Ethernet Switching
Highlighted
Ethernet Switching

EX4300 Firewall Filters and Hosting Vlans

‎02-08-2018 10:19 PM

I am currently in a spot where I am trying to figure out the configuration of an EX4300 for my network. I am not sure how to setup the firewall filters to permit the correct traffic to pass in/out of the management port to reach the end points. Each port can only carry one type of traffic (e.i. data, voice, etc.). Each Vlan will only be hosted on this switch and they have helpers on the network.

If anyone is able to provide guidance or configuration examples, that would be greatly appreciated.

(I'm not the greatest at asking technical quesitons yet, so my terminology may be a little off.)

 

NetID - 1.1.1.0/26

Next-hop - 1.1.1.2/30

Management Vlan v1  - 1.1.1.1/30

Data Vlan v2  - 1.1.1.5/28

Voice Vlan v3  - 1.1.1.21/29

Printer Vlan v4  - 1.1.1.29/29

 

Call Manager (Voice tftp)  - 2.1.1.1 and 2.1.1.2

Voice DNS (helpers)  - 1.1.2.1 and 1.1.2.2

Data/Printer DNS (helpers)  - 1.1.2.5 and 1.1.2.6

NTP - 1.1.2.20 (primary) and 1.1.2.21 (secondary)

Need ability to ssh from any endpoint in the 1.1.1.5/28 range

 

example ports:

ge-0/0/0 will be the management port

ge-0/0/5 will be a data only port

ge-0/0/10 will be a voice only port

ge-0/0/15 will be a printer only port

2 REPLIES 2
Highlighted
Ethernet Switching

Re: EX4300 Firewall Filters and Hosting Vlans

‎02-09-2018 07:00 AM

Hi There,

Here are some pointers in setting up the switch:

 

Includes basics set of configuration examples:

https://www.juniper.net/documentation/en_US/junos/information-products/pathway-pages/ex-series/ether...

 

Configuring VLANs & Routed Vlans for EX Series Switches (CLI Procedure)

https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/bridging-vlans-ex-series...

https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/bridging-routed-vlan-int...

 

 

[EX/QFX] How to provide SSH access to specific IP addresses and restrict SSH access to all other IP addresses:

https://kb.juniper.net/InfoCenter/index?page=content&id=KB24764

 

[EX] How to limit SSH login for management to a range of IP address:

https://kb.juniper.net/InfoCenter/index?page=content&id=KB19171

 

What is a Voice VLAN in EX-series switches and how to configure it?

https://kb.juniper.net/InfoCenter/index?page=content&id=KB11062

 

Configuring VLANS and Trunking on the EX-series Switch
https://kb.juniper.net/InfoCenter/index?page=content&id=KB11013

 

 

 

 

 

/Karan Dhanak
Highlighted
Ethernet Switching

Re: EX4300 Firewall Filters and Hosting Vlans

‎02-12-2018 12:46 AM

I will give it a try later this week. I appreciate the assitance.