Operating Juniper Networks Routers in the Enterprise

Operating Juniper Networks Routers in the Enterprise
Chapter 5: Operational Monitoring and Maintenance

Operating Juniper Networks Routers—J-series
Chapter Objectives Operating Juniper Networks Routers—J-series After successfully completing this chapter, you will be able to: Monitor platform and interface operation Use network utilities Configure system logging and parse log files for error symptoms Manage licenses Maintain JUNOS software Perform file system maintenance and password recovery Chapter 5: Operational Monitoring and Maintenance

Agenda: Operational Monitoring and Maintenance
Operating Juniper Networks Routers—J-series Monitoring Platform Operation Monitoring Interface Operation Network Utilities System Logging and Protocol Tracing License Management Maintaining JUNOS Software File System Maintenance and Password Recovery Chapter 5: Operational Monitoring and Maintenance

J-series Front Panel Indicators
Operating Juniper Networks Routers—J-series POWER LED ALARM LED STATUS and HA LEDs PIM Status LED Front panel indicators summarize platform status STATUS: Blinks green during kernel boot, steady green after boot, and blinks red on error ALARM: On steadily red when a major alarm condition is present, on steadily yellow when a minor alarm condition is present POWER: On steadily green when powered on, blinks green when powering off HA: Unused PIM Status: PIM status LEDs vary by interface type Chapter 5: Operational Monitoring and Maintenance

Monitoring System-Level Operation (1 of 2)
Operating Juniper Networks Routers—J-series Monitor overall system operation at the Monitor > System page Or use CLI show system commands Chapter 5: Operational Monitoring and Maintenance

Monitoring System-Level Operation (2 of 2)
Operating Juniper Networks Routers—J-series Monitoring System-Level Operation (2 of 2) Chapter 5: Operational Monitoring and Maintenance

Monitoring the Chassis (1 of 2)
Operating Juniper Networks Routers—J-series Monitoring the Chassis (1 of 2) Monitor chassis status at the Monitor > Chassis page Or use CLI show chassis commands Chapter 5: Operational Monitoring and Maintenance

Monitoring the Chassis (2 of 2)
Operating Juniper Networks Routers—J-series Monitoring the Chassis (2 of 2) . . . Chapter 5: Operational Monitoring and Maintenance

Monitoring Interfaces
Operating Juniper Networks Routers—J-series Display summary interface status at the Monitor > Interfaces page Oper State and Admin State Physical and logical state Administratively disabled interface can still establish physical link fe-0/0/0 functioning correctly fe-0/0/1 physical interface administratively disabled se-1/0/0 logical interface administratively disabled se-1/0/1 data link failure fe-2/0/0 physical link failure fe-2/0/1 not configured Chapter 5: Operational Monitoring and Maintenance

Displaying Terse Interface Status
Operating Juniper Networks Routers—J-series Display a summary of interface status from the CLI using the show interfaces terse command show interfaces terse Interface Admin Link Proto Local Remote fe-0/0/ up up fe-0/0/ up up inet /26 ... fe-0/0/ down up fe-0/0/ up down inet /31 fe-1/0/ up up fe-1/0/ down up inet /30 fe-1/0/ up down fe-1/0/ up down inet /30 t1-4/0/ up down t1-4/0/ up down inet /31 t1-4/0/ up down lo up up lo up up inet > 0/0 > 0/0 lo up up inet > 0/0 > 0/0 Chapter 5: Operational Monitoring and Maintenance

J-Web Interface Details (1 of 2)
Operating Juniper Networks Routers—J-series Select an interface at the Monitor > Interfaces page to display details for that interface Chapter 5: Operational Monitoring and Maintenance

This slide left intentionally blank!
Operating Juniper Networks Routers—J-series Chapter 5: Operational Monitoring and Maintenance

J-Web Interface Details (2 of 2)

Standard CLI Interface Display (1 of 2)
Operating Juniper Networks Routers—J-series show interfaces t1-4/0/0 Physical interface: t1-4/0/0, Enabled, Physical link is Up Interface index: 142, SNMP ifIndex: 38 Link-level type: PPP, MTU: 1504, Clocking: Internal, Speed: T1, Loopback: None, FCS: 16, Framing: ESF Device flags : Present Running Interface flags: Point-To-Point SNMP-Traps 16384 Link flags : Keepalives Keepalive settings: Interval 10 seconds, Up-count 1, Down-count 3 Keepalive: Input: 13 (00:00:05 ago), Output: 13 (00:00:01 ago) LCP state: Opened NCP state: inet: Opened, inet6: Not-configured, iso: Not-configured, mpls: Not-configured CHAP state: Not-configured CoS queues : 8 supported Last flapped : :27:00 UTC (19:24:47 ago) Input rate : 40 bps (0 pps) Output rate : 48 bps (0 pps) DS1 alarms : None DS1 defects : None ... Device/SNMP indexes Device configuration and operational flags Traffic loads Chapter 5: Operational Monitoring and Maintenance

Standard CLI Interface Display (2 of 2)
Operating Juniper Networks Routers—J-series Logical interface t1-4/0/0.0 (Index 72) (SNMP ifIndex 46) Flags: Point-To-Point SNMP-Traps Encapsulation: PPP Protocol inet, MTU: 1500 Flags: None Addresses, Flags: Is-Preferred Is-Primary Destination: /31, Local: Logical device indexes Logical device settings Chapter 5: Operational Monitoring and Maintenance

Extensive Interface Displays (1 of 3)
Operating Juniper Networks Routers—J-series Add the extensive switch to display media, traffic, and error statistics Use clear interfaces statistics to reset counters show interfaces t1-4/0/0 extensive Physical interface: t1-4/0/0, Enabled, Physical link is Up Interface index: 142, SNMP ifIndex: 38, Generation: 23 Link-level type: PPP, MTU: 1504, Clocking: Internal, Speed: T1, Loopback: None, FCS: 16, Framing: ESF Device flags : Present Running Interface flags: Point-To-Point SNMP-Traps 16384 Link flags : Keepalives Hold-times : Up 0 ms, Down 0 ms Keepalive settings: Interval 10 seconds, Up-count 1, Down-count 3 Keepalive statistics: Input : 14 (last seen 00:00:06 ago) Output: 14 (last sent 00:00:04 ago) LCP state: Opened NCP state: inet: Opened, inet6: Not-configured, iso: Not-configured, mpls: Not-configured CHAP state: Not-configured CoS queues : 8 supported Last flapped : :27:00 UTC (19:24:58 ago) Statistics last cleared: Never Traffic statistics: Input bytes : bps Output bytes : bps Input packets: pps Output packets: pps . . . When counters were last cleared Traffic counters Chapter 5: Operational Monitoring and Maintenance

Operating Juniper Networks Routers—J-series . . . Input errors: Errors: 0, Drops: 0, Framing errors: 0, Policed discards: 3611, L3 incompletes: 0, L2 channel errors: 0, L2 mismatch timeouts: 0, HS link CRC errors: 0, SRAM errors: 0, Resource errors: 0 Output errors: Carrier transitions: 3, Errors: 0, Drops: 0, Aged packets: 0, MTU errors: 0, Resource errors: 0 Queue counters: Queued packets Transmitted packets Dropped packets 0 best-effort 1 expedited-fo 2 assured-forw 3 network-cont DS1 alarms : None DS1 defects : None T1 media: Seconds Count State SEF OK BEE OK AIS OK LOF OK LOS OK YELLOW OK BPV EXZ LCV PCV CS LES ES SES SEFS BES UAS Input errors Output errors CoS Counters Media errors Chapter 5: Operational Monitoring and Maintenance

Operating Juniper Networks Routers—J-series . . . HDLC configuration: Policing bucket: Disabled Shaping bucket : Disabled Giant threshold: 1506, Runt threshold: 0 Timeslots : All active Line encoding: B8ZS, Byte encoding: Nx64K Buildout : 0 to 132 feet Data inversion: Disabled, Idle cycle flag: flags, Start end flag: shared DS1 BERT configuration: BERT time period: 10 seconds, Elapsed: 0 seconds Induced Error rate: 10e-0, Algorithm: 2^15 - 1, O.151, Pseudorandom (9) Packet Forwarding Engine configuration: Destination slot: 4, PLP byte: 1 (0x00) CoS transmit queue Bandwidth Buffer Priority Limit % bps % bytes 0 best-effort low none 3 network-control low none Logical interface t1-4/0/0.0 (Index 72) (SNMP ifIndex 46) (Generation 11) Flags: Point-To-Point SNMP-Traps Encapsulation: PPP Protocol inet, MTU: 1500, Generation: 16, Route table: 0 Flags: None Addresses, Flags: Is-Preferred Is-Primary Destination: /31, Local: , Broadcast: Unspecified, Generation: 21 Media-specific configuration PFE/CoS configuration Logical interface configuration Chapter 5: Operational Monitoring and Maintenance

Monitoring an Interface
Operating Juniper Networks Routers—J-series Monitoring an Interface Use the monitor interface command for real-time statistics and error reports Chapter 5: Operational Monitoring and Maintenance

Deactivate, Disable, and Bounce (1 of 2)
Operating Juniper Networks Routers—J-series Configuration-mode deactivate and disable deactivate causes the statement or hierarchy to be ignored Marks that portion of the configuration as inactive disable administratively disables an interface or logical unit while retaining configured properties Chapter 5: Operational Monitoring and Maintenance

Deactivate, Disable, and Bounce (2 of 2)
Operating Juniper Networks Routers—J-series Use the operational-mode request chassis fpc restart command to bounce PIMs (J-series) or FPCs (M-series) A warm boot of the PIM can clear problems Less drastic than a chassis reboot and does not require configuration privileges request chassis fpc ? Possible completions: offline Take FPC offline online Bring FPC online restart Restart FPC slot FPC slot number (0..6) request chassis fpc restart slot 2 Restart initiated, use "show chassis fpc" to verify Chapter 5: Operational Monitoring and Maintenance

Network Utilities: Part 1
Operating Juniper Networks Routers—J-series Access ping and traceroute at the Diagnose page Or use the CLI ping and traceroute commands Use Ctrl+c to stop CLI ping and traceroute In J-Web, access the same options available in the CLI by clicking Advanced options Chapter 5: Operational Monitoring and Maintenance

J-Web Ping Example Operating Juniper Networks Routers—J-series J-Web ping with Advanced options: Don’t Resolve Addresses, Interface, Packet Size, and Don’t Fragment Chapter 5: Operational Monitoring and Maintenance

J-Web Traceroute Example
Operating Juniper Networks Routers—J-series J-Web traceroute with Advanced options: Don’t Resolve Addresses, Time-to-Live, and Source Address Chapter 5: Operational Monitoring and Maintenance

Operating Juniper Networks Routers—J-series Access the packet capture utility at the Diagnose page in the J-Web to decode packets or use the CLI monitor traffic command Only displays traffic originating or terminating on local RE The best way to perform analysis of Layer 2 protocols in JUNOS software using layer2-headers option Protocol filtering currently requires writing and reading from a file (hidden write-file and read-file options) Chapter 5: Operational Monitoring and Maintenance

J-Web: Packet Capture Example
Operating Juniper Networks Routers—J-series Interface used to capture packets Filtering options Captured results Advanced filtering options Chapter 5: Operational Monitoring and Maintenance

CLI: Monitor Traffic Example
Operating Juniper Networks Routers—J-series Use detail or extensive options for complete decode monitor traffic interface t1-4/0/0 layer2-headers verbose output suppressed, use <detail> or <extensive> for full protocol decode Listening on t1-4/0/0, capture size 96 bytes 23:34: Out IP: > : ICMP echo request seq 15874, length 64 23:34: In > : ICMP echo reply seq 15874, length 64 ^C 4 packets received by filter 0 packets dropped by kernel Ctrl+c key sequence exits listening mode Chapter 5: Operational Monitoring and Maintenance

Operating Juniper Networks Routers—J-series Access Telnet, SSH, and FTP client commands from the CLI telnet ? Possible completions: <host> Hostname or address or remote host 8bit Use 8-bit data path bypass-routing Bypass routing table, use specified interface inet Force telnet to IPv4 destination interface Name of interface for outgoing traffic no-resolve Don't attempt to print addresses symbolically port Port number or service name on remote host source Source address to use in telnet connection telnet Trying Connected to Escape character is '^]'. host (ttyp1) login: user Password: . . . Chapter 5: Operational Monitoring and Maintenance

Operating Juniper Networks Routers—J-series Monitor Platform Operation Monitor Interface Operation Network Utilities System Logging and Protocol Tracing License Management Maintaining JUNOS Software File System Maintenance and Password Recovery Chapter 5: Operational Monitoring and Maintenance

System Logging and Tracing
Operating Juniper Networks Routers—J-series System logging: Standard UNIX syslog configuration syntax Primary syslog file is /var/log/messages Most processes also write to individual log files Numerous facilities and severity levels are supported The facility defines the class of log message, while the severity level determines the level of logging detail Local and remote syslog support Remote logging (and archiving) recommended for troubleshooting Tracing decodes protocol packets and certain router events Referred to as debug by some other vendors Tracing operations include: Global routing behavior Router interfaces Protocol-specific information Chapter 5: Operational Monitoring and Maintenance

Syslog Configuration Example
Operating Juniper Networks Routers—J-series [edit system] show syslog user * { any emergency; } file messages { any notice; authorization info; file cli-commands { interactive-commands any; file config-changes { change-log info; file errors { any error; show syslog | display set set system syslog user * any emergency set system syslog file messages any notice set system syslog file messages authorization info set system syslog file cli-commands interactive-commands any set system syslog file config-changes change-log info set system syslog file errors any error Emergency messages go to all logged-in users Primary syslog file Log all CLI commands Log configuration changes Log all errors here The corresponding CLI commands Chapter 5: Operational Monitoring and Maintenance

Interpreting Syslog Messages
Operating Juniper Networks Routers—J-series Standard log entries consist of the following fields: Timestamp, platform name, software process name/PID, a message code, and the message text Use explicit-priority to include a numeric priority value May 31 23:50:14 host mgd[2711]: %INTERACT-6-UI_CMDLINE_READ_LINE: User 'user', command 'show version ' Use help syslog ? to help interpret message codes help syslog UI_CMDLINE_READ_LINE Name: UI_CMDLINE_READ_LINE Message: User '<username>', command '<input>' Help: User entered command at CLI prompt Description: The indicated user typed the indicated command at the CLI prompt and pressed the Enter key, sending the command string to the management process (mgd). Type: Event: This message reports an event, not an error Severity: info Chapter 5: Operational Monitoring and Maintenance

Tracing Overview Operating Juniper Networks Routers—J-series Tracing is the JUNOS software equivalent of debug Can be enabled on a production network Requires configuration Multiple options (flags) can be traced to a single file Generic tracing configuration syntax: [edit protocols protocol-name] show traceoptions { file filename [replace] [size size] [files number] [no-stamp]; flag flag [flag-modifier] [disable]; } The protocol or function being traced Where to write the trace results Flags identify what aspects of the protocol is traced and at what level of detail Chapter 5: Operational Monitoring and Maintenance

Protocol Tracing (1 of 2) Operating Juniper Networks Routers—J-series Include the traceoptions statement at the [edit protocols protocol-name] hierarchy Useful when troubleshooting configuration and interoperability problems [edit protocols bgp] show traceoptions { file bgp-trace; flag open detail; flag update detail; flag keepalive detail; } Chapter 5: Operational Monitoring and Maintenance

Protocol Tracing (2 of 2) Operating Juniper Networks Routers—J-series A typical BGP tracing configuration is shown along with sample output: [edit protocols bgp] show traceoptions { file bgp-trace; flag open detail; flag update detail; flag keepalive detail; } run show log bgp-trace . . . Feb 19 16:07:47 BGP RECV > Feb 19 16:07:47 BGP RECV message type 1 (Open) length 45 Feb 19 16:07:47 BGP RECV version 4 as 10 holdtime 90 id parmlen 16 Feb 19 16:07:47 BGP RECV MP capability AFI=1, SAFI=1 Chapter 5: Operational Monitoring and Maintenance

Analyzing Log and Trace Files
Operating Juniper Networks Routers—J-series Use the show log file-name CLI command to display contents of log and tracefiles Hint: Get help on available options at the more prompt by entering an h Do not forget the CLI’s pipe functionality; it makes log parsing a breeze! Cascade pipe instances to evoke a logical AND search; use quotes to evoke a logical OR, as shown: show log messages | match "support info" May 31 23:49:16 host mgd[2711]: %INTERACT-6-UI_CMDLINE_READ_LINE: User 'user', command 'request support information ' May 31 23:49:24 host mgd[2711]: %INTERACT-6-UI_CMDLINE_READ_LINE: User 'user', command 'request support information | no-more ' show log messages | match "error | kernel | panic" Chapter 5: Operational Monitoring and Maintenance

Miscellaneous Log File Commands
Operating Juniper Networks Routers—J-series Monitor a log or a trace in real time with the CLI’s monitor command monitor start filename Shows updates to monitored file(s) until canceled, with piped output matching! Use Esc+q to halt and resume real-time output to screen Issue monitor stop to cease all monitoring Log and trace file manipulation: Use the clear command to truncate (clear) log and trace files clear log filename Use the file delete command to delete log and trace files file delete filename Chapter 5: Operational Monitoring and Maintenance

Agenda: Operational Monitoring and Maintenance Operating Juniper Networks Routers—J-series Monitor Platform Operation Monitor Interface Operation Network Utilities System Logging and Protocol Tracing License Management Maintaining JUNOS Software File System Maintenance and Password Recovery Chapter 5: Operational Monitoring and Maintenance

J-series License Overview
Operating Juniper Networks Routers—J-series Various software features require licensing Currently uses a soft model that does not disable unlicensed functions A lack of license results in commit warnings and log entries Device and group licenses: A device license is tied to a specific device ID stored in EPROM and can only be used on that device A device license can define one or more groups A group license is tied to a group of devices Corresponding group definition must be present Licenses are not part of the configuration Stored locally on the device, possibly from the factory Opaque data to JUNOS software Licenses can exist for unsupported features; license is only referenced when a feature requires it Chapter 5: Operational Monitoring and Maintenance

J-series License Requirements
Operating Juniper Networks Routers—J-series Software features: Traffic Analysis Advanced BGP IBM Networking No licenses for hardware are required Chapter 5: Operational Monitoring and Maintenance

Obtaining a J-series License
Operating Juniper Networks Routers—J-series Preinstalled: No configuration is required Verify from J-Web Manage > Licenses page or with show system license keys CLI command Authorization code: Provided on a piece of paper with your shipment Obtain router serial number from J-Web Monitor > System page or with show chassis hardware CLI command Go to Chapter 5: Operational Monitoring and Maintenance

Managing Licenses: CLI
Operating Juniper Networks Routers—J-series Manage license keys using the CLI Display license usage: show system license usage Display license key: show system license keys Load, save, or delete licenses: request system license [add | delete| save] No additional licensing needed show system license usage Licenses Licenses Licenses Feature name used installed needed firewall ipsec-vpn if-se if-fe j-flow sla bgp-reflection No licenses are actually used Several features licenses are installed Chapter 5: Operational Monitoring and Maintenance

Managing Licenses: J-Web
Operating Juniper Networks Routers—J-series Access J-Web license management at the Manage > Licenses page License keys can be added by using terminal paste or URL Download license keys for safe keeping Chapter 5: Operational Monitoring and Maintenance

The Default Boot Sequence
Operating Juniper Networks Routers—J-series Primary Boot Device Primary Compact Flash Drive /dev/ad0 Secondary Boot Device Booted? No USB or HD Yes Booted? No Done Halt Yes Done The compact flash drive is the primary boot device On J-series platforms, USB is the secondary device On M-series platforms, the hard drive is the secondary device Chapter 5: Operational Monitoring and Maintenance

Choosing a Boot Device Operating Juniper Networks Routers—J-series Boot device can be specified: Using Reboot From Media option on J-Web Manage > Reboot page When requesting a system reboot from the CLI: Warnings issued at CLI login when booted from alternative device request system reboot media ? Possible completions: compact-flash Standard boot off flash device usb Boot off USB device host (ttyd0) login: user Password: --- JUNOS 8.3R2.8 built :27:34 UTC --- --- NOTICE: System is running on alternate media device (/dev/da0s1a). Chapter 5: Operational Monitoring and Maintenance

J-series Software Packaging
Operating Juniper Networks Routers—J-series Software packaging: J-series software packages come in domestic and export versions Domestic version supports 128-bit encryption and requires signed agreement Export version supports only 56-bit encryption Packages are signed using the Secure Hash Algorithm 1 (SHA-1) to ensure integrity JUNOS software will only execute signed binaries No individual software component upgrades, install packages, or removable media packages The snapshot function is used to place a bootable image on new or backup boot device J-series packaging forces the upgrade or downgrade of all software components Chapter 5: Operational Monitoring and Maintenance

J-series Package Naming Convention
Operating Juniper Networks Routers—J-series J-series software packages are named as follows: junos-jseries-m.nZnumber-region.tgz m.n is the major version number Z is a single uppercase letter A: Alpha B: Beta R: Release I: Internal number is the release number; might include the build number for that release region is either domestic or export Example: junos-jseries-8.2R2.4-domestic.tgz Chapter 5: Operational Monitoring and Maintenance

Upgrading JUNOS Software
Operating Juniper Networks Routers—J-series Download and install a new package: Use the J-Web Manage > Software page to download and install a package from a remote server or the local PC Or use the request system software add CLI command Keep locally stored packages in /var/tmp for easy cleanup Look out for problems relating to low storage space File system clean up is covered in a subsequent section Chapter 5: Operational Monitoring and Maintenance

Upgrade Example (1 of 2) Operating Juniper Networks Routers—J-series Use the J-Web Manage > Software > Install Package page to install a package from a remote server An FTP-based URL is shown in this example Chapter 5: Operational Monitoring and Maintenance

Upgrade Example (2 of 2) Operating Juniper Networks Routers—J-series You are presented with status indications as the upgrade process proceeds Watch for any error messages during the upgrade Chapter 5: Operational Monitoring and Maintenance

Rollback System Software
Operating Juniper Networks Routers—J-series By default, a copy of the previous software package is stored in /packages/ Use the request system software rollback CLI operational-mode command or the J-Web Manage > Software > Downgrade page to restore the previous version Normally used when problems are encountered with new software Backup package can be deleted through J-Web or CLI to conserve space as needed request system software rollback junos-8.3R2.8-domestic will become active at next reboot WARNING: A reboot is required to load this software correctly WARNING: Use the 'request system reboot' command WARNING: when software installation is complete request system reboot Reboot the system ? [yes,no] (no) yes Chapter 5: Operational Monitoring and Maintenance

Backing Up Existing Software
Operating Juniper Networks Routers—J-series Removable Compact Flash Drive (or USB Storage Device) Primary Compact Flash Drive Base operating system, JUNOS software, and configuration files are copied during a snapshot Back up system software and configuration to alternative boot device: Before major upgrade to ensure system recovery, if necessary After upgrade when system is judged to be stable; permits recovery from primary compact flash drive failures Use the CLI request system snapshot command or the J-Web Manage > Snapshot page Chapter 5: Operational Monitoring and Maintenance

Snapshot Options Operating Juniper Networks Routers—J-series Snapshot supports several important arguments: media: Explicitly identify the target device; source device is always the current boot device as-primary: Prepares the removable compact flash drive for use in the primary compact flash slot Needed so that the root partition can be mounted correctly when used in the primary compact flash drive slot Not applicable to USB device Not necessary with software Release 7.5 and later partition: Lays down a new partition table; required when using new (non-JUNOS software-formatted) device factory: Copy only factory-default files request system snapshot media ? Possible completions: compact-flash Write snapshot to compact flash usb Write snapshot to device connected to USB port Chapter 5: Operational Monitoring and Maintenance

Snapshot Example: New Compact Flash Device
Operating Juniper Networks Routers—J-series The partition switch is needed to prepare a new device for a snapshot Copies from the current boot device to the other device Removable Compact Flash inserted ata2 at port 0x170-0x177,0x376 irq 15 on isa0 ad2: 244MB <Hitachi XXM2.3.0> [695/15/48] at ata2-master using BIOSPIO request system snapshot partition Clearing current label... Partitioning ad2 ... Running newfs (134Mb) on ad2s1a... Running newfs (24Mb) on ad2s1e... Copying '/dev/ad0s1a' to '/dev/ad2s1a' .. (this may take a few minutes) Copying '/dev/ad0s1e' to '/dev/ad2s1e' .. (this may take a few minutes) The following filesystems were archived: / /config Backup compact flash device is detected upon insertion The partition switch results in the creation of a new partition table The contents of the root (/) and /config file systems are copied to target device Chapter 5: Operational Monitoring and Maintenance

J-series File System Overview Key directory and file locations include: /: The root file system—housed on boot device /config: Location for the active configuration (juniper.conf.gz), first 3 rollbacks, rescue configuration, and license data—housed on boot device /var: User homes, log file, and temporary storage /var/db/config: Location of rollback indexes 4–49 /var/home: Nonroot user home directories /var/log: Location of system log (and trace) files /var/tmp: Location of various temporary files, such as core dumps, and the recommended storage area for JUNOS software packages /var/sw/pkg/: Storage for packages successfully installed for use with software rollback operations Chapter 5: Operational Monitoring and Maintenance

File System Cleanup Compact flash space is limited—view usage with J-Web Monitor > System page Use the J-Web Manage > Files page to free up space Often required to complete software upgrades Or use some combination of CLI file delete command and request system software delete-backup command Cleanup wizard Manual cleanup Chapter 5: Operational Monitoring and Maintenance

Password Recovery Process
Operating Juniper Networks Routers—J-series Password Recovery Process Steps: Obtain console access and reboot the system At the boot loader prompt, press the Spacebar to obtain the ok prompt Enter boot -s to boot into single-user mode When prompted, enter recovery The system performs disk checks and places you at the CLI prompt Follow on-screen instructions to enter configuration mode and reset root password Commit the changes and reboot the system System watchdog timer disabled Enter full pathname of shell or 'recovery' for root password recovery or RETURN for /bin/sh: recovery Chapter 5: Operational Monitoring and Maintenance

This slide left intentionally blank! Chapter 5: Operational Monitoring and Maintenance

Review Questions Operating Juniper Networks Routers—J-series List two methods for monitoring J-series platform operation. What does a blinking power LED indicate? What command displays interface statistics in real time? Describe switches that you can use with the ping and traceroute utilities. What command will search a long file for instances of the word “fail”? How could you easily count the number of such instances? What is the purpose of a snapshot command? Describe software packaging and upgrade procedures. Chapter 5: Operational Monitoring and Maintenance

Lab 3: Operational Monitoring
Operating Juniper Networks Routers—J-series Use J-Web and the CLI to monitor and maintain a J-series platform. Chapter 5: Operational Monitoring and Maintenance

Education Services

Operating Juniper Networks Routers in the Enterprise

Similar presentations

Presentation on theme: "Operating Juniper Networks Routers in the Enterprise"— Presentation transcript:

Similar presentations

About project

Feedback

Log in

Auth with social network:

Operating Juniper Networks Routers in the Enterprise

Similar presentations

Presentation on theme: "Operating Juniper Networks Routers in the Enterprise"— Presentation transcript:

Similar presentations

About project

Feedback