Skip to main content

From IOS to Junos Series - Foreword

IOS to JUNOS challenge


I have set myself a small challenge of obtaining JNCIA-Junos in the next few week. To assist in achieving this to supplement the study material on the Juniper web site, I have set myself up a small lab environment using VMWare EXSi 5.0 Hypervisor and Juniper Olive (JUNOS 10.1). I got great help from http://routerjockey.com/2009/10/03/running-junos-under-vmware/

I currently have the following at my disposal from the Juniper web site:

  • JNCIA-Junos_SG_part_1_09-16-2010.pdf

  • JNCIA-Junos_SG_part_2_09-16-2010.pdf


I also bought two kindle books

  • JUNOS Enterprise Routing [Kindle Edition] By: Doug Marschke, Harry Reynolds

  • JUNOS Enterprise Switching [Kindle Edition] By: Doug Marschke, Harry Reynolds


The exam blue print can be found here http://www.juniper.net/us/en/training/certification/resources_jnciajunos.html

I hope to tick these off as I work through my lab. I have quickly written the following objects for myself which I will expand as I progress on my journey.

  • Host Name

  • Management IP

  • Time

  • User (admin and read only)

  • SNMP

  • SSH

  • Telnet

  • HTTPS

  • Syslogging

  • Basic routing RIP - Junos1 to Junos2

  • Basic Routing OSPF - Junos 2,3,4,5

  • Basic Routing BGP - Junos 4,5

  • Access List - Protect SSH access, routes filters

  • VLAN ??

  • IP Helper???

  • VRRP ???


 

The Lab Diagram


[caption id="attachment_286" align="aligncenter" width="419" caption="Junos Lab Layout"]Junos Lab Layout[/caption]

 

My Hardware


HP ML110 G6 , 8 GB Memory, 3 Hard disks (250GB), 2 X 1GB no RAID (couldn't get it to work)

ESXi 5.0. Tip for installation, use the integrated remote management console and virtual media to boot from the ISO image. The CD drive in the system is SATA attached and VMWare ESXi 4.1 did not find the device during installation, I didn't even both when upgrading to 5.0.

 

The Journey is more important that the destination


This is a journey from me, the end goal is a bonus. At this point all I have done on Junos is set and IP address and check ping connectivity so I have no idea how this series is going to go, or what sort of learning point it is going to throw up comming from a Cisco background. The ultimate goal is to progress beyond JCNIA-Junos, but I don't want to get ahead of myself.

Watch this space for Updates.........

 

Comments

  1. Hi,

    I'm just about to do what you're doing. I've recently gotten my CCNP and am now
    getting the vibe, when looking for a new job, that some JunOS knowledge is not
    a good thing, but a necessary thing to have. :-)

    So I just got me a olive setup (using GNS3) and am now reading "JunOS for dummies"
    (terrible book) and "JunOS cookbook" (seems to be better so far) to get the JNCIA and
    hopefully the JNCIS if time permits.

    I'll follow your progress closely. :-)

    Cheers,
    Sven.

    ReplyDelete

Post a Comment

Popular posts from this blog

Break the Network Emulators out of the Cloud

Cisco IOU and JunoSphere Recently both Cisco and Juniper have announced the availability of online resources to provide hands on training over the internet. They have built software emulators in the cloud that can be accessed remotely for a cost. These solutions are based purely around the certification programs and therefore are pretty rigid in the topology that are provided, not to mention the re-occurring cost. http://www.juniper.net/us/en/company/press-center/press-releases/2011/pr_2011_05_16-03_01.html https://learningnetworkstore.cisco.com/market/prod/listSubCatLearnLab.se.work?TRGT=85&/nxt/rcrs/=2559 Rack Rentals There are training providers such as Internetwork Expert (http://www.ine.com/) and IPexpert (http://www.ipexpert.com/) who provide rack rentals based on their training materials. These guy cannot possibly compete going forward. To keep these sustainable they will need to reduce the overhead of building physical racks, providing power and space for the racks. Using e

VMWARE ESXi 5.0 Command line quickies

Hi, It has been a long time since my last posts, but recently I have been working on my home ESXi lab so I thought I would share. I switched over to using Apple Mac just over a year ago, so I don't have a windows machine running by default to run the vSphere client software and generally all I want to do is startup VMs and switch off the ESXi server when I am done. I did some searching and found that I could use vmware vim-cmd if I SSHed into the ESXi server. This need to be enabled at the console, then you can use putty or your tool of choice to connect. Anyway there are several commands the following to me are most useful. List all Virtual Machines vim-cmd vmsvc/getallvms Get a Virtual Machines state (on/off etc) vim-cmd  vmsvc/power.getstate Power on a virtual machine vim-cmd vmsvc/power.on Combining command to a one liner you can find out the power on state of all Virtual Machines vim-cmd vmsvc/getallvms && for x in `vim-cmd vmsvc/getallvms|

Where are all the AAA and PKI solutions gone for Dot1x

More Question than answers (This series will be based on an enterprise with >20,000 dot1x devices) I have been looking into dot1x authentication for Wired and Wireless devices based on device identity using x.509 Certificates. While I understand PKI, AAA, PEAP and sorts I had never really had the opertunity to bring these technologies together. I quickly found out that despite this stuff being around for years,  it was difficult to answer the following questions: Which PKI solution should I use? Which AAA solution should I use? How to setup the PKI solution? Does the PKI server need to be part of AD? What if the clients are not in AD e.g. Wireless Tablets? How do I issue certificates for devices? How to configure the devices (wired and wireless)? What AAA server do I use? How do configure the rules and policies and identify clients?   What are the answers? I am going to kick off a series here at networking-guru.net that tries to address the question above; I have l