Jump to content


5
[Offer]

VSRX 12.1X46-D10.2



55 replies to this topic

#29 vbsalongo

vbsalongo

    Microsoft TE

  • Members
  • PipPipPip
  • 67 posts
  • 8197 thanks

Posted 27 March 2014 - 02:43 PM

I have tried with VirtualBox but it doesn't work maybe someone else have tried. I have tried to put them in cluster, it's works fine but there is no way to create reth interface because only two interfaces are allowed.
Did anyone added more than two functional additional interfaces ? Please, tell me how to do it.


It's Okay I found how to do it, I have added 8 interfaces and simulate a cluster.

Edited by vbsalongo, 27 March 2014 - 08:46 PM.

MCSA/MCSE Security/MCTS/MCITP Server Administrator/CCNA/CCNP

In God I TrustS

Thanked by 1 Member:
pedacinho123

#30 lambda

lambda

    Advanced Member

  • Members
  • PipPipPip
  • 53 posts
  • 17 thanks

Posted 27 March 2014 - 09:06 PM

Public service announcement.. please stop trying to use virtualbox and gns3 for Juniper. It is just easier in vmware. esxi or workstation.

Edited by lambda, 27 March 2014 - 09:08 PM.


#31 junosexpert

junosexpert

    Advanced Member

  • Members
  • PipPipPip
  • 184 posts
  • 9820 thanks
  • LocationJunos OS CLI

Posted 28 March 2014 - 02:55 AM

Multicast also working ( have to make some correction in config and topo then will post the results)

[email protected]# run ping 224.1.1.2 interface ge-0/0/4 ttl 10 bypass-routing count 5 rapid
PING 224.1.1.2 (224.1.1.2): 56 data bytes
.!!!!!!!!!!!!!!!!!!!!!!
--- 224.1.1.2 ping statistics ---
5 packets transmitted, 4 packets received, +18 duplicates, 20% packet loss
round-trip min/avg/max/stddev = 74.655/922.145/1547.226/362.397 ms

#32 lambda

lambda

    Advanced Member

  • Members
  • PipPipPip
  • 53 posts
  • 17 thanks

Posted 28 March 2014 - 03:35 AM

What are the main reasons to use Junosphere now? Switching?

#33 junosexpert

junosexpert

    Advanced Member

  • Members
  • PipPipPip
  • 184 posts
  • 9820 thanks
  • LocationJunos OS CLI

Posted 28 March 2014 - 04:17 AM

View Postlambda, on 28 March 2014 - 03:35 AM, said:

What are the main reasons to use Junosphere now? Switching?

Switching is not available in junosphere as well....

#34 vbsalongo

vbsalongo

    Microsoft TE

  • Members
  • PipPipPip
  • 67 posts
  • 8197 thanks

Posted 28 March 2014 - 04:25 AM

I have sucessfuly run vSRX on virtual box with 8 interfaces. Fun!
MCSA/MCSE Security/MCTS/MCITP Server Administrator/CCNA/CCNP

In God I TrustS

#35 junosexpert

junosexpert

    Advanced Member

  • Members
  • PipPipPip
  • 184 posts
  • 9820 thanks
  • LocationJunos OS CLI

Posted 28 March 2014 - 05:46 AM

View Postvbsalongo, on 28 March 2014 - 04:25 AM, said:

I have sucessfuly run vSRX on virtual box with 8 interfaces. Fun!

yup on window its working perfectly fine ( tried with 4 interfaces) but in Linux it is not,..... trying to integrate it in KVM now

#36 roumys

roumys

    Junior Member

  • Members
  • PipPip
  • 1 posts
  • 0 thanks

Posted 28 March 2014 - 04:18 PM

Got the interfaces up.  

Has anyone tried this with site-to-site vpns? Not sure what's wrong with mine, ike doesn't seem to start negotiating at all.

I get these in the log. What does it actually mean that ike negotiation is skipped?? Plus i get this type of error too "kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 0, reclen = 142950416 **"


Quote



[Mar 27 22:59:02]iked_pm_initiate_new_negotiations auto trigger not configured or negotation is not required for testVPN. Skip start negotiation
[Mar 27 23:00:02]Triggering all tunnels
[Mar 27 23:00:02]iked_pm_initiate_new_negotiations auto trigger not configured or negotation is not required for testVPN. Skip start negotiation
[Mar 27 23:01:02]Triggering all tunnels
[Mar 27 23:01:02]iked_pm_initiate_new_negotiations auto trigger not configured or negotation is not required for testVPN. Skip start negotiation
[Mar 27 23:02:02]Triggering all tunnels
[Mar 27 23:02:02]iked_pm_initiate_new_negotiations auto trigger not configured or negotation is not required for testVPN. Skip start negotiation
[Mar 27 23:03:02]Triggering all tunnels
[Mar 27 23:03:02]iked_pm_initiate_new_negotiations auto trigger not configured or negotation is not required for testVPN. Skip start negotiation
[Mar 27 23:03:19]SIGHUP received, triggering reconfig
[Mar 27 23:03:19]Inside kmd_trigger_reconfig...
[Mar 27 23:03:19]Inside kmd_request_parse_config_now...
[Mar 27 23:03:20]Inside kmd_read_securitycfg: changed 1, spu_id: 48, iked_id: 2
[Mar 27 23:03:20]########      kmd_iked_cfgbuf_reset: kmd_iked_cfgbuf_dump    ##############
[Mar 27 23:03:20]Buffer: 0x854000, data: 0x854014, RE TNP: 0x1, #records: 0
[Mar 27 23:03:20]Read 0 records, used 0 bytes.
[Mar 27 23:03:20]########################################################
[Mar 27 23:03:20]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 0, reclen = 142950416 **
[Mar 27 23:03:20]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is c, reclen = 142950416 **
[Mar 27 23:03:20]Attempt to read in VPN config
[Mar 27 23:03:20]ddc_ike_object 902339e0
[Mar 27 23:03:20]Inside kmd_sec_read_ike_config...
[Mar 27 23:03:20]kmd_sec_read_ike_config: object name ike
[Mar 27 23:03:20]kmd_sec_read_ike_config: object name traceoptions
[Mar 27 23:03:20]kmd_sec_read_ike_config: traceoptions has changed.
[Mar 27 23:03:20]Error:No such file or directory in deleting ike debug blob
[Mar 27 23:03:20]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is c58, reclen = 0 **
[Mar 27 23:03:20]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 44, reclen = 0 **
[Mar 27 23:03:20]Error: Unknown record, type = 25

[Mar 27 23:03:20]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 4, reclen = 0 **
[Mar 27 23:03:20]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 0, reclen = -1078471800 **
[Mar 27 23:03:20]No SPUs are operational, returning.
[Mar 27 23:03:20]Config download: Processed 5 - 6 messages
[Mar 27 23:03:20]Config download time: 0 secs
[Mar 27 23:03:20]iked_config_process_config_list, configuration diff complete
[Mar 27 23:13:07]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 0, reclen = 142950416 **
[Mar 27 23:13:07]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is c, reclen = 142950416 **
[Mar 27 23:13:07]KMD_INTERNAL_ERROR: kmd_read_securitycfg: dax_get_object_by_path() returned FALSE, secop: 0x90232c60.
[Mar 27 23:13:07]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 54, reclen = 4 **
[Mar 27 23:13:07]kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 0, reclen = -1078471800 **
[Mar 27 23:13:07]No SPUs are operational, returning.
[Mar 27 23:13:07]Config download: Processed 6 - 7 messages
[Mar 27 23:13:07]Config download time: 0 secs
[Mar 27 23:13:07]iked_config_process_config_list, configuration diff complete


#37 johnsonas

johnsonas

    Member

  • Members
  • PipPip
  • 42 posts
  • 62 thanks

Posted 28 March 2014 - 05:04 PM

What is login credential ?  pls

#38 junosexpert

junosexpert

    Advanced Member

  • Members
  • PipPipPip
  • 184 posts
  • 9820 thanks
  • LocationJunos OS CLI

Posted 28 March 2014 - 05:59 PM

View Postjohnsonas, on 28 March 2014 - 05:04 PM, said:

What is login credential ?  pls

username: root
password: <no_password_just_hit_enter>

#39 junosexpert

junosexpert

    Advanced Member

  • Members
  • PipPipPip
  • 184 posts
  • 9820 thanks
  • LocationJunos OS CLI

Posted 28 March 2014 - 06:00 PM

View Postroumys, on 28 March 2014 - 04:18 PM, said:

Got the interfaces up.  

Has anyone tried this with site-to-site vpns? Not sure what's wrong with mine, ike doesn't seem to start negotiating at all.

I get these in the log. What does it actually mean that ike negotiation is skipped?? Plus i get this type of error too "kmd_iked_cfgbuf_addrec: 530: ** Allocated recptr is 0, reclen = 142950416 **"

Can you please share your topology/config ?

#40 roumys

roumys

    Junior Member

  • Members
  • PipPip
  • 1 posts
  • 0 thanks

Posted 29 March 2014 - 05:01 PM

View Postjunosexpert, on 28 March 2014 - 06:00 PM, said:

Can you please share your topology/config ?

Nvm. Figured it out, i forgot to add the command "set security ipsec vpn testVPN establish-tunnels immediately". After adding that, ike started to actually negotiate!.

Thanks so much.

#41 daniellog

daniellog

    Newbie

  • Members
  • Pip
  • 0 posts
  • 0 thanks

Posted 31 March 2014 - 03:43 PM

Has anyone managed to get this working in kvm? I'd like to add it to my proxmox server but I can't convert the image.

[email protected]:~$ qemu-img convert -O qcow2 junos-vsrx-12.1X46-D10.2-domestic-disk1.vmdk junos-vsrx-12.1X46-D10.2-domestic-disk1.qcow2
qemu-img: error while reading sector 131072: Invalid argument


#42 ElTiburon

ElTiburon

    Junior Member

  • Members
  • PipPip
  • 9 posts
  • 2 thanks

Posted 02 April 2014 - 10:21 AM

i don't see anyone here reffering to the license issue can it be used more than 60 trial days ?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

Organization

Community

Downloads

Test Providers

Site Info


Go to top