Network Configuration Example Validated Reference
advertisement
Network Configuration Example
Validated Reference - Business Edge Solution Device R-7
Release
1.0
Published: 2014-03-31
Copyright © 2014, Juniper Networks, Inc.
Juniper Networks, Inc.
1194 North Mathilda Avenue
Sunnyvale, California 94089
USA
408-745-2000
www.juniper.net
Juniper Networks, Junos, Steel-Belted Radius, NetScreen, and ScreenOS are registered trademarks of Juniper Networks, Inc. in the United
States and other countries. The Juniper Networks Logo, the Junos logo, and JunosE are trademarks of Juniper Networks, Inc. All other
trademarks, service marks, registered trademarks, or registered service marks are the property of their respective owners.
Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify,
transfer, or otherwise revise this publication without notice.
Network Configuration Example Validated Reference - Business Edge Solution - Device R-7
NCE0126
Copyright © 2014, Juniper Networks, Inc.
All rights reserved.
The information in this document is current as of the date on the title page.
YEAR 2000 NOTICE
Juniper Networks hardware and software products are Year 2000 compliant. Junos OS has no known time-related limitations through the
year 2038. However, the NTP application is known to have some difficulty in the year 2036.
END USER LICENSE AGREEMENT
The Juniper Networks product that is the subject of this technical documentation consists of (or is intended for use with) Juniper Networks
software. Use of such software is subject to the terms and conditions of the End User License Agreement (“EULA”) posted at
http://www.juniper.net/support/eula.html. By downloading, installing or using such software, you agree to the terms and conditions of
that EULA.
ii
Copyright © 2014, Juniper Networks, Inc.
Table of Contents
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1
Business Edge Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1
Business Edge Solution Lab Testing and Validation Architecture . . . . . . . . . . . . . . 2
Related Business Edge Validated Reference NCEs . . . . . . . . . . . . . . . . . . . . . . . . . . 3
Device R-7 Chassis Hardware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4
Device R-7 Validated Reference Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
Copyright © 2014, Juniper Networks, Inc.
iii
Validated Reference NCE - Business Edge Solution - Device R-7
iv
Copyright © 2014, Juniper Networks, Inc.
Introduction
This document provides a validated reference network configuration example (NCE) for
Device R-7 as used in various configurations detailed in the Business Edge Solution 1.0
®
Design Guide. Device R-7 is a Juniper Networks MX80 3D Universal Edge Router
functioning as an aggregation customer edge (A-CE) node. A validated reference NCE
is a direct presentation of a tested, validated, and working configuration. This document
®
is intended for experienced engineers who possess a working knowledge of Junos
operating system (Junos OS) software configurations in a hierarchal format.
Business Edge Overview
The Juniper Networks business edge solution provides design guidance and configurations
that enable the provisioning of services to business customers and that support other
carrier services to residential and mobile operating units. The solution provides a proven
path to service convergence using common IP infrastructure so that the provider can
quickly, safely, and conveniently realize the benefits of a fully verified Juniper
Networks-based reference architecture. The solution is a complete and deployable
network architecture designed to intelligently leverage the variety of advanced and often
overlooked technologies inherent in Juniper Networks software and hardware.
Juniper Networks has developed this solution with the goal of enabling a streamlined
business edge that can create new areas for monetization and help prevent erosion of
service margins. By accelerating time to revenue at the business edge, the solution is the
first step in streamlining the provider edge and creates new areas for expansion and
consolidation. The next step in this transformation is the introduction of the Juniper
Networks universal edge. The universal edge is a consolidation of business services,
residential services, and wireless edge onto a common IP infrastructure that reduces the
need for redundant networks and network elements, enabling expense reduction and
optimizing traffic flow to support a complete footprint of service provider offerings.
Service providers constantly look to extract additional value from the network by
positioning themselves to profitably leverage converging services and network
functionality. A performance focused, highly reliable business edge is needed to
cost-effectively meet the extraordinary growth in subscribers, services, and traffic driven
by an increasingly connected workforce, and business requirements that leverage the
network as a commodity rather than a luxury. Transformation to a universal edge solution
starts with the adoption of a complete business edge architecture that enables a smooth
transition to an edge that supports not only business, but residential subscribers and
mobility networks.
Copyright © 2014, Juniper Networks, Inc.
1
Validated Reference NCE - Business Edge Solution - Device R-7
Business Edge Solution Lab Testing and Validation Architecture
This validated reference NCE is part of a complete, tested and validated business edge
solution topology. This document focuses specifically on Device R-7 as shown in
Figure 1 on page 2. Device R-7 is a Juniper Networks MX80 3D Universal Edge Router
functioning as an aggregation customer edge (A-CE) node.
Figure 1: Business Edge Solution Lab Testing Architecture
2
Copyright © 2014, Juniper Networks, Inc.
Related Business Edge Validated Reference NCEs
For configurations of the other routing devices used in the Business Edge solution test
lab topology, refer to the following:
•
Validated Reference - Business Edge Solution - Device P-0
•
Validated Reference - Business Edge Solution - Device P-1
•
Validated Reference - Business Edge Solution - Device PE-2
•
Validated Reference - Business Edge Solution - Device PE-3
•
Validated Reference - Business Edge Solution - Device PE-4
•
Validated Reference - Business Edge Solution - Device PE-5
•
Validated Reference - Business Edge Solution - Device PE-6
•
Validated Reference - Business Edge Solution - Device CE-1
•
Validated Reference - Business Edge Solution - Device R9
•
Validated Reference - Business Edge Solution - Device R10
Copyright © 2014, Juniper Networks, Inc.
3
Validated Reference NCE - Business Edge Solution - Device R-7
Device R-7 Chassis Hardware
The Juniper Networks Business Edge Solution Design Guide makes reference to several
configuration scenarios. The scenarios described contain various routers that were
configured and tested in the Juniper Networks test lab. Device R-7 is a Juniper Networks
MX80 3D Universal Edge Router functioning as an aggregation customer edge (A-CE)
node. Table 1 on page 4 lists the hardware contained in this router.
Table 1: Chassis Hardware (R7)
Chassis Component
Version
Part Number
FRU Model Number
Midplane
REV 09
711-031594
CHAS-MX80-S
PEM 0
REV 04
740-028288
PWR-MX80-AC-S
Routing Engine
BUILTIN
TFEB 0
BUILTIN
FPC 0
BUILTIN
FPC 1
BUILTIN
MIC 0
Fan Tray
4
REV 26
750-028392
MIC-3D-20GE-SFP
FANTRAY-MX80-S
Copyright © 2014, Juniper Networks, Inc.
Device R-7 Validated Reference Configuration
The following configuration was used for Device R-7 in Release 1.0 of the Business Edge
test lab configuration:
CAUTION: The following configuration contains values specific to the Juniper
Networks test lab environment. This configuration is intended for use as an
example router configuration and not for actual network deployment without
first making the modifications necessary to suit an external deployment
scenario.
version 12.3R3-S2;
groups {
global {
system {
domain-name juniper.net;
time-zone America/Los_Angeles;
authentication-order [ password radius tacplus ];
root-authentication {
encrypted-password <password removed>; ## SECRET-DATA
}
name-server {
192.168.5.68;
192.168.60.131;
}
radius-server {
192.168.69.162 secret <password removed>; ## SECRET-DATA
192.168.60.52 secret <password removed>; ## SECRET-DATA
}
tacplus-server {
192.168.5.73 {
secret <password removed>; ## SECRET-DATA
timeout 15;
single-connection;
}
}
login {
class readonly {
permissions [ interface network routing system trace view ];
}
user remote {
uid 9999;
class superuser;
shell csh;
}
}
services {
finger;
ftp;
rlogin;
rsh;
ssh;
Copyright © 2014, Juniper Networks, Inc.
5
Validated Reference NCE - Business Edge Solution - Device R-7
telnet;
xnm-clear-text;
netconf {
ssh;
}
}
syslog {
host log {
kernel info;
any notice;
pfe info;
interactive-commands any;
}
file messages {
kernel info;
any notice;
authorization info;
pfe info;
archive world-readable;
}
file security {
interactive-commands any;
archive world-readable;
}
}
ntp {
boot-server 172.17.28.5;
server 172.17.28.5;
}
}
chassis {
network-services enhanced-ip;
}
interfaces {
lo0 {
unit 0 {
family inet {
address 127.0.0.1/32;
address 10.255.50.216/32 {
primary;
}
}
family iso {
address 47.0005.80ff.f800.0000.0108.0001.0102.5505.0216.00;
}
family inet6 {
address abcd::10:255:50:216/128 {
primary;
}
}
}
}
}
snmp {
location "Business Edge Solution Lab";
contact "Business Edge Lab Admin";
6
Copyright © 2014, Juniper Networks, Inc.
interface fxp0.0;
community public {
authorization read-only;
}
community private {
authorization read-write;
}
}
routing-options {
static {
route 172.16.0.0/12 {
next-hop 192.168.50.254;
retain;
no-readvertise;
}
route 192.168.0.0/16 {
next-hop 192.168.50.254;
retain;
no-readvertise;
}
}
router-id 10.255.50.216;
}
}
re0 {
system {
host-name pdt-mx80wan-a;
backup-router 192.168.50.254;
}
interfaces {
fxp0 {
unit 0 {
family inet {
address 192.168.50.216/25;
}
}
}
}
}
oam-settings {
protocols {
oam {
ethernet {
connectivity-fault-management {
maintenance-domain <*> {
level 7;
maintenance-association <*> {
continuity-check {
interval 10ms;
loss-threshold 3;
interface-status-tlv;
}
mep <*> {
remote-mep <*> {
action-profile CFM-CC-PROFILE;
}
Copyright © 2014, Juniper Networks, Inc.
7
Validated Reference NCE - Business Edge Solution - Device R-7
}
}
}
}
}
}
}
}
}
apply-groups [ global re0 ];
system {
ports {
console log-out-on-disconnect;
}
}
interfaces {
ge-1/1/2 {
vlan-tagging;
unit 1 {
vlan-id 1;
family inet {
address 3.0.0.1/30;
}
family inet6 {
address 2002::3.0.0.1/126;
}
}
unit 2 {
vlan-id 2;
family inet {
address 3.0.0.5/30;
}
family inet6 {
address 2002::3.0.0.5/126;
}
}
unit 3 {
vlan-id 3;
family inet {
address 3.0.0.9/30;
}
family inet6 {
address 2002::3.0.0.9/126;
}
}
unit 4 {
vlan-id 4;
family inet {
address 3.0.0.13/30;
}
family inet6 {
address 2002::3.0.0.13/126;
}
}
}
ge-1/1/6 {
8
Copyright © 2014, Juniper Networks, Inc.
vlan-tagging;
unit 1 {
vlan-id 1;
family inet {
address 1.0.0.54/30;
}
family inet6 {
address 2002::1.0.0.54/126;
}
}
unit 2 {
vlan-id 2;
family inet {
address 1.0.0.58/30;
}
family inet6 {
address 2002::1.0.0.58/126;
}
}
unit 3 {
vlan-id 3;
family inet {
address 1.0.0.62/30;
}
family inet6 {
address 2002::1.0.0.62/126;
}
}
unit 4 {
vlan-id 4;
family inet {
address 1.0.0.114/30;
}
family inet6 {
address 2002::1.0.0.114/126;
}
}
}
}
protocols {
oam {
ethernet {
apply-groups oam-settings;
connectivity-fault-management {
action-profile CFM-CC-PROFILE {
event {
adjacency-loss;
rdi;
}
action {
interface-down;
}
}
maintenance-domain customer {
level 7;
maintenance-association customer-site1 {
Copyright © 2014, Juniper Networks, Inc.
9
Validated Reference NCE - Business Edge Solution - Device R-7
mep 800 {
interface ge-1/1/6;
remote-mep 100;
}
}
}
}
}
}
}
policy-options {
policy-statement adv-thru-rip {
term 1 {
from protocol [ ospf ospf3 ];
then accept;
}
}
policy-statement rip-to-ospf {
term 1 {
from protocol rip;
then accept;
}
}
policy-statement ripng-to-ospf3 {
term 1 {
from protocol ripng;
then accept;
}
}
}
routing-instances {
vr1 {
instance-type virtual-router;
interface ge-1/1/2.1;
interface ge-1/1/6.1;
routing-options {
rib vr1.inet6.0 {
static {
route 0::0/0 next-hop 2002::1.0.0.53;
}
}
static {
route 0.0.0.0/0 next-hop 1.0.0.53;
}
}
protocols {
ospf {
export rip-to-ospf;
area 0.0.0.0 {
interface ge-1/1/2.1;
}
}
ospf3 {
export ripng-to-ospf3;
area 0.0.0.0 {
interface ge-1/1/2.1;
10
Copyright © 2014, Juniper Networks, Inc.
}
}
rip {
group to-pe {
export adv-thru-rip;
bfd-liveness-detection {
minimum-interval 500;
multiplier 3;
}
neighbor ge-1/1/6.1;
}
}
ripng {
group to-pe {
export adv-thru-rip;
neighbor ge-1/1/6.1;
}
}
pim {
rp {
static {
address 10.2.255.1 {
version 2;
}
address 2002::10.2.255.1 {
version 2;
}
}
}
interface ge-1/1/6.1 {
mode sparse;
version 2;
}
interface ge-1/1/2.1 {
mode sparse;
version 2;
}
}
}
}
vr2 {
instance-type virtual-router;
interface ge-1/1/2.2;
interface ge-1/1/6.2;
routing-options {
rib vr2.inet6.0 {
static {
route 0::0/0 next-hop 2002::1.0.0.57;
}
}
static {
route 0.0.0.0/0 next-hop 1.0.0.57;
}
}
protocols {
ospf {
Copyright © 2014, Juniper Networks, Inc.
11
Validated Reference NCE - Business Edge Solution - Device R-7
export rip-to-ospf;
area 0.0.0.0 {
interface ge-1/1/2.2;
}
}
ospf3 {
export ripng-to-ospf3;
area 0.0.0.0 {
interface ge-1/1/2.2;
}
}
rip {
group to-pe {
export adv-thru-rip;
bfd-liveness-detection {
minimum-interval 500;
multiplier 3;
}
neighbor ge-1/1/6.2;
}
}
ripng {
group to-pe {
export adv-thru-rip;
neighbor ge-1/1/6.2;
}
}
pim {
rp {
static {
address 10.2.255.1 {
version 2;
}
address 2002::10.2.255.1 {
version 2;
}
}
}
interface ge-1/1/6.2 {
mode sparse;
version 2;
}
interface ge-1/1/2.2 {
mode sparse;
version 2;
}
}
}
}
vr3 {
instance-type virtual-router;
interface ge-1/1/2.3;
interface ge-1/1/6.3;
routing-options {
rib vr3.inet6.0 {
static {
12
Copyright © 2014, Juniper Networks, Inc.
route 0::0/0 next-hop 2002::1.0.0.61;
}
}
static {
route 0.0.0.0/0 next-hop 1.0.0.61;
}
}
protocols {
ospf {
export rip-to-ospf;
area 0.0.0.0 {
interface ge-1/1/2.3;
}
}
ospf3 {
export ripng-to-ospf3;
area 0.0.0.0 {
interface ge-1/1/2.3;
}
}
rip {
group to-pe {
export adv-thru-rip;
bfd-liveness-detection {
minimum-interval 500;
multiplier 3;
}
neighbor ge-1/1/6.3;
}
}
ripng {
group to-pe {
export adv-thru-rip;
neighbor ge-1/1/6.3;
}
}
pim {
rp {
static {
address 10.2.255.1 {
version 2;
}
address 2002::10.2.255.1 {
version 2;
}
}
}
interface ge-1/1/6.3 {
mode sparse;
version 2;
}
interface ge-1/1/2.3 {
mode sparse;
version 2;
}
}
Copyright © 2014, Juniper Networks, Inc.
13
Validated Reference NCE - Business Edge Solution - Device R-7
}
}
vr4 {
instance-type virtual-router;
interface ge-1/1/2.4;
interface ge-1/1/6.4;
protocols {
rip {
group to-pe {
export adv-thru-rip;
bfd-liveness-detection {
minimum-interval 500;
multiplier 3;
}
neighbor ge-1/1/6.4;
}
}
ripng {
group to-pe {
export adv-thru-rip;
neighbor ge-1/1/6.4;
}
}
pim {
rp {
static {
address 10.2.255.2 {
version 2;
}
address 2002::10.2.255.2 {
version 2;
}
}
}
interface ge-1/1/6.4 {
mode sparse;
version 2;
}
interface ge-1/1/2.4 {
mode sparse;
version 2;
}
}
}
}
}
14
Copyright © 2014, Juniper Networks, Inc.
