Junos OS

I factory defaulted a EX3200 switch and ran the ezsetup. I cannot get access to the web ui or cli. I can get to the console and verified the config. I am missing something in the firewall config?

How should you access the device? Through me0 or network ports?

 

Do you have the telnet/ssh/web-management services enabled?

 

Do you see the packets coming in on the switch('monitor traffic interface' should give you this information)?

 

Do you have the correct route back to the host from where you try to access the switch?

 

 

 

=====

If this worked for you please flag my post as an "Accepted Solution" so others can benefit. A kudo would be cool if you think I earned it.

How should you access the device? Through me0 or network ports? Network Ports Do you have the telnet/ssh/web-management services enabled? ssh and web https but enabled http to test Do you see the packets coming in on the switch('monitor traffic interface' should give you this information)? Yes. Do you have the correct route back to the host from where you try to access the switch? Can you expand on this? name-server { 192.168.1.25; 192.168.1.24; } login { message "NOTICE: Unauthorized access to this system is forbidden and will be prosecuted by law. By accessing this system, you agree that your actions may be logged and monitored."; } services { ssh { protocol-version v2; } netconf { ssh; } web-management { http; https { system-generated-certificate; } } } syslog { user * { any emergency; } file messages { any notice; authorization info; } file interactive-commands { interactive-commands any; } } ntp { server 192.168.1.25; }

Can you ping the IP address of the EX from the host from where you are trying to connect to cli/web?

 

What do you have under routing-options? 'show route' what does it give you?

 

 

 

=====

If this worked for you please flag my post as an "Accepted Solution" so others can benefit. A kudo would be cool if you think I earned it.

I think I see the problem is that my routes are all /32 and not /24.

show route

inet.0: 7 destinations, 7 routes (7 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

10.30.10.3/32      *[Local/0] 00:00:06
                      Reject
10.30.101.3/32     *[Local/0] 00:00:06
                      Reject
172.16.11.9/32     *[Local/0] 00:00:06
                      Reject
224.0.0.2/32       *[PIM/0] 00:00:19
                      MultiRecv
224.0.0.5/32       *[OSPF/10] 00:00:20, metric 1
                      MultiRecv
224.0.0.13/32      *[PIM/0] 00:00:19
                      MultiRecv
224.0.0.22/32      *[IGMP/0] 00:00:19
                      MultiRecv

inet6.0: 2 destinations, 2 routes (2 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

Ok, change them to what they should be and try again.

 

 

 

=====

If this worked for you please flag my post as an "Accepted Solution" so others can benefit. A kudo would be cool if you think I earned it.

How do I set these so they don't reject? Is it firewall issue or a routing issue?

My Interfaces for those Vlans say down?

I am not sure why my vlans are down?

 

Show interface Vlans

vlan                    up    up
vlan.1                  up    down inet     10.30.10.3/24
vlan.11                 up    down inet     172.16.11.9/29
vlan.101                up    down inet     10.30.101.3/24

 

show route forwarding-table

Destination        Type RtRef Next hop           Type Index NhRef Netif
default            perm     0                    rjct    36     4
0.0.0.0/32         perm     0                    dscd    34     1
10.30.10.0/24      ifdn     0                    rslv  1287     1 vlan.1
10.30.10.0/32      iddn     0 10.30.10.0         recv  1285     1 vlan.1
10.30.10.3/32      user     0                    rjct    36     4
10.30.10.3/32      intf     0 10.30.10.3         locl  1286     2
10.30.10.3/32      iddn     0 10.30.10.3         locl  1286     2
10.30.10.255/32    iddn     0 10.30.10.255       bcst  1284     1 vlan.1
10.30.101.0/24     ifdn     0                    rslv  1321     1 vlan.101
10.30.101.0/32     iddn     0 10.30.101.0        recv  1295     1 vlan.101
10.30.101.3/32     user     0                    rjct    36     4
10.30.101.3/32     intf     0 10.30.101.3        locl  1320     2
10.30.101.3/32     iddn     0 10.30.101.3        locl  1320     2
10.30.101.255/32   iddn     0 10.30.101.255      bcst  1294     1 vlan.101
172.16.11.8/29     ifdn     0                    rslv  1293     1 vlan.11
172.16.11.8/32     iddn     0 172.16.11.8        recv  1291     1 vlan.11
172.16.11.9/32     user     0                    rjct    36     4
172.16.11.9/32     intf     0 172.16.11.9        locl  1292     2
172.16.11.9/32     iddn     0 172.16.11.9        locl  1292     2
172.16.11.15/32    iddn     0 172.16.11.15       bcst  1290     1 vlan.11

So figured it out that I changed the vlan unit 0 to 1 in my config. So I just changed it back after loading factory default and seeing it work.  Web/SSH seems to be working now.

 

    vlan {
        unit 0 {
            family inet {
                address 10.30.10.3/24;