[j-nsp] subscriber management not inserting any routes
Andrey Kostin
ankost at podolsk.ru
Mon May 27 16:30:57 EDT 2019
Hi Baldur,
Does this command show anything for you?
mx5-lab-2> show system subscriber-management route
Route: 10.0.255.2/32
Route Type: Local
Next-Hop index: 0
Route: 100.64.1.15/32
Route Type: Access-internal
Interface: demux0.3221225501
Next-Hop index: 707
Route: 2001:db8:ffff::2/128
Route Type: Local
Next-Hop index: 0
Route: x:x:x:x::1a/128
Route Type: Access-internal
Interface: demux0.3221225502
Next-Hop index: 707
Route: fe80::8ae0:f3ff:fe7c:4cc0/128
Route Type: Local
Next-Hop index: 0
My config is different, I'm testing packet-triggered subscribers
feature. In dynamic-profile I have source defined under family. Not sure
if it applies to your case.
interfaces {
demux0 {
unit "$junos-interface-unit" {
demux-options {
underlying-interface "$junos-underlying-interface";
}
family inet {
demux-source {
$junos-subscriber-ip-address;
}
filter {
input "$junos-input-filter";
output "$junos-output-filter";
}
unnumbered-address "$junos-loopback-interface";
}
family inet6 {
filter {
input "$junos-input-ipv6-filter";
output "$junos-output-ipv6-filter";
}
demux-source {
"$junos-subscriber-ipv6-address";
}
unnumbered-address "$junos-loopback-interface";
}
}
}
}
Kind regards,
Andrey Kostin
Baldur Norddahl писал 2019-05-18 11:05:
> Hello
>
> I am having trouble with subscriber management not inserting any
> routes. Information is picked up from radius, such as this:
>
> baldur at interxion-edge1> show subscribers
> Interface IP Address/VLAN ID User
> Name LS:RI
> demux0.3221225472 195.192.249.104 vlan.1970-37
> default:internet
> demux0.3221225473 195.192.249.69 vlan.1970-77
> default:internet
> ...
>
> baldur at interxion-edge1> show interfaces demux0.3221225472
> Logical interface demux0.3221225472 (Index 536870919) (SNMP ifIndex
> 200000007)
> Flags: Up VLAN-Tag [ 0x8100.1970 0x8100.37 ] Encapsulation: ENET2
> Demux:
> Underlying interface: xe-0/1/1 (Index 168)
> Bandwidth: 0
> Input packets : 3342925
> Output packets: 0
> Protocol inet, MTU: 1500
> Max nh cache: 0, New hold nh limit: 0, Curr nh cnt: 0, Curr new
> hold cnt: 0, NH drop cnt: 0
> Flags: Unnumbered
> Donor interface: lo0.1 (Index 329)
> Addresses, Flags: Is-Primary
> Local: 185.24.168.248
>
> baldur at interxion-edge1> show route 195.192.249.104
>
> internet.inet.0: 769284 destinations, 771001 routes (769284 active, 0
> holddown, 0 hidden)
> + = Active Route, - = Last Active, * = Both
>
> 195.192.249.64/26 *[BGP/170] 4w5d 12:58:36, MED 0, localpref 100,
> from 185.24.171.254
> AS path: ?, validation-state: unverified
> > to 10.10.124.2 via xe-0/1/0.0, Push 164140,
> Push 16467(top)
>
> ---
>
> The subscriber interface is receiving packets but never sends anything
> out. Also no route is added although the router seems to be aware of
> the intended subscriber IP address. The route shown above is a /26 to
> another router. I am expecting the subscriber management system to
> override that with a /32 for this specific subscriber.
>
> My setup is like this:
>
> interfaces {
> xe-0/1/1 {
> flexible-vlan-tagging;
> auto-configure {
> stacked-vlan-ranges {
> dynamic-profile Auto-VLAN-Demux {
> accept inet;
> ranges {
> 1970-1970,any;
> }
> access-profile prof1;
> }
> authentication {
> password "$ABC123";
> username-include {
> user-prefix vlan;
> vlan-tags;
> }
> }
> access-profile prof1;
> }
> }
> }
> }
>
> dynamic-profiles {
> Auto-VLAN-Demux {
> routing-instances {
> "$junos-routing-instance" {
> interface "$junos-interface-name";
> }
> }
> interfaces {
> demux0 {
> unit "$junos-interface-unit" {
> demux-source inet;
> demux {
> inet {
> address source;
> auto-configure {
> address-ranges {
> dynamic-profile DHCP-IP-Demux {
> network 0.0.0.0/0;
> }
> authentication {
> password ABC123;
> username-include {
> user-prefix ip;
> interface-name;
> source-address;
> }
> }
> }
> }
> }
> }
> vlan-tags outer "$junos-stacked-vlan-id" inner
> "$junos-vlan-id";
> demux-options {
> underlying-interface
> "$junos-underlying-interface";
> }
> family inet {
> unnumbered-address lo0.1;
> }
> }
> }
> }
> }
> }
>
> ---
>
> What am I missing here? I have tried a ton of stuff but never
> succeeded in getting any outgoing packets towards the subscriber.
>
> Regards,
>
> Baldur
>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
--
С уважением,
Андрей Костин
http://mx-sport.ru/
More information about the juniper-nsp
mailing list