Class Of Service; Ethernet Switching; Firewall Filters; Hardware - Juniper JUNOS OS 10.4 - RELEASE NOTES REV 5 Release Note

Hide thumbs Also See for JUNOS OS 10.4 - RELEASE NOTES REV 5:

Release note (216 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

page of 209

/ 209
Contents
Table of Contents
Bookmarks

Table of Contents

Class of Service

On EX8200 switches, classification of packets using ingress firewall filter rules with

forwarding-class and loss-priority configurations does not rewrite the DSCP or 802.1p

bits. Rewriting of packets is determined by the forwarding-class and loss-priority values

set in the DSCP classifier applied on the interface.

On EX4200 switches, traffic is shaped at rates above 500 Kbps, even when the shaping

rate configured is less than 500 Kbps.

Ethernet Switching

If you perform graceful Routing Engine switchover (GRES) on an EX4200 or an EX8200

switch, the Ethernet switching table might not refresh because the Packet Forwarding

Engine retains the forwarding database (FDB) entries. The result is that traffic is flooded

to the affected MAC addresses. As a workaround, refresh the Ethernet switching table

by issuing the

clear ethernet-switching table

Firewall Filters

On EX3200 and EX4200 switches, when interface ranges or VLAN ranges are used in

configuring firewall filters, egress firewall filter rules take more than five minutes to

install.

On EX3200 and EX4200 switches, IGMP packets are not matched by user-configured

firewall filters.

When you enable the

filter-id

of the required 802.1X authentication rules is not inserted in the IPv6 database. IPv6

traffic on the authenticated interface is not filtered; only IPv4 traffic is filtered on that

interface.

On EX8200 switches and the XRE200 External Routing Engine, if you apply different

firewall filters to different VLANs, only the filter applied to the first VLAN is applied

correctly. For example, if you issue commands to apply filter f1 to VLAN1, filter f2 to

VLAN2, and filter f3 to VLAN3, filter f1 applies correctly, but filters f2 and f3 are not

applied to any VLANs. As a workaround, merge all the VLAN filters into one single filter

and apply that filter to all the VLANs. You can use the

firewall filter terms to differentiate the rules for each of the VLANs.

Hardware

On 40-port SFP+ line cards for EX8200 switches, the LEDs on the left of the network

ports do not blink to indicate that there is link activity if you set the speed of the network

ports to 10/100/1000 Mbps. However, if you set the speed to 10 Gbps, the LEDs blink.

If you press the reset button on the Switch Fabric and Routing Engine (SRE) module

in an EX8208 switch without taking the module offline first (by using the CLI), the

fabric planes in the module might not come back online.

Limitations in Junos OS Release 10.4 for EX Series Switches

command.

attribute on the RADIUS server for a particular client, one

vlan

match condition in the

191

Table of Contents

This manual is also suitable for:

Junos os 10.4

Class Of Service; Ethernet Switching; Firewall Filters; Hardware - Juniper JUNOS OS 10.4 - RELEASE NOTES REV 5 Release Note

Class of Service

Ethernet Switching

Firewall Filters

Hardware

Related Manuals for Juniper JUNOS OS 10.4 - RELEASE NOTES REV 5

Related Content for Juniper JUNOS OS 10.4 - RELEASE NOTES REV 5

This manual is also suitable for:

Table of Contents