[j-nsp] juniper-nsp Digest, Vol 101, Issue 46

Wed Apr 27 16:21:31 EDT 2011

Hi,
can I block (drop) router advertisemet (RA) only on specific ports in
EX2400 (EX2200) configuration.
The problem is in security, because when any station (PC, notebook)
connected to LAN, starts own (but not official!!!) RA, I thing that this  unoffical RA
will pass throught switch. RA is using icmpv6 port 134. For example some PCs with
Windows OS should generate own unoffical RA.Maybe I can use firewall filter, but this
will generate CPU higher load :-(. Is possible to use another specific conf. command?
Did anyone solve this type of problem in past?
Thanks
Martin Papik

Dne 27.4.2011 18:00, juniper-nsp-request at puck.nether.net napsal(a):
> Send juniper-nsp mailing list submissions to
> 	juniper-nsp at puck.nether.net
>
> To subscribe or unsubscribe via the World Wide Web, visit
> 	https://puck.nether.net/mailman/listinfo/juniper-nsp
> or, via email, send a message with subject or body 'help' to
> 	juniper-nsp-request at puck.nether.net
>
> You can reach the person managing the list at
> 	juniper-nsp-owner at puck.nether.net
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of juniper-nsp digest..."
>
>
> Today's Topics:
>
>     1. msdpc example configs... (OBrien, Will)
>     2. Re: Fan issues with EX4200 unit (Chris Cappuccio)
>     3. hello (kevin.cowell at bt.com)
>     4. output-list for ex4200 (Nick Ryce)
>     5. Re: msdpc example configs... (Peter Krupl)
>     6. Re: output-list for ex4200 (Richard A Steenbergen)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Tue, 26 Apr 2011 13:34:14 -0500
> From: "OBrien, Will"<ObrienH at missouri.edu>
> To: J NSP<juniper-nsp at puck.nether.net>
> Subject: [j-nsp] msdpc example configs...
> Message-ID:<C359EA1E-377D-4570-9DD6-03D66471FA26 at missouri.edu>
> Content-Type: text/plain; charset="us-ascii"
>
> I'm working on building a configuration to support MS-DPCs for netflow (easy) and nat (less easy) using a virtual routing instance to apply nat to specific source networks.
> Does anyone on the list have some configurations that they can share, using the MS-DPC on a MX? I'd like to see some production quality uses to compare with what we generate internally and with what juniper provides.
>
> Thanks!
>
> Will O'Brien
> University of Missouri, DoIT DNPS
> Network Systems Analyst - Redacted
>
> obrienh at missouri.edu
>
>
>
>
>
>
> ------------------------------
>
> Message: 2
> Date: Tue, 26 Apr 2011 13:20:09 -0700
> From: Chris Cappuccio<chris at nmedia.net>
> To: Dave Peters<dave at terabitsystems.com>
> Cc: juniper-nsp at puck.nether.net
> Subject: Re: [j-nsp] Fan issues with EX4200 unit
> Message-ID:<20110426202009.GG3275 at ref.nmedia.net>
> Content-Type: text/plain; charset=us-ascii
>
> call juniper's quality control department!
>
> Dave Peters [dave at terabitsystems.com] wrote:
>> Hey everybody--
>>
>> I've got an EX4200 that won't recognize that one of its fans is
>> spinning.  The same fan works fine in another unit.  In addition, a
>> working replacement fan has the exact same issue (shown below).
>> It's out of warranty, but I thought maybe someone might have seen
>> this before, and could offer a fix.  Thanks much.  Here's the
>> chassis alarm:
>>
>> root>  show chassis alarms
>> 2 alarms currently active
>> Alarm time               Class  Description
>> 2010-11-24 09:33:47 UTC  Major  FPC 0 Fan 1 not spinning
>>
>> {master:0}
>>
>> Appreciate any and all help.
>>
>> -- 
>> Dave Peters
>> Technical Director
>> Terabit Systems
>> 2565 3rd Street  #218
>> San Francisco, CA  94107
>>
>> _______________________________________________
>> juniper-nsp mailing list juniper-nsp at puck.nether.net
>> https://puck.nether.net/mailman/listinfo/juniper-nsp