I installed MIC card for ipsec vpn on MX80 platform.
MIC card used for ipsec encription was inserted and it is online:
admin@MX-80-2-Feve3-Rack-21# run show chassis fpc pic-status
Slot 0 Online
PIC 0 Online 4x 10GE XFP
PIC 2 Online MS-MIC-16G
However I do not see any services associated with security:
admin@MX-80-2-Feve3-Rack-21# run request ?
Possible completions:
ancp Request ANCP operation
app-engine Request App-engine actions
chassis Perform chassis-specific operations
dhcp Perform DHCP operations
dhcpv6 Perform DHCPv6 operations
diagnostics Time Domain Reflectometry diagnostics
interface Perform interface operations
jdaf Request JDAF operation
l2circuit-switchover Perform l2circuit switchover
lacp Request LACP actions
message Send text message to other users
mpls Perform Multiprotocol Label Switching operations
network-access Request network-access related information
path-computation-client Perform path-computation-client operations
pim Perform PIM operations
protection-group Request protection group related operations
routing-engine Routing Engine
services Services-related requests
snmp Request actions from the Simple Network Management Protocol daemon
support Perform JUNOS support tasks
system Perform system-level operations
validation Request route validation actions
vpls-switchover Perform LDP VPLS pseudowire switchover
[edit]
Based on this documantation page, thare should be security section to request digital CA:
https://www.juniper.net/documentation/en_US/junos15.1/topics/task/configuration/digital-certificatio...
However, it looks like this procedure is more like for SRX platforms - I do not know if this procedure is same for MX 80.
Similar situation is with section where I could configure ipsec-vpn rules in services (following this documentation
http://www.juniper.net/documentation/en_US/junos15.1/topics/example/ipsec-configuring-on-ms-mic.html 😞
admin@MX-80-2-Feve3-Rack-21# set services ips
^
syntax error.
There is not section like this in config. Also - documantaion above descrive pre-shared key usage, not digital CA.
Here issome more details which could help you with investigation:
Services MIC supprts:
admin@MX-80-2-Feve3-Rack-21# run show extension-provider system packages interface ms-0/2/0
Interface: ms-0/2/0
jservices-alg-xlp64 JUNOS Services Application Level Gateway (xlp64) [15.1F2.8]
jservices-jflow-xlp64 JUNOS Services JFLOW PIC package (xlp64) [15.1F2.8]
jservices-nat-xlp64 JUNOS Services NAT PIC package (xlp64) [15.1F2.8]
jservices-rpm-xlp64 JUNOS Services RPM PIC package (xlp64) [15.1F2.8]
jservices-sfw-xlp64 JUNOS Services Stateful Firewall PIC package (xlp64) [15.1F2.8]
How can I make it to work? is there anybody who have had experiane with those service cards?