[AusNOG] AWS Direct Connect & Juniper

[Andrew Cowan]

Hi Chris,

Thanks for your suggestion.  I checked the firewall and got the output
below, I think this just means the firewall is disabled, so no problem
there.

> show configuration firewall

filter filter-jflow {

    term 1 {

        then {

            sample;

            accept;

        }

    }

}


> show configuration firewall family inet



{primary:node0}



I did find a problem with the VLANing, the router was sending tagged traffic
to a switch with the VLAN on the default.  I can now ping the remote router
(your suggestion for the routing instance was useful), last thing I¹m
looking at now is BGP.

Cheers,

ANDY COWAN
+61 430 034 642 

From:  Chris Kawchuk <juniperdude at gmail.com>
Date:  Friday, 23 January 2015 9:58 am
To:  Andrew Cowan <andycowan at gmail.com>
Cc:  Skeeve Stevens <skeeve+ausnog at theispguy.com>, "ausnog at lists.ausnog.net"
<ausnog at lists.ausnog.net>
Subject:  Re: [AusNOG] AWS Direct Connect & Juniper

Check for a firewall filter on the egress of the interface, or a firewall
filter applied to lo0.0 that's denying it/dropping it. (firewall family
inet, interface unit x family inet filter input/output <x>, etc..)

If the interface is in a VR, you'll need to ping <1.1.1.1> routing-instance
<your-VR>; likewise if in a VR, your BGP configuration needs to be in the
[routing-instance <vrf> protocols bgp ] stanza.

JunOS "show arp" is always your friend, to see if you can at least L2-ARP
for an address on that network. Posting relevant configlets/stanzas may also
help.

- Ck.

On 23/01/2015, at 9:24 AM, Andrew Cowan <andycowan at gmail.com> wrote:

> 
> Layer 2 is up, we have done some port mirroring and can see the TCP SYN
> packets coming in on port 179, but the router isn¹t sending anything back.  It
> may be routing rather than BGP because we can¹t ping either.



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20150123/dcd7ab10/attachment.html>