Switching

last person joined: 3 days ago 

Ask questions and share experiences about EX and QFX portfolios and all switching solutions across your data center, campus, and branch locations.

  • 1.  RSTP on "all" ex4300 Ports

    Posted 11-20-2013 14:49

    What is the best way to configure RSTP on all layer-2 ports on the ex4300?  Since it's running the Enhanced Layer 2 Software it appears quite different than the ex3200/ex4200 I'm used to.  By default, it's only running RSTP on the switchports on the first VC member and there doesn't appear to be an easy way to configure RSTP on all ports (no 'all' option, or just "set protocol rstp" option which applies to all layer 2 ports).

     

    Some of the ex4300 configuration reminds me of the mx series I used to work on in a previous life (irb instead of vlan, etc.) where a commit script was written to verify some form of STP was running on all switchports or the commit wouldn't take.

     

    I really want to avoid the use of config groups if at all possible.

     

    root@EX# show protocols rstp | display set 
set protocols rstp bridge-priority 8k
set protocols rstp interface ge-0/0/0
set protocols rstp interface ge-0/0/1
set protocols rstp interface ge-0/0/2
set protocols rstp interface ge-0/0/3
set protocols rstp interface ge-0/0/4
set protocols rstp interface ge-0/0/5
set protocols rstp interface ge-0/0/6
set protocols rstp interface ge-0/0/7
set protocols rstp interface ge-0/0/8
set protocols rstp interface ge-0/0/9
set protocols rstp interface ge-0/0/10
set protocols rstp interface ge-0/0/11
set protocols rstp interface ge-0/0/12
set protocols rstp interface ge-0/0/13
set protocols rstp interface ge-0/0/14
set protocols rstp interface ge-0/0/15
set protocols rstp interface ge-0/0/16
set protocols rstp interface ge-0/0/17
set protocols rstp interface ge-0/0/18
set protocols rstp interface ge-0/0/19
set protocols rstp interface ge-0/0/20
set protocols rstp interface ge-0/0/21
set protocols rstp interface ge-0/0/22  
set protocols rstp interface ge-0/0/23
set protocols rstp interface ge-0/0/24
set protocols rstp interface ge-0/0/25
set protocols rstp interface ge-0/0/26
set protocols rstp interface ge-0/0/27
set protocols rstp interface ge-0/0/28
set protocols rstp interface ge-0/0/29
set protocols rstp interface ge-0/0/30
set protocols rstp interface ge-0/0/31
set protocols rstp interface ge-0/0/32
set protocols rstp interface ge-0/0/33
set protocols rstp interface ge-0/0/34
set protocols rstp interface ge-0/0/35
set protocols rstp interface ge-0/0/36
set protocols rstp interface ge-0/0/37
set protocols rstp interface ge-0/0/38
set protocols rstp interface ge-0/0/39
set protocols rstp interface ge-0/0/40
set protocols rstp interface ge-0/0/41
set protocols rstp interface ge-0/0/42
set protocols rstp interface ge-0/0/43
set protocols rstp interface ge-0/0/44
set protocols rstp interface ge-0/0/45  
set protocols rstp interface ge-0/0/46
set protocols rstp interface ge-0/0/47
set protocols rstp interface ge-0/2/0
set protocols rstp interface xe-0/2/0
set protocols rstp interface ge-0/2/1
set protocols rstp interface xe-0/2/1
set protocols rstp interface ge-0/2/2
set protocols rstp interface xe-0/2/2
set protocols rstp interface ge-0/2/3
set protocols rstp interface xe-0/2/3

{master:0}[edit]
root@MDF-CORE-EX# set protocols rstp ?
Possible completions:
+ apply-groups         Groups from which to inherit configuration data
+ apply-groups-except  Don't inherit configuration data from these groups
  backup-bridge-priority  Priority of the bridge (in increments of 4k - 4k,8k,..60k)
  bpdu-block-on-edge   Block BPDU on all interfaces configured as edge (BPDU Protect)
  bpdu-destination-mac-address  Destination MAC address in the spanning tree BPDUs
  bridge-priority      Priority of the bridge (in increments of 4k - 0,4k,8k,..60k)
  disable              Disable STP
  extended-system-id   Extended system identifier (0..4095)
  force-version        Force protocol version
  forward-delay        Time spent in listening or learning state (4..30 seconds)
  hello-time           Time interval between configuration BPDUs (1..10 seconds)
> interface            Interface options
  max-age              Maximum age of received protocol bpdu (6..40 seconds)
  priority-hold-time   Hold time before switching to primary priority when core domain becomes up
> system-id            System ID to IP mapping
  system-identifier    Sytem identifier to represent this node
> traceoptions         Tracing options for debugging protocol operation
  vpls-flush-on-topology-change  Enable VPLS MAC flush on root protected CE interface receving topology change
{master:0}[edit]
root@MDF-CORE-EX# set protocols rstp interface ?
Possible completions:
  <name>               
  ge-0/0/0             
  ge-0/0/1             DEFAULT
  ge-0/0/2             DEFAULT
  ge-0/0/3             DEFAULT
  ge-0/0/4             DEFAULT
  ge-0/0/5             DEFAULT
  ge-0/0/6             DEFAULT
  ge-0/0/7             DEFAULT
  ge-0/0/8             DEFAULT
  ge-0/0/9             UPLINK TO ESX04 vmnic4
  ge-0/0/10            DEFAULT
  ge-0/0/11            UPLINK TO ESX04 vmnic2
  ge-0/0/12            
  ge-0/0/13            DEFAULT
  ge-0/0/14            DEFAULT
  ge-0/0/15            ESX05 VMOTION
  ge-0/0/16            
  ge-0/0/17            
  ge-0/0/18            Uplink Compellent SAN
  ge-0/0/19            
  ge-0/0/20            DEFAULT
  ge-0/0/21                             
  ge-0/0/22            
  ge-0/0/23            
  ge-0/0/24            
  ge-0/0/25            
  ge-0/0/26            
  ge-0/0/27            
  ge-0/0/28            DEFAULT
  ge-0/0/29            
  ge-0/0/30            
  ge-0/0/31            
  ge-0/0/32            
  ge-0/0/33            DEFAULT
  ge-0/0/34            
  ge-0/0/35            DEFAULT
  ge-0/0/36            
  ge-0/0/37            
  ge-0/0/38            
  ge-0/0/39            
  ge-0/0/40            DEFAULT
  ge-0/0/41            DEFAULT
  ge-0/0/42            
  ge-0/0/43            DEFAULT
  ge-0/0/44            DEFAULT          
  ge-0/0/45            
  ge-0/0/46            
  ge-0/0/47            DEFAULT
  et-0/1/3             
  ge-1/0/0             DEFAULT
  ge-1/0/1             DEFAULT
  ge-1/0/2             DEFAULT
  ge-1/0/3             DEFAULT
  ge-1/0/4             DEFAULT
  ge-1/0/5             DEFAULT
  ge-1/0/6             DEFAULT
  ge-1/0/7             DEFAULT
  ge-1/0/8             DEFAULT
  ge-1/0/9             DEFAULT
  ge-1/0/10            DEFAULT
  ge-1/0/11            DEFAULT
  ge-1/0/12            DEFAULT
  ge-1/0/13            DEFAULT
  ge-1/0/14            DEFAULT
  ge-1/0/15            DEFAULT
  ge-1/0/16            DEFAULT
  ge-1/0/17            DEFAULT
  ge-1/0/18            DEFAULT          
  ge-1/0/19            DEFAULT
  ge-1/0/20            DEFAULT
  ge-1/0/21            DEFAULT
  ge-1/0/22            DEFAULT
  ge-1/0/23            DEFAULT
  ge-1/0/24            DEFAULT
  ge-1/0/25            DEFAULT
  ge-1/0/26            DEFAULT
  ge-1/0/27            DEFAULT
  ge-1/0/28            DEFAULT
  ge-1/0/29            DEFAULT
  ge-1/0/30            DEFAULT
  ge-1/0/31            DEFAULT
  ge-1/0/32            DEFAULT
  ge-1/0/33            DEFAULT
  ge-1/0/34            DEFAULT
  ge-1/0/35            DEFAULT
  ge-1/0/36            DEFAULT
  ge-1/0/37            DEFAULT
  ge-1/0/38            DEFAULT
  ge-1/0/39            DEFAULT
  ge-1/0/40            DEFAULT
  ge-1/0/41            DEFAULT          
  ge-1/0/42            DEFAULT
  ge-1/0/43            DEFAULT
  ge-1/0/44            DEFAULT
  ge-1/0/45            DEFAULT
  ge-1/0/46            DEFAULT
  ge-1/0/47            DEFAULT
  et-1/1/3             
  ge-2/0/0             DEFAULT
  ge-2/0/1             DEFAULT
  ge-2/0/2             DEFAULT
  ge-2/0/3             DEFAULT
  ge-2/0/4             DEFAULT
  ge-2/0/5             DEFAULT
  ge-2/0/6             DEFAULT
  ge-2/0/7             DEFAULT
  ge-2/0/8             DEFAULT
  ge-2/0/9             DEFAULT
  ge-2/0/10            DEFAULT
  ge-2/0/11            DEFAULT
  ge-2/0/12            DEFAULT
  ge-2/0/13            DEFAULT
  ge-2/0/14            DEFAULT
  ge-2/0/15            DEFAULT          
  ge-2/0/16            DEFAULT
  ge-2/0/17            DEFAULT
  ge-2/0/18            DEFAULT
  ge-2/0/19            DEFAULT
  ge-2/0/20            DEFAULT
  ge-2/0/21            DEFAULT
  ge-2/0/22            DEFAULT
  ge-2/0/23            DEFAULT
  ge-2/0/24            DEFAULT
  ge-2/0/25            DEFAULT
  ge-2/0/26            DEFAULT
  ge-2/0/27            DEFAULT
  ge-2/0/28            DEFAULT
  ge-2/0/29            DEFAULT
  ge-2/0/30            DEFAULT
  ge-2/0/31            DEFAULT
  ge-2/0/32            DEFAULT
  ge-2/0/33            DEFAULT
  ge-2/0/34            DEFAULT
  ge-2/0/35            DEFAULT
  ge-2/0/36            DEFAULT
  ge-2/0/37            DEFAULT
  ge-2/0/38            DEFAULT          
  ge-2/0/39            DEFAULT
  ge-2/0/40            DEFAULT
  ge-2/0/41            DEFAULT
  ge-2/0/42            DEFAULT
  ge-2/0/43            DEFAULT
  ge-2/0/44            DEFAULT
  ge-2/0/45            DEFAULT
  ge-2/0/46            DEFAULT
  ge-2/0/47            DEFAULT
  ae0                  
  ae1                  
  ae2                  
  ae3                  
  ae4                  
  ae5                  
  ae6                  
  ae7                  
  ae8                  
  ae9                  
  ae10                 
  ae11                 
  ae12                 
  ae13                                  
  ae14                 
  ae15                 
  ge-0/0/0             
  ge-0/0/1             
  ge-0/0/2             
  ge-0/0/3             
  ge-0/0/4             
  ge-0/0/5             
  ge-0/0/6             
  ge-0/0/7             
  ge-0/0/8             
  ge-0/0/9             
  ge-0/0/10            
  ge-0/0/11            
  ge-0/0/12            
  ge-0/0/13            
  ge-0/0/14            
  ge-0/0/15            
  ge-0/0/16            
  ge-0/0/17            
  ge-0/0/18            
  ge-0/0/19            
  ge-0/0/20                             
  ge-0/0/21            
  ge-0/0/22            
  ge-0/0/23            
  ge-0/0/24            
  ge-0/0/25            
  ge-0/0/26            
  ge-0/0/27            
  ge-0/0/28            
  ge-0/0/29            
  ge-0/0/30            
  ge-0/0/31            
  ge-0/0/32            
  ge-0/0/33            
  ge-0/0/34            
  ge-0/0/35            
  ge-0/0/36            
  ge-0/0/37            
  ge-0/0/38            
  ge-0/0/39            
  ge-0/0/40            
  ge-0/0/41            
  ge-0/0/42            
  ge-0/0/43                             
  ge-0/0/44            
  ge-0/0/45            
  ge-0/0/46            
  ge-0/0/47            
  ge-0/2/0             
  xe-0/2/0             
  ge-0/2/1             
  xe-0/2/1             
  ge-0/2/2             
  xe-0/2/2             
  ge-0/2/3             
  xe-0/2/3             
{master:0}[edit]
root@MDF-CORE-EX# set protocols rstp interface

     

    root@MDF-CORE-EX# set protocols rstp interface all 

{master:0}[edit]
root@MDF-CORE-EX# commit 
error: interface-range 'all' is not defined
error: interface-ranges expansion failed

     

    root@MDF-CORE-EX# set protocols rstp 
                                     ^
missing argument.

{master:0}[edit]

     



  • 2.  RE: RSTP on "all" ex4300 Ports
    Best Answer

    Posted 11-20-2013 18:16

    I really don't understand why juniper did this...hopefully they fix it in upcoming releases.

     

    one option is to use the wildcard range set command, or you might be able to do it with interface-range definitions -- ie:

     

    set wildcard range set protocols rstp interface ge-[0-3]//[0-47]

     

    or

     

    set interfaces interface-range EDGE-PORTS member "ge-0/0/[0-47]"

    set interfaces interface-range EDGE-PORTS member "ge-0/0/[1-47]"

     

    set protocols rstp interface EDGE-PORTS

     

    also for some reason you can't just run DHCP Snooping...you have to enable DAI or IP Source Guard to enable it...even if all you want to do is just prevent rogue DHCP Servers.

     

    will



  • 3.  RE: RSTP on "all" ex4300 Ports

    Posted 11-21-2013 13:51

    Great info, Will!  Thanks!



  • 4.  RE: RSTP on "all" ex4300 Ports

    Posted 03-10-2014 10:23

    Hi,

     

    In your previous post, you advance that a fix will come.

    Did you know if it's now avaible ? I don't find this in any new release (13.2X51).

     

    Thanks in advance

     


    #rstp
    #EX4300


  • 5.  RE: RSTP on "all" ex4300 Ports

    Posted 09-08-2016 12:03

    > I really don't understand why juniper did this...hopefully they fix it in upcoming releases.

     

    It seems Juniper doesn't see this as a problem. It's 2016 and still the same. Anyway, Can anyone pls let me know, why this is not working?

     

    set groups VSTP_DEFAULT protocols vstp vlan <*> interface <*>
set protocols vstp apply-groups VSTP_DEFAULT
... other vlans, interfaces, edge ports
set protocols vstp vlan 1000 interface ge-2/0/47 edge
set protocols vstp vlan 1000 interface ae7 edge
set protocols vstp vlan 1000 interface ae8 edge

    So do the DEFAULT on all vlans on all interfaces.

     

    If I enter

    set protocols vstp vlan 1000 interface ae0

    I do see STP running on vlan 1000 on ae0.

    ae0                          128:3        128:3  33768.80acac1f4d00         1000    FWD    ROOT

    But without that line, I don't.

    schoberw@sw1s> show spanning-tree interface vlan-id 1000

Spanning tree interface parameters for VLAN 1000

Interface                  Port ID    Designated         Designated         Port    State  Role
                                       port ID           bridge ID          Cost
ae7                         128:10       128:10  33768.80acac1f5cc0        10000    BLK    DIS
ae8                         128:11       128:11  33768.80acac1f5cc0        10000    BLK    DIS

{master:1}
schoberw@sw1s>

    IMHO "set protocols vstp vlan 1000 interface ae0" should be derived from group "protocols vstp vlan <*> interface <*>".

     

    Why it isn't?

     

    Thanks

    Walter



  • 6.  RE: RSTP on "all" ex4300 Ports

    Posted 09-09-2016 00:18

    Sure, this cannot work. apply-group must be within the interface and would apply settings from the group matching the (configured) vlan and  (configured) interface within protocols vstp then. Understood.

     

    schoberw@sw1s# set protocols vstp vlan 1000 interface ae8 apply-groups XXX

    would apply e.g. mode "ptp" or "edge" from the group then.

     

    But a thing I didn't think about (because I tried to translate the EX4200 config) is that EX4300 can use port based vstp now 😉 Which make things easier.

     

    set interfaces interface-range EDGE-PORTS member "ge-[1-2]/0/[0-11]"
set interfaces interface-range EDGE-PORTS member "ge-[1-2]/0/[14-47]"
set protocols vstp interface EDGE-PORTS edge
set protocols vstp interface EDGE-PORTS no-root-port
set protocols vstp interface ae0
set protocols vstp interface ae2 edge
set protocols vstp interface ae2 no-root-port
set protocols vstp interface ae3
set protocols vstp interface ae4
set protocols vstp interface ae7 edge
set protocols vstp interface ae7 no-root-port
set protocols vstp interface ae8 edge
set protocols vstp interface ae8 no-root-port

    (An aeX cannot be put into a interface-range - so I have to add those manually)

    set interfaces interface-range EDGE-PORTS member ae7
                                                 ^
invalid interface name in ae7 at 'ae7'

    Anyway. This is more like cisco, where "spanning-tree portfast (trunk)" must be added per interface as well!

     

    It's just: Let it unconfigured could lead to loops which is dangerous. Am I wrong?

     

    br

    Walter



  • 7.  RE: RSTP on "all" ex4300 Ports

     
    Posted 09-09-2016 02:16

    Hi,

     

    set groups VSTP_DEFAULT protocols vstp vlan <*> interface <*>

    is using apply-paths and will apply config to interfaces defined under protocols vstp vlan x and interface x.

    The interface has to be defined under this stanza for other configs to be inherited.

     

    Its possible to define the interfaces in the group level config:

    http://forums.juniper.net/t5/Ethernet-Switching/Ex-4300-VSTP-no-interface-all-blows-up-config-no-Interface-Range/m-p/294833#M14510

     

    Under interface-range, only physical interfaces can be added and no logical interfaces, thus ae interface cannot be added.

     

    Cheers,
    Ashvin