For Reproduction: Operating Juniper Networks Switches in The Enterprise

Operating Juniper Networks
n
Switches in the Enterprise
io
9.a
ct
du
ro
ep
Lab Diagrams
rR
Fo
ot
N
1194 North Mathilda Avenue

Sunnyvale, CA 94089
USA
408-745-2000
www.juniper.net
Course Number: EDU-JUN-OJXE

Juniper Networks, the Juniper Networks logo, NetScreen, and ScreenOS are registered trademarks of Juniper Networks, Inc. in the United States and other
countries. JUNOS, JUNOSe, and Virtual Chassis are trademarks of Juniper Networks, Inc. All other trademarks, service marks, registered trademarks, or registered
service marks are the property of their respective owners.
Operating Juniper Networks Switches in the Enterprise Lab Diagrams, Revision 9.a
Copyright © 2008, Juniper Networks, Inc.
All rights reserved. Printed in USA.
Revision History:
Revision 9.a—May 2008
The information in this document is current as of the date listed above.
The information in this document has been carefully verified and is believed to be accurate for software Release 9.0R2. Juniper Networks assumes no
responsibilities for any inaccuracies that may appear in this document. In no event will Juniper Networks be liable for direct, indirect, special, exemplary, incidental
or consequential damages resulting from any defect or omission in this document, even if advised of the possibility of such damages.
n
io
ct
Juniper Networks reserves the right to change, modify, transfer or otherwise revise this publication without notice.
du
YEAR 2000 NOTICE
Juniper Networks hardware and software products do not suffer from Year 2000 problems and hence are Year 2000 compliant. The JUNOS software has no
known time-related limitations through the year 2038. However, the NTP application is known to have some difficulty in the year 2036.
SOFTWARE LICENSE
The terms and conditions for using Juniper Networks software are described in the software license provided with the software, or to the extent applicable, in an
ro
agreement executed between you and Juniper Networks, or Juniper Networks agent. By using Juniper Networks software, you indicate that you understand and
agree to be bound by its license terms and conditions. Generally speaking, the software license restricts the manner in which you are permitted to use the Juniper
Networks software, may contain prohibitions against certain uses, and may state conditions under which the license is automatically terminated. You should
consult the software license for further details.
ep
rR
Fo
ot
N
Lab Diagrams
N
ot
FoModule A
(s1,
r Rs2, s3, s4)
ep
Module r odB
(s5, s6, s7, s8)
uc
t io
Note: Be sure you reference the correct diagram for your module.
n
Copyright © 2008 Juniper Networks, Inc. Education Services
Labs 3 and 4: Secondary Configuration and
Operational Monitoring (Module A)
N
ge-0/0/0 on all switches
ot
ge-1/0/2
Fo
ge-1/0/0
vr1-a s1 s2 vr2-a
me0 on all switches
rR
RADIUS server
ep
DHCP server
Mgmt
Switch
Syslog server
ro
du Archival server
ct
ge-1/0/4 ge-1/0/6
vr3-a s3 s4
io vr4-a
n
Note: J2320 with virtual routers is also connected to the management switch. Refer to management
handout for details.
Labs 3 and 4: Secondary Configuration and
Operational Monitoring (Module B)
N
ot
ge-2/0/2
Fo
ge-2/0/0
vr5-a s5 s6 vr6-a
me0 on all switches
rR
RADIUS server
ep
DHCP server
Mgmt
Switch
Syslog server
ro
du Archival server
ct
ge-2/0/4 ge-2/0/6
vr7-a s7 s8
io vr8-a
n
Note: J2320 with virtual routers is also connected to the management switch. Refer to
management handout for details.
Lab 5: Virtual Chassis (Module A)
N
ot
vr1-a
ge-1 /2 vr2-a
/0/0 1/0
ge-
VCEP
Fo
s1 s2 Group 1
vr1-b xe-0/1/0 ge-1/0 vr2-b
ge-1/0/1 /3
rR
Priority = 255 Priority = 254
ep
ro
ge-1/
vr3-a 0 /4 ge-1/0/6 vr4-a
VCEP
du
s3 s4
xe-0/1/0 Group 2
ge-
vr3-b /0/5 1/ 0/
7 vr4-b
ge-1
ct
io
n
Lab 5: Virtual Chassis (Module B)
N
ot
vr5-a
ge-2 /2 vr6-a
/0/0 2/0
ge-
VCEP
Fo
s5 s6 Group 1
vr5-b xe-0/1/0 ge-2/0 vr6-b
ge-2/0/1 /3
rR
Priority = 255 Priority = 254
ep
ro
ge-2/
vr7-a 0 /4 ge-2/0/6 vr8-a
VCEP
du
s7 s8
xe-0/1/0 Group 2
ge-
vr7-b /0/5 2/ 0/
7 vr8-b
ge-2
ct
io
n
Lab 6: Interface Configuration (Module A)
N
Loopback addresses: 192.168.X.Y/32
LAG addresses: 172.18.35.X/30
ot
VR interface addresses: 172.22.X.Y/24

Fo
ge- /2
vr1-a 1/0
/0 ae0.0 1/0 vr2-a
ge-
1.1 ge-0/0/10 - 12 2.1
rR
1.2 s1 s2 2.2
Group 1
vr1-b .1 .2 ge-1/0 vr2-b
ge-1/0/1 /3
ge-0/0/1 on all switches Lo0: 10.1 Lo0: 20.1
ep
ro
du
ge-1/ ae0.0
vr3-a 0 /4 ge-0/0/10 - 12 ge-1/0/6 vr4-a
ct
3.1 s3 s4 4.1
.1 Group 2
3.2 .2
io
ge- 4.2
vr3-b /0/5 1/ 0/
7 vr4-b
ge-1 Lo0: 30.1 Lo0: 40.1
n
Lab 6: Interface Configuration (Module B)
N
Loopback addresses: 192.168.X.Y/32
LAG addresses: 172.18.35.X/30
ot
VR interface addresses: 172.22.X.Y/24

Fo
vr5-a
ge-2
ae0.0 /2 vr6-a
/0/0 2/0
ge-
5.1 ge-0/0/10 - 12 6.1
rR
5.2 s5 s6 6.2
Group 1
vr5-b .1 .2 ge-2/0 vr6-b
ge-2/0/1 /3
ge-0/0/1 on all switches Lo0: 50.1 Lo0: 60.1
ep
ro
du
ge-2/ ae0.0
vr7-a 0 /4 ge-0/0/10 - 12 ge-2/0/6 vr8-a
ct
7.1 s7 s8 8.1
.1 Group 2
7.2 .2
io
ge-
8.2
vr7-b /0/5 2/ 0/
7 vr8-b
ge-2 Lo0: 70.1 Lo0: 80.1
n
Lab 7: Ethernet Switching and VLANs
(Module A)
N
ge-0/0/0 on all switches Group 1
ge- /2
ot
VLAN: v100 vr1-a 1/0
/0 ae0.0 1/0 vr2-a VLAN: v100
ge-
.10 ge-0/0/10 - 12 .20
.20 s1 s2 .10
VLAN: v200 vr1-b Trunk Port VLAN: v200
Fo
ge-1/0/1
ge-1/0
/3 vr2-b
rR
Access Ports
ep
VLAN v100: VID = 100, Subnet = 172.22.100.0/24
VLAN v200: VID = 200, Subnet = 172.22.200.0/24
ro
du
Group 2
ge- 1/ ae0.0
vr3-a 0 /4 ge-0/0/10 - 12 ge-1/0/6 vr4-a
ct
VLAN: v100 VLAN: v100
.10 s3 s4 .20
.20 Trunk Port
io .10
ge-1
/0/5 vr4-b
VLAN: v200 vr3-b ge-1
n
/ 0/ 7 VLAN: v200
Access Ports

Lab 7: Ethernet Switching and VLANs
(Module B)
N
ge- /2
ot
VLAN: v100 vr5-a 2/0
/0 ae0.0 2/0 vr6-a VLAN: v100
ge-
.10 ge-0/0/10 - 12 .20
.20 s5 s6 .10
VLAN: v200 vr5-b Trunk Port VLAN: v200
Fo
ge-2/0/1
ge-2/0
/3 vr6-b
rR
Access Ports
ep
VLAN v100: VID = 100, Subnet = 172.22.100.0/24
VLAN v200: VID = 200, Subnet = 172.22.200.0/24
ro
du
Group 2
ge-2/ ae0.0
vr7-a 0 /4 ge-0/0/10 - 12 ge-2/0/6 vr8-a
ct
VLAN: v100 VLAN: v100
.10 s7 s8 .20
.20 Trunk Port
io .10
ge-
/0/5 vr8-b
2/ 0/
n
7 VLAN: v200
Access Ports

Lab 8, Parts 1–2: Spanning Tree Protocol
(Module A)
N ge-0/0/0 and ge-0/0/1 = Access ports on all switches
ot ge-0/0/10, /11, /13, /14, /16, and /17 = Trunk ports on all switches

ge-1 /2 vr2-a
VLAN: v100 vr1-a /0/0
ge-
1/0 VLAN: v100
.1 .2
Fo
ge-0/0/10 - /11
.1 s1 s2 .2
VLAN: v200 vr1-b ge-1/0/1
ge-1/0
/3 vr2-b VLAN: v200
rR
ep
ge
17 -0
-/
ro /0
ge-0/0/13 - /14
6 /1
ge-0/0/13 - /14
/1 6
/ 0 -/
-0 17
ge
du
g e- 1 /
VLAN: v100 vr3-a 0 /4 ge-1/0/6 vr4-a VLAN: v100
.3 s3 s4 .4
ct
.3 ge-0/0/10 - /11 .4
ge-
/0/5
io 1/ 0/
7 vr4-b VLAN: v200
VLAN v100: VID = 100, Subnet = 172.22.100.0/24

n
VLAN v200: VID = 200, Subnet = 172.22.200.0/24

Lab 8, Parts 1–2: Spanning Tree Protocol
(Module B)
N ge-0/0/0 and ge-0/0/1 = Access ports on all switches
ot ge-0/0/10, /11, /13, /14, /16, and /17 = Trunk ports on all switches

ge-2 /2 vr6-a
VLAN: v100 vr5-a /0/0
ge-
2/0 VLAN: v100
.1 .2
Fo
ge-0/0/10 - /11
.1 s5 s6 .2
ge-2/0
/3 vr6-b VLAN: v200
rR
ep
ge
17 -0
-/
ro /0
ge-0/0/13 - /14
6 /1
ge-0/0/13 - /14
/1 6
/ 0 -/
-0 17
ge
du
g e- 2 /
.3 s7 s8 .4
ct
.3 ge-0/0/10 - /11 .4
ge-
/0/5
io 2/ 0/
7 vr8-b VLAN: v200
VLAN v100: VID = 100, Subnet = 172.22.100.0/24

n
VLAN v200: VID = 200, Subnet = 172.22.200.0/24

Lab 8, Part 3: Spanning Tree Protocol
(Module A)
N MSTI 10 MSTI 20
Bridge Priority = 0
ot Bridge Priority = 0
VLAN: v20
ge-1 /2 vr2-a
vr1-a /0/0
ge-
1/0 VLAN: v20
.1 ge-0/0/10 - /11
.2
Fo
.1 s1 s2 .2
ge-1/0
/3 vr2-b VLAN: v40
rR
ep
MSTI 30 MSTI 40
Bridge Priority = 0 ge
-0
Bridge Priority = 0
17 /0
-/
ro
ge-0/0/13 - /14
6 /1
ge-0/0/13 - /14
/1 6
/ 0 -/
e-0 17
g
du
ge-1/
.3 s3 s4 .4
ge-0/0/10 - /11
ct
.3 .4
ge-
VLAN: v30 vr3-b /0/5 1/ 0/ vr4-b VLAN: v30
ge-1
io 7
VLAN v10: VID = 10, MSTI 10 n
VLAN v20: VID = 20, MSTI 20

(Module B)
N MSTI 50 MSTI 60
Bridge Priority = 0
ot Bridge Priority = 0
VLAN: v60
ge-2 /2 vr6-a
vr5-a /0/0
ge-
2/0 VLAN: v60
.1 ge-0/0/10 - /11
.2
Fo
.1 s5 s6 .2
ge-2/0
/3 vr6-b VLAN: v80
rR
ep
MSTI 70 MSTI 80
Bridge Priority = 0 ge
-0
Bridge Priority = 0
17 /0
-/
ro
ge-0/0/13 - /14
6 /1
ge-0/0/13 - /14
/1 6
/ 0 -/
e-0 17
g
du
ge-2/
.3 s7 s8 .4
ge-0/0/10 - /11
ct
.3 .4
ge-
VLAN: v70 vr7-b /0/5 2/ 0/ vr8-b VLAN: v70
ge-2
io 7
VLAN v50: VID = 50, MSTI 50 n

(Module A)
N
ot
s3 s4 Distribution Layer s1 s2
Fo
rR
4
3
ge
7
ge
/1
/1
-0
-0
/
/
0
0
Primary
/
/
0
ge-0/0/
0
-0
-0
e
e
/ 16
ge-0/0/14
13
/ 17
ge-0/0/1
ge-0/0/1
g
g
ep
Primary ro Primary
s1 s2 Access Layer s3 s4
du
rtg1 rtg2 rtg3 rtg4
ct
io
Redundant Trunk Group Names
n
(Module B)
N
ot
s7 s8 Distribution Layer s5 s6
Fo
rR
4
3
ge
7
ge
/1
/1
-0
-0
/
/
0
0
Primary
/
/
0
ge-0/0/
0
-0
-0
e
e
/ 16
ge-0/0/14
13
/ 17
ge-0/0/1
ge-0/0/1
g
g
ep
Primary ro Primary
s5 s6 Access Layer s7 s8
du
rtg5 rtg6 rtg7 rtg8
ct
io
Redundant Trunk Group Names
n
Lab 9, Parts 1–3: Inter-VLAN Routing
(Module A)
Loopback Address: 192.168.X.Y/32
LAG Addresses: 172.18.35.X/30
N
ot
ge- /2
VLAN: v10 vr1-a 1/0
/0 ae0.0 1/0 vr2-a VLAN: v20
ge-
.5 ge-0/0/10 - 11 .5
.5 s1 s2 .5
Fo
VLAN: v11 vr1-b .1 .2 ge-1/0 vr2-b VLAN: v21
ge-1/0/1 /3
Lo0: 10.1 Lo0: 20.1
rR
VLAN v10: VID = 10, Subnet = 172.22.10.0/24
VLAN v11: VID = 11, Subnet = 172.22.11.0/24
VLAN v20: VID = 20, Subnet = 172.22.20.0/24
ep
VLAN v21: VID = 21, Subnet = 172.22.21.0/24
VLAN v30: VID = 30, Subnet = 172.22.30.0/24
ro
VLAN v31: VID = 31, Subnet = 172.22.31.0/24
VLAN v40: VID = 40, Subnet = 172.22.40.0/24
VLAN v41: VID = 41, Subnet = 172.22.41.0/24
du
Group 2
ct
ae0.0
VLAN: v30 vr3-a
ge-1/
0 /4 ge-0/0/10 - 11
io
ge-1/0/6 vr4-a VLAN: v40
.5 s3 s4 .5 n
.5 .1 .2 .5
Lo0: 40.1 ge-
VLAN: v31 vr3-b /0/5 Lo0: 30.1 1/ 0/ vr4-b VLAN: v41
ge-1 7

Lab 9, Parts 1–3: Inter-VLAN Routing
(Module B)
LAG Addresses: 172.18.35.X/30
N
ot
ge- /2
VLAN: v50 vr5-a 2/0
/0 ae0.0 2/0 vr6-a VLAN: v60
ge-
.5 ge-0/0/10 - 11 .5
.5 s5 s6 .5
Fo
VLAN: v51 vr5-b .1 .2 ge-2/0 vr6-b VLAN: v61
ge-2/0/1 /3
Lo0: 50.1 Lo0: 60.1
rR
VLAN v50: VID = 50, Subnet = 172.22.50.0/24
VLAN v51: VID = 51, Subnet = 172.22.51.0/24
VLAN v60: VID = 60, Subnet = 172.22.60.0/24
ep
VLAN v61: VID = 61, Subnet = 172.22.61.0/24
VLAN v70: VID = 70, Subnet = 172.22.70.0/24
ro
VLAN v71: VID = 71, Subnet = 172.22.71.0/24
VLAN v80: VID = 80, Subnet = 172.22.80.0/24
VLAN v81: VID = 81, Subnet = 172.22.81.0/24
du
Group 2
ct
ae0.0
VLAN: v70 vr7-a
ge-2/
0 /4 ge-0/0/10 - 11
io
ge-2/0/6 vr8-a VLAN: v80
.5 s7 s8 .5 n
.5 .1 .2 .5
Lo0: 80.1 ge-
VLAN: v71 vr7-b /0/5 Lo0: 70.1 2/ 0/ vr8-b VLAN: v81
ge-2 7

Lab 9, Part 4: Inter-VLAN Routing
(Module A)
Virtual Router Addresses: 172.22.X.5/24 (X = VLAN-id value)
N
Interface Addresses: 172.18.X.Y/30
ot
ge- /2
Fo
VLAN: v10 vr1-a 1/0
/0 Lo0: 10.1 Lo0: 20.1 1/0 vr2-a VLAN: v20
ge-
ge-0/0/10
s1 s2
VLAN: v11 vr1-b 10.1 10.2 vr2-b VLAN: v21
rR
ge-1/0
ge-1/0/1 /3
30.2
20.1
ep
OSPF ro
Area 0
ge-0/0/13
ge-0/0/13
du
30.1
20.2
ge-1/
40.2 40.1
ct
s3 s4
ge-0/0/10
5
io
ge-
VLAN: v31 vr3-b /0/ Lo0: 30.1 Lo0: 40.1 1/ 0/
7 vr4-b VLAN: v41
ge-1 n
(Module B)
Virtual Router Addresses: 172.22.X.5/24 (X = VLAN-id value)
N
ot
ge- /2
Fo
VLAN: v50 vr5-a 2/0
/0 Lo0: 50.1 Lo0: 60.1 2/0 vr6-a VLAN: v60
ge-
ge-0/0/10
s5 s6
VLAN: v51 vr5-b 50.1 50.2 vr6-b VLAN: v61
rR
ge-2/0
ge-2/0/1 /3
70.2
60.1
ep
OSPF ro
Area 0
ge-0/0/13
ge-0/0/13
du
70.1
60.2
ge-2/
80.2 80.1
ct
s7 s8
ge-0/0/10
5
io
ge-
VLAN: v71 vr7-b /0/ Lo0: 70.1 Lo0: 80.1 2/ 0/
7 vr8-b VLAN: v81
ge-2 n
(Module A)
Virtual IP Address: 172.22.X.1/24 (X = VRRP group value)
N
Layer 3 VLAN Interface Address: 172.22.X.Y/24
ge-0/0/5 Interface Address: 172.30.0.X/24
Internet Gateway: 172.30.0.1 Layer 3 VLAN interface address details
ot
VRRP Priority
s1: 110
Fo
s2: 90 ge-0/0/15
s1
s3: 110 .10 Access Switch
10.2
s4: 90
VLAN: v10
rR
VRRP Group 10 vr10
VID: 10
10.3
172.22.10.100
.20 s2 ge-0/0/18 Gateway = 172.22.10.1
ep
Internet ro
Host Address: 172.29.100.1
du
.30 s3 ge-0/0/16
Access Switch
20.2
ct
VLAN: v20
VRRP Group 20 vr20
VID: 20
20.3
io
.40 n 172.22.20.100
s4 ge-0/0/15 Gateway = 172.22.20.1

(Module B)
Virtual IP Address: 172.22.X.1/24 (X = VRRP group value)
N
Internet Gateway: 172.30.0.1 Layer 3 VLAN interface address details
ot
VRRP Priority
s5: 110
Fo
s6: 90 ge-0/0/15
s5
s7: 110 .50 Access Switch
30.2
s8: 90
VLAN: v30
rR
VRRP Group 30 vr30
VID: 30
30.3
172.22.30.100
.60 s6 ge-0/0/18 Gateway = 172.22.30.1
ep
Internet ro
du
.70 s7 ge-0/0/16
Access Switch
40.2
VLAN: v40
ct
VRRP Group 40 vr40 VID: 40
40.3
io
.80 n 172.22.40.100
s8 ge-0/0/15 Gateway = 172.22.40.1

Lab 10: Routing Policy and Firewall Filters
(Module A)
N
Static Routes:
10.10.10.0/24
10.10.11.0/24
ot
10.10.12.0/24
ge- /2
VLAN: v10 vr1-a 1/0
/0 Lo0: 10.1 Lo0: 20.1 1/0 vr2-a VLAN: v20
ge-
.5 ge-0/0/10 .5
Fo
.5 s1 s2 .5
VLAN: v11 vr1-b 10.1 10.2 ge-1/0 vr2-b VLAN: v21
ge-1/0/1 /3
rR
30.2
20.1
Static Routes: Static Routes:
OSPF 10.10.20.0/24
ep
10.10.30.0/24
10.10.31.0/24 10.10.21.0/24
10.10.32.0/24
Area 0 10.10.22.0/24
ge-0/0/13
ge-0/0/13
ro
30.1
20.2
du
ge-1/
.5 40.2 40.1 .5
s3 s4
.5 ge-0/0/10 .5
ct
ge -
VLAN: v31 vr3-b /0/5 Lo0: 30.1 Lo0: 40.1 1/ 0/
7 vr4-b VLAN: v41
ge-1
Static Routes:
io
10.10.40.0/24
10.10.41.0/24
n
10.10.42.0/24

Lab 10: Routing Policy and Firewall Filters
(Module B)
N
Static Routes:
10.10.50.0/24
10.10.51.0/24
ot
10.10.52.0/24
ge- /2
VLAN: v50 vr5-a 2/0
/0 Lo0: 50.1 Lo0: 60.1 2/0 vr6-a VLAN: v60
ge-
.5 ge-0/0/10 .5
Fo
.5 s5 s6 .5
VLAN: v51 vr5-b 50.1 50.2 ge-2/0 vr6-b VLAN: v61
ge-2/0/1 /3
rR
70.2
60.1
Static Routes: Static Routes:
OSPF 10.10.60.0/24
ep
10.10.70.0/24
10.10.71.0/24 10.10.61.0/24
10.10.72.0/24
Area 0 10.10.62.0/24
ge-0/0/13
ge-0/0/13
ro
70.1
60.2
du
ge-2/
.5 80.2 80.1 .5
s7 s8
.5 ge-0/0/10 .5
ct
ge -
VLAN: v71 vr7-b /0/5 Lo0: 70.1 Lo0: 80.1 2/ 0/
7 vr8-b VLAN: v81
ge-2
Static Routes:
io
10.10.80.0/24
10.10.81.0/24
n
10.10.82.0/24

Lab 11: Switching Security (Module A)
N NOTE: The ge-0/0/0, ge-0/0/1, and ge-0/0/5
interfaces should be configured as access ports
and associated with VLAN v100 (VLAN-id 100)
ot
ge- /2
vr1-a 1/0
/0 1/0 vr2-a
ge-
Fo
s1 s2
vr1-b ge-1/0/1
ge-1/0
/3 vr2-b
rR

ep
g e- 1 /
vr3-a 0 /4 ge-1/0/6 vr4-a
ro
s3 s4
ge-
vr3-b /0/5 1/ 0/
7 vr4-b
ge-1
du
ct
io
DHCP/RADIUS Server
172.28.15.1/24 User PC
n
Shared Secret: JuNiPeR! 172.28.15.2/24

Lab 11: Switching Security (Module B)
N NOTE: The ge-0/0/0, ge-0/0/1, and ge-0/0/5
interfaces should be configured as access ports
and associated with VLAN v100 (VLAN-id 100)
ot
ge- /2
vr5-a 2/0
/0 2/0 vr6-a
ge-
Fo
s5 s6
vr5-b ge-2/0/1
ge-2/0
/3 vr6-b
rR

ep
g e- 2 /
vr7-a 0 /4 ge-2/0/6 vr8-a
ro
s7 s8
ge-
vr7-b /0/5 2/ 0/
7 vr8-b
ge-2
du
ct
io
DHCP/RADIUS Server
172.28.15.1/24 User PC
n
Shared Secret: JuNiPeR! 172.28.15.2/24

Lab 12: IP Telephony Services (Module A)
N
ge-0/0/0 – ge-0/0/7
on all switches
ot
Fo
Powered ge-0/0/10 Powered
Devices s1 s2
Devices
rR
ep
ro
ge-0/0/13
ge
ge-0/0/13
6 -0
0/1 /0
0/ /1
e- 6
g
du
Powered Powered
ct
s3 s4
Devices ge-0/0/10 Devices
io
n
Lab 12: IP Telephony Services (Module B)
N
ge-0/0/0 – ge-0/0/7
on all switches
ot
Fo
Powered ge-0/0/10 Powered
Devices s5 s6
Devices
rR
ep
ro
ge-0/0/13
ge
ge-0/0/13
6 -0
0/1 /0
0/ /1
e- 6
g
du
Powered Powered
ct
s7 s8
Devices ge-0/0/10 Devices
io
n
Lab 13: Design and Implementation
(Module A)
Virtual IP Address: 172.22.X.1 (X = VRRP group value)
N
DHCP Client
ge-0/0/0 on s3 and s4 Gateway = 172.22.10.1
Internet Gateway: 172.30.0.1
ot
Bridge Priority VLAN: v10
/0/4 vr10-a
s1: 4k ge-1 VID: 10
s2: 8k s3
Fo
s3, s4: 32k ae0 /14
- VLAN: v20
0 /0 /1 3 ge-1
/0 vr20-a
g e- /5 VID: 20
7
1 /1 DHCP Client
rR
.10 s1 -
ae 16
Gateway = 172.22.20.1
/0/
Internet -0
ge
ep
ge
xe-0/1/0
- 0/ ae
ro 0/ 1 DHCP Client
16
.20 s2 -/ Gateway = 172.22.10.1
17
VLAN: v10
du
a e- 1 /0/6 vr10-b
ge-0/ e0 g VID: 10
ge-0/0/5 on s1 and s2 0/13
- /14 s4
ct
ge-1
/0 VLAN: v20
/7 vr20-b
VRRP Priority Values L3 VLAN interface
io VID: 20
s1: 110 (group 10 and 20) s1: vlan.10 = 10.2 ge-0/0/1 on s3 and s4 n DHCP Client
s2: 90 (group 10 and 20) s1: vlan.20 = 20.2 Gateway = 172.22.20.1
s2: vlan.10 = 10.3
s2: vlan.20 = 20.3

Lab 13: Design and Implementation
(Module B)
Virtual IP Address: 172.22.X.1 (X = VRRP group value)
N
DHCP Client
ot
Bridge Priority VLAN: v30
/0/4 vr30-a
s5: 4k ge-2 VID: 30
s6: 8k s7
Fo
s7, s8: 32k ae0 /14
- VLAN: v40
0 /0 /1 3 ge-2
/0 vr40-a
g e- /5 VID: 40
7
1 /1 DHCP Client
rR
.50 s5 -
ae 16
Gateway = 172.22.40.1
/0/
Internet -0
ge
ep
ge
xe-0/1/0
- 0/ ae
ro 0/ 1 DHCP Client
16
.60 s6 -/ Gateway = 172.22.30.1
17
VLAN: v30
du
a e- 2 /0/6 vr30-b
ge-0/ e0 g VID: 30
ge-0/0/5 on s5 and s6 0/13
- /14 s8
ct
ge-2
/0 VLAN: v40
/7 vr40-b
VRRP Priority Values L3 VLAN interface
io VID: 40
s5: 110 (group 30 and 40) s5: vlan.30 = 30.2 ge-0/0/1 on s7 and s8 n DHCP Client
s6: 90 (group 30 and 40) s5: vlan.40 = 40.2 Gateway = 172.22.40.1
s6: vlan.30 = 30.3
s6: vlan.40 = 40.3

Lab 13: Virtual Chassis Implementation
(Module A)
N
ge-0/0/5 Interface Address: 172.30.0.10/24
DHCP Client
ot
s1 member ID: 0 VLAN: v10
/0/4 vr10-a
s1 mastership-priority: 255 ge-1 VID: 10
s3
Fo
ge-0/0/5 virtual
ae0 /14
- VLAN: v20
chassis 0 /0 /1 3 ge-1
/0 vr20-a
ge- /5 VID: 20
17
-/
DHCP Client
rR
.10 s1 /16
0 Gateway = 172.22.20.1
0 - 0/
ae ge
Internet
ep
Host Address: 172.29.100.1 17
-/ g
16 e-
/ 0/ ae
vcp-255/1/0
0
/
ro 0/ 1 DHCP Client
e -1 16
g Gateway = 172.22.10.1
.20 s2 -/
17
VLAN: v10
du
/0/6 vr10-b
ge-1/
0ae1 ge-1 VID: 10
ge-1/0/5 /13 -
/14 s4
ge-0/
ct
0/13
- /14 ge-1
/0 VLAN: v20
/7 vr20-b VID: 20
L3 VLAN interface
io
vlan.10 = 10.1 ge-0/0/1 on s3 and s4 n DHCP Client
vlan.20 = 20.1 Gateway = 172.22.20.1

Lab 13: Virtual Chassis Implementation
(Module B)
N
DHCP Client
ot
s5 member ID: 0 VLAN: v30
/0/4 vr30-a
s5 mastership-priority: 255 ge-2 VID: 30
s3
Fo
ge-0/0/5 virtual
ae0 /14
- VLAN: v40
chassis 0 /0 /1 3 ge-2
/0 vr40-a
ge- /5 VID: 40
17
-/
DHCP Client
rR
.50 s5 /16
0 Gateway = 172.22.40.1
0 - 0/
ae ge
Internet
ep
Host Address: 172.29.100.1 17
-/ g
16 e-
/ 0/ ae
vcp-255/1/0
0
/
ro 0/ 1 DHCP Client
e -1 16
g Gateway = 172.22.30.1
.60 s6 -/
17
VLAN: v30
du
/0/6 vr30-b
ge-1/
0ae1 ge-2 VID: 30
ge-1/0/5 /13 -
/14 s4
ge-0/
ct
0/13
- /14 ge-2
/0 VLAN: v40
/7 vr40-b VID: 40
L3 VLAN interface
io
vlan.30 = 30.1 ge-0/0/1 on s7 and s8 n DHCP Client
vlan.40 = 40.1 Gateway = 172.22.40.1

For Reproduction: Operating Juniper Networks Switches in The Enterprise

Uploaded by

Copyright:

Available Formats

You might also like

For Reproduction: Operating Juniper Networks Switches in The Enterprise

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

For Reproduction: Operating Juniper Networks Switches in The Enterprise

Uploaded by

Copyright:

Available Formats

Operating Juniper Networks

1194 North Mathilda Avenue

Course Number: EDU-JUN-OJXE

ge-0/0/0 on all switches

ge-0/0/0 on all switches

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

ge-0/0/0 on all switches

VLAN v100: VID = 100, Subnet = 172.22.100.0/24

Copyright © 2008 Juniper Networks, Inc. Education Services

ge-0/0/0 on all switches

VLAN v100: VID = 100, Subnet = 172.22.100.0/24

Copyright © 2008 Juniper Networks, Inc. Education Services

ge-0/0/0 on all switches

Copyright © 2008 Juniper Networks, Inc. Education Services

ge-0/0/0 on all switches

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

ge-0/0/5 on all switches

Copyright © 2008 Juniper Networks, Inc. Education Services

ge-0/0/5 on all switches

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

Copyright © 2008 Juniper Networks, Inc. Education Services

You might also like