VIRL versus Junosphere

9 06 2015

I’ve been using Junosphere a lot recently, and it’s a great tool – quick and easy creation of topologies without the need to go to a physical lab to try things out. Takes the guesswork out of a lot of things, which is a real bonus. There are obviously a few things you can’t do in a virtual environment that would be possible in a real one (e.g. QoS, MTU greater than 2000 bytes, MS-MIC in an MX), but it caters for 80% of what you need.

I always thought that it put Juniper leagues ahead of Cisco because you can buy credits to use the system right on the front page. Cisco were late to the party with something called VIRL – Virtual Internet Routing Lab.  They were late, but rumour had it that a lot of developers moved from Juniper to Cisco to bring VIRL about.  However Junosphere always had the edge for the networking student (as we all remain, whether we are JNCIE or not) because of its accessibility – with VIRL you had to be a Cisco customer and gain access through your account manager.  I’ll stick with GNS3 thanks!

That appears to have changed now, and you can get access to VIRL ‘personal edition’ for $199 per year.  Now we’re talking.  Since it runs on Openstack, you can run up other third-party VMs alongside NXOS, IOS and IOS-XE.  Network Inferno has a nice guide on integrating Juniper’s vSRX (formerly Firefly) into VIRL, which looks pretty comprehensive, although I’ve not tried it yet.

I think need to get a copy of this – only problem is it needs me to get a new quad-core laptop with the virtualization extensions in the BIOS to replace my cranky old Lenovo.  Ho hum!

First steps with Python and Junos

27 04 2015

I’m just spending the day trying to get my head around some very basic automation, so I thought I would install Python 2.7 and work through some of the tutorials on the Techwiki to see how I get on.

Read the rest of this entry »

Freddie Mercury

26 11 2013

Is it just me or does it look like Freddie Mercury now works for Juniper?


TDR Cable Test on EX switches – CLI procedure…

24 02 2012

I recently wrote up my experience with a cable-test wizard in the JWeb interface, and was prompted to give it a go at the CLI. Turns out you can do that too of course…
Read the rest of this entry »

Juniper’s ‘Translator in the Cloud’

30 06 2011

Interesting and simple description of how Juniper implement a translator to enable their website for IPv6 users. What’s also interesting is that they don’t make mention of what the ‘translator’ actually is… If it were a Junos device, I’m sure they’d have made a meal of it, but I am assuming it is an F5 or an A10 box.

Juniper SRX 11.1 – SSL VPN termination

20 06 2011

Just seen in the release notes for Junos 11.1 for branch SRX that it will terminate SSL VPNs from Pulse clients.  Now that’s a nice thing – but calls into question why I bought my Juniper SA.  I think the SA will do some degree of network access control (NAC) for me on the corporate wired LAN as well, but perhaps I can make do with the SRX for remote access.

The thing to watch out for is that you need to have a licence for remote access on the SRX to terminate Pulse clients there. It is billed as ‘dynamic VPN’ licences, but will apparently work for Pulse clients too.  If you’ve bought licences for SSL VPNs on your SA, you won’t be able to terminate these on your SRX unless you get different licences.

I need to try this out a bit further (when time allows) and report back, I think…

More new Juniper stuff. Big stuff.

8 03 2011

Bloody hell – Juniper are on fire at the moment.  First we get the new QFX switches supporting more 10G and FCoE in a single rack U than you can shake a stick at, and now we get the ‘converged supercore’, in the form of the PTX5000 and PTX9000.

Jesus, these things are big… Read the rest of this entry »