http://m.getsatisfaction.com/companies/cumulus/topics?page=1 Topics in Cumulus Networks® 1970-01-01T00:00:00Z 526 347 27 63 0 72 http://m.getsatisfaction.com/topics/7457079 7457079 mtr-tiny not in CL 3.x repositories 2017-07-21T22:39:30Z 2017-02-16T20:26:52Z Ian Clark http://m.getsatisfaction.com/people/7770671 https://www.gravatar.com/avatar/f7d787848b9f16b0a04742c2c9af3cc5?d=identicon&s=55&r=PG ian_clark_7464224 I can't seem to find any mtr package in the 3.x repositories. &nbsp;The mtr-tiny package is even used in CL documentation here: <a href="https://docs.cumulusnetworks.com/display/DOCS/Using+sudo+to+Delegate+Privileges" rel="nofollow" title="Link: https://docs.cumulusnetworks.com/display/DOCS/Using+sudo+to+Delegate+Privileges">https://docs.cumulusnetworks.com/display/DOCS/Using+sudo+to+Delegate+Privileges</a>.<br /><br />Can this be brought into the 3.x repos? problem 10 6 1 comment http://m.getsatisfaction.com/topics/7558736 7558736 ECMP hash algorithm inquiry 2017-07-21T14:03:33Z 2017-07-20T10:53:14Z Lei Zhang http://m.getsatisfaction.com/people/8939325 https://www.gravatar.com/avatar/d879725ce56b4e0a2355531464f9ddda?d=identicon&s=55&r=PG lei_zhang_e2es26z76b6n8 Hi Folks,<br /><br />I was testing the bond ECMP, and the load sharing behavior and factors. According to the Docs and the output of cat /proc/net/bonding/bondx output, it shows that hash is based on layer3+4. <br /><br />Then I tested the traffic with different DMAC addresses and same layer3 and layer4 factors. In that, I was expecting no load-sharing in the bond.&nbsp; <br /><br />But the result is that only Dmac change could also achieve load balance on the usable paths.<br /><br />And the more samples of the traffic (mac address varies more but keeps the layer 3 and 4 info consistent), the better even result we got. <br /><br />This makes me believe that the Hash algorithm may involve more factors than the docs mentioned. <br /><br />e.g,&nbsp; incoming port id? &nbsp; or other factors that not elaborated on the Doc...<br /><br />I appreciate Cumulus Gurus could share me more on the topic. <br /><br />Regards<br />Paul question 3 3 1 comment http://m.getsatisfaction.com/topics/7556658 7556658 mac flapping supported ? 2017-07-21T09:32:22Z 2017-07-17T13:21:39Z Lei Zhang http://m.getsatisfaction.com/people/8939325 https://www.gravatar.com/avatar/d879725ce56b4e0a2355531464f9ddda?d=identicon&s=55&r=PG lei_zhang_e2es26z76b6n8 Hi Cumulus Veterans <br /><br />One quick question: <br /><br />if Cumulus support features of "mac-address flapping detection "&nbsp; or mac address flapping regarding knobs?<br /><br />I appriciate your reply.<br /><br />Thanks and Regards<br />Paul question 2 2 1 comment http://m.getsatisfaction.com/topics/7556648 7556648 Multiple arp replies comming but failed to learn and install on Cumulus 2017-07-21T09:12:48Z 2017-07-17T13:05:45Z Lei Zhang http://m.getsatisfaction.com/people/8939325 https://www.gravatar.com/avatar/d879725ce56b4e0a2355531464f9ddda?d=identicon&s=55&r=PG lei_zhang_e2es26z76b6n8 I am testing the arp migration capability on Cumulus. <br /><br />what I have tested:<br /><br /><br />The topology&nbsp;&nbsp; TC1(arp reply generator)------------------(SWP50)DUT(cumulus) <br /><br />The arp reply initiate from the TC1 and all those Arp packet can be captured on the incoming port, but the problem is the device failed to learn those arp update. Below is what I captured. <br /><br />Thanks and regards<br />Paul<br /><br /> <br /><br /> <br />root@sw248:/etc/cumulus# tcpdump -i swp50 <br />tcpdump: verbose output suppressed, use -v or -vv for full protocol decode <br />listening on swp50, link-type EN10MB (Ethernet), capture size 262144 bytes <br />10:12:05.070269 ARP, Reply 12.12.12.59 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.080200 ARP, Reply 12.12.12.60 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.090277 ARP, Reply 12.12.12.61 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.100266 ARP, Reply 12.12.12.62 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.110212 ARP, Reply 12.12.12.63 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.120267 ARP, Reply 12.12.12.64 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.130292 ARP, Reply 12.12.12.65 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.140208 ARP, Reply 12.12.12.66 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.150295 ARP, Reply 12.12.12.67 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.160274 ARP, Reply 12.12.12.68 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.170276 ARP, Reply 12.12.12.69 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.180269 ARP, Reply 12.12.12.70 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.190281 ARP, Reply 12.12.12.71 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.200272 ARP, Reply 12.12.12.72 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.210271 ARP, Reply 12.12.12.73 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.220273 ARP, Reply 12.12.12.74 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.230274 ARP, Reply 12.12.12.75 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.240267 ARP, Reply 12.12.12.76 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.250268 ARP, Reply 12.12.12.77 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.260268 ARP, Reply 12.12.12.78 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.270278 ARP, Reply 12.12.12.79 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.280268 ARP, Reply 12.12.12.80 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.290277 ARP, Reply 12.12.12.81 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.300268 ARP, Reply 12.12.12.82 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.310276 ARP, Reply 12.12.12.83 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.320274 ARP, Reply 12.12.12.84 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.330268 ARP, Reply 12.12.12.85 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.340260 ARP, Reply 12.12.12.86 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.350269 ARP, Reply 12.12.12.87 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.360269 ARP, Reply 12.12.12.88 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.370278 ARP, Reply 12.12.12.89 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.380268 ARP, Reply 12.12.12.90 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.390277 ARP, Reply 12.12.12.91 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.400263 ARP, Reply 12.12.12.92 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.410279 ARP, Reply 12.12.12.93 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.420275 ARP, Reply 12.12.12.94 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.430251 ARP, Reply 12.12.12.95 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.440252 ARP, Reply 12.12.12.96 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.450171 ARP, Reply 12.12.12.97 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.460255 ARP, Reply 12.12.12.98 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.470263 ARP, Reply 12.12.12.99 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.480250 ARP, Reply 12.12.12.100 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />10:12:05.490253 ARP, Reply 12.12.12.101 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br />^C10:12:05.500246 ARP, Reply 12.12.12.102 is-at 00:00:00:ff:66:d0 (oui Ethernet), length 56 <br /> <br />44 packets captured <br />44 packets received by filter <br />0 packets dropped by kernel <br />root@sw248:/etc/cumulus# ip addr show swp50 <br />53: swp50: &lt;BROADCAST,MULTICAST,UP,LOWER_UP&gt; mtu 1500 qdisc pfifo_fast state UP group default qlen 500 <br />link/ether 7c:fe:90:ff:54:d2 brd ff:ff:ff:ff:ff:ff <br />inet 12.12.12.1/24 scope global swp50 <br />valid_lft forever preferred_lft forever <br />inet6 fe80::7efe:90ff:feff:54d2/64 scope link <br />valid_lft forever preferred_lft forever <br />root@sw248:/etc/cumulus# arp -a <br />? (13.13.13.2) at 00:00:6d:85:5d:ec [ether] on swp51 <br />? (10.12.69.247) at 24:8a:07:09:77:14 [ether] on eth0 <br />? (10.12.69.2) at 98:e7:f4:f2:1f:ba [ether] on eth0 <br />? (11.1.1.2) at 00:00:6d:85:19:02 [ether] on swp49 <br /><a href="http://9NLDOX2EDJS75HE.mshome.net" rel="nofollow" target="_blank">9NLDOX2EDJS75HE.mshome.net</a> (10.12.69.1) at b8:88:e3:f8:e8:b7 [ether] on eth0 <br />? (12.12.12.2) at 00:00:6d:85:5d:eb [ether] on swp50 <br />root@sw248:/etc/cumulus# ip neighbor show <br />13.13.13.2 dev swp51 lladdr 00:00:6d:85:5d:ec STALE <br />10.12.69.247 dev eth0 lladdr 24:8a:07:09:77:14 STALE <br />10.12.69.2 dev eth0 lladdr 98:e7:f4:f2:1f:ba REACHABLE <br />11.1.1.2 dev swp49 lladdr 00:00:6d:85:19:02 STALE <br />10.12.69.1 dev eth0 lladdr b8:88:e3:f8:e8:b7 REACHABLE <br />12.12.12.2 dev swp50 lladdr 00:00:6d:85:5d:eb STALE <br />fe80::e578:1782:48db:cf17 dev eth0 lladdr 98:e7:f4:f2:1f:ba STALE <br />fe80::16:32f3:b743:bf2e dev eth0 lladdr b8:88:e3:f8:e8:b7 router STALE <br />fe80::254c:cc70:9a3b:b9e7 dev eth0 lladdr d4:81:d7:bf:6c:be STALE question 3 3 1 comment http://m.getsatisfaction.com/topics/7558690 7558690 Error: could not find a distribution template for Cumulus Linux/jessie 2017-07-21T06:13:13Z 2017-07-20T09:11:31Z Stefan Marold http://m.getsatisfaction.com/people/9198907 https://www.gravatar.com/avatar/b2a74aa1c88aeb7959e1ff370acbaa34?d=identicon&s=55&r=PG stefan_marold <p>I followed the instructions at <a href="https://github.com/CumulusNetworks/cldemo-automation-ansible" rel="nofollow" target="_blank">https://github.com/CumulusNetworks/cldemo-automation-ansible</a> but when it comes to command 'sudo apt-add-repository ppa:ansible/ansible -y' I get the following error:</p><br /><br /><p>cumulus@oob-mgmt-server:~$ sudo apt-add-repository ppa:ansible/ansible -y<br /><br />Traceback (most recent call last):<br /><br /> File "/usr/bin/apt-add-repository", line 167, in &lt;module&gt; <br /> sp = SoftwareProperties(options=options) <br /> File "/usr/lib/python3/dist-packages/softwareproperties/SoftwareProperties.py", line 105, in __init__ <br /> self.reload_sourceslist() <br /> File "/usr/lib/python3/dist-packages/softwareproperties/SoftwareProperties.py", line 595, in reload_sourceslist <br /> self.distro.get_sources(self.sourceslist) <br /> File "/usr/lib/python3/dist-packages/aptsources/distro.py", line 89, in get_sources <br /> (self.id, self.codename)) <br />aptsources.distro.NoDistroTemplateException: Error: could not find a distribution template for Cumulus Linux/jessie</p> <p>regards <br />Stefan</p> problem 3 3 1 comment http://m.getsatisfaction.com/topics/7556134 7556134 arp ageing test 2017-07-20T03:39:04Z 2017-07-16T10:41:17Z Lei Zhang http://m.getsatisfaction.com/people/8939325 https://www.gravatar.com/avatar/d879725ce56b4e0a2355531464f9ddda?d=identicon&s=55&r=PG lei_zhang_e2es26z76b6n8 <p>According to the page below link directing to, there is no absolute timer for the arp ageing, rather it is a random timer targeting in the range interval between [<b>base_reachable_time_ms</b>/2] and [3*<b>base_reachable_time_ms</b>/2].</p><br /> <p>And <b>base_reachable_time_ms</b> can be altered. &nbsp;</p> <p>&nbsp;</p> <p><a href="https://support.cumulusnetworks.com/hc/en-us/articles/202012933-Changing-ARP-timers-in-Cumulus-Linux" rel="nofollow" target="_blank" title="Link https//supportcumulusnetworkscom/hc/en-us/articles/202012933-Changing-ARP-timers-in-Cumulus-Linux">https://support.cumulusnetworks.com/hc/en-us/articles/202012933-Changing-ARP-timers-in-Cumulus-Linux</a></p> <p>&nbsp;</p> <p>According to the page, I changed the default base_reachable_time_ms on Cumulus 3.3.2 to 120000 for simplicity and saving time.</p> <p>&nbsp;</p> <p>cumulus@switch:~$ sudo bash -c "echo 1200000 &gt; /proc/sys/net/ipv4/neigh/default/base_reachable_time_ms"<br />cumulus@switch:~$ sudo bash -c "for int in /proc/sys/net/ipv4/neigh/swp*; do echo 1200000 &gt; $int/base_reachable_time_ms; done"\</p> <p>&nbsp; </p><p>I was expecting to see the status turning to stale less than 30 mins per the article. &nbsp;But after 50 mins, I still see the same ip neigh show table.&nbsp;</p> <p>&nbsp;</p> <p><b>Before: </b></p> <p>root@dut-1:/home/cumulus# ip neighbor show</p> <p>23.23.23.3 dev swp2 lladdr 00:0c:29:ae:24:35 REACHABLE</p> <p><b>12.12.12.3 dev swp1 lladdr 00:0c:29:ae:24:2b REACHABLE&nbsp;&nbsp; =============this is a port ip address connected to the interface swp1, and I remove ip address 12.12.12.3 from the remote host and waiting for the arp item aging out. </b></p> <p><b>1</b>92.168.1.1 dev eth0 lladdr c0:ff:d4:93:0f:2f REACHABLE</p> <p>12.12.12.1 dev swp1 lladdr 00:0c:29:bc:62:40 REACHABLE</p> <p>192.168.1.91 dev eth0 lladdr e4:a7:a0:a2:ac:bf REACHABLE</p> <p>&nbsp;</p> <p>&nbsp;<b>50 minutes later: </b></p> <p>root@dut-1:/home/cumulus# ip -s neighbor show</p> <p>23.23.23.3 dev swp2 lladdr 00:0c:29:ae:24:35 ref 1 used 17493/1/33 probes 4 REACHABLE</p> <p>12.12.12.3 dev swp1 lladdr 00:0c:29:ae:24:2b ref 1 used 2470/2470/3424 probes 0 REACHABLE&nbsp; ====&gt; this item is still existing and REACHABLE.</p> <p>192.168.1.1 dev eth0 lladdr c0:ff:d4:93:0f:2f ref 1 used 14764/1065/235 probes 4 REACHABLE</p> <p>12.12.12.1 dev swp1 lladdr 00:0c:29:bc:62:40 ref 1 used 20875/1/133 probes 4 REACHABLE</p> <p>192.168.1.91 dev eth0 lladdr e4:a7:a0:a2:ac:bf ref 1 used 14966/0/22 probes 4 REACHABLE</p> <p>root@dut-1:/home/cumulus#</p> <p>&nbsp;</p> <p>Please help to clarify this.</p> Paul question 6 5 1 comment http://m.getsatisfaction.com/topics/7552770 7552770 Cumulus VX - 2 Spine 2 Leaf demo - ping not working 2017-07-17T17:59:42Z 2017-07-10T21:11:50Z RichardD http://m.getsatisfaction.com/people/9182340 https://www.gravatar.com/avatar/4951a97eb667aefcb4cb3d83b28c89c6?d=identicon&s=55&r=PG richard_dering Running Cumulus VX &nbsp;3.3.2 on a Ubuntu 14.04 server install.<br />Virtualbox is installed. Worked through the demos in the Intro to Cumulus VX Lab guide and wanted to try something bigger.&nbsp;<br />Followed the instructions at&nbsp;<a href="https://docs.cumulusnetworks.com/pages/viewpage.action?pageId=5126706" rel="nofollow" title="Link: https://docs.cumulusnetworks.com/pages/viewpage.action?pageId=5126706">https://docs.cumulusnetworks.com/pages/viewpage.action?pageId=5126706</a><br />ping from leaf 1 to other VM's isn't successful.&nbsp;<br />Happy to provide additional info if required, just not sure what.<br />thank you<br />Rich question 4 3 1 comment http://m.getsatisfaction.com/topics/7543098 7543098 Using Ansible to validate state of network? 2017-07-17T17:45:20Z 2017-06-23T15:57:34Z Will McLendon http://m.getsatisfaction.com/people/8096010 https://www.gravatar.com/avatar/c71608fe2c43af378138e28af1f34037?d=identicon&s=55&r=PG will_mclendon hi all,<br /><br />i've been using Ansible extensively to both provision VX in Virtual Box for testing changes, and also for rolling those changes to production.<br /><br />One thing that I want to look at doing next is leveraging Ansible to effectively test / validate that the network is functioning as expected -- at least the control plane. &nbsp;For example -- once the virtual topology is deployed, run a series of checks such as making sure all BGP neighbors are up, certain routes are learned, MC-LAG is up, etc.<br /><br />some of this functionality overlaps with NetQ a bit, but I really see this as something that could be executed as part of testing changes deployed to lab topology to verify everything is still correct, prior to pushing to production -- setting up NetQ for virtualbox deployements etc seems overkill.<br /><br /><br />I guess my question is, is anyone already doing this? &nbsp;or does anyone have pointers on how to get started? &nbsp;It looks like I can get JSON output from any net show command, and I guess I just need to figure out how to compare that to some expected values stored in a YML file or something. &nbsp;Just not exactly sure where to begin, or if Ansible is even the right tool for this type of validation.<br /><br />Thanks,<br /><br />Will question 3 4 1 comment http://m.getsatisfaction.com/topics/7554854 7554854 Mangement VRF and systemd integration 2017-07-17T15:40:42Z 2017-07-13T19:50:28Z Vincent Bernat http://m.getsatisfaction.com/people/9188440 https://www.gravatar.com/avatar/4e12e7f8340bf6bdf4b57992d8f9c692?d=identicon&s=55&r=PG vincent_bernat Hey!<br /><br />I have noticed the `/etc/vrf/systemd.conf` file which lead to me to the following documentation: <a href="https://docs.cumulusnetworks.com/display/DOCS/Management+VRF" rel="nofollow" target="_blank" title="Link https//docscumulusnetworkscom/display/DOCS/ManagementVRF">https://docs.cumulusnetworks.com/display/DOCS/Management+VRF</a>.<br /><br />The documentation gives some examples, notably ntp, snmpd and hsflowd. However, it says nothing about ssh. Despite being in `/etc/vrf/systemd.conf`, sshd doesn't need to be started as `ssh@mgmt` to log users in the management context. Using `vrf task identify`, I see the main daemon is in the default VRF while the children spawned on each connections are in the mgmt VRF. Should I use `ssh@mgmt` instead? Why would SSH not be entirely bound to the mgmt VRF?<br /><br />I notice that rsyslog is not part of the services and instead, it has been modified to allow specifying a device to bind to. What's the reason of rsyslog not playing nice with VRF? I ask that to identify other services that could have this problem.<br /><br />I find it cumbersome to have a service for the default VRF and a different service for the mgmt VRF. I understand this gives the user the ability to run the services in any VRF, but it's also easy to make an error and starts the service in the default VRF. I was thinking of running my own copy of `systemd-vrf-generator` that justs add overrides to the normal name. For example, `/run/systemd/generator/snmpd.service.d/vrf.conf` would have the same content than `/run/systemd/generator/snmpd@.service.d/vrf.conf` except `%I` is already replaced by `mgmt`. I wonder why you didn't go this road. Maybe there is a difficulty I didn't see?<br /><br />BTW, this would be interesting to have the functionality integrated in systemd directly. The override would be simpler. It would be similar to the `JoinsNamespaceOf` directive. question 3 3 1 comment http://m.getsatisfaction.com/topics/7556187 7556187 Checking if switchd did the right thing 2017-07-16T14:33:29Z 2017-07-16T14:33:29Z Vincent Bernat http://m.getsatisfaction.com/people/9188440 https://www.gravatar.com/avatar/4e12e7f8340bf6bdf4b57992d8f9c692?d=identicon&s=55&r=PG vincent_bernat Hey!<br /><br />Linux has so many knobs that I suppose some of them don't have been translated to hardware. Is there a way to check how switchd did translate the current configuration to hardware? This would allow to check if disabling forwarding on an interface has an effect or if some strange IP rule has been correctly taken into account. Some examples:<br /><br />&nbsp;- ip route add 2001:db8:11::/64 from 2001:db8:2::/64 via fe80::1 dev swp5<br />&nbsp;- ip rule add iif swp5 unreachable<br />&nbsp;- net.ipv6.conf.swp5.forwarding=0<br />&nbsp;- net.ipv4.conf.swp5.rp_filter=1 question 0 1 1 create http://m.getsatisfaction.com/topics/7555113 7555113 Quagga as a route reflector: don't install routes in kernel/FIB 2017-07-14T14:00:54Z 2017-07-14T05:26:44Z Vincent Bernat http://m.getsatisfaction.com/people/9188440 https://www.gravatar.com/avatar/4e12e7f8340bf6bdf4b57992d8f9c692?d=identicon&s=55&r=PG vincent_bernat Hey!<br /><br />I'd like to configure Quagga as a non-routing route reflector. It seems there is no equivalent of the "no-install" directive available in Juniper (<a href="https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/no-instal...)" rel="nofollow" target="_blank" title="Link https//wwwjunipernet/documentation/en_US/junos/topics/reference/configuration-statement/no-install-edit-protocolshtml">https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/no-instal...)</a><br /><br />Currently, I am using this kind of configuration:<br /><br /><pre>auto swp1&#46;90 iface swp1&#46;90 vrf public address 198&#46;51&#46;100&#46;226/25 up sysctl -qw net/ipv4/conf/$IFACE/forwarding=0<br /> </pre>and:<br /><br /><pre>router bgp 65000 vrf public bgp router-id 198&#46;51&#46;100&#46;226 bgp cluster-id 198&#46;51&#46;100&#46;226 no bgp default ipv4-unicast ! neighbor public-v4 peer-group neighbor public-v4 remote-as internal neighbor public-v4 ttl-security hops 1 neighbor public-v4 bfd bgp listen range 198&#46;51&#46;100&#46;128/25 peer-group public-v4 ! address-family ipv4 unicast neighbor public-v4 activate neighbor public-v4 route-reflector-client neighbor public-v4 addpath-tx-all-paths exit-address-family<br /> !</pre><br />And I make bgpd runs with "--no_kernel". Is there a better way? Routes in the kernel don't bother me, but I would like to avoid clutter the hardware with them. question 2 2 1 comment http://m.getsatisfaction.com/topics/7516617 7516617 Apply PBR via Quagga 2017-07-14T02:31:12Z 2017-05-11T03:37:37Z machiasiaweb http://m.getsatisfaction.com/people/8646794 https://www.gravatar.com/avatar/51df74a2557ebb6b4a64ccd9185e885b?d=identicon&s=55&r=PG machiasiaweb_machi_ma Hello,<br /><br />I am writing PBR by using Quagga. &nbsp; <br /><br />Question<br />1) However, I think suppose it require apply to route-map into interface? &nbsp;I am using VRR now. &nbsp;Could you please advise how to apply it?<br /><br />2) Also another question it looks now it will routing to external first even 2 subnet is belongs to next switch. &nbsp;How can I do internal vlan routing?<br /><br />Following is my config<br /><br />========== quagga config ==================<br /><br />!<br />access-list 100 permit ip 192.168.70.0 0.0.0.255 any<br />access-list 101 permit ip 192.168.60.0 0.0.0.255 any<br />!<br />route-map 101traffic permit 10<br />&nbsp;match ip address 101<br />&nbsp;set ip next-hop 192.168.60.1<br />!<br />route-map 100traffic permit 10<br />&nbsp;match ip address 100<br />&nbsp;set ip next-hop 192.168.70.1<br />!<br /><br />========== Cumulus config ===============<br /><br />auto vlan400<br />iface vlan400<br />&nbsp; &nbsp; &nbsp; &nbsp; mstpctl-portadminedge no<br />&nbsp; &nbsp; &nbsp; &nbsp; mstpctl-portnetwork no<br />&nbsp; &nbsp; &nbsp; &nbsp; address-virtual 00:00:5e:00:01:01 192.168.70.254/24<br />&nbsp; &nbsp; &nbsp; &nbsp; vlan-id 400<br />&nbsp; &nbsp; &nbsp; &nbsp; alias Vlan 400 IP<br />&nbsp; &nbsp; &nbsp; &nbsp; mstpctl-bpduguard no<br />&nbsp; &nbsp; &nbsp; &nbsp; vlan-raw-device bridge<br /><br />auto vlan450<br />iface vlan450<br />&nbsp; &nbsp; &nbsp; &nbsp; mstpctl-portadminedge no<br />&nbsp; &nbsp; &nbsp; &nbsp; mstpctl-portnetwork no<br />&nbsp; &nbsp; &nbsp; &nbsp; address-virtual 00:00:5e:00:01:02 192.168.60.254/24<br />&nbsp; &nbsp; &nbsp; &nbsp;&nbsp;vlan-id 450<br />&nbsp; &nbsp; &nbsp; &nbsp; alias Vlan 450 IP<br />&nbsp; &nbsp; &nbsp; &nbsp; mstpctl-bpduguard no<br />&nbsp; &nbsp; &nbsp; &nbsp; vlan-raw-device bridge<br /><br />auto bridge<br />iface bridge<br />&nbsp; &nbsp; &nbsp; &nbsp; bridge-vlan-aware yes<br />&nbsp; &nbsp; &nbsp; &nbsp; mstpctl-treeprio 36864<br />&nbsp; &nbsp; &nbsp; &nbsp; bridge-vids 300 400 450<br />&nbsp; &nbsp; &nbsp; &nbsp; alias 0203-leaf-1 bridge<br />&nbsp; &nbsp; &nbsp; &nbsp; bridge-stp yes<br />&nbsp; &nbsp; &nbsp; &nbsp; bridge-ports glob swp1-35 swp37 swp38 swp39 swp40 swp41 peerlink uplink ng4<br /><br />=========================================<br /><br />Thanks! question 1 3 2 comment http://m.getsatisfaction.com/topics/7493431 7493431 VRF name with dashes and dhcrelay 2017-07-13T21:55:59Z 2017-04-06T15:57:54Z Matt Mix http://m.getsatisfaction.com/people/9030786 https://www.gravatar.com/avatar/508b1771b9bf24f8450e77085da41e18?d=identicon&s=55&r=PG matt_mix I have a VRF named 'unmanaged-vrf' and am trying to create a dhcrelay service inside the VRF. <br /><br />When I try to start that service, it says the VRF doesn't exist:<br /><br />● <a href="mailto:dhcrelay@unmanaged-vrf.service" rel="nofollow">dhcrelay@unmanaged-vrf.service</a> - DHCPv4 Relay Agent Daemon unmanaged-vrf<br />&nbsp;&nbsp; Loaded: loaded (/lib/systemd/system/dhcrelay@.service; enabled)<br />&nbsp; Drop-In: /run/systemd/generator/dhcrelay@.service.d<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; └─vrf.conf<br />&nbsp;&nbsp; Active: failed (Result: exit-code) since Wed 2017-04-05 16:47:48 CDT; 18h ago<br />&nbsp;&nbsp;&nbsp;&nbsp; Docs: man:dhcrelay(8)<br />&nbsp;Main PID: 14749 (code=exited, status=1/FAILURE)<br /><br />Apr 05 16:47:48 systemd[1]: Starting DHCPv4 Relay Agent Daemon unmanaged-vrf...<br />Apr 05 16:47:48 systemd[1]: Started DHCPv4 Relay Agent Daemon unmanaged-vrf.<br />Apr 05 16:47:48 vrf[14749]: ERROR: VRF does not exist<br />Apr 05 16:47:48 systemd[1]: <a href="mailto:dhcrelay@unmanaged-vrf.service" rel="nofollow">dhcrelay@unmanaged-vrf.service</a>: main process exited, code=exited, status=1/FAILURE<br />Apr 05 16:47:48 vrf[14764]: ERROR: VRF does not exist<br />Apr 05 16:47:48 systemd[1]: Unit <a href="mailto:dhcrelay@unmanaged-vrf.service" rel="nofollow">dhcrelay@unmanaged-vrf.service</a> entered failed state.<br /><br /><br />I looked in the systemd config files to extract the command it tries to run and it does work when I run it manually:<br /><br />sudo /usr/bin/vrf task exec unmanaged-vrf dhcrelay --nl -d -q -i peerlink -i swp13s0.504 -i vbridge.56 &lt;snip out dhcp host&gt;<br /><br />When I'm running this command, hosts are able to get a DHCP lease. How can I get this to work as a service through systemd? problem 1 2 1 comment http://m.getsatisfaction.com/topics/7479063 7479063 Power Consumption on EC5812-54T 2017-07-13T21:23:16Z 2017-03-17T20:18:23Z Nick Fisk http://m.getsatisfaction.com/people/8742847 https://www.gravatar.com/avatar/771cc16e49e43e1266a1590a65b7b5d6?d=identicon&s=55&r=PG nick_fisk Is there anyway to find out the power consumption on an Edgecore 5812-54T switch? Running "sensors" doesn't list anything to do with power for this switch. <br /><br /> And on the topic of sensors, is there any info anywhere about what all the cryptic sensor names match up to? <br /><br /> Thanks, <br /> Nick question 1 2 1 comment http://m.getsatisfaction.com/topics/6693947 6693947 My Cumulus shortcut commands. 2017-07-13T21:07:06Z 2015-06-25T15:12:53Z skamithi123 http://m.getsatisfaction.com/people/2493434 https://d2r1vs3d9006ap.cloudfront.net/public/uploaded_images/10571018/3dd6793_medium.jpg skamithi123 Bash allows you to easily create command aliases so I can customize my workflow around key activities. Makes it easier to remember where commands live. <br /><br /> This is my .bashrc alias that I use when navigating around Cumulus Linux <br /><br /> # $HOME/.bashrc <br /> ---- <br /> showcpu="top" <br /> showtemp=smonctl <br /> showl2config='less /etc/network/interfaces' <br /> showl3config='less /etc/quagga/Quagga.conf' <br /> showlog='less -N /var/log/syslog' <br /> ---- <br /><br /> Bash has auto-completion which helps me a lot because I forget commands. To get to my list of shortcut commands I type "show", followed by tab, and I can see the options. <br /><br /> # show[tab] <br /> showcpu showtemp showl2config showl3config showlog <br /><br /> I update my $HOME/.bashrc file with new shortcut commands as my experience grows <br /><br /> I normally push my bash alias files to the switch using "scp" <br /><br /> "my-laptop-pc# scp cumulusw/bashrc stanley@switch10:.bashrc" <br /><br /> I will update this in the future as I learn more shortcuts. <br /><br /> Reference: <br /> <a href="https://www.digitalocean.com/community/tutorials/an-introduction-to-useful-bash-aliases-and-functions" rel="nofollow">https://www.digitalocean.com/communit...</a> article 1 3 4 comment