https://junipernetworks.sharepoint.com/sites/CSOBYODHowto/SitePages/How-To-Onboard-vSRX.aspx
https://junipernetworks.sharepoint.com/teams/Sales/Technical_Sales/coe/Solutions%20%20Write%20Ups/Documents/CSOReferenceLab/CSO_SaaS_V500/BYOPoC_or_smallLab/CSO_SaaS_BYOPoC-HS01.zip
RESOURCES >> Site Management >> Click: Add Enterprise Hub
Name: jlk-spoke1
Site Capability: SD-WAN
Primary PEnterprise Hub: jlk-E-hub-new
optional: Address and Timezone NP20 4NP , Newport , UK
Page 2: WAN
search fro the Device Template: jlk2_CSOaaS vSRX E-HUB
Serial Number:
WAN_0 (ge-0/0/0)
Link type: internet [ default ]
Address assigment: DHCP [ default ]
Advanced Settings:
provider: IPS1 [ default ]
Local Breakout: disable
Use For Fullmesh:
Mesh Overlay Link Type: GRE_IPSEC
Mesh Tag: INTERNET
Use for OAM traffic: Enable
WAN_0 (ge-0/0/1)
Link type: MPLS
Address assigment: DHCP [ default ]
Advanced Settings:
provider: IPS2
Local Breakout: Enable
Use For Fullmesh:
Mesh Overlay Link Type: GRE_IPSEC
Mesh Tag: MPLS
Use for OAM traffic: Enable
Page 3: LAN
Add LAN Segment
Name: LAN_A
GW , Low, High: 10.1.10.1/24 // 10.1.10.2 to 10.1.10.10
Name server: 8.8.8.8
CPE Ports: LAN_0 ( ge-0/0/2)
For Spoke-2:
------------
Page 3: LAN
Add LAN Segment
Name: LAN_A
GW , Low, High: 10.2.10.1/24 // 10.2.10.2 to 10.2.10.10
Name server: 8.8.8.8
CPE Ports: LAN_0 ( ge-0/0/2)
|
|
|---|
|
{master:0}
root@jdm-catapult> show configuration virtual-network-functions myvsrx | display set
set virtual-network-functions myvsrx image /var/third-party/images/vsrx151X49D1721.qcow2
set virtual-network-functions myvsrx virtual-cpu 0 physical-cpu 4
set virtual-network-functions myvsrx virtual-cpu 1 physical-cpu 11
set virtual-network-functions myvsrx virtual-cpu count 2
set virtual-network-functions myvsrx no-default-interfaces
set virtual-network-functions myvsrx interfaces eth3 mapping hsxe0 virtual-function vlan-id 100
set virtual-network-functions myvsrx interfaces eth2 management out-of-band
set virtual-network-functions myvsrx interfaces eth4 mapping hsxe1 virtual-function vlan-id 110
set virtual-network-functions myvsrx interfaces eth5 mapping hsxe0 virtual-function vlan-id 120
set virtual-network-functions myvsrx interfaces eth6 mapping hsxe1 virtual-function vlan-id 130
set virtual-network-functions myvsrx interfaces eth7 mapping hsxe0 virtual-function vlan-id 140
set virtual-network-functions myvsrx interfaces eth8 mapping hsxe1 virtual-function vlan-id 150
set virtual-network-functions myvsrx memory size 4194304
set virtual-network-functions myvsrx memory features hugepages
{master:0}
root@jdm-catapult> show configuration | display set
set version 18.4R1.8
set system login idle-timeout 10
set system root-authentication encrypted-password "$6$nZfed$GHzBFxJYqkDryVizeNSowBG61Q5RQCh//BddYK37WOxG/RoczDv1IdkjIP/3omKzoVjyoAnfd.0chj3E37TuA."
set system host-name jdm-catapult
set system memory hugepages page-size 1024 page-count 25
set system services ssh
set system services netconf ssh
set system services netconf rfc-compliant
set system services enhanced-orchestration
set system services ipsec-nm
set system phone-home server https://redirect.juniper.net
set system phone-home upgrade-image-before-configuration
set interfaces jmgmt0 unit 0 family inet dhcp
set interfaces jmgmt0 unit 0 family inet address 192.168.0.11/24
deactivate interfaces jmgmt0 unit 0 family inet address 192.168.0.11/24
set interfaces jsxe0 vlan-tagging
set interfaces jsxe0 unit 0 vlan-id 1
set interfaces jsxe0 unit 0 family inet dhcp
set interfaces jsxe0 unit 1 vlan-id 2
set interfaces jsxe0 unit 1 family inet dhcp
set interfaces jsxe0 unit 2 vlan-id 3
set interfaces jsxe0 unit 2 family inet dhcp
deactivate interfaces jsxe0
set routing-options static route 0.0.0.0/0 next-hop 192.168.0.1
set host-os vlans vlan100 vlan-id 100
set host-os vlans vlan110 vlan-id 110
set host-os vlans vlan200 vlan-id 200
set host-os vlans vlan210 vlan-id 210
|
|
root@jdm-catapult:~# cli
{master:0}
root@jdm-catapult> ssh vjunos0
Last login: Thu Nov 14 14:25:26 2019
--- JUNOS 18.4R1.8 Kernel 64-bit FLEX JNPR-11.0-20181207.6c2f68b_2_bu
root@:RE:0% cli
{master:0}
root> show configuration | display set
set version 18.4R1.8
set system login user jdm-sysuser uid 2000
set system login user jdm-sysuser class super-user
set system login user jdm-sysuser authentication ssh-ecdsa "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPpWvgswvGVjsjeJn2Gfi/APHRyiDQjT6E6Jquq1pPiFNrz/WBOqZEdaLERIOZr2SbT5+fyQjILVljApTtC/y0o= root@jdm"
set system root-authentication encrypted-password "$1$FL5kZ2xd$3f5288IVhy0TaCruX3txe."
set system root-authentication ssh-ecdsa "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPpWvgswvGVjsjeJn2Gfi/APHRyiDQjT6E6Jquq1pPiFNrz/WBOqZEdaLERIOZr2SbT5+fyQjILVljApTtC/y0o= root@jdm"
set system services ssh
set system services netconf ssh
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set system processes app-engine-virtual-machine-management-service traceoptions level notice
set system processes app-engine-virtual-machine-management-service traceoptions flag all
set interfaces ge-0/0/0 description "vSRX ge-0/0/0"
set interfaces ge-0/0/0 speed auto
set interfaces ge-0/0/0 ether-options auto-negotiation
set interfaces ge-0/0/0 unit 0 family ethernet-switching vlan members vlan-100
set interfaces ge-0/0/0 unit 0 family ethernet-switching storm-control default
set interfaces sxe-0/0/0 ether-options flow-control
set interfaces sxe-0/0/0 unit 0 family ethernet-switching interface-mode trunk
set interfaces sxe-0/0/0 unit 0 family ethernet-switching vlan members vlan-100
set interfaces sxe-0/0/0 unit 0 family ethernet-switching vlan members vlan-120
set interfaces sxe-0/0/0 unit 0 family ethernet-switching vlan members vlan-140
set interfaces ge-0/0/1 description "vSRX ge-0/0/1"
set interfaces ge-0/0/1 speed auto
set interfaces ge-0/0/1 ether-options auto-negotiation
set interfaces ge-0/0/1 unit 0 family ethernet-switching vlan members vlan-110
set interfaces ge-0/0/1 unit 0 family ethernet-switching storm-control default
set interfaces sxe-0/0/1 ether-options flow-control
set interfaces sxe-0/0/1 unit 0 family ethernet-switching interface-mode trunk
set interfaces sxe-0/0/1 unit 0 family ethernet-switching vlan members vlan-110
set interfaces sxe-0/0/1 unit 0 family ethernet-switching vlan members vlan-130
set interfaces sxe-0/0/1 unit 0 family ethernet-switching vlan members vlan-150
set interfaces ge-0/0/2 description "vSRX ge-0/0/2"
set interfaces ge-0/0/2 speed auto
set interfaces ge-0/0/2 ether-options auto-negotiation
set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members vlan-120
set interfaces ge-0/0/2 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/3 description "vSRX ge-0/0/3"
set interfaces ge-0/0/3 speed auto
set interfaces ge-0/0/3 ether-options auto-negotiation
set interfaces ge-0/0/3 unit 0 family ethernet-switching vlan members vlan-130
set interfaces ge-0/0/3 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/4 description "vSRX ge-0/0/4"
set interfaces ge-0/0/4 speed auto
set interfaces ge-0/0/4 ether-options auto-negotiation
set interfaces ge-0/0/4 unit 0 family ethernet-switching vlan members vlan-140
set interfaces ge-0/0/4 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/5 description "vSRX ge-0/0/5"
set interfaces ge-0/0/5 speed auto
set interfaces ge-0/0/5 ether-options auto-negotiation
set interfaces ge-0/0/5 unit 0 family ethernet-switching vlan members vlan-150
set interfaces ge-0/0/5 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/6 speed auto
set interfaces ge-0/0/6 ether-options auto-negotiation
set interfaces ge-0/0/6 unit 0 family ethernet-switching vlan members default
set interfaces ge-0/0/6 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/7 speed auto
set interfaces ge-0/0/7 ether-options auto-negotiation
set interfaces ge-0/0/7 unit 0 family ethernet-switching vlan members default
set interfaces ge-0/0/7 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/8 speed auto
set interfaces ge-0/0/8 ether-options auto-negotiation
set interfaces ge-0/0/8 unit 0 family ethernet-switching vlan members default
set interfaces ge-0/0/8 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/9 speed auto
set interfaces ge-0/0/9 ether-options auto-negotiation
set interfaces ge-0/0/9 unit 0 family ethernet-switching vlan members default
set interfaces ge-0/0/9 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/10 unit 0 family ethernet-switching vlan members default
set interfaces ge-0/0/10 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/11 unit 0 family ethernet-switching vlan members default
set interfaces ge-0/0/11 unit 0 family ethernet-switching storm-control default
set interfaces xe-0/0/12 unit 0 family ethernet-switching storm-control default
set interfaces xe-0/0/13 unit 0 family ethernet-switching storm-control default
set forwarding-options storm-control-profiles default all
set protocols lldp interface all
set protocols lldp-med interface all
set protocols igmp-snooping vlan default
set protocols rstp interface ge-0/0/0
set protocols rstp interface ge-0/0/1
set protocols rstp interface ge-0/0/2
set protocols rstp interface ge-0/0/3
set protocols rstp interface ge-0/0/4
set protocols rstp interface ge-0/0/5
set protocols rstp interface ge-0/0/6
set protocols rstp interface ge-0/0/7
set protocols rstp interface ge-0/0/8
set protocols rstp interface ge-0/0/9
set protocols rstp interface ge-0/0/10
set protocols rstp interface ge-0/0/11
set protocols rstp interface xe-0/0/12
set protocols rstp interface xe-0/0/13
set vlans default vlan-id 1
set vlans vlan-100 vlan-id 100
set vlans vlan-110 vlan-id 110
set vlans vlan-120 vlan-id 120
set vlans vlan-130 vlan-id 130
set vlans vlan-140 vlan-id 140
set vlans vlan-150 vlan-id 150
{master:0}
root>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|