Second JUNOS topology – SP Network

On May 30, 2012, in Juniper, by Darren

I bashed this up together as I wanted a topology I could easily jump on and do things. This is all running on logical systems on a single M10.

This is the logical topology (Click to view the full size image):

Juniper Lab Small Second JUNOS topology   SP Network
The actual physical topology is very simple:
Juniper SP Physical Second JUNOS topology   SP Network
The switch has been configured to run dot1q trunks to the M10 and I’ve created and allowed all needed vlan tags across.

I’ve used 2 different fastethernet PICs, but there is nothing stopping you from using just one. I’ve created a separate user account for each system so that I can log in with a user directly into each logical-system. Just adjust the config for your interfaces

This is my actual configuration itself:

set system login class J1-superuser logical-system J1
set system login class J1-superuser permissions all
set system login class J10-superuser logical-system J10
set system login class J10-superuser permissions all
set system login class J11-superuser logical-system J11
set system login class J11-superuser permissions all
set system login class J12-superuser logical-system J12
set system login class J12-superuser permissions all
set system login class J13-superuser logical-system J13
set system login class J13-superuser permissions all
set system login class J2-superuser logical-system J2
set system login class J2-superuser permissions all
set system login class J3-superuser logical-system J3
set system login class J3-superuser permissions all
set system login class J4-superuser logical-system J4
set system login class J4-superuser permissions all
set system login class J5-superuser logical-system J5
set system login class J5-superuser permissions all
set system login class J6-superuser logical-system J6
set system login class J6-superuser permissions all
set system login class J7-superuser logical-system J7
set system login class J7-superuser permissions all
set system login class J8-superuser logical-system J8
set system login class J8-superuser permissions all
set system login class J9-superuser logical-system J9
set system login class J9-superuser permissions all
set system login user USER1 uid 2000
set system login user USER1 class J1-superuser
set system login user USER1 authentication encrypted-password "$1$fEMYRcpU$ckP4LFp/joAmkQ1sLnQ1a0"
set system login user USER10 uid 2012
set system login user USER10 class J10-superuser
set system login user USER10 authentication encrypted-password "$1$LDmrPRX.$Nkk0p1Ou8h.p2FGMYLlne1"
set system login user USER11 uid 2017
set system login user USER11 class J11-superuser
set system login user USER11 authentication encrypted-password "$1$1RNXWIVL$VRfTSmnGaJIkUfHf0exW1/"
set system login user USER12 uid 2018
set system login user USER12 class J12-superuser
set system login user USER12 authentication encrypted-password "$1$.Nd48UM0$RZS1F/5Rp3DrdgN2sEGsY0"
set system login user USER13 uid 2019
set system login user USER13 class J13-superuser
set system login user USER13 authentication encrypted-password "$1$EODMZXa4$z2qvVh/p57DtJPv0NFyzx1"
set system login user USER2 uid 2003
set system login user USER2 class J2-superuser
set system login user USER2 authentication encrypted-password "$1$U/jh6hA/$pmtdTtpVmjSCiQ4khqvNa1"
set system login user USER3 uid 2009
set system login user USER3 class J3-superuser
set system login user USER3 authentication encrypted-password "$1$/T3X1azh$lZYZHo4ZVSQUQkcZYbZyg0"
set system login user USER4 uid 2010
set system login user USER4 class J4-superuser
set system login user USER4 authentication encrypted-password "$1$Gnf/qqpk$ntwqdXpCIrqb2GBf.jlHu/"
set system login user USER5 uid 2011
set system login user USER5 class J5-superuser
set system login user USER5 authentication encrypted-password "$1$V5u2xmGv$wywji87Ny6BYK5mryKPnL0"
set system login user USER6 uid 2013
set system login user USER6 class J6-superuser
set system login user USER6 authentication encrypted-password "$1$D6.zttrE$wBubykb76IPG1Pf89OCkL1"
set system login user USER7 uid 2014
set system login user USER7 class J7-superuser
set system login user USER7 authentication encrypted-password "$1$23BG/cYA$VTtS3i6TK7m/9VjU.ENJE0"
set system login user USER8 uid 2015
set system login user USER8 class J8-superuser
set system login user USER8 authentication encrypted-password "$1$c5cJZahO$mqIttBhdQdnuK6pf7RQxk0"
set system login user USER9 uid 2016
set system login user USER9 class J9-superuser
set system login user USER9 authentication encrypted-password "$1$pNo90Key$.3KVzcsuBLu9TI1ke93rh0"
set system login user darreno full-name "Darren O'Connor"
set system login user darreno uid 2002
set system login user darreno class super-user
set system login user darreno authentication encrypted-password "$1$lWD7BqVU$/51zXBjngOU3B/qQLgeLW1"
set system services ssh
set system services telnet
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set logical-systems J1 interfaces fe-0/0/0 unit 13 vlan-id 13
set logical-systems J1 interfaces fe-0/0/0 unit 13 family inet address 10.1.3.1/24
set logical-systems J1 interfaces fe-0/0/0 unit 15 vlan-id 15
set logical-systems J1 interfaces fe-0/0/0 unit 15 family inet address 10.1.8.1/24
set logical-systems J1 interfaces lo0 unit 1 family inet address 1.1.1.1/32
set logical-systems J10 interfaces fe-0/0/1 unit 56 vlan-id 56
set logical-systems J10 interfaces fe-0/0/1 unit 56 family inet address 10.56.56.10/24
set logical-systems J10 interfaces fe-1/3/0 unit 79 vlan-id 79
set logical-systems J10 interfaces fe-1/3/0 unit 79 family inet address 10.10.13.10/24
set logical-systems J10 interfaces fe-1/3/3 unit 72 vlan-id 72
set logical-systems J10 interfaces fe-1/3/3 unit 72 family inet address 10.10.12.10/24
set logical-systems J10 interfaces lo0 unit 10 family inet address 10.10.10.10/32
set logical-systems J11 interfaces fe-0/0/0 unit 51 vlan-id 51
set logical-systems J11 interfaces fe-0/0/0 unit 51 family inet address 10.8.11.11/24
set logical-systems J11 interfaces fe-0/0/1 unit 66 vlan-id 66
set logical-systems J11 interfaces fe-0/0/1 unit 66 family inet address 10.9.11.11/24
set logical-systems J11 interfaces fe-1/3/0 unit 16 vlan-id 16
set logical-systems J11 interfaces fe-1/3/0 unit 16 family inet address 10.11.12.11/24
set logical-systems J11 interfaces fe-1/3/0 unit 19 vlan-id 19
set logical-systems J11 interfaces fe-1/3/0 unit 19 family inet address 10.11.13.11/24
set logical-systems J11 interfaces lo0 unit 11 family inet address 11.11.11.11/32
set logical-systems J12 interfaces fe-0/0/0 unit 59 vlan-id 59
set logical-systems J12 interfaces fe-0/0/0 unit 59 family inet address 10.8.12.12/24
set logical-systems J12 interfaces fe-1/3/0 unit 72 vlan-id 72
set logical-systems J12 interfaces fe-1/3/0 unit 72 family inet address 10.10.12.12/24
set logical-systems J12 interfaces fe-1/3/3 unit 14 vlan-id 14
set logical-systems J12 interfaces fe-1/3/3 unit 14 family inet address 10.12.13.12/24
set logical-systems J12 interfaces fe-1/3/3 unit 16 vlan-id 16
set logical-systems J12 interfaces fe-1/3/3 unit 16 family inet address 10.11.12.12/24
set logical-systems J12 interfaces lo0 unit 12 family inet address 12.12.12.12/32
set logical-systems J13 interfaces fe-0/0/1 unit 63 vlan-id 63
set logical-systems J13 interfaces fe-0/0/1 unit 63 family inet address 10.9.13.13/24
set logical-systems J13 interfaces fe-1/3/0 unit 14 vlan-id 14
set logical-systems J13 interfaces fe-1/3/0 unit 14 family inet address 10.12.13.13/24
set logical-systems J13 interfaces fe-1/3/3 unit 19 vlan-id 19
set logical-systems J13 interfaces fe-1/3/3 unit 19 family inet address 10.11.13.13/24
set logical-systems J13 interfaces fe-1/3/3 unit 79 vlan-id 79
set logical-systems J13 interfaces fe-1/3/3 unit 79 family inet address 10.10.13.13/24
set logical-systems J13 interfaces lo0 unit 13 family inet address 13.13.13.13/32
set logical-systems J2 interfaces fe-0/0/0 unit 25 vlan-id 25
set logical-systems J2 interfaces fe-0/0/0 unit 25 family inet address 10.2.8.2/24
set logical-systems J2 interfaces lo0 unit 2 family inet address 2.2.2.2/32
set logical-systems J3 interfaces fe-0/0/1 unit 13 vlan-id 13
set logical-systems J3 interfaces fe-0/0/1 unit 13 family inet address 10.1.3.3/24
set logical-systems J3 interfaces fe-0/0/1 unit 36 vlan-id 36
set logical-systems J3 interfaces fe-0/0/1 unit 36 family inet address 10.3.9.3/24
set logical-systems J3 interfaces lo0 unit 3 family inet address 3.3.3.3/32
set logical-systems J4 interfaces fe-0/0/1 unit 46 vlan-id 46
set logical-systems J4 interfaces fe-0/0/1 unit 46 family inet address 10.4.9.4/24
set logical-systems J4 interfaces lo0 unit 4 family inet address 4.4.4.4/32
set logical-systems J5 interfaces fe-1/3/0 unit 56 vlan-id 56
set logical-systems J5 interfaces fe-1/3/0 unit 56 family inet address 10.56.56.5/24
set logical-systems J5 interfaces lo0 unit 5 family inet address 5.5.5.5/32
set logical-systems J6 interfaces fe-1/3/3 unit 56 vlan-id 56
set logical-systems J6 interfaces fe-1/3/3 unit 56 family inet address 10.56.56.6/24
set logical-systems J6 interfaces lo0 unit 6 family inet address 6.6.6.6/32
set logical-systems J7 interfaces fe-0/0/0 unit 56 vlan-id 56
set logical-systems J7 interfaces fe-0/0/0 unit 56 family inet address 10.56.56.7/24
set logical-systems J7 interfaces lo0 unit 7 family inet address 7.7.7.7/32
set logical-systems J8 interfaces fe-0/0/1 unit 15 vlan-id 15
set logical-systems J8 interfaces fe-0/0/1 unit 15 family inet address 10.1.8.8/24
set logical-systems J8 interfaces fe-0/0/1 unit 25 vlan-id 25
set logical-systems J8 interfaces fe-0/0/1 unit 25 family inet address 10.2.8.8/24
set logical-systems J8 interfaces fe-0/0/1 unit 51 vlan-id 51
set logical-systems J8 interfaces fe-0/0/1 unit 51 family inet address 10.8.11.8/24
set logical-systems J8 interfaces fe-0/0/1 unit 59 vlan-id 59
set logical-systems J8 interfaces fe-0/0/1 unit 59 family inet address 10.8.12.8/24
set logical-systems J8 interfaces lo0 unit 8 family inet address 8.8.8.8/32
set logical-systems J9 interfaces fe-0/0/0 unit 36 vlan-id 36
set logical-systems J9 interfaces fe-0/0/0 unit 36 family inet address 10.3.9.9/24
set logical-systems J9 interfaces fe-0/0/0 unit 46 vlan-id 46
set logical-systems J9 interfaces fe-0/0/0 unit 46 family inet address 10.4.9.9/24
set logical-systems J9 interfaces fe-0/0/0 unit 63 vlan-id 63
set logical-systems J9 interfaces fe-0/0/0 unit 63 family inet address 10.9.13.9/24
set logical-systems J9 interfaces fe-0/0/0 unit 66 vlan-id 66
set logical-systems J9 interfaces fe-0/0/0 unit 66 family inet address 10.9.11.9/24
set logical-systems J9 interfaces lo0 unit 9 family inet address 9.9.9.9/32
set interfaces fe-0/0/0 vlan-tagging
set interfaces fe-0/0/1 vlan-tagging
set interfaces fe-1/3/0 vlan-tagging
set interfaces fe-1/3/3 vlan-tagging
flattr badge large Second JUNOS topology   SP Network
Tagged with:  

6 Responses to “Second JUNOS topology – SP Network”

  1. Mr_X says:

    Hi all,

    Fyi,

    “I’ve created a separate user account for each system so that I can log in with a user directly into each logical-system.”

    You can just as well do a “set cli logical-system $name” from global run level, instead of mapping a user to a logical-system. Then just spawn multiple SSH sessions for each LS. In case you might want to return to global run level, then use “clear cli logical-system”.

  2. Darren says:

    Mr_X – I was going to do that at first, but it’s a hassle going in and out of each one. I used a tabbed client and it’s easy to just set them all up this way and then log into each direct :)

  3. I’m a little late, but just curious–is the m10 supplied by your work or do you own one? If you own it, do you mind if I ask what you paid for it?

  4. Darren says:

    The M10s were our old edge routers replaced many years ago. They basically sat rotting in an old stock room and no-one could get them to work. I was told if I could get one to work I could do what I wanted with it. I managed to finally get one working (replacing the flash, replacing some feb ram etc)

    So now it works, but I still get occasional feb errors. Replacing the feb to a new one is too expensive :(

    Checking ebay the best I’ve found is an M7i for £1500 which is an excellent deal. The M7i is a later model than my M10, has a built in tunnel pic, and can run 15 logical routers as well. You only need the single box

  5. Thanks Darren, I use this config a lot!

  6. Darren says:

    Glad to hear Charlie :)

Leave a Reply

© 2009-2014 Darren O'Connor All Rights Reserved