[j-nsp] config help

Richard Zheng rzheng at gmail.com
Mon Oct 10 12:51:40 EDT 2011 

Most customers are from layer 2 MSANs in several COs. A few are from legacy
ATM based DSLAM. We need to support both Internet and MPLS-VPN customers.
Ideally we can use E-series to build a full blown BRAS network. However
since all customers use static IP address only, we don't need the standard
BRAS components, e.g. PPPoE and DHCP. To simplify the design, we want to use
M7i/M10i and connect them to MSAN directly. For the low traffic and Ethernet
only POPs, we want to use SRX with packet-mode. It should work except the
waste of IP address. Adding an EX would work, but we prefer not to spend
another $10k in the design just to save SIP. Any comment?

On Mon, Oct 10, 2011 at 3:25 AM, Stefan Fouant <
sfouant at shortestpathfirst.net> wrote:

> Haha looks like Robert already responded to you... At least it's nice to
> know I'm not crazy and someone else would give you similar advice... :-b
>
> Stefan Fouant
> JNCIE-SEC, JNCIE-SP, JNCIE-ER, JNCI
> Technical Trainer, Juniper Networks
>
> Follow us on Twitter @JuniperEducate
>
> Sent from my iPad
>
> On Oct 10, 2011, at 9:19 AM, Stefan Fouant <sfouant at shortestpathfirst.net>
> wrote:
>
> > If you are using EX Series, take a look at PVLANs -
> http://www.juniper.net/techpubs/en_US/junos10.0/topics/concept/private-vlans-ex-series.html
> >
> > This allows you to split broadcast domains into separate isolated
> broadcast subdomains to constrain connectivity while at the same time
> keeping devices in the same subnet and thereby reducing your overall IP
> address utilization.
> >
> > HTHs.
> >
> > Stefan Fouant
> > JNCIE-SEC, JNCIE-SP, JNCIE-ER, JNCI
> > Technical Trainer, Juniper Networks
> >
> > Follow us on Twitter @JuniperEducate
> >
> > Sent from my iPad
> >
> > On Oct 10, 2011, at 4:59 AM, Richard Zheng <rzheng at gmail.com> wrote:
> >
> >> Hi,
> >>
> >> Here is our setup. Customer A comes in on vlan 2001, customer B on vlan
> 2002
> >> and etc. We may uses separate subnets for each vlan. However it wastes
> lots
> >> of IPs. Is there a way to use the same subnet, e.g. vlan 2001 uses IP
> >> 10.0.0.10, and vlan 2002 uses IP 10.0.0.11 and 10.0.0.12. How about use
> >> 10.0.0.1/24 as loopback, enable proxy-arp on each vlan, then put a
> filter on
> >> each interface to only allow assigned IP to go through?
> >>
> >> Would this work on M7i/M10i?
> >>
> >> Thanks,
> >> Richard
> >> _______________________________________________
> >> juniper-nsp mailing list juniper-nsp at puck.nether.net
> >> https://puck.nether.net/mailman/listinfo/juniper-nsp
> > _______________________________________________
> > juniper-nsp mailing list juniper-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/juniper-nsp
>

More information about the juniper-nsp mailing list