Internal Function for Backup Configuration

This is function to backup configuration without any tools, just prepare FTP server as destination configuration. System archive will be copy current configuration every time you do command commit sync for redundancy RE or commit for single RE. You can use serveral protocol for copy config from Junos to Server: ftp, http, scp.


archive-sites {
file:///;
ftp://username@host:url-path password password;
http://username@host:url-path password password;
scp://username@host:url-path password password;
}


example:
set system archival configuration archive-sites "ftp://user:password@1.2.3.4/config/node"


For advanced archieve you can use free third software 'rancid' http://www.shrubbery.net/rancid/

Graceful-restart in Juniper

I share simple explanation about graceful-restart in Juniper router:

set routing-instances R-INSTANCE-A routing-options graceful-restart

Explanation is graceful-restart enable by default at the moment create routing protocols, to disable graceful-restart using:

set routing-instances R-INSTANCE-A routing-options graceful-restart disable

If we load configuration from file, didn't configure line-by-line, so it's possible one routing-instance routing-options graceful-restart command appear and another routing-instance routing-options graceful-restart not appear, so for the same configuration, better we delete the command config not graceful-restart disable.

We can verify with command graceful-restart is enable or disable

On Juniper with OSPF dynamic-routing-protocol enable, so we can verify with 'show ospf overview'

...

Restart: Enabled

Restart duration: …sec

Restart grace period: …sec

Helper mode: Enabled

...

Graceful-restart function is for maintance routing protocols neighbor for example OSPF, if we have 3 router G1 --- G2 --- G3, all running OSPF, at the moment on G2 RE (routing engine) master failed and switch to RE backup, OSPF neighbor status in G1 dan G3 will down, but because G2 enable graceful-restart enable, G1 still send traffic to G2 until graceful-restart timer in G2 expire while wait RE backup will be handle as master, so traffic is not interrupt until RE backup be master. Different case if graceful-restart disable G1 will discard traffic even G2 have redundancy RE, so better graceful-restart is enable.

If we enable graceful-restart in single RE, it's be useless configuration. Every routing-protocols have different charateristic of graceful but overall function is same.

For reference of OSPF graceful: RFC3623

Next time I will test on lab: Cisco and Juniper.

CCIE to be continue

Hi ccie reader or reader, long time I'm not update blog. I'm very busy to make my life is interesting and not bored. Many experience, new experience and even fresh experience I got. Alhamdulillah.

I'll update about me. I leave from comfort zone, what is mean? I resign from ISP company and work as contractor. I work without guarantee of time, I do project, if project is finish or client don't need me then contract finish. Uncomfortable but I enjoy. I work with client have project out of cisco. I never touch and telnet cisco. Am I hate with cisco? no. I will take experience from another vendor to built ability cisco. I can get comparasion and other perspective of cisco.

How about ccie journey? journey to be continue, it's part of journey. Ccie is the final? no, ccie is beginning to get a lot of experience, ccie is gate to enter IP gate. if someone say I'm network engineer don't believe it before he mention ccie number.

Past Time ... Next Time will coming

Very long time, I'm not update this blog, blog about network. Not all content this blog about network, sometime about news, technology and life. I will update my posision now, many experience life, interesting, exciting from last I post around one year. Now my job is Network Quality still in same company, but there is interesting in last two year, I have new experience, my bos give special job to learn about cellular network, right cellular network in cellular company. My company is child company from the cellular company where is I join. I have new experience in there, security, cellular network (2G, 3G etc) and with many vendor network, wow is cool right.

One make me very interesting that is security. I configure, design, clarify high/low level design, optimize and audit security. What environment is ? Firewall Cisco PIX, Cisco ASA, Juniper NetScreen and the biggest firewall Juniper SRX 5800. I do with 4 firewall 2 from Cisco, 2 from Juniper. All firewall different syntax and flow, but concept little same. I like with this experience, interesting and very exciting for me, never I do it before.

Other experience is from Ericsson, Gi Network for cellular network from GGSN until Internet, GGSN from Juniper/Ericsson environment, SASN Cluster (Deep Packet Inspection environment), MSP (multi service proxy). Last from Motorola with OSN (Optimizing Services Node) all new experience is very very interesting, exciting and cool :D.

How about now, still exciting job ? of course, Network Quality is new for me and I will make it excting like before ;)