[edit interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id] [edit logical-systems logical-system-name interfaces interface-name unit logical-unit-number family inet address address vrrp-group group-id] [edit logical-systems logical-system-name interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id] Copyright © 2017, Juniper Networks, Inc.
Page 164 High Availability Feature Guide for EX9200 Switches The route prefix specified is the route to be tracked for the VRRP group. The priority hold time is the minimum length of time that must elapse between dynamic priority changes. A route tracking event, such as adding a route to or removing a route from the routing...
Page 165: Configuring Inheritance For A Vrrp Group
However, the groups do not need to necessarily be on the same routing instance (as was in Junos OS releases earlier than 9.6), VLAN, or logical interface. Copyright © 2017, Juniper Networks, Inc.
Page 166: Configuring The Silent Period To Avoid Alarms Due To Delay In Receiving Vrrp Advertisement Packets
High Availability Feature Guide for EX9200 Switches When you include the statement for a VRRP group, the VRRP group vrrp-inherit-from inherits the following parameters from the active group: advertise-interval authentication-key authentication-type fast-interval preempt | no-preempt priority track interfaces track route...
Page 167: Configuring Passive Arp Learning For Backup Vrrp Routers
The configuration takes effect only when the router is operating as a backup router. For information about configuring gratuitous ARP and the ARP aging timer, see the Junos OS Administration Library. Copyright © 2017, Juniper Networks, Inc.
Page 168: Enabling The Distributed Periodic Packet Management Process For Vrrp
High Availability Feature Guide for EX9200 Switches Related Understanding VRRP on page 119 Documentation Enabling the Distributed Periodic Packet Management Process for VRRP Typically, VRRP advertisements are sent by the VRRP process (vrrpd) on the master VRRP router at regular intervals to let other members of the group know that the VRRP master router is operational.
Page 169: Configuring Vrrp To Improve Convergence Time
Configure VRRP groups on the various subnets of a VLAN to inherit the state and to configure one of the groups. [edit] user@host# set interfaces interface-name unit logical-unit-number family inet address address vrrp-group group-id Verify the configuration. [edit] user@host# show protocols vrrp Copyright © 2017, Juniper Networks, Inc.
Page 170: Configuring Vrrp
High Availability Feature Guide for EX9200 Switches NOTE: Inheritance of VRRP groups is supported with all types of interfaces. Other measures to reduce convergence time, such as VRRP distribution, disabling skew timer, and reducing advertisement threshold, are not applicable when...
Page 171 MAC Source Address Filtering [edit interfaces] ge-5/2/0 { gigether-options { source-filtering; source-address-filter { 00:00:5e:00:01:0a; # Virtual MAC address unit 0 { family inet { address 192.168.1.10/24 { vrrp-group 10; # VRRP group number virtual-address 192.168.1.10; Copyright © 2017, Juniper Networks, Inc.
Page 172: Configuring Vrrp For Ipv6
High Availability Feature Guide for EX9200 Switches priority 255; preempt; Related Understanding VRRP on page 119 Documentation Configuring VRRP for IPv6 on page 152 Configuring VRRP Route Tracking on page 153 Configuring VRRP for IPv6 Configure VRRP properties for IPv6 in one master (Router A) and one backup (Router B).
Page 173: Configuring Vrrp Route Tracking
1; family inet { address 200.100.50.1/24 { vrrp-group 0 { virtual-address 200.100.50.101; priority 200; track { route 59.0.58.153/32 routing-instance default priority-cost 5; route 59.0.58.154/32 routing-instance default priority-cost 5; route 59.0.58.155/32 routing-instance default priority-cost 5; Copyright © 2017, Juniper Networks, Inc.
Page 174: Tracing Vrrp Operations
High Availability Feature Guide for EX9200 Switches On Router R3 [edit] policy-options { policy-statement static-policy { term term1 { then accept; protocols { ospf { export static-policy; reference-bandwidth 4g; area 0.0.0.0 { interface all; interface fxp0.0 { disable; routing-options { static { route 59.0.0.153/32 next-hop 45.45.45.46;...
Page 175 —Trace all interface changes. interfaces normal —Trace all normal events. —Trace all packets sent and received. packets state —Trace all state transitions. —Trace all timer events. timer Related Understanding VRRP on page 119 Documentation Copyright © 2017, Juniper Networks, Inc.
Page 177: Performing Unified In-Service Software Upgrade (Issu)
Performing Unified In-Service Software Upgrade (ISSU) Understanding How Unified ISSU Enables Software Upgrades with Minimal Traffic Disruption on page 159 Unified ISSU System Requirements on page 161 Performing a Unified ISSU on page 183 Copyright © 2017, Juniper Networks, Inc.
Page 179: Minimal Traffic Disruption
Table 9: Locating the Information You Need to Work With ISSU Task You Need to Perform Where The Information Is Located Verify unified ISSU support for your device “Unified ISSU System Requirements” on page 161 Copyright © 2017, Juniper Networks, Inc.
Page 180 High Availability Feature Guide for EX9200 Switches Table 9: Locating the Information You Need to Work With ISSU (continued) Task You Need to Perform Where The Information Is Located Perform a unified ISSU “Example: Performing a Unified ISSU” on page 188 Verify that the unified ISSU is successful “Verifying a Unified ISSU”...
Page 181: Unified Issu System Requirements
Unified ISSU Considerations for T Series Routers on page 164 Unified ISSU Platform Support on page 164 Unified ISSU Protocol Support for M Series, MX Series, and T Series Routers and EX9200 Switches on page 166 Unified ISSU Feature Support on page 166 Unified ISSU PIC Support Considerations on page 167 Copyright ©...
Page 182: General Unified Issu Considerations For All Platforms
High Availability Feature Guide for EX9200 Switches General Unified ISSU Considerations for All Platforms Unified ISSU has the following caveats: We recommend that you not use unified ISSU to upgrade from an earlier Junos OS release to Junos OS Release 14.2.R1 or 15.1.R1. For more information about Junos OS Release 14.2 see...
Page 183: Unified Issu Considerations For Mx Series Routers
You must not perform unified ISSU from Junos OS Release 13.2 or 13.3 to 14.1 and later releases. Link Aggregation Control Protocol (LACP) is not supported during unified ISSU on PTX Series routers. You must disable the statement at the lacp [edit interfaces interface-name Copyright © 2017, Juniper Networks, Inc.
Page 184: Unified Issu Considerations For T Series Routers
High Availability Feature Guide for EX9200 Switches hierarchy level before the unified ISSU process begins and aggregated-ether-options] enable it after the unified ISSU process is complete. Unified ISSU Considerations for T Series Routers Unified ISSU has the following caveats for T Series devices: During the unified ISSU process on a routing matrix with TX Matrix Plus routers with 3D SIBs, only 75 percent of the traffic remains uninterrupted.
Page 185: Table 10: Unified Issu Support For Dual Routing Engine Platforms
Chapter 16: Unified ISSU System Requirements Table 10: Unified ISSU Support for Dual Routing Engine Platforms Platform Junos OS Release EX9200 switch 12.3R3 or later 14.2R1 or later on EX9200-32XS, EX9200-4QS, and EX9200-2C-8XS 17.1R1 or later on EX9200-6QS M10i router 9.5R1 M120 router 9.2R1...
Page 186: Unified Issu Protocol Support For M Series, Mx Series, And T Series Routers And Ex9200 Switches
High Availability Feature Guide for EX9200 Switches Unified ISSU Protocol Support for M Series, MX Series, and T Series Routers and EX9200 Switches To find out which releases support ISSU, please use the ISSU Feature Explorer tool on the Juniper Networks website. The ISSU Feature Explorer tool contains information about the Juniper Networks devices that support ISSU, the releases that support ISSU for each device, and the SKUs that support ISSU for each release.
Page 187: Unified Issu Pic Support Considerations
NOTE: For information about Flexible PIC Concentrator (FPC) types, FPC/PIC compatibility, and the initial Junos OS release in which a particular PIC is supported on an FPC, see the PIC guide for your platform. Copyright © 2017, Juniper Networks, Inc.
Page 188: Pic Considerations
High Availability Feature Guide for EX9200 Switches PIC Considerations Take the following PIC restrictions into consideration before performing a unified ISSU: Unsupported PICs—If a PIC is not supported by unified ISSU, at the beginning of the upgrade, the software issues a warning that the PIC will be taken offline. After the PIC is brought offline and the unified ISSU is complete, the PIC is brought back online with the new firmware.
Page 189: Table 11: Unified Issu Pic Support: Sonet/Sdh
T1600, TX Matrix, TX Matrix Plus OC48c/STM16, SFP PB-1OC48-SON-SFP M120, M320, MX Series, T320, T640, T1600, TX Matrix, PB-1OC48-SON-B-SFP T4000, TX Matrix Plus, TX Matrix Plus with 3D SIBs PC-4OC48-SON-SFP OC192/STM64 PC-1OC192-SON-VSR MX Series routers Copyright © 2017, Juniper Networks, Inc.
Page 190: Fast Ethernet And Gigabit Ethernet Pics
High Availability Feature Guide for EX9200 Switches Table 11: Unified ISSU PIC Support: SONET/SDH (continued) PIC Type Number of Ports Model Number Device OC192/STM64, XFP PC-1OC192-SON-LR M320, T320, T640, T1600, T4000, TX Matrix Plus with PC-1OC192-SON-SR2 3D SIBs PC-1OC192-VSR OC192/STM64, XFP...
Page 191: Table 12: Unified Issu Pic Support: Fast Ethernet And Gigabit Ethernet
TX Matrix, TX Matrix Plus, TX Matrix Plus with 3D SIBs PB-2GE-SFP-QPP Gigabit Ethernet IQ2, SFP PB-4GE-TYPE1-SFP-IQ2 M120, M320, T320, T640, T1600, T4000, TX Matrix, TX Matrix Plus, TX Matrix Plus with 3D SIBs PB-8GE-TYPE2-SFP-IQ2 PC-8GE-TYPE3-SFP-IQ2 Copyright © 2017, Juniper Networks, Inc.
Page 192 High Availability Feature Guide for EX9200 Switches Table 12: Unified ISSU PIC Support: Fast Ethernet and Gigabit Ethernet (continued) Number PIC Type of Ports Model Number Device Gigabit Ethernet IQ2, XFP PC-1XGE-TYPE3-XFP-IQ2 M120, M320, T320, T640, T1600, TX Matrix, TX Matrix Plus, TX Matrix Plus...
Page 193: Channelized Pics
PB-10CHE1-RJ48-QPP-N M120 PE-10CHE1-RJ48-QPP M10i PE-10CHE1-RJ48-QPP-N Channelized T1 IQ PB-10CHT1-RJ48-QPP M320, T320, T640, T1600 PE-10CHT1-RJ48-QPP M10i Channelized OC IQ PB-1CHOC12SMIR-QPP M120, M320, T320, T640, T1600, TX Matrix, TX Matrix PB-1CHSTM1-SMIR-QPP Plus PB-1CHOC3-SMIR-QPP PE-1CHOC12SMIR-QPP M10i PE-1CHOC3-SMIR-QPP Copyright © 2017, Juniper Networks, Inc.
Page 194: Tunnel Services Pics
High Availability Feature Guide for EX9200 Switches Table 13: Unified ISSU PIC Support: Channelized (continued) PIC Type Number of Ports Model Number Platform Channelized DS3 to DS0 IQ PB-4CHDS3-QPP M120, M320, T320, T640, T1600, TX Matrix, TX Matrix Plus PE-4CHDS3-QPP...
Page 195: Serial Pics
4-Port E3 IQ PIC (PB-4E3-QPP) 4-Port T1 PIC (PB-4T1-RJ48) NOTE: Unified ISSU is also supported on the 4-Port DS3 PIC (PB-4DS3) and the 4-Port E3 IQ PIC (PB-4E3-QPP) on the TX Matrix Plus router. Copyright © 2017, Juniper Networks, Inc.
Page 196: Enhanced Iq Pics
High Availability Feature Guide for EX9200 Switches Unified ISSU supports the following PICs on M10i routers: 2-Port DS3 PIC (PE-2DS3) 4-Port DS3 PIC (PE-4DS3) 4-Port E1 PICs (PE-4E1-COAX and PE-4E1-RJ48) 2-Port E3 PIC (PE-2E3) 4-Port T1 PIC (PE-4T1-RJ48) 4-Port E3 IQ PIC (PE-4E3-QPP)
Page 197: Unified Issu Fpc Support On T4000 Routers
ISSU also supports Type 2 FPC ( MX-FPC2 ) and Type 3 FPC ( MX-FPC3 ) on MX Series routers. For more information about DPCs and FPCs on MX Series routers, go to http://www.juniper.net/techpubs/ en_US/release-independent/junos/ information-products/pathway-pages/mx-series/ Copyright © 2017, Juniper Networks, Inc.
Page 198: Table 17: Unified Issu Support: Mx Series Router Mpcs
High Availability Feature Guide for EX9200 Switches Unified ISSU MIC and MPC Support on MX Series Routers Unified ISSU supports all the Modular Port Concentrators (MPCs) and Modular Interface Cards (MICs) listed in Table 17 on page 178 Table 18 on page 179.
Page 199: Table 18: Unified Issu Support: Mx Series Router Mics
MX Series routers Gigabit Ethernet MIC with SFP MIC-3D-20GE-SFP MX Series routers 10-Gigabit Ethernet MIC with SFP+ (24 Ports) MIC6-10G MX Series routers 10-Gigabit Ethernet DWDM OTN MIC (non-OTN MIC6-10G-OTN MX Series routers mode only) Copyright © 2017, Juniper Networks, Inc.
Page 200 High Availability Feature Guide for EX9200 Switches Table 18: Unified ISSU Support: MX Series Router MICs (continued) Number MIC Type of Ports Model Number Platform 100-Gigabit Ethernet MIC with CFP2 (non-OTN MIC6-100G-CFP2 MX Series routers mode only) 100-Gigabit Ethernet MIC with CXP (4 Ports)
Page 201 Documentation Best Practices for Performing a Unified ISSU on page 183 Understanding the Unified ISSU Process Example: Performing a Unified ISSU on page 188 request system software validate on (Junos OS with Upgraded FreeBSD) Copyright © 2017, Juniper Networks, Inc.
Page 203: Performing A Unified Issu
Before you begin a unified ISSU, complete the tasks in the following sections: Verify That the Master and Backup Routing Engines Are Running the Same Software Version on page 185 Back Up the Router Software on page 185 Copyright © 2017, Juniper Networks, Inc.
Page 204 High Availability Feature Guide for EX9200 Switches Verify That Graceful Routing Engine Switchover and Nonstop Active Routing Are Configured on page 186 Disable Inline Flow Monitoring Services on page 187 Copyright © 2017, Juniper Networks, Inc.
Page 205: Verify That The Master And Backup Routing Engines Are Running The Same Software Version
Running newfs (24MB) on hard-disk media /config partition (ad1s1e)... Copying '/dev/ad0s1a' to '/dev/ad1s1a' .. (this may take a few minutes) Copying '/dev/ad0s1e' to '/dev/ad1s1e' .. (this may take a few minutes) The following filesystems were archived: / /config Copyright © 2017, Juniper Networks, Inc.
Page 206: Verify That Graceful Routing Engine Switchover And Nonstop Active Routing
High Availability Feature Guide for EX9200 Switches NOTE: The root file system is backed up to , and is backed up /altroot /config . After you issue the command, the /altconfig request system snapshot router’s flash and hard disks are identical. You can return to the previous version of the software only by booting the router from removable media.
Page 207: Disable Inline Flow Monitoring Services
Example: Performing a Unified ISSU on page 188 Verifying a Unified ISSU on page 214 Troubleshooting Unified ISSU Problems on page 227 Deactivating and Reactivating Statements and Identifiers in a Junos OS Configuration inline-jflow Copyright © 2017, Juniper Networks, Inc.
Page 208: Example: Performing A Unified Issu
ISSU feature or that you can accept the results of performing the upgrade with some protocols and features that do not support unified ISSU. Download the software package from the Juniper Networks Support website at and place the package on your local server.
Page 209: Figure 9: Unified Issu Example Topology
In all cases, you must verify that dual Routing Engines are installed and that graceful Routing Engine switchover (GRES) and nonstop active routing (NSR) are enabled. We recommend that you back up the device software before the upgrade. Copyright © 2017, Juniper Networks, Inc.
Page 210 High Availability Feature Guide for EX9200 Switches To perform a unified ISSU, select the appropriate tasks from the following list: Verifying Dual Routing Engines and Enabling GRES and NSR on page 190 Verifying the Software Versions and Backing Up the Device Software on page 191...
Page 211 Verify that the same version of Junos OS is installed and running on both Routing Engines by using the command. show version {backup} user@host> show version invoke-on all-routing-engines re0: -------------------------------------------------------------------------- Hostname: host Model: mx480 Junos: 13.3R6.5 JUNOS Base OS boot [13.3R6.5] Copyright © 2017, Juniper Networks, Inc.
Page 212 High Availability Feature Guide for EX9200 Switches JUNOS Base OS Software Suite [13.3R6.5] JUNOS 64-bit Kernel Software Suite [13.3R6.5] JUNOS Crypto Software Suite [13.3R6.5] JUNOS Packet Forwarding Engine Support (M/T/EX Common) [13.3R6.5] JUNOS Packet Forwarding Engine Support (MX Common) [13.3R6.5] JUNOS Online Documentation [13.3R6.5]...
Page 213 After you have verified your configuration and are satisfied with it, commit the changes by using the command. commit {master} [edit] user@host# commit commit complete Exit configuration mode by using the exit command. {master} [edit] user@host# exit {master} Copyright © 2017, Juniper Networks, Inc.
Page 214: Table 19: Routing Engine Status Before Upgrading
High Availability Feature Guide for EX9200 Switches user@host> Upgrading and Rebooting Both Routing Engines Automatically Step-by-Step In this procedure, both Routing Engines automatically reboot. Rebooting both Routing Procedure Engines automatically is the most common scenario. Variations to this procedure are described in other sections.
Page 215 Verified manifest signed by PackageProductionEc_2015 Verified jruntime64-14.1R4.10 signed by PackageProductionEc_2015 Using jservices-14.1R4.10.tgz Using jservices-crypto-14.1R4.10.tgz Hardware Database regeneration succeeded Validating against /config/juniper.conf.gz mgd: commit complete Validation succeeded ISSU: Preparing Backup RE Pushing /var/tmp/jinstall64-14.1R4.10-domestic-signed.tgz to re1:/var/tmp/jinstall64-14.1R4.10-domestic-signed.tgz Copyright © 2017, Juniper Networks, Inc.
Page 216 High Availability Feature Guide for EX9200 Switches Installing package '/var/tmp/jinstall64-14.1R4.10-domestic-signed.tgz' ... Verified jinstall64-14.1R4.10-domestic.tgz signed by PackageProductionEc_2015 Verified jinstall64-14.1R4.10-domestic.tgz signed by PackageProductionRSA_2015 Adding jinstall64... Verified manifest signed by PackageProductionEc_2015 WARNING: This package will load JUNOS 14.1R4.10 software. WARNING: It will save JUNOS configuration files, and SSH keys...
Page 217: Table 20: Routing Engine Status After Upgrading And Rebooting Both Routing
You are logged in to the new backup Routing Engine ( Verify that both Routing Engines have been upgraded by using the show version command. {backup} user@host> show version invoke-on all-routing-engines re0: -------------------------------------------------------------------------- Hostname: host Copyright © 2017, Juniper Networks, Inc.
Page 218: Table 21: Routing Engine Status After Upgrading, Rebooting, And Switching
High Availability Feature Guide for EX9200 Switches Model: mx480 Junos: 14.1R4.10 JUNOS Base OS boot [14.1R4.10] JUNOS Base OS Software Suite [14.1R4.10] JUNOS Packet Forwarding Engine Support (M/T/EX Common) [14.1R4.10] JUNOS Packet Forwarding Engine Support (MX Common) [14.1R4.10] JUNOS platform Software Suite [14.1R4.10] JUNOS Runtime Software Suite [14.1R4.10]...
Page 219 [edit protocols hierarchy level. bfd] {master} [edit] user@host# delete protocols bfd no-issu-timer-negotiation If proxy ARP is enabled on your M Series, MX Series, or EX9200 device and you previously removed the unconditional-src-learn statement, include the statement again. This example shows the ge-0/0/1 interface only.
Page 220 High Availability Feature Guide for EX9200 Switches This example shows the at-0/0/1 interface only and shows the period being set to 10 seconds. {master} [edit] user@host# set interfaces at-0/0/1 unit 0 oam-period 10 After you have verified your configuration and are satisfied with it, commit the...
Page 221: Table 22: Routing Engine Status Before Upgrading And Manually Rebooting The
Verified jcrypto64-14.1R4.10 signed by PackageProductionEc_2015 Using jdocs-14.1R4.10.tgz Verified manifest signed by PackageProductionEc_2015 Verified jdocs-14.1R4.10 signed by PackageProductionEc_2015 Using jkernel64-14.1R4.10.tgz Using jpfe-14.1R4.10.tgz Verified SHA1 checksum of jpfe-M10-14.1R4.10.tgz Verified SHA1 checksum of jpfe-M120-14.1R4.10.tgz Verified SHA1 checksum of jpfe-M160-14.1R4.10.tgz Copyright © 2017, Juniper Networks, Inc.
Page 222 High Availability Feature Guide for EX9200 Switches Verified SHA1 checksum of jpfe-M320-14.1R4.10.tgz Verified SHA1 checksum of jpfe-M40-14.1R4.10.tgz Verified SHA1 checksum of jpfe-M7i-14.1R4.10.tgz Verified SHA1 checksum of jpfe-T-14.1R4.10.tgz Verified SHA1 checksum of jpfe-X2000-14.1R4.10.tgz Verified SHA1 checksum of jpfe-X960-14.1R4.10.tgz Verified SHA1 checksum of jpfe-common-14.1R4.10.tgz Using jplatform-14.1R4.10.tgz...
Page 223: Table 23: Routing Engine Status After Upgrading And Before Manually Rebooting
Routing Engine. Table 23: Routing Engine Status After Upgrading and Before Manually Rebooting the Backup Routing Engine Backup Master New software version installed New software version installed Old software version running New software version running Copyright © 2017, Juniper Networks, Inc.
Page 224 High Availability Feature Guide for EX9200 Switches Verify that the new backup, (old master) Routing Engine ( ), is still running the previous software image and that the new master Routing Engine ( ) is running the new software image, by using the show version command.
Page 225: Table 24: Routing Engine Status After Upgrading, Manually Rebooting, And
{backup} user@host> request chassis routing-engine master acquire Attempt to become the master routing engine ? [yes,no] (no) yes Resolving mastership... Complete. The local routing engine becomes the master. Copyright © 2017, Juniper Networks, Inc.
Page 226: Table 25: Routing Engine Status After Upgrading, Manually Rebooting, And
High Availability Feature Guide for EX9200 Switches {master} user@host> Table 25 on page 206 shows the Routing Engine status after the unified ISSU, after rebooting the backup Routing Engine, and after switching mastership. Table 25: Routing Engine Status After Upgrading, Manually Rebooting,...
Page 227: Table 26: Routing Engine Status Before Upgrading And Rebooting One Routing
After downloading the software package to your device, confirm that it is not modified in any way by using the file checksum md5 command. For more information about verifying the md5 checksum, see http://kb.juniper.net/InfoCenter/index?page=content&id=KB17665 Copyright © 2017, Juniper Networks, Inc.
Page 228 High Availability Feature Guide for EX9200 Switches On the master Routing Engine, start the upgrade by using the request system software command. in-service-upgrade package-name no-old-master-upgrade {master} user@host> request system software in-service-upgrade /var/tmp/jinstall64-14.1R4.10-domestic-signed.tgz no-old-master-upgrade Chassis ISSU Check Done ISSU: Validating Image...
Page 229 ISSU: RE switchover Done Skipping Old Master Upgrade ISSU: IDLE Table 27 on page 210 shows the Routing Engine status after the unified ISSU upgrades the master Routing Engine but before the backup Routing Engine is upgraded. Copyright © 2017, Juniper Networks, Inc.
Page 230: Table 27: Routing Engine Status After Upgrading One Routing Engine And Before Upgrading The Other Routing Engine
High Availability Feature Guide for EX9200 Switches Table 27: Routing Engine Status After Upgrading One Routing Engine and Before Upgrading the Other Routing Engine Backup Master Old software version installed New software version installed Old software version running New software version running...
Page 231 Verified manifest signed by PackageProductionEc_2015 Verified jruntime-14.1R4.10 signed by PackageProductionEc_2015 Using jruntime64-14.1R4.10.tgz Verified manifest signed by PackageProductionEc_2015 Verified jruntime64-14.1R4.10 signed by PackageProductionEc_2015 Using jservices-14.1R4.10.tgz Using jservices-crypto-14.1R4.10.tgz Hardware Database regeneration succeeded Validating against /config/juniper.conf.gz mgd: commit complete Copyright © 2017, Juniper Networks, Inc.
Page 232 High Availability Feature Guide for EX9200 Switches Validation succeeded Installing package '/var/tmp/jinstall64-14.1R4.10-domestic-signed.tgz' ... Verified jinstall64-14.1R4.10-domestic.tgz signed by PackageProductionEc_2015 Verified jinstall64-14.1R4.10-domestic.tgz signed by PackageProductionRSA_2015 Adding jinstall64... Verified manifest signed by PackageProductionEc_2015 WARNING: This package will load JUNOS 14.1R4.10 software. WARNING: It will save JUNOS configuration files, and SSH keys...
Page 233: Table 28: Routing Engine Status After Upgrading, Manually Rebooting, And
If you are satisfied with the results of your testing, you can optionally back up the system software to the device’s hard disk by using the request system snapshot command on each Routing Engine. Copyright © 2017, Juniper Networks, Inc.
Page 234: Verifying A Unified Issu
High Availability Feature Guide for EX9200 Switches NOTE: The root file system is backed up to /altroot , and /config is backed up to . After you issue the command, /altconfig request system snapshot you cannot easily return to the previous version of the software, because the device flash and hard disks are identical.
Page 235: Managing And Tracing Bfd Sessions During Unified Issu Procedures
Unified ISSU System Requirements on page 161 Best Practices for Performing a Unified ISSU on page 183 Example: Performing a Unified ISSU on page 188 Verifying a Unified ISSU on page 214 Troubleshooting Unified ISSU Problems on page 227 Copyright © 2017, Juniper Networks, Inc.
Page 239: Routine Monitoring
Routing Engine that is enabled for graceful Routing Engine switchover. Related Understanding Graceful Routing Engine Switchover on page 3 Documentation Configuring Graceful Routing Engine Switchover on page 17 Copyright © 2017, Juniper Networks, Inc.
Page 240: Verifying Graceful Restart Operation
High Availability Feature Guide for EX9200 Switches Tracing Restart Signaling-Based Helper Mode Events for OSPF Graceful Restart Junos OS provides a tracing option to log restart signaling-based helper mode events for OSPF graceful restart. To enable tracing for restart signaling-based helper mode events,...
Page 241: Graceful Restart Operational Mode Commands
NLRI that peer supports restart for: inet-unicast NLRI that peer saved forwarding for: inet-unicast NLRI that restart is negotiated for: inet-unicast NLRI of received end-of-rib markers: inet-unicast NLRI of all end-of-rib markers sent: inet-unicast Table inet.0 Bit: 10000 Copyright © 2017, Juniper Networks, Inc.
Page 242: Verifying Is-Is And Ospf Graceful Restart
High Availability Feature Guide for EX9200 Switches RIB State: restart is complete Send state: in sync Active prefixes: 0 Received prefixes: 0 Suppressed due to damping: 0 Last traffic (seconds): Received 19 Sent 19 Checked 19 Input messages: Total 2...
Page 243 Chapter 18: Routine Monitoring PE2-PE1-2 rlsp CE1-CE2-3 rmt-if Restart ----- fe-1/1/0.3 intf PE1-PE2-3 tlsp PE2-PE1-3 rlsp Related Graceful Restart Concepts on page 65 Documentation Configuring Graceful Restart for QFabric Systems Copyright © 2017, Juniper Networks, Inc.
Page 247: Troubleshooting Unified Issu
Best Practices for Performing a Unified ISSU on page 183 Example: Performing a Unified ISSU on page 188 Verifying a Unified ISSU on page 214 Managing and Tracing BFD Sessions During Unified ISSU Procedures on page 215 Copyright © 2017, Juniper Networks, Inc.
Page 249: Configuration Statements And Operational Commands
Configuration Statements: Graceful Restart on page 233 Configuration Statements: NSB on page 249 Configuration Statements: NSR on page 251 Configuration Statements: VRRP on page 259 Configuration Statements: Unified ISSU on page 289 Operational Commands on page 295 Copyright © 2017, Juniper Networks, Inc.
Page 251: Configuration Statements: Gres
Routing Engine without interruption to packet forwarding. Required Privilege interface—To view this statement in the configuration. Level interface-control—To add this statement to the configuration. Related Configuring Graceful Routing Engine Switchover on page 17 Documentation Copyright © 2017, Juniper Networks, Inc.
Page 253: Configuration Statements: Graceful Restart
240 notify-duration on page 241 reconnect-time on page 242 recovery-time on page 243 restart-duration on page 244 restart-time (BGP Graceful Restart) on page 245 stale-routes-time on page 246 traceoptions (Protocols) on page 247 Copyright © 2017, Juniper Networks, Inc.
Page 254: Disable
High Availability Feature Guide for EX9200 Switches disable Syntax disable; Hierarchy Level [edit logical-systems logical-system-name protocols (bgp | isis | ldp | ospf | ospf3 | pim | rip | ripng | rsvp) graceful-restart], [edit logical-systems logical-system-name routing-instances routing-instance-name protocols...
Page 255: Graceful-Restart (Enabling Globally)
The remaining statements are explained separately. Required Privilege routing—To view this statement in the configuration. Level routing-control—To add this statement to the configuration. Related Enabling Graceful Restart on page 75 Documentation Configuring Routing Protocols Graceful Restart on page 76 Copyright © 2017, Juniper Networks, Inc.
Page 256: Helper-Disable (Multiple Protocols)
High Availability Feature Guide for EX9200 Switches Configuring Graceful Restart for MPLS-Related Protocols on page 83 Configuring VPN Graceful Restart on page 85 Configuring Logical System Graceful Restart on page 86 Configuring Graceful Restart for QFabric Systems helper-disable (Multiple Protocols) Syntax helper-disable;...
Page 257: Maximum-Helper-Recovery-Time
Level routing-control—To add this statement to the configuration. Related Configuring Graceful Restart Options for RSVP, CCC, and TCC on page 83 Documentation maximum-helper-restart-time (RSVP) on page 238 Copyright © 2017, Juniper Networks, Inc.
Page 258: Maximum-Helper-Restart-Time (Rsvp)
High Availability Feature Guide for EX9200 Switches maximum-helper-restart-time (RSVP) Syntax maximum-helper-restart-time seconds; Hierarchy Level [edit protocols rsvp graceful-restart], [edit logical-systems logical-system-name protocols rsvp graceful-restart] Release Information Statement introduced in Junos OS Release 8.3. Statement introduced in Junos OS Release 12.3X50 for the QFX Series.
Page 259: Maximum-Neighbor-Recovery-Time
Level routing-control—To add this statement to the configuration. Related Configuring LDP Graceful Restart Documentation Configuring Graceful Restart Options for LDP on page 84 no-strict-lsa-checking on page 240 recovery-time on page 243 Copyright © 2017, Juniper Networks, Inc.
Page 260: No-Strict-Lsa-Checking
High Availability Feature Guide for EX9200 Switches no-strict-lsa-checking Syntax no-strict-lsa-checking; Hierarchy Level [edit protocols (ospf | ospf3) graceful-restart] Release Information Statement introduced in Junos OS Release 8.5. Statement introduced in Junos OS Release 12.1 for the QFX Series. Statement introduced in Junos OS Release 14.1X53-D20 for the OCX Series.
Page 261: Notify-Duration
Level routing-control—To add this statement to the configuration. Related Configuring Graceful Restart Options for OSPF and OSPFv3 on page 79 Documentation Configuring Graceful Restart for QFabric Systems restart-duration on page 244 Copyright © 2017, Juniper Networks, Inc.
Page 262: Reconnect-Time
High Availability Feature Guide for EX9200 Switches reconnect-time Syntax reconnect-time seconds; Hierarchy Level [edit logical-systems logical-system-name protocols ldp graceful-restart], [edit protocols ldp graceful-restart], [edit routing-instances routing-instance-name protocols ldp graceful-restart] Release Information Statement introduced in Junos OS Release 9.1. Statement introduced in Junos OS Release 12.3X50 for the QFX Series.
Page 263: Recovery-Time
Level interface-control—To add this statement to the configuration. Related Configuring Graceful Restart Options for LDP on page 84 Documentation maximum-neighbor-recovery-time on page 239 no-strict-lsa-checking on page 240 Copyright © 2017, Juniper Networks, Inc.
Page 264: Restart-Duration
High Availability Feature Guide for EX9200 Switches restart-duration Syntax restart-duration seconds; Hierarchy Level [edit logical-systems logical-system-name protocols (isis | ospf | ospf3 | pim) graceful-restart], [edit logical-systems logical-system-name routing-instances routing-instance-name protocols (ospf | ospf3 | pim) graceful-restart], [edit protocols (esis | isis | ospf | ospf3 | pim) graceful-restart],...
Page 265: Restart-Time (Bgp Graceful Restart)
Related Configuring Graceful Restart Options for BGP on page 77 Documentation Configuring Graceful Restart Options for RIP and RIPng on page 81 Configuring Graceful Restart for QFabric Systems stale-routes-time on page 246 Copyright © 2017, Juniper Networks, Inc.
Page 266: Stale-Routes-Time
High Availability Feature Guide for EX9200 Switches stale-routes-time Syntax stale-routes-time seconds; Hierarchy Level [edit logical-systems logical-routing-name protocols bgp graceful-restart], [edit logical-systems logical-routing-name routing-instances routing-instance-name protocols bgp graceful-restart], [edit protocols bgp graceful-restart], [edit routing-instances routing-instance-name protocols bgp graceful-restart] Release Information Statement introduced in Junos OS Release 8.3.
Page 267: Traceoptions (Protocols)
(GB). When a trace file named reaches this size, it is renamed trace-file . When the again reaches its maximum size, is renamed trace-file.0 trace-file trace-file.0 trace-file.1 trace-file is renamed trace-file.0 . This renaming scheme continues Copyright © 2017, Juniper Networks, Inc.
Page 268 High Availability Feature Guide for EX9200 Switches until the maximum number of trace files is reached. Then the oldest trace file is overwritten. Syntax: to specify KB, to specify MB, or to specify GB Range: 10 KB through the maximum file size supported on your system...
Page 269: Configuration Statements: Nsb
Enhanced Layer 2 Software (ELS) CLI style, see Configuring Nonstop Bridging on EX Series Switches (CLI Procedure) For information about configuring NSB on switches that support ELS, see Configuring Nonstop Bridging on Switches (CLI Procedure) Copyright © 2017, Juniper Networks, Inc.
Page 272: Synchronize
High Availability Feature Guide for EX9200 Switches synchronize Syntax synchronize; Hierarchy Level [edit system commit] Release Information Statement introduced in Junos OS Release 7.4. Statement introduced in Junos OS Release 10.4 for EX Series switches. Description For devices with multiple Routing Engines only. Configure the...
Page 273 Level system-control—To add this statement to the configuration. Related Synchronizing the Routing Engine Configuration on page 54 Documentation Configuring Multiple Routing Engines to Synchronize Committed Configurations Automatically Copyright © 2017, Juniper Networks, Inc.
Page 274: Nonstop-Routing
High Availability Feature Guide for EX9200 Switches nonstop-routing Syntax nonstop-routing; Hierarchy Level [edit routing-options] NOTE: Although is also a valid keyword at the nonstop-routing logical-systems hierarchy level, it is not supported. Release Information Statement introduced in Junos OS Release 8.4.
Page 275: Traceoptions
—Name of the file to receive the output of the tracing operation. Enclose the file filename name within quotation marks. All files are placed in the directory . We /var/log recommend that you place global routing protocol tracing output in the file routing-log Copyright © 2017, Juniper Networks, Inc.
Page 276 High Availability Feature Guide for EX9200 Switches —(Optional) Maximum number of trace files. When a trace file named files number reaches its maximum size, it is renamed , then , and trace-file trace-file.0 trace-file.1 so on, until the maximum number of trace files is reached. Then, the oldest trace file is overwritten.
Page 277 —(Optional) Allow any user to read the log file. world-readable Required Privilege routing and trace—To view this statement in the configuration. Level routing-control and trace-control—To add this statement to the configuration. Related Example: Tracing Global Routing Protocol Operations Documentation Copyright © 2017, Juniper Networks, Inc.
Page 279: Configuration Statements: Vrrp
(Protocols VRRP) on page 279 track (VRRP) on page 281 version-3 on page 282 virtual-address on page 283 virtual-inet6-address on page 283 virtual-link-local-address on page 284 vrrp-group on page 285 vrrp-inet6-group on page 287 Copyright © 2017, Juniper Networks, Inc.
Page 280: Accept-Data
High Availability Feature Guide for EX9200 Switches accept-data Syntax (accept-data | no-accept-data); Hierarchy Level [edit interfaces interface-name unit logical-unit-number family inet address address vrrp-group group-id], [edit interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id], [edit logical-systems logical-system-name interfaces interface-name unit logical-unit-number...
Page 281: Advertise-Interval
Level interface-control—To add this statement to the configuration. Related Configuring the Advertisement Interval for the VRRP Master Router on page 135 Documentation fast-interval on page 267 inet6-advertise-interval on page 270 version-3 on page 282 Copyright © 2017, Juniper Networks, Inc.
Page 282: Asymmetric-Hold-Time
High Availability Feature Guide for EX9200 Switches asymmetric-hold-time Syntax asymmetric-hold-time; Hierarchy Level [edit protocols vrrp] Release Information Statement introduced in Junos OS Release 9.5. Description Enable the VRRP master router to switch over to the backup router immediately, without waiting for the priority hold time to expire, when a route goes down. However, when the...
Page 283: Authentication-Key
Level interface-control—To add this statement to the configuration. Related Configuring VRRP Authentication (IPv4 Only) on page 134 Documentation Configuring VRRP Authentication (IPv4 Only) authentication-type on page 264 version-3 on page 282 Copyright © 2017, Juniper Networks, Inc.
Page 284: Authentication-Type
High Availability Feature Guide for EX9200 Switches authentication-type Syntax authentication-type authentication; Hierarchy Level [edit interfaces interface-name unit logical-unit-number family inet address address vrrp-group group-id], [edit logical-systems logical-system-name interfaces interface-name unit logical-unit-number family inet address address vrrp-group group-id] Release Information Statement introduced before Junos OS Release 7.4.
Page 285: Bandwidth-Threshold
Level interface-control—To add this statement to the configuration. Related Configuring a Logical Interface to Be Tracked for a VRRP Group on page 141 Documentation Configuring a Logical Interface to Be Tracked Copyright © 2017, Juniper Networks, Inc.
Page 286: Delegate-Processing (Vrrp)
High Availability Feature Guide for EX9200 Switches delegate-processing (VRRP) Syntax delegate-processing { ae-irb; Hierarchy Level [edit protocols vrrp] Release Information Statement introduced in Junos OS Release 9.6. option introduced in Junos OS Release 15.1. ae-irb Description Configure the distributed periodic packet management process (ppmd) to send Virtual Router Redundancy Protocol (VRRP) advertisements .
Page 287: Fast-Interval
Configuring the Advertisement Interval for the VRRP Master Router on page 135 Documentation Configuring the Advertisement Interval for the VRRP Master advertise-interval on page 261 advertise-interval on page 261 inet6-advertise-interval on page 270 version-3 on page 282 Copyright © 2017, Juniper Networks, Inc.
Page 288: Global-Advertisements-Threshold
High Availability Feature Guide for EX9200 Switches global-advertisements-threshold Syntax global-advertisements-threshold advertisement-value; Hierarchy Level [edit protocols vrrp] Release Information Statement introduced in Junos OS Release 12.2. Description Configure the number of fast advertisements that can be missed by a backup router before the master router is declared as down.
Page 289: Hold-Time (Vrrp)
Level interface-control—To add this statement to the configuration. Related Configuring a Backup Router to Preempt the VRRP Master Router on page 138 Documentation Configuring VRRP Preemption and Hold Time Copyright © 2017, Juniper Networks, Inc.
Page 290: Inet6-Advertise-Interval
High Availability Feature Guide for EX9200 Switches inet6-advertise-interval Syntax inet6-advertise-interval milliseconds; Hierarchy Level [edit interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id], [edit logical-systems logical-system-name interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id] Release Information Statement introduced in Junos OS Release 8.4R2.
Page 291: Interface
Related Configuring a Logical Interface to Be Tracked for a VRRP Group on page 141 Documentation Configuring a Logical Interface to Be Tracked Junos OS Services Interfaces Library for Routing Devices Copyright © 2017, Juniper Networks, Inc.
Page 292: Preempt (Vrrp)
High Availability Feature Guide for EX9200 Switches preempt (VRRP) Syntax (preempt | no-preempt) { hold-time seconds; Hierarchy Level [edit interfaces interface-name unit logical-unit-number family inet address address vrrp-group group-id], [edit interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id],...
Page 293: Priority (Protocols Vrrp)
Default: 100 (for backup routers) Required Privilege interface—To view this statement in the configuration. Level interface-control—To add this statement to the configuration. Related Configuring Basic VRRP Support on page 130 Documentation Configuring Basic VRRP Support for QFX Copyright © 2017, Juniper Networks, Inc.
Page 294: Priority-Cost (Vrrp)
High Availability Feature Guide for EX9200 Switches priority-cost (VRRP) Syntax priority-cost priority; Hierarchy Level [edit interfaces interface-name unit logical-unit-number family inet address address vrrp-group group-id track interface interface-name], [edit interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id track interface...
Page 295: Priority-Hold-Time
Level interface-control—To add this statement to the configuration. Related Configuring a Logical Interface to Be Tracked for a VRRP Group on page 141 Documentation Configuring a Logical Interface to Be Tracked Copyright © 2017, Juniper Networks, Inc.
Page 296: Route (Interfaces)
High Availability Feature Guide for EX9200 Switches route (Interfaces) Syntax route prefix routing-instance instance-name priority-cost priority; Hierarchy Level [edit interfaces interface-name unit logical-unit-number family inet address address vrrp-group group-id track], [edit interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group...
Page 297: Skew-Timer-Disable
Level routing-control—To add this statement to the configuration. Related Improving the Convergence Time for VRRP on page 126 Documentation Configuring VRRP to Improve Convergence Time on page 149 Copyright © 2017, Juniper Networks, Inc.
Page 298: Startup-Silent-Period
High Availability Feature Guide for EX9200 Switches startup-silent-period Syntax startup-silent-period seconds; Hierarchy Level [edit protocols vrrp] Release Information Statement introduced before Junos OS Release 7.4. Statement introduced in Junos OS 11.3 for the QFX Series. Statement introduced in Junos OS Release 14.1x53-D20 for the OCX Series.
Page 299: Traceoptions (Protocols Vrrp)
—Tracing operation to perform. To specify more than one tracing operation, include multiple statements. These are the VRRP-specific tracing options: flag —All VRRP tracing operations database —Database changes —General events general —Interface changes interfaces —Normal events normal packets —Packets sent and received Copyright © 2017, Juniper Networks, Inc.
Page 300 High Availability Feature Guide for EX9200 Switches —State transitions state —Timer events timer —(Optional) Refine the output to include only those lines that match regular-expression match the given regular expression. —(Optional) Provide a timestamp with microsecond granularity. microsecond-stamp no-world-readable —(Optional) Restrict users from reading the log file.
Page 301: Track (Vrrp)
Configuring a Logical Interface to Be Tracked for a VRRP Group on page 141 Documentation Configuring a Route to Be Tracked for a VRRP Group on page 143 Configuring a Logical Interface to Be Tracked Configuring a Route to Be Tracked Copyright © 2017, Juniper Networks, Inc.
Page 302: Version-3
High Availability Feature Guide for EX9200 Switches version-3 Syntax version-3; Hierarchy Level [edit protocols vrrp] Release Information Statement introduced in Junos OS Release 12.2. Description Enable Virtual Router Redundancy Protocol version 3 (VRRPv3). NOTE: Even though the statement can be configured only at the...
Page 303: Virtual-Address
Required Privilege interface—To view this statement in the configuration. Level interface-control—To add this statement to the configuration. Related Configuring Basic VRRP Support on page 130 Documentation Copyright © 2017, Juniper Networks, Inc.
Page 304: Virtual-Link-Local-Address
High Availability Feature Guide for EX9200 Switches virtual-link-local-address Syntax virtual-link-local-address ipv6-address; Hierarchy Level [edit interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id], [edit logical-systems logical-system-name interfaces interface-name unit logical-unit-number family inet6 address address vrrp-inet6-group group-id] Release Information Statement introduced in Junos OS Release 8.4.
Page 305: Vrrp-Group
00:00:5e:00:53:00 through 00:00:5e:00:53:ff are reserved for VRRP, as defined in RFC 2338. The VRRP group number must be the decimal equivalent of the last hexadecimal byte of the virtual MAC address. Range: 0 through 255 Copyright © 2017, Juniper Networks, Inc.
Page 306 High Availability Feature Guide for EX9200 Switches The remaining statements are explained separately. Required Privilege interface—To view this statement in the configuration. Level interface-control—To add this statement to the configuration. Related Configuring Basic VRRP Support on page 130 Documentation Configuring VRRP on page 150...
Page 307: Vrrp-Inet6-Group
MAC address. Range: 0 through 255 The remaining statements are explained separately. Required Privilege interface—To view this statement in the configuration. Level interface-control—To add this statement to the configuration. Copyright © 2017, Juniper Networks, Inc.
Page 309: Configuration Statements: Unified Issu
CHAPTER 25 Configuration Statements: Unified ISSU bfd on page 290 no-issu-timer-negotiation on page 292 traceoptions (Protocols BFD) on page 293 Copyright © 2017, Juniper Networks, Inc.
Page 310: Bfd
High Availability Feature Guide for EX9200 Switches Syntax bfd { traceoptions { file filename <files number> <match regular-expression> <size size> <world-readable | no-world-readable>; flag flag <flag-modifier> <disable>; Hierarchy Level [edit logical-systems logical-system-name protocols], [edit logical-systems logical-system-name routing-instances routing-instance-name protocols], [edit protocols],...
Page 311 Required Privilege routing and trace—To view this statement in the configuration. Level routing-control and trace–control—To add this statement to the configuration. Related Example: Configuring BFD for Static Routes for Faster Network Failure Detection Documentation Copyright © 2017, Juniper Networks, Inc.
Page 312: No-Issu-Timer-Negotiation
High Availability Feature Guide for EX9200 Switches no-issu-timer-negotiation Syntax no-issu-timer-negotiation; Hierarchy Level [edit protocols bfd], [edit logical-systems logical-system-name protocols bfd], [edit routing-instances routing-instance-name protocols bfd] Release Information Statement introduced in Junos OS Release 9.1. Statement introduced in Junos OS Release 13.2 for PTX5000 routers.
Page 313: Traceoptions (Protocols Bfd)
—Tracing operation to perform. The tracing options are as follows: flag flag —Trace adjacency messages. adjacency —Trace everything. —Trace all errors. error —Trace all events. events —Trace ISSU packet activity. issu —Trace packet activity of NSR. nsr-packet nsr-synchronization —Trace NSR synchronization events. Copyright © 2017, Juniper Networks, Inc.
Page 314 High Availability Feature Guide for EX9200 Switches —Trace all packets. packet —Trace pipe messages. pipe —Trace pipe messages in detail. pipe-detail —Trace packet activity by periodic packet management. ppm-packet state —Trace state transitions. —Trace timer processing. timer no-world-readable —Restrict users from reading the log file.
Page 315: Operational Commands
CHAPTER 26 Operational Commands request system software in-service-upgrade (MX Series 3D Universal Edge Routers and EX9200 Switches) request system software validate in-service-upgrade show system switchover Copyright © 2017, Juniper Networks, Inc.
Page 316: Request System Software In-Service-Upgrade (Mx Series 3D Universal Edge Routers And Ex9200 Switches)
—(Optional) When the no-copy option is included, copies of package files are not saved on the Packet Forwarding Engine. option is not available for an MX Series Virtual Chassis or an EX9200 no-copy Virtual Chassis. —(Optional) When the option is included,...
Page 317 MX Series Virtual Chassis or an reboot EX9200 Virtual Chassis. A unified ISSU in an MX Series Virtual Chassis or EX9200 Virtual Chassis always reboots all Routing Engines in the member routers or switches.
Page 318 High Availability Feature Guide for EX9200 Switches Chassis ISSU Check Done ISSU: Validating Image Checking compatibility with configuration Initializing... Using jbase-11.2B1.5 Verified manifest signed by PackageProduction_11_2_0 Verified jbase-11.2B1.5 signed by PackageProduction_11_2_0 Using /var/tmp/jinstall-11.2B2.1-domestic-signed.tgz Verified jinstall-11.2B2.1-domestic.tgz signed by PackageProduction_11_2_0 Using jinstall-11.2B2.1-domestic.tgz Using jbundle-11.2B2.1-domestic.tgz...
Page 319 Link: /opt/sdk/service-packages/jservices-alg/jservices-alg-pic -> /var/sw/pkg/jservices-alg-pic-11.2B2.1.tgz... Auto-deleting old jservices-cpcd ... Removing /opt/sdk/service-packages/jservices-cpcd ... Removing jservices-cpcd-pic-11.2B1.5.tgz from /var/sw/pkg ... Notifying mspd ... Installing new jservices-cpcd ... Verified jservices-cpcd-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-cpcd ... Storing jservices-cpcd-pic-11.2B2.1.tgz in /var/sw/pkg ... Copyright © 2017, Juniper Networks, Inc.
Page 320 High Availability Feature Guide for EX9200 Switches Link: /opt/sdk/service-packages/jservices-cpcd/jservices-cpcd-pic -> /var/sw/pkg/jservices-cpcd-pic-11.2B2.1.tgz... Auto-deleting old jservices-rpm ... Removing /opt/sdk/service-packages/jservices-rpm ... Removing jservices-rpm-pic-11.2B1.5.tgz from /var/sw/pkg ... Notifying mspd ... Installing new jservices-rpm ... Verified jservices-rpm-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-rpm ... Storing jservices-rpm-pic-11.2B2.1.tgz in /var/sw/pkg ...
Page 321 Auto-deleting old jservices-bgf ... Removing /opt/sdk/service-packages/jservices-bgf ... Removing jservices-bgf-pic-11.2B1.5.tgz from /var/sw/pkg ... Notifying mspd ... Installing new jservices-bgf ... Verified jservices-bgf-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-bgf ... Storing jservices-bgf-pic-11.2B2.1.tgz in /var/sw/pkg ... Link: /opt/sdk/service-packages/jservices-bgf/jservices-bgf-pic -> Copyright © 2017, Juniper Networks, Inc.
Page 322 High Availability Feature Guide for EX9200 Switches /var/sw/pkg/jservices-bgf-pic-11.2B2.1.tgz... Auto-deleting old jservices-aacl ... Removing /opt/sdk/service-packages/jservices-aacl ... Removing jservices-aacl-pic-11.2B1.5.tgz from /var/sw/pkg ... Notifying mspd ... Installing new jservices-aacl ... Verified jservices-aacl-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-aacl ... Storing jservices-aacl-pic-11.2B2.1.tgz in /var/sw/pkg ...
Page 323 Auto-deleting old jservices-crypto-base ... Removing /opt/sdk/service-packages/jservices-crypto-base ... Removing jservices-crypto-base-pic-11.2B1.5.tgz from /var/sw/pkg ... Notifying mspd ... Installing new jservices-crypto-base ... Verified jservices-crypto-base-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-crypto-base ... Storing jservices-crypto-base-pic-11.2B2.1.tgz in /var/sw/pkg ... Link: /opt/sdk/service-packages/jservices-crypto-base/jservices-crypto-base-pic -> /var/sw/pkg/jservices-crypto-base-pic-11.2B2.1.tgz... Copyright © 2017, Juniper Networks, Inc.
Page 324 High Availability Feature Guide for EX9200 Switches Auto-deleting old jservices-ssl ... Removing /opt/sdk/service-packages/jservices-ssl ... Removing jservices-ssl-pic-11.2B1.5.tgz from /var/sw/pkg ... Notifying mspd ... Installing new jservices-ssl ... Verified jservices-ssl-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-ssl ... Storing jservices-ssl-pic-11.2B2.1.tgz in /var/sw/pkg ... Link: /opt/sdk/service-packages/jservices-ssl/jservices-ssl-pic ->...
Page 325 Installing new jservices-bgf ... Verified jservices-bgf-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-bgf ... Storing jservices-bgf-pic-11.2B2.1.tgz in /var/sw/pkg ... Link: /opt/sdk/service-packages/jservices-bgf/jservices-bgf-pic -> /var/sw/pkg/jservices-bgf-pic-11.2B2.1.tgz... Auto-deleting old jservices-aacl ... Removing /opt/sdk/service-packages/jservices-aacl ... Removing jservices-aacl-pic-11.2B1.5.tgz from /var/sw/pkg ... Notifying mspd ... Copyright © 2017, Juniper Networks, Inc.
Page 326 High Availability Feature Guide for EX9200 Switches Installing new jservices-aacl ... Verified jservices-aacl-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-aacl ... Storing jservices-aacl-pic-11.2B2.1.tgz in /var/sw/pkg ... Link: /opt/sdk/service-packages/jservices-aacl/jservices-aacl-pic -> /var/sw/pkg/jservices-aacl-pic-11.2B2.1.tgz... Auto-deleting old jservices-llpdf ... Removing /opt/sdk/service-packages/jservices-llpdf ... Removing jservices-llpdf-pic-11.2B1.5.tgz from /var/sw/pkg ...
Page 327 Verified jservices-crypto-base-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-crypto-base ... Storing jservices-crypto-base-pic-11.2B2.1.tgz in /var/sw/pkg ... Link: /opt/sdk/service-packages/jservices-crypto-base/jservices-crypto-base-pic -> /var/sw/pkg/jservices-crypto-base-pic-11.2B2.1.tgz... Auto-deleting old jservices-ssl ... Removing /opt/sdk/service-packages/jservices-ssl ... Removing jservices-ssl-pic-11.2B1.5.tgz from /var/sw/pkg ... Notifying mspd ... Installing new jservices-ssl ... Copyright © 2017, Juniper Networks, Inc.
Page 328 High Availability Feature Guide for EX9200 Switches Verified jservices-ssl-pic-11.2B2.1.tgz signed by PackageProduction_11_2_0 Creating /opt/sdk/service-packages/jservices-ssl ... Storing jservices-ssl-pic-11.2B2.1.tgz in /var/sw/pkg ... Link: /opt/sdk/service-packages/jservices-ssl/jservices-ssl-pic -> /var/sw/pkg/jservices-ssl-pic-11.2B2.1.tgz... Hardware Database regeneration succeeded Validating against /config/juniper.conf.gz mgd: commit complete Validation succeeded Installing package '/var/tmp/jinstall-11.2B2.1-domestic-signed.tgz' ...
Page 329 WARNING: (if configured), but erase all other files and information WARNING: stored on this machine. It will attempt to preserve dumps WARNING: and log files, but this can not be guaranteed. This is the Copyright © 2017, Juniper Networks, Inc.
Page 330 High Availability Feature Guide for EX9200 Switches WARNING: pre-installation stage and all the software is loaded when WARNING: you reboot the system. Saving the config files ... NOTICE: uncommitted changes have been saved in /var/db/config/juniper.conf.pre-install Installing the bootstrap installer ...
Page 331 [Jan 30 11:26:20]:ISSU: All VC Members Ready for Switchover Waiting for master chassis to be switch ready Switching mastership locally Resolving mastership... Complete. The other routing engine becomes the master. Waiting for virtual chassis roles to switch Copyright © 2017, Juniper Networks, Inc.
Page 332 High Availability Feature Guide for EX9200 Switches Globally updating ISSU state to IDLE [Jan 30 11:26:33]:ISSU: IDLE Rebooting protocol backup standby RE. Sending Reboot Command to member1-re0 member1-re0: -------------------------------------------------------------------------- Shutdown NOW! Reboot consistency check bypassed - jinstall 14.1-20140114_ib_14_1_psd.1 will complete installation upon reboot [pid 10462] Rebooting locally to complete the in service upgrade.
Page 333: Request System Software Validate In-Service-Upgrade
Example: Performing a Unified ISSU on page 188 List of Sample Output request system software validate in-service-upgrade on page 314 Output Fields When you enter this command, Junos OS displays the status of your request. Copyright © 2017, Juniper Networks, Inc.
Page 334 High Availability Feature Guide for EX9200 Switches Sample Output request system software validate in-service-upgrade {master} user@host> request system software validate in-service-upgrade /var/tmp/jinstall-9.0-20080114.2-domestic-signed.tgz reboot Checking compatibility with configuration Initializing... Using jbase-9.5-20090127.0 Verified manifest signed by PackageProduction_9_5_0 Using /var/tmp/jinstall-9.6-daily-domestic-signed.tgz Verified jinstall-9.6-20090706.0-domestic.tgz signed by PackageProduction_9_6_0 Using jinstall-9.6-20090706.0-domestic.tgz...
Page 335 Validation succeeded PIC 7/0 will be offlined (In-Service-Upgrade not supported) PIC 7/1 will be offlined (In-Service-Upgrade not supported) PIC 4/2 will be offlined (In-Service-Upgrade not supported) PIC 4/3 will be offlined (In-Service-Upgrade not supported) Copyright © 2017, Juniper Networks, Inc.
Page 336: Show System Switchover
High Availability Feature Guide for EX9200 Switches show system switchover List of Syntax Syntax on page 316 Syntax (TX Matrix Router) on page 316 Syntax (TX Matrix Plus Router) on page 316 Syntax (MX Series Router) on page 316 Syntax...
Page 337 —(TX Matrix router only) (Optional) Display graceful Routing Engine switchover information for the TX Matrix router (or switch-card chassis). —(TX Matrix Plus routers only) (Optional) Display graceful Routing Engine switchover information for the TX Matrix Plus router. Copyright © 2017, Juniper Networks, Inc.
Page 338: Table 29: Show System Switchover Output Fields
High Availability Feature Guide for EX9200 Switches Additional Information If you issue the command on a TX Matrix backup Routing Engine, show system switchover the command is broadcast to all the T640 backup Routing Engines that are connected to it.
Page 339 —An error occurred when the state was replicated from the primary Routing Engine. Replication error Inspect Steady State for possible causes, or notify Juniper Networks customer support. Peer state Routing Engine peer state: This field is displayed only when ksyncd is running in multichassis mode (LCC master).
Page 340 High Availability Feature Guide for EX9200 Switches -------------------------------------------------------------------------- Command is not applicable on this member of the virtual-chassis show system switchover (MX Virtual Chasiss) {master:member1-re1} user@host> show system switchover member0: -------------------------------------------------------------------------- Graceful switchover: On Configuration database: Ready Kernel database: Ready...
Page 341 (Routing Matrix and Routing Matrix Plus) user@host> show system switchover all-lcc lcc0-re0: -------------------------------------------------------------------------- Multichassis replication: On Configuration database: Ready Kernel database: Ready Peer state: Steady State Switchover Status: Ready lcc2-re0: -------------------------------------------------------------------------- Multichassis replication: On Configuration database: Ready Copyright © 2017, Juniper Networks, Inc.

Juniper EX9200 Features Manual

Chapter 1 Understanding How GRES Enables Uninterrupted Packet Forwarding

Chapter 2 GRES System Requirements

Chapter 3 Configuring GRES

Chapter 4 Understanding How Nonstop Bridging Preserves Layer 2 Protocol Information During a Routing Engine Switchover

Chapter 5 Nonstop Bridging System Requirements

Chapter 6 Configuring Nonstop Bridging

Chapter 7 Understanding How Nonstop Active Routing Preserves Routing Protocol Information During a Routing Engine Switchover

Chapter 8 Nonstopactiveroutingsystemrequirements

Chapter 9 Configuringnonstopactiverouting

Chapter 10 Understanding How Graceful Restart Enables Uninterrupted Packet Forwarding When a Router Is Restarted

Chapter 11 Gracefulrestartsystemrequirements

Chapter 12 Configuring Graceful Restart

Chapter 13 Understandinghowthevrrprouterfailovermechanismprevents

Chapter 14 Configuring VRRP

Chapter 15 Understandinghowunifiedissuenablessoftwareupgradeswith

Chapter 16 Unifiedissusystemrequirements

Chapter 17 Performing a Unified ISSU

Chapter 18 Routine Monitoring

Chapter 19 Troubleshooting Unified ISSU

Chapter 20 Configuration Statements: GRES

Chapter 21 Configuration Statements: Graceful Restart

Chapter 22 Configuration Statements: NSB

Chapter 23 Configuration Statements: NSR

Chapter 24 Configuration Statements: VRRP

Quick Links

Troubleshooting

Related Manuals for Juniper EX9200

Summary of Contents for Juniper EX9200