Ethernet Switching
Highlighted
Ethernet Switching

Traffic is flowing which aggregate interfaces?

‎01-06-2015 07:41 PM

Hi all,

I have Aggregate interfaces called ae0 and ae1 on Virtual-chassis. Each one has got 4 connections to SRX HA cluster(active/passive). How can I clearify that the traffic on the Virtual-Chassis to HA is flowing on which one of these  aggregate interfaces(ae0, ae1)?

 

Thanks

Erdal

 

6 REPLIES 6
Highlighted
Ethernet Switching

Re: Traffic is flowing which aggregate interfaces?

[ Edited ]
‎01-06-2015 11:41 PM

Hi,

 

1- If it is layer-3 switch "show arp" will show you the IP address and the MAC of the Primary firewall on ae0 or ae1 

2- If it is layer-2 switch "show ethernet-switching table" will show the MAC address of firewall reth interface received on either ae0 or ae1

3-  "monitor traffic interface ae0 extensive" will show you the traffic transfer from your switch

Regards,
Mohamed Elhariry
2* JNCIE (SEC # 159, SP # 1059),JNCIP-ENT

[Click the "Star" for Kudos if you think I earned it!
If this solution worked for you please flag my post as an "Accepted Solution" so others can benefit..]
Highlighted
Ethernet Switching

Re: Traffic is flowing which aggregate interfaces?

‎01-08-2015 02:41 PM

Thanks for your reply.

 

I performed your ideas that you gave. But how I can understant that coming traffic from ae1 or ae0? Traffic on Virtual-Chassis is going to SRX over ae0. How about coming traffic from SRX? Is it from again ae0? or ae1?.

After searching, I found one shell command that called nhinfo. Have you used this command before? Is it address to my exact solution?

 

 

EE

Thanks

Highlighted
Ethernet Switching

Re: Traffic is flowing which aggregate interfaces?

‎01-08-2015 04:02 PM

Perhaps I am oversimplifying here, but does 'show interfaces ae0' and 'show interfaces ae1' not give you what you need? 

Highlighted
Ethernet Switching

Re: Traffic is flowing which aggregate interfaces?

‎01-08-2015 07:36 PM

No it doesn't.....here that output of sh int ae0:

 

{master:0}
root@EX4200SW-01> show interfaces ae0
Physical interface: ae0, Enabled, Physical link is Up
Interface index: 128, SNMP ifIndex: 791
Description: *** To SRX Firewall ae0 ***
Link-level type: Ethernet, MTU: 1514, Speed: 4Gbps, BPDU Error: None, MAC-REWRITE Error: None, Loopback: Disabled,
Source filtering: Disabled, Flow control: Disabled, Minimum links needed: 1, Minimum bandwidth needed: 0
Device flags : Present Running
Interface flags: SNMP-Traps Internal: 0x0
Current address: 5c:5e:ab:60:19:03, Hardware address: 5c:5e:ab:60:19:03
Last flapped : 2014-10-11 06:25:09 EST (12w6d 08:07 ago)
Input rate : 12626632 bps (1698 pps)
Output rate : 11762376 bps (1626 pps)

Logical interface ae0.0 (Index 65) (SNMP ifIndex 816)
Flags: SNMP-Traps 0x0 Encapsulation: ENET2
Statistics Packets pps Bytes bps
Bundle:
Input : 247509 0 16878330 0
Output: 4981727 0 522237263 0
Protocol eth-switch
Flags: Is-Primary, Trunk-Mode

{master:0}
root@EX4200SW-01>

Highlighted
Ethernet Switching

Re: Traffic is flowing which aggregate interfaces?

‎01-09-2015 01:37 AM
If there is traffic is going on like ping to host from firewall, u can see it by monitor traffic interface ae0
Regards,
Mohamed Elhariry
2* JNCIE (SEC # 159, SP # 1059),JNCIP-ENT

[Click the "Star" for Kudos if you think I earned it!
If this solution worked for you please flag my post as an "Accepted Solution" so others can benefit..]
Highlighted
Ethernet Switching

Re: Traffic is flowing which aggregate interfaces?

‎01-09-2015 02:20 AM

What am I missing here?  Your traffic stats are here:

 

Input rate : 12626632 bps (1698 pps)
Output rate : 11762376 bps (1626 pps)

Traffic is flowing both ways over the ae0 link.  Does ae1 look the same?  If for some reason it does or you still can't figure out which set of aggregated devices the traffic is actually taking, you can ping with the 'detail' option set from either the SRX or the EX VC, which should show you the interface that the ping exits on, assuming your egress interfaces are layer 3:

 

ping <ip> detail

But I'm still not clear as to why 'show interfaces' does not give you what you originally asked for, which was, "traffic on the Virtual-Chassis to HA is flowing on which one of these  aggregate interfaces(ae0, ae1)".

Feedback