vSRX
vSRX

brigde and bridge-domain question

‎08-07-2019 01:02 AM

Hi,

 

I have a configuration regarding to apply a simple brigde-options on my lab. Here the configuration.

 

 

set interfaces ge-0/0/0 unit 3 encapsulation vlan-bridge
set interfaces ge-0/0/0 unit 3 vlan-id 3
set interfaces ge-0/0/1 unit 3 encapsulation vlan-bridge
set interfaces ge-0/0/1 unit 3 vlan-id 3
set interfaces ge-0/0/4 unit 0 family bridge interface-mode access
set interfaces ge-0/0/4 unit 0 family bridge vlan-id 3

set bridge-domains br_lab1rstp vlan-id 3
set bridge-domains br_lab1rstp interface ge-0/0/0.3
set bridge-domains br_lab1rstp interface ge-0/0/1.3

 

 

an error occured when try to commit the changes with following error message.

 

 

[edit]
lab@lab-FW1# commit check 
[edit interfaces ge-0/0/4]
  'unit 0'
    Bridge family cannot be configured in route mode or for an interface with inet family
error: configuration check-out failed

 

 

at the same page, I assume that the ge-0/0/4.0 interface has another family configured other than the brigde (in example would "family inet" ) but I have no configure it. Here the detail on ge-0/0/4 configuration.

 

 

lab@lab-FW1# show interfaces ge-0/0/4 | display set 
set interfaces ge-0/0/4 unit 0 family bridge interface-mode access
set interfaces ge-0/0/4 unit 0 family bridge vlan-id 3

 

 

 

What gives?

 

Here the version of vSRX of my lab used.

 

[edit]
lab@lab-FW1# run show version | no-more 
Hostname: lab-FW1
Model: firefly-perimeter
JUNOS Software Release [12.1X47-D20.7]
4 REPLIES 4
vSRX

Re: brigde and bridge-domain question

‎08-07-2019 01:22 AM

Hi,

 

You need to convert the vSRX from route mode to switch/transparent mode.

 

https://kb.juniper.net/InfoCenter/index?page=content&id=KB29803

 

Regards,

 

Rahul

Regards,
Rahul
vSRX

Re: brigde and bridge-domain question

‎08-07-2019 03:16 AM

Hi Rahul,

 

Thanks for reply,

as the link you shown was using J-Web. I have tried but no luck on convertion. It seems my vSRX has configured well for L3 route.

 

Anotasi 2019-08-07 171358.png

 

I aslo tried by using CLI at https://kb.juniper.net/InfoCenter/index?page=content&id=KB31081&cat=SRX1500&actp=LIST , but there is no option for changing the l2-learning global-mode.

 

2) Adjust L2 mode for transparent-bridging: 
set protocols l2-learning global-mode transparent-bridge
[edit]
lab@lab-FW1# set protocols l2-learning global-mode?
No valid completions
[edit]
lab@lab-FW1# set protocols l2-learning global-mode   
                                       ^
syntax error.
lab@lab-FW1# set protocols l2-learning global-mode 

Is there any other options?

vSRX

Re: brigde and bridge-domain question

‎08-07-2019 04:06 AM

Hi,

 

My bad, this is firefly that you are talking about.

Can you share your full configuration?

 

In firefly or version prior to 15.x we only have one way to change from route mode to transparent mode i.e.

 delete the L3 configure and the moment you configure one interface in bridge mode and commit, junos will ask to reboot the box to switch from route to transparent mode.

 

In short, there is some config that is not allowing you to switch from route to trans, please share your config.

 

Regards,

 

Rahul

Regards,
Rahul
Highlighted
vSRX

Re: brigde and bridge-domain question

‎08-07-2019 06:19 AM

Hi,

 

There're two ways to configure layer 2 interfaces on Junos. We call it enterprise sytle and service provider style.

Different platform has different syntax. In your SRX, the syntax looks quite similar to MX, but different from QFX/EX 

What you have configured is enterprise style, you define access/trunk mode for the interface, and you don't need to explicitly put the logical interface into the bridge domain

 

Here's an example of enterprise style BD configuration:

set interfaces ge-1/2/3 flexible-vlan-tagging
set interfaces ge-1/2/3 encapsulation flexible-ethernet-services
set interfaces ge-1/2/3 unit 100 encapsulation vlan-bridge
set interfaces ge-1/2/3 unit 100 family bridge interface-mode trunk
set interfaces ge-1/2/3 unit 100 family bridge vlan-id-list 100
set bridge-domains v100 vlan-id 100

 

Here's an example of service provider style BD configuration

set interfaces ge-0/0/0 encapsulation flexible-ethernet-services
set interfaces ge-0/0/0 flexible-vlan-tagging
set interfaces ge-0/0/0 unit 1 vlan-id 1
set bridge-domains vlan-1 vlan-id 1
set bridge-domains vlan-1 interface ge-0/0/0.1

 

Found this KB, you can follow:

https://kb.juniper.net/InfoCenter/index?page=content&id=KB27291&cat=MX40_1&actp=LIST

 

 

 

 


Mengzhe Hu
JNCIE x 3 (SP DC ENT)