Professional Documents
Culture Documents
Sunnyvale, CA 94089
USA
408-745-2000
www.juniper.net
Worldwide Education Services Worldwide Education Services
Configuring and Monitoring
QFabric Systems
12.c
Instructor Guide
Course Number: EDU-JUN-CMQS
This document is produced by Juniper Networks, Inc.
This document or any part thereof may not be reproduced or transmitted in any form under penalty of law, without the prior written permission of Juniper Networks
Education Services.
Juniper Networks, Junos, Steel-Belted Radius, NetScreen, and ScreenOS are registered trademarks of Juniper Networks, Inc. in the United States and other
countries. The Juniper Networks Logo, the Junos logo, and JunosE are trademarks of Juniper Networks, Inc. All other trademarks, service marks, registered
trademarks, or registered service marks are the property of their respective owners.
Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice.
YEAR 2000 NOTICE
Juniper Networks hardware and software products do not suffer from Year 2000 problems and hence are Year 2000 compliant. The Junos operating system has
no known time-related limitations through the year 2038. However, the NTP application is known to have some difficulty in the year 2036.
SOFTWARE LICENSE
The terms and conditions for using Juniper Networks software are described in the software license provided with the software, or to the extent applicable, in an
agreement executed between you and Juniper Networks, or Juniper Networks agent. By using Juniper Networks software, you indicate that you understand and
agree to be bound by its license terms and conditions. Generally speaking, the software license restricts the manner in which you are permitted to use the Juniper
Networks software, may contain prohibitions against certain uses, and may state conditions under which the license is automatically terminated. You should
consult the software license for further details.
Configuring and Monitoring QFabric Systems Instructor Guide, Revision 12.c
Copyright 2012 Juniper Networks, Inc. All rights reserved.
Printed in USA.
Revision History:
Revision 12.aJuly 2012
Revision 12.bSeptember 2012
Revision 12.cOctober 2012
The information in this document is current as of the date listed above.
The information in this document has been carefully verified and is believed to be accurate for software Release 12.2X50-D20.4. Juniper Networks assumes no
responsibilities for any inaccuracies that may appear in this document. In no event will Juniper Networks be liable for direct, indirect, special, exemplary,
incidental, or consequential damages resulting from any defect or omission in this document, even if advised of the possibility of such damages.
www.juniper.net Contents iii
Contents
Chapter 1: Course Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-1
Chapter 2: System Overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-1
QFabric System Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-3
Components and Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-6
Control Plane and Data Plane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-22
Chapter 3: Software Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3-1
Architecture Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-3
Software Abstractions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-7
Internal Protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3-18
Chapter 4: Setup and Initial Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-1
System Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-3
Initial Configuration Tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-15
Configuring Network Interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-27
Lab 1: Setup and Initial Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-42
Chapter 5: Layer 2 Features and Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-1
Layer 2 Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-3
Layer 2 Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-14
Case Study . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-23
Lab 2: Layer 2 Features and Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-33
Chapter 6: Layer 3 Features and Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-1
Layer 3 Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-3
Layer 3 Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-16
Case Study . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-25
Lab 3: Layer 3 Features and Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-36
Chapter 7: Network Storage Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-1
Data Center Storage Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7-3
Storage Technologies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-15
Chapter 8: Fibre Channel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8-1
Fibre Channel Operation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8-3
Fibre Channel over Ethernet Operation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8-14
Configuration and Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8-25
Lab 4: Fibre Channel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8-45
Appendix A: System Upgrades . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-1
Standard Software Upgrades . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-3
Nonstop Software Upgrades . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-11
iv Contents www.juniper.net
Appendix B: Acronym List . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-1
Appendix C: Answer Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . C-1
www.juniper.net Course Overview v
Course Overview
This two-day course is designed to provide students with intermediate knowledge of the QFabric
system. Students will be provided an overview of the QFabric system with detailed coverage of its
components, design, and architecture. Students will learn how the system is deployed and
operates and will be provided configuration and monitoring examples. Through demonstrations
and hands-on labs, students will gain experience in configuring and monitoring the QFabric system.
This course uses the Juniper Networks QFX3000-M system for the hands-on component. This
course is based on the Junos operating system Release 12.2X50-D20.4.
Objectives
After successfully completing this course, you should be able to:
Compare legacy environments with the QFabric system.
Describe the hardware components of the QFabric system.
Explain control plane and data plane functions in the QFabric system.
Describe the goals of the software architecture.
Explain the purpose and functions of the Director software.
Configure and verify some key software abstractions.
List and describe operations of internal protocols used in the QFabric system.
Perform the initial setup and configuration tasks.
Configure and monitor network interfaces.
Log in to system components and verify status.
Explain bridging concepts and operations for the QFabric system.
List and describe supported Layer 2 protocols and features.
Configure and monitor key Layer 2 protocols and features.
Explain routing concepts and operations for the QFabric system.
List and describe supported Layer 3 protocols and features.
Configure and monitor key Layer 3 protocols and features.
Identify the purposes of data center storage along with the challenges.
Describe and compare data center storage technologies.
List and describe data center storage networking protocols.
Describe common Fibre Channel topologies, components, and related terminology.
Explain Fibre Channel operations and issues that can impact protocol operations.
Configure and monitor Fibre Channel functionality on the QFabric system.
Identify the various QFabric system software packages.
Perform a standard software upgrade.
Perform a nonstop software upgrade.
Intended Audience
This course benefits all individuals responsible for selling, implementing, monitoring, or supporting
the QFabric system.
Course Level
CMQS is an intermediate-level course.
vi Course Overview www.juniper.net
Prerequisites
The following are the prerequisites for this course:
Intermediate TCP/IP networking knowledge;
Intermediate Layer 2 switching knowledge;
Introductory data center technologies knowledge; and
Attend the Junos Enterprise Switching (JEX) course, or have equivalent experience.
Additionally, the Junos Intermediate Routing (JIR) course is recommended.
www.juniper.net Course Agenda vii
Course Agenda
Day 1
Chapter 1: Course Introduction
Chapter 2: System Overview
Chapter 3: Software Architecture
Chapter 4: Setup and Initial Configuration
Lab 1: Setup and Initial Configuration
Day 2
Chapter 5: Layer 2 Features and Operations
Lab 2: Layer 2 Features and Operations
Chapter 6: Layer 3 Features and Operations
Lab 3: Layer 3 Features and Operations
Chapter 7: Network Storage Fundamentals
Chapter 8: Fibre Channel
Lab 4: Fibre Channel
viii Document Conventions www.juniper.net
Document Conventions
CLI and GUI Text
Frequently throughout this course, we refer to text that appears in a command-line interface (CLI)
or a graphical user interface (GUI). To make the language of these documents easier to read, we
distinguish GUI and CLI text from chapter text according to the following table.
Input Text Versus Output Text
You will also frequently see cases where you must enter input text yourself. Often these instances
will be shown in the context of where you must enter them. We use bold style to distinguish text
that is input versus text that is simply displayed.
Defined and Undefined Syntax Variables
Finally, this course distinguishes between regular text and syntax variables, and it also
distinguishes between syntax variables where the value is already assigned (defined variables) and
syntax variables where you must assign the value (undefined variables). Note that these styles can
be combined with the input style as well.
Style Description Usage Example
Franklin Gothic Normal text. Most of what you read in the Lab Guide
and Student Guide.
Courier New Console text:
Screen captures
Noncommand-related
syntax
GUI text elements:
Menu names
Text field entry
commit complete
Exiting configuration mode
Select File > Open, and then click
Configuration.conf in the
Filename text box.
Style Description Usage Example
Normal CLI
Normal GUI
No distinguishing variant. Physical interface:fxp0,
Enabled
View configuration history by clicking
Configuration > History.
CLI Input
GUI Input
Text that you must enter. lab@San_Jose> show route
Select File > Save, and type
config.ini in the Filename field.
Style Description Usage Example
CLI Variable
GUI Variable
Text where variable value is already
assigned.
policy my-peers
Click my-peers in the dialog.
CLI Undefined
GUI Undefined
Text where the variables value is
the users discretion or text where
the variables value as shown in
the lab guide might differ from the
value the user must input
according to the lab topology.
Type set policy policy-name.
ping 10.0.x.y
Select File > Save, and type
filename in the Filename field.
www.juniper.net Additional Information ix
Additional Information
Education Services Offerings
You can obtain information on the latest Education Services offerings, course dates, and class
locations from the World Wide Web by pointing your Web browser to:
http://www.juniper.net/training/education/.
About This Publication
The Configuring and Monitoring QFabric Systems Instructor Guide was developed and tested using
software Release 12.2X50-D20.4. Previous and later versions of software might behave differently
so you should always consult the documentation and release notes for the version of code you are
running before reporting errors.
This document is written and maintained by the Juniper Networks Education Services development
team. Please send questions and suggestions for improvement to training@juniper.net.
Technical Publications
You can print technical manuals and release notes directly from the Internet in a variety of formats:
Go to http://www.juniper.net/techpubs/.
Locate the specific software or hardware release and title you need, and choose the
format in which you want to view or print the document.
Documentation sets and CDs are available through your local Juniper Networks sales office or
account representative.
Juniper Networks Support
For technical support, contact Juniper Networks at http://www.juniper.net/customers/support/, or
at 1-888-314-JTAC (within the United States) or 408-745-2121 (outside the United States).
x Additional Information www.juniper.net
Configuring and Monitoring
QFabric Systems
Chapter 1: Course Introduction
Configuring and Monitoring QFabric Systems
Chapter 12 Course Introduction www.juniper.net
This Chapter Discusses:
Objectives and course content information;
Additional Juniper Networks, Inc. courses; and
The Juniper Networks Certification Program.
Configuring and Monitoring QFabric Systems
www.juniper.net Course Introduction Chapter 13
Introductions
The slide asks several questions for you to answer during class introductions.
Configuring and Monitoring QFabric Systems
Chapter 14 Course Introduction www.juniper.net
Course Contents
The slide lists the topics we discuss in this course.
Configuring and Monitoring QFabric Systems
www.juniper.net Course Introduction Chapter 15
Prerequisites
The slide lists the prerequisites for this course.
Configuring and Monitoring QFabric Systems
Chapter 16 Course Introduction www.juniper.net
General Course Administration
The slide documents general aspects of classroom administration.
Configuring and Monitoring QFabric Systems
www.juniper.net Course Introduction Chapter 17
Training and Study Materials
The slide describes Education Services materials that are available for reference both in the
classroom and online.
Configuring and Monitoring QFabric Systems
Chapter 18 Course Introduction www.juniper.net
Additional Resources
The slide provides links to additional resources available to assist you in the installation,
configuration, and operation of Juniper Networks products.
Configuring and Monitoring QFabric Systems
www.juniper.net Course Introduction Chapter 19
Satisfaction Feedback
Juniper Networks uses an electronic survey system to collect and analyze your comments and
feedback. Depending on the class you are taking, please complete the survey at the end of the class,
or be sure to look for an e-mail about two weeks from class completion that directs you to complete
an online survey form. (Be sure to provide us with your current e-mail address.)
Submitting your feedback entitles you to a certificate of class completion. We thank you in advance
for taking the time to help us improve our educational offerings.
Configuring and Monitoring QFabric Systems
Chapter 110 Course Introduction www.juniper.net
Juniper Networks Education Services Curriculum
Juniper Networks Education Services can help ensure that you have the knowledge and skills to
deploy and maintain cost-effective, high-performance networks for both enterprise and service
provider environments. We have expert training staff with deep technical and industry knowledge,
providing you with instructor-led hands-on courses in the classroom and online, as well as
convenient, self-paced eLearning courses.
Courses
You can access the latest Education Services offerings covering a wide range of platforms at
http://www.juniper.net/training/technical_education/.
Configuring and Monitoring QFabric Systems
www.juniper.net Course Introduction Chapter 111
Juniper Networks Certification Program
A Juniper Networks certification is the benchmark of skills and competence on Juniper Networks
technologies.
Configuring and Monitoring QFabric Systems
Chapter 112 Course Introduction www.juniper.net
Juniper Networks Certification Program Overview
The Juniper Networks Certification Program (JNCP) consists of platform-specific, multitiered tracks
that enable participants to demonstrate competence with Juniper Networks technology through a
combination of written proficiency exams and hands-on configuration and troubleshooting exams.
Successful candidates demonstrate a thorough understanding of Internet and security technologies
and Juniper Networks platform configuration and troubleshooting skills.
The JNCP offers the following features:
Multiple tracks;
Multiple certification levels;
Written proficiency exams; and
Hands-on configuration and troubleshooting exams.
Each JNCP track has one to four certification levelsAssociate-level, Specialist-level,
Professional-level, and Expert-level. The Associate-level, Specialist-level, and Professional-level
exams are computer-based exams composed of multiple choice questions administered at Prometric
testing centers worldwide.
Expert-level exams are composed of hands-on lab exercises administered at select Juniper Networks
testing centers. Please visit the JNCP website at http://www.juniper.net/certification for detailed
exam information, exam pricing, and exam registration.
Configuring and Monitoring QFabric Systems
www.juniper.net Course Introduction Chapter 113
Preparing and Studying
The slide lists some options for those interested in preparing for Juniper Networks certification.
Configuring and Monitoring QFabric Systems
Chapter 114 Course Introduction www.juniper.net
Find Us Online
The slide lists some online resources to learn and share information about Juniper Networks.
Configuring and Monitoring QFabric Systems
www.juniper.net Course Introduction Chapter 115
Any Questions?
If you have any questions or concerns about the class you are attending, we suggest that you voice
them now so that your instructor can best address your needs during class.
This chapter contains no review questions.
Configuring and Monitoring QFabric Systems
Chapter 116 Course Introduction www.juniper.net
Configuring and Monitoring
QFabric Systems
Chapter 2: System Overview
Configuring and Monitoring QFabric Systems
Chapter 22 System Overview www.juniper.net
This Chapter Discusses:
Legacy data center environments and the QFabric system;
Hardware components of the QFabric system; and
Control and data plane roles and responsibilities in the QFabric system.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 23
QFabric System Introduction
The slide lists the topics we cover in this chapter. We discuss the highlighted topic first.
Configuring and Monitoring QFabric Systems
Chapter 24 System Overview www.juniper.net
Challenges in Traditional Data Center Environments
Data centers built more than a few years ago face one or more of the following challenges:
The legacy multitier switching architecture cannot provide todays applications and
users with predictable latency and uniform bandwidth. This problem is made worse
when virtualization is introduced, where the performance of virtual machines depends
on the physical location of the servers on which those virtual machines reside.
The power consumed by networking gear represents a significant proportion of the
overall power consumed in the data center. This challenge is particularly important
today, when escalating energy costs are putting additional pressure on budgets.
The increasing performance and densities of modern CPUs has led to an increase in
network traffic. The network is often not equipped to deal with the large bandwidth
demands and increased number of media access control (MAC) addresses and
IP addresses on each network port.
Separate networks for Ethernet data and storage traffic must be maintained, adding to
the training and management budget. Siloed Layer 2 domains increase the overall
costs of the data center environment. In addition, outages related to the legacy
behavior of the Spanning Tree Protocol (STP), which is used to support these legacy
environments, often results in lost revenue and unhappy customers.
Given all of these challenges, data center operators are seeking solutions.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 25
Addressing the Challenges
The Juniper Networks QFabric system offers a solution to many of the aforementioned challenges
found in legacy data center environments.
The QFabric system collapses the various tiers found in legacy data center environments into a
single tier. In the QFabric system, all Access Layer devices connect to all other Access Layer devices
across a very large scale fabric backplane. This architecture enables the consolidation of data center
endpoints and provides better scaling and network virtualization capabilities than traditional data
centers.
The QFabric system functions as a single, nonblocking, low-latency switch that can support up to
thousands of 10-Gigabit Ethernet ports or 2-Gbps, 4-Gbps, or 8-Gbps Fibre Channel ports to
interconnect servers, storage, and the Internet across a high-speed, high-performance fabric. The
system is managed as a single entity. The control and management element of the system
automatically senses when components are added or removed from the system and dynamically
adjusts the amount of processing resources required to support the system. This intelligence helps
the system use the minimum amount of power to run the system efficiently.
The architecture of the system is flat, nonblocking, and lossless, which allows the network fabric to
offer the scale and flexibility required by small, medium, and large-sized data centers.
Configuring and Monitoring QFabric Systems
Chapter 26 System Overview www.juniper.net
Components and Architecture
The slide highlights the topic we discuss next.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 27
Components of a Traditional Modular Switch
The slide lists the components found in traditional modular switches. These components include:
Linecards with I/O modules: The linecards act as the entry and exit point into and from
the switch.
Backplane: The backplane interconnect and provide high-speed transport for the
attached linecards.
Routing Engine (RE): The RE provide control and management services for the switch
and deliver the primary user interface that allows you to manage the device.
Internal link: The internal link provides the required connectivity between the control
plane and the data plane.
Together, these components allow the switch to perform the functions for which it is designed. We
make a basic comparison between these components and the components found within a QFabric
system on the next slide.
Configuring and Monitoring QFabric Systems
Chapter 28 System Overview www.juniper.net
System Components
The QFabric system comprises four distinct components. These components are illustrated on the
slide and briefly described as follows:
Node devices: The linecard component of a QFabric system, mode devices act as the
entry and exit point into and from the fabric.
Interconnect devices: The fabric component of a QFabric system, Interconnect devices
interconnect and provide high-speed transport for the attached Node devices.
Director devices: The primary Routing Engine component of a QFabric system, Director
devices provide control and management services for the system and deliver the
primary user interface that allows you to manage all components as a single device.
EX Series switches: The control plane link of a QFabric system, EX Series switches
provide the required connectivity between all other system components and facilitate
the required control and management communications within the system.
We provide more details for these components throughout this chapter.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 29
Node Devices
Node devices connect endpoints (such as servers or storage devices) or external networks to the
QFabric system. Node devices have redundant connections to the system's fabric through
Interconnect devices. Node devices are often implemented in a manner similar to how top-of-rack
switches are implemented in legacy multitier data center environments. By default, Node devices
connect to servers or storage devices. However, you can use Node devices to connect to external
networks by adding them to the network Node group. We discuss the network Node group in
subsequent chapters.
The QFX3500 and QFX3600 switches can be used as Node devices within a QFabric system. We
provide system details for these devices on subsequent slides.
By default, the QFX3500 and QFX3600 switches function as standalone switches or node devices
depending on the how the device is ordered. However, through explicit configuration, you can change
the operation mode between standalone to fabric. We provide the conversion process used to
change the operation mode from standalone to fabric on a subsequent slide in this chapter.
Configuring and Monitoring QFabric Systems
Chapter 210 System Overview www.juniper.net
QFX3500 Node Devices
You might want to
point out the
redundant components
for this device. Note
that the redundancy
included at the
device-level is a key to
the overall redundancy
at the system level.
The slide provides a detailed illustration of the QFX3500 Node device with some key information. As
a node device, the QFX3500s four 40 GbE interfaces are dedicated uplink interfaces. However, you
can use only two of the uplink ports, if desired, resulting in a 6:1 oversubscription ratio when fully
provisioned. Note that ports 0-5 and 42-47 have optional support for Fibre Channel and are
incompatible with 1 GbE. This means, when used as non-Fibre Channel ports, only 10 GbE
connections are supported.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 211
QFX3600 Node Devices
You might want to
point out the
redundant components
for this device. Note
that the redundancy
included at the
device-level is a key to
the overall redundancy
at the system level.
The slide provides a detailed illustration of the QFX3600 Node device with some key information. By
default, the first four Quad Small Form-factor Pluggable Plus (QSFP+) 40 Gb ports function as fabric
uplink ports and the remaining 12 QSFP+ ports function as access ports. The default port
assignments can be modified through configuration to designate as few as two uplink ports and as
many as eight uplink ports. Using two uplink ports results in a 7:1 oversubscription ratio when fully
provisioned.
Note that while the physical structure and components of the QFX3600 Node device and the
QFX3600-I Interconnect device are the same, their roles are quite different. These devices have
distinct part numbers and come preprovisioned for their designated roles. Currently no supported
process exists to convert a Node device to an Interconnect device and vice versa.
Configuring and Monitoring QFabric Systems
Chapter 212 System Overview www.juniper.net
Converting Switches to QFabric Nodes
As previously mentioned, the QFX3500 and QFX3600 devices can either serve as standalone
switches or Node devices within a QFabric system. The slide shows the process to verify the current
mode of the devices and how to change that mode, if needed. Note that any time the mode is
changed a reboot is required!
Note that two different SKUs are available for QFX3600 and QFX3500 devices, representing either a
standalone switch or a Node device. If you order the switch as a Node device, you need not perform
the procedure shown on the slide.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 213
Interconnect Devices
Interconnect devices serve as the fabric between all Node devices within a QFabric system. Two or
more Interconnect devices are used in QFabric systems to provide redundant connections for all
Node devices. Each Node device has at least one fabric connection to each Interconnect device in
the system. Data traffic sent through the system and between remote Node devices must traverse
the Interconnect devices, thus making this component a critical part of the data plane network. We
discuss the data plane connectivity details on a subsequent slide in this chapter.
The two Interconnect devices available are the QFX3008-I and the QFX3600-I Interconnect devices.
The model deployed will depend on the size and goals of the implementation. We provide system
details for these devices and some deployment examples on subsequent slides in this chapter.
Configuring and Monitoring QFabric Systems
Chapter 214 System Overview www.juniper.net
QFX3008-I Interconnect Devices
You might want to
point out the
redundant components
for this device. Note
that the redundancy
included at the
device-level is a key to
the overall redundancy
at the system level.
The slide provides a detailed illustration of the QFX3008-I Interconnect device with some key
information.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 215
QFX3600-I Interconnect Devices
You might want to
point out the
redundant components
for this device. Note
that the redundancy
included at the
device-level is a key to
the overall redundancy
at the system level.
The slide provides a detailed illustration of the QFX3600-I Interconnect device with some key
information.
Note that while the physical structure and components of the QFX3600 Node device and the
QFX3600-I Interconnect device are the same, their roles are quite different. These devices have
distinct part numbers and come preprovisioned for their designated roles. Currently, no supported
process exists to convert a Node device to an Interconnect device and vice versa.
Configuring and Monitoring QFabric Systems
Chapter 216 System Overview www.juniper.net
Director Devices
Together, two Director devices form a Director group. The Director group is the management platform
that establishes, monitors, and maintains all components in the QFabric system. The Director
devices run the Junos operating system (Junos OS) on top of a CentOS foundation.
These devices are internally assigned the names DG0 and DG1. The assigned name is determined
by the order in which the device is deployed. DG0 is assigned to the first Director device brought up
and DG1 is assigned to the second Director device brought up. The Director group handles tasks
such as network topology discovery, Node and Interconnect device configuration and startup, and
system provisioning services.
Note that the Director devices currently available are also referred to as enhanced Director devices. In the
future, non-enhanced Director devices will be available to assist with the processing load and responsibilities
assigned to the Director group. Non-enhanced Director devices will not include hard drives and are simply
designed to provide auxiliary support to the Director group. Director groups should always have at least two
enhanced Director devices to ensure redundancy.
Also, note that the interface modules are not hot swappable. To replace an interface module, the Director
device must be powered down.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 217
QFX3100 Director Devices
You may want to point
out the redundant
components for this
device. Note that the
redundancy included at
the device-level is a key
to the overall
redundancy at the
system level.
This slide provides a detailed illustration of the QFX3100 Director device with some key information.
Configuring and Monitoring QFabric Systems
Chapter 218 System Overview www.juniper.net
EX4200 SwitchesControl Plane Network Infrastructure
The EX4200 Ethernet switches support the control plane network, which is a Gigabit Ethernet
management network used to connect all components within a QFabric system. This control plane
network facilitates the required communications between all system devices. By keeping the control
plane network separate from the data plane, the QFabric switch can scale to support thousands of
servers and storage devices. We discuss the control plane network and the data plane network in
more detail on subsequent slides in this chapter.
The model of switch, number of switches, and the configuration associated with these switches
depends on the actual deployment of the QFabric system. In small deployments, two standalone
EX4200 switches are required, whereas in medium to large deployments, eight EX4200 Switches
configured as two Virtual Chassis with four members each is required. Regardless of the deployment
scenario, the 1 Gb ports are designated for the various devices in the system and the uplink ports
are used to interconnect the standalone switches or the Virtual Chassis.
We discuss the port assignments and the required configuration for the Virtual Chassis and
standalone EX4200 Series switches in the next section of this chapter.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 219
Designed for High Availability
The QFabric system is designed for high availability. The individual components and the overall
hardware and software architectures of the system include redundancy to ensure a high level of
operational uptime.
In addition to the redundant hardware components at the device level, the architectural design of
the control and data planes also includes many important qualities that support a high level of
system uptime. One key consideration and implementation reality is the separation of the control
plane and data plane. This design, of course, is an important design goal for all devices that run the
Junos OS. We cover the implementation details of the control and data planes later in this chapter.
Likewise, the system's software architecture maintains high availability by using resilient fabric
provisioning and fabric management protocols to establish and maintain the QFabric system. We
cover the software architecture and describe some of these key considerations in the next chapter.
Configuring and Monitoring QFabric Systems
Chapter 220 System Overview www.juniper.net
QFX3000-G Deployment Example
Large QFabric system deployments include four QFX3008-I Interconnect devices and up to 128 Node
devices, which offers up to 6,144 10 Gb Ethernet ports. Note that each Node device has a 40 Gb
uplink connection to each Interconnect device, thus providing redundant paths through the fabric.
The control plane Ethernet network for large deployments includes two Virtual Chassis, consisting of
four EX4200 Series switches each. Although not shown in this illustration, each component in the
system has multiple connections to the control plane network thus ensuring fault tolerance.
This and the next slide are intended to provide some deployment examples. The examples shown on
these two slides do not represent the only deployment scenarios. In some cases, there might be only
two Interconnect devices with one or two uplink connections from each Node device. Note that these
slides also provide you an opportunity to highlight some of the high availability design aspects of the
QFabric system.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 221
QFX3000-M Deployment Example
Small QFabric system deployments include four QFX3600-I Interconnect devices and up to 16 Node
devices, which offers up to 768 10 Gb Ethernet ports. Note that each Node device has a 40 Gb
uplink connection to each Interconnect device, thus providing redundant paths through the fabric.
The control plane Ethernet network for small deployments includes two EX4200 Series switches.
Although not shown in this illustration, each component in the system has multiple connections to
the control plane network thus ensuring fault tolerance.
Configuring and Monitoring QFabric Systems
Chapter 222 System Overview www.juniper.net
Control Plane and Data Plane
The slide highlights the topic we discuss next.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 223
Summary of Control Plane Functions
The slide provides a summary of the control plane functions. Note that these basic control plane
functions are the same in a QFabric system as they are in a traditional modular switch. The manner
in which these functions are performed is covered in the next chapter.
Configuring and Monitoring QFabric Systems
Chapter 224 System Overview www.juniper.net
Control Plane Network
The control plane functions highlighted on the previous slide are performed over the control plane
Ethernet network, which is supported by a collection of EX4200 Series switches. Note that all system
components have redundant connections to the control plane network. We cover the device-specific
connections on subsequent slides.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 225
Control Plane Connections for Large Deployments: Part 1
This slide and the next few slides provide the control plane network connectivity details for large
QFabric system deployments that use the QFX3008-I Interconnect device. This slide highlights the
control plane network connections for the QFX3008-I Interconnect devices.
The Interconnect devices are assigned ports 38 and 39 on all members of the Virtual Chassis. Port 0
on each of the control boards installed in the Interconnect devices connects to the first Virtual
Chassis (VC 0). Similarly, port 1 on each of the control boards installed in the Interconnect devices
connects to the second Virtual Chassis (VC 1).
You can download a predefined configuration for the Virtual Chassis that supports the control plane
connections. We discuss this configuration in more detail on subsequent slides. The following output
shows the configuration used to support the connections from the Interconnect devices:
{master:0}[edit]
root@VC0# show interfaces | find interconnect
interface-range Interconnect_Device_Interfaces {
member "ge-[0-3]/0/[38-39]";
apply-groups qfabric-int;
description "QFabric Interconnect Device";
}
Configuring and Monitoring QFabric Systems
Chapter 226 System Overview www.juniper.net
Control Plane Connections for Large Deployments: Part 2
The slide highlights the control plane network connections for the QFX3100 Director devices in large
deployments where the QFX3008-I Interconnect devices are used.
Note that Port 42
through Port 47 on the
Virtual Chassis are
reserved for future use
when non-enhanced
Director devices will
be supported.
The Director devices are assigned ports 40 and 41 on all members of the Virtual Chassis. Port 0
through Port 2 on the first interface module (module 0) in the Director devices connect to the first
Virtual Chassis (VC 0). In a similar fashion, Port 0 through Port 2 on the second interface module
(Module 1) in the Director devices connect to the second Virtual Chassis (VC 1). The ports from DG 0
connect to Port 40 and the ports from DG 1 connect to Port 41 on all members of the Virtual
Chassis.
Continued on the next page.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 227
Control Plane Connections for Large Deployments: Part 2 (contd.)
The following output shows the configuration used to support the connections from the Director
devices:
{master:0}[edit]
root@VC0# show interfaces | find director
interface-range Director_Device_DG0_LAG_Interfaces {
member "ge-[0-3]/0/40";
description "QFabric Director Device - DG0";
ether-options {
802.3ad ae0;
}
}
interface-range Director_Device_DG1_LAG_Interfaces {
member "ge-[0-3]/0/41";
description "QFabric Director Device - DG1";
ether-options {
802.3ad ae1;
}
}
In addition to the connections from the Director devices to the Virtual Chassis, you must ensure that
the Director devices are connected to one another directly. Port 3 on the interface modules on both
Director devices is designated for interface bonding purposes. Over these bonded interfaces, the
Director devices form the Director group and perform the required synchronization tasks.
We learn more about the Director group and its software and services in the next chapter.
Configuring and Monitoring QFabric Systems
Chapter 228 System Overview www.juniper.net
Control Plane Connections for Large Deployments: Part 3
The slide highlights the control plane network connections for the Node devices in large deployments
where the QFX3008-I Interconnect devices are used.
The Node devices are assigned Port 0 through Port 31 on all members of the Virtual Chassis. All
Node devices have two control ports, ports C0 and C1. Port 0 on each Node device connects to the
first Virtual Chassis (VC 0). In a similar fashion, Port 1 on each Node device connects to the second
Virtual Chassis (VC 1).
The actual port designations used on each Virtual Chassis for the Node device connections is user
defined. The only requirement for these Node device connections to the control plane network is that
they connect to one of the ports in the defined range, which is Port 0 through Port 31 on all members
of the Virtual Chassis.
The following output shows the configuration used to support the connections from the Node
devices:
{master:0}[edit]
root@VC0# show interfaces | find node
interface-range Node_Device_Interfaces {
member "ge-[0-3]/0/[0-31]";
apply-groups qfabric-int;
description "QFabric Node Device";
}
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 229
Control Plane Connections for Small Deployments: Part 1
This slide and the next few slides provide the control plane network connectivity details for small
QFabric system deployments that use the QFX3600-I Interconnect device. This slide highlights the
control plane network connections for the QFX3600-I Interconnect devices.
The Interconnect devices are assigned ports ge-0/0/16 through ge-0/0/19 on the EX Series
switches. Port C0 on the Interconnect devices connects to the first EX4200 Series switch (EX 0).
Similarly, Port C1 on the Interconnect devices connects to the second EX4200 Series switch (EX 1).
In lieu of using the C0 and C1 ports, C0S and C1S ports also exist. The C0S and C1S ports are
SFP-based and support optical connections. To use optics for the control plane connection, you must
ensure the appropriate EX Series device, which also supports the optical control plane connections.
Note that once small form-factor pluggable transceivers (SFPs) are inserted into the C0S and C1S
ports, the C0 and C1 ports are disabled.
The EX4200 Series
switch configuration
used for the small
deployments will not
likely be ready for
download until 12.2 is
released. This note
serves as an FYI and
will be removed in the
next revision.
You can download a predefined configuration for the EX4200 Series switch to support the control
plane connections. We discuss this configuration in more detail on subsequent slides.
Configuring and Monitoring QFabric Systems
Chapter 230 System Overview www.juniper.net
Control Plane Connections for Small Deployments: Part 2
The slide highlights the control plane network connections for the QFX3100 Director devices in small
deployments where the QFX3600-I Interconnect devices are used.
The Director devices are assigned port s ge-0/0/20 through ge-0/0/23 on the EX4200 Series
switches. Port 0 and Port 1 on the first interface module (module 0) in the Director devices connect
to the first EX4200 Series switch (EX 0). In a similar fashion, Port 0 and Port 1 on the second
interface module (Module 1) in the Director devices connect to the second EX4200 Series switch (EX
0).
In addition to the connections from the Director devices to the EX4200 Series switches, you must
ensure that the Director devices are connected to one another directly. Port 3 on the interface
modules on both Director devices is designated for interface bonding purposes. Over these bonded
interfaces, the Director devices form the Director group and perform the required synchronization
tasks. We learn more about the Director group and its software and services in the next chapter.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 231
Control Plane Connections for Small Deployments: Part 3
The slide highlights the control plane network connections for the Node devices in small
deployments where the QFX3600-I Interconnect devices are used.
The Node devices are assigned ports ge-0/0/0 through ge-0/0/15 on the EX4200 Series switches.
All Node devices have two control ports, ports C0 and C1. Port 0 on each Node device connects to
the first EX4200 Series switch (EX 0). In a similar fashion, Port 1 on each Node device connects to
the second EX4200 Series switch (EX 1).
The actual port designations used on each EX4200 Series switch for the Node device connections is
user defined. The only requirement for these Node device connections to the control plane network
is that they connect to one of the ports in the defined range, which is ports ge-0/0/0 through
ge-0/0/15 on the EX4200 Series switches.
Configuring and Monitoring QFabric Systems
Chapter 232 System Overview www.juniper.net
Download, Load, and Commit
The configuration required on the control plane network switches should be downloaded from
Juniper Networks website. The configuration you download depends on your deployment scenario.
Deployments that use the QFX3008-I Interconnect devices use one configuration for the control
plane network switches and deployments that use the QFX3600-I Interconnect devices use a
different configuration for the control plane network switches.
You gain access to the required configuration on the same webpage through which you download the
Junos OS software. As shown on the slide, the configuration is located in the same section where the
Junos OS images for the QFX products are found. Note that this access requires a login account with
an active support contract. Once you access the required configuration for your deployment
scenario, you can copy the required configuration lines and paste them in to the running
configuration.
Note that you should also add site-specific configuration details manually; including host name,
management address, default route, and user account information including root authentication.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 233
Data Plane Functions
Like traditional modular switches, the QFabric systems data plane has a basic set of functions. The
basic data plane functions are highlighted on the slide and include providing connectivity for network
devices, interconnecting line cards or in the case of the QFabric system Node devices, and
forwarding traffic through the device or system.
We cover the device-specific connections on subsequent slides and the process of forwarding traffic
through the system in subsequent chapters.
Configuring and Monitoring QFabric Systems
Chapter 234 System Overview www.juniper.net
Data Plane Connections: Part 1
This slide and the next slide provide the data plane connectivity details for the QFabric system.
The slide shows sample connections between the Node and Interconnect devices. The connections
between the Node and Interconnect devices use the 40 Gb QSFP+ uplink connections. The actual
wiring plan used between these devices can vary and is determined by the fabric administrator.
The 40 Gb QSFP+ ports on the QFX3500 Node device are fixed and can only be used as uplink ports
to connect that Node device to the systems Interconnect devices.
On the QFX3600 Node device, the first four 40 Gb QSFP+ ports (0 through 3) are enabled by default
as uplink ports and can be used to connect that Node device to the systems Interconnect devices.
You can alter the default port assignments on QFX3600 Node devices through configuration and can
increase or decrease the total number of uplink ports, allowing ports 0-7 to be used as uplink ports.
This gives the QFX3600 node the unique ability to expand its number of fabric uplink ports to a total
of eight (four to each Interconnect device) for a total uplink capacity of 320 Gbps. This approach
does not oversubscribe the uplink throughput capacity, which is useful in situations where
oversubscription cannot be tolerated. Port 0 and Port 1 are fixed as uplink ports and cannot be
changed to revenue ports.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 235
Data Plane Connections: Part 2
The slide provides data plane connectivity details between the Node devices and the system
endpoints. System endpoints might include servers or other networking devices such as routers,
switches, firewalls, or storage devices.
The supported interface types and optics depends on the Node device. The QFX3500 Node device
supports 1 Gb and 10 Gb Ethernet connections with various fiber or copper-based options. The
QFX3500 Node device also supports 2 Gb, 4 Gb, or 8 Gb Fibre Channel. The QFX3600 only supports
10 Gb Ethernet connections using the QSFP+ direct attached copper breakout cables.
The interface types and optics used depends on the requirements for a given deployment scenario.
For more details on the supported interface types and options refer to datasheet for the QFabric
system at http://www.juniper.net/us/en/local/pdf/datasheets/1000393-en.pdf.
Note that we cover interface configuration and monitoring for the QFabric system in subsequent
chapters.
Configuring and Monitoring QFabric Systems
Chapter 236 System Overview www.juniper.net
This Chapter Discussed:
Legacy datacenter environments and the QFabric system;
Hardware components of the QFabric system; and
Control and data plane roles and responsibilities in the QFabric system.
Configuring and Monitoring QFabric Systems
www.juniper.net System Overview Chapter 237
Review Questions
1.
Some of the key benefits the QFabric system offers over a traditional tiered Layer 2 network are improved
scalability, efficient use of resources, and improved performance, which is a result of the decrease of
end-to-end latency.
2.
The four main components of the QFabric system are the Node devices, Interconnect devices, Director
devices, and EX4200 Series switches. The Node devices function as intelligent line cards and are the entry
and exit point for traffic entering or leaving the system. The Interconnect devices serve as the system's fabric
and are used to interconnect the various Node devices. All traffic passing between two distinct Node devices
passes through at least one Interconnect device. The Director devices are the control entity for the system
and are often compared to the Routing Engine in traditional modular switches. The EX4200 Series switches
make up the infrastructure used to support the control plane network.
3.
The control plane functions consist of discovering and provisioning the system, managing routing and
switching protocol operations, exchanging reachability information, and discovering and managing paths
through the fabric. The data plane functions consist of providing connectivity for attached servers and
network devices, interconnecting Node devices through the fabric construct, and forwarding traffic through
the system.
Configuring and Monitoring QFabric Systems
Chapter 238 System Overview www.juniper.net
Configuring and Monitoring
QFabric Systems
Chapter 3: Software Architecture
Configuring and Monitoring QFabric Systems
Chapter 32 Software Architecture www.juniper.net
This Chapter Discusses:
Goals of the software architecture;
Purpose and functions of Director software;
Configuration of key software abstractions; and
Operations of internal protocols used in a QFabric system.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 33
Architecture Overview
The slide lists the topics we cover in this chapter. We discuss the highlighted topic first.
Configuring and Monitoring QFabric Systems
Chapter 34 Software Architecture www.juniper.net
Architectural Goals
The slide lists some of the key architectural goals of the QFabric system. Some of the goals listed on
the slide relate to and help solve many of the challenges found in traditional multitier data center
environments that we discussed in the previous chapter.
To achieve these goals and allow for proper operation of the system, a number of software elements
are required and must work together. We describe these software elements throughout this chapter.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 35
Achieving the Architectural Goals
To achieve the architectural goals described on the previous slide, a number of software elements
are required and used within the QFabric system. The key software elements used to achieve the
desired goals include a collection of virtual machines (VMs); new software abstracts, processes and
services; and some internal protocols. We look at these software elements throughout this chapter.
To allow the system to scale to the desired level, the design architects have subscribed to the
centralize what you can, distribute what you must philosophy. The system architecture does just
that; it centralizes as many functions as possible and distributes functions to the various system
components when and where it makes sense.
We describe the various VMs, software components, and how the system distributes control plane
functions in more detail throughout this chapter.
Configuring and Monitoring QFabric Systems
Chapter 36 Software Architecture www.juniper.net
Software Stack
The Director group runs CentOS as its base operating system. On top of CentOS, a number of
services provide the required functionality for the system. The services are grouped into one of the
five categories listed on the slide. These categories follow, along with a basic description of their
functions:
Clustering: This category includes services used to form and support the Director group.
Some services in this category transfer files within the system and ensure data is
replicated across the Director groups disks. Other services in this category perform
database management and session load balancing functions for the system.
Networking: This category includes services that provision Director group interfaces
that either interconnect Director devices or that connect the Director group to the
control plane network. These services perform bonding, bridging, and monitoring
functions.
Virtualization: This category includes services that create, tear down, monitor, manage,
and schedule resources for the various virtual machines (VMs) on the Director group.
Fabric administration: This category includes services used to provide the single
administrative view for the system. We cover these services in detail in the next section.
Monitoring: This category includes services that monitor the health of other services. If
needed, these services help other system services rapidly recover from failures.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 37
Software Abstractions
The slide highlights the topic we discuss next.
Configuring and Monitoring QFabric Systems
Chapter 38 Software Architecture www.juniper.net
Fabric Administrator
One of the design goals mentioned earlier is to preserve the user experience of interacting with a
single device. This requires all management and configuration functionality to be centralized. It is
important to note that centralized does not imply a single point of failure; in a QFabric system, all
centralized functions are either deployed in high availability (HA) pairs or have dedicated monitoring
utilities that watch for and, if needed, help processes rapidly recover from failures.
The fabric administration component, referred to as fabric admin going forward, is the primary
means of accomplishing the single administrative view design goal. As previously mentioned the
fabric admin includes services that make this possible.
The user interface
service is known as the
stratus fabric controller
(SFC) internally.
The user interface service provides the single management interface abstraction for the system. This
service supports the command line interface (CLI), system logging (syslog), and other management
interfaces such as SNMP. The user interface service is responsible for presenting information to
active CLI sessions. Any information that must be sent to or pulled from the various system
components is processed by the user interface service.
The management process (MGD) runs the Junos OS for the Director group and is responsible for
taking commands from user CLI sessions and presenting those commands to the user interface
service for additional processing. MGD only interacts with the user interface service when CLI
commands are issued and never interacts with any other component or device in the system.
These services are closely monitored by a monitoring utility. If either of these services fails, the
monitoring utility will restart the failed service.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 39
System Inventory
Before moving on to other key software abstractions it is important to know that once the system is
properly connected and powered on, all components, including Director, Node, and Interconnect
devices and the various REs, will register with and be provisioned by the system. Once these
components are registered with and provisioned by the system, you should see them as part of the
systems inventory. Note that we discuss system discovery and provisioning later in this chapter.
This slide provides a sample system inventory output that lists a registered Node device. The
registered Node device belongs to its own Node group, which is the default behavior. We expand on
this default behavior and describe Node groups in more detail over the next several slides.
Configuring and Monitoring QFabric Systems
Chapter 310 Software Architecture www.juniper.net
Node Groups
Node group is also
referred to as INE or
independent network
element in some cases.
The INE reference
might show up in some
outputs in the CentOS
shell.
The slide provides a brief explanation of the Node group software abstraction along with some other
key details that relate to Node groups including the types of Node groups and the default Node group
association for Node devices. We expand on these points throughout this section.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 311
Server Node Groups
Server Node group is
sometimes referred to
as top-of-rack (TOR).
A server Node group is a single Node device functioning as a logical edge entity within the QFabric
system. Server Node groups connect server and storage endpoints to the QFabric system. As
previously mentioned all Node devices boot up as a server Node group by default.
As mentioned on the slide, server Node groups run only host-facing protocols such as link
aggregation control protocol (LACP), link layer discovery protocol (LLDP), address resolution protocol
(ARP), and data center bridging and exchange (DCBX).
Members of a link aggregation group (LAG) from a server are connected to the SNG to provide a
redundant connection between the server and the QFabric system. In use cases where redundancy
is built into the software application running on the server (for example, many software-as-a-service
(SaaS) applications), there is no need for cross Node device redundancy. In those cases, a server
Node group configuration is sufficient.
The Node device associated with a given server Node group is responsible for local Routing Engine
(RE) and Packet Forwarding Engine (PFE) functions. The Node device uses its local CPU to perform
these functions.
Configuring and Monitoring QFabric Systems
Chapter 312 Software Architecture www.juniper.net
Redundant Server Node Groups
Redundant server
Node group is also
referred to as PTOR or
pair of TORs in some
cases.
A redundant server Node group consists of a pair of Node devices that represent a single logical
edge entity in a QFabric system. Similar to server Node groups, redundant server Node groups
connect server and storage endpoints to the QFabric system. For Node devices to participate in a
redundant server Node group, explicit configuration is required.
Like server Node groups, redundant server Node groups run only host-facing protocols such as Link
Aggregation Control Protocol (LACP), Link Layer Discovery Protocol (LLDP), Address Resolution
Protocol (ARP), and Data Center Bridging Capability Exchange (DCBX). Redundant server Node
groups have mechanisms such as bridge protocol data unit (BPDU) guard and storm control to detect
and disable loops across ports. While firewalls, routers, switches, and other network devices can be
connected to redundant server Node groups, only host-facing protocols and Layer 2 traffic is
processed. To process network-facing protocols, such as Spanning Tree Protocols (STPs) and Layer 3
protocol traffic, the network device must connect to a Node device in the network Node group. We
discuss the network Node group next.
Members of a LAG from a server to the QFabric system can be distributed across Node devices in the
redundant server Node group to provide a redundant connection. In cases where redundancy is not
built into the software application on the server, a redundant server Node group is desirable.
One of the Node devices in the redundant server Node group is selected as active and the other is
the backup. The active Node device is responsible for local Routing Engine (RE) functions and both
Node devices perform the Packet Forwarding Engine functions. If the active Node device fails, the
backup Node device assumes the active role.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 313
Network Node Group
The total number of
Node devices in the
network Node group
will increase from 8 to
32 (road map feature).
Once user-defined
physical partitions are
introduced (a roadmap
feature), there will be a
single network Node
group per partition.
A set of Node devices running server-facing protocols as well as network protocols such as STP,
OSPF, PIM, and BGP to external devices like routers, switches, firewalls, and load balancers is known
as a network Node group. This Node group exists by default and is named NW-NG-0. This name
cannot be changed. Currently you can associate up to eight Node devices with this group.
The network Node group can also fill the redundant server Node group's function of running
server-facing protocols. Only one network Node group can run in a QFabric system at a time.
In a redundant server Node group, the local CPUs on the participating Node devices perform both
the RE and Packet Forwarding Engine functionality. In a network Node group, the local CPUs perform
only the Packet Forwarding Engine function. Just as in a traditional modular switch, the RE function
of the network Node group is located externally in the Director group.
Configuring and Monitoring QFabric Systems
Chapter 314 Software Architecture www.juniper.net
Understanding the Defaults
As previously mentioned, when a Node device registers and is provisioned by the system, it belongs
to a server Node group by default. The default server Node groups to which individual Node devices
are associated assume a Node group name based on the Node devices serial number.
The sample output on the slide shows a system inventory which is based on this default association
behavior. Note that the network Node group, NW-NG-0, is present but does not have any associated
Node devices. You can change the default device and group names, create new groups, or associate
Node devices with the network Node group at the [edit fabric resources] hierarchy level.
We provide some configuration examples on the next slide.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 315
Using Aliases
By default, the identity of a Node device is the serial number of that Node device. This identity, or
name, is what you use when performing configuration and monitoring tasks related to a given Node
device. This approach, as you might have already guessed, can be administratively taxing.
To make things a little easier, you can define customized aliases for each Node device. Using this
approach can simplify things administratively, making monitoring and troubleshooting efforts more
manageable.
This slide not only shows configuration examples for Node device aliases, but also for Node group
definitions and the association of Node devices to user-defined and system-defined Node groups.
Note that the definition of the network Node group uses the system-defined name NW-NG-0 as well
as the network-domain statement. The network-domain statement is a mandatory when
configuring the network Node group.
Note that alias names must not match the name of a Node group on the system. If you use the same
name for both an alias and Node group the Junos OS will fail to commit, as shown below:
[edit]
root@qfabric# commit
[edit resources node-group sng0]
A node group and a node device may not have the same name: 'sng0'
error: configuration check-out failed
Continued on the next page.
Configuring and Monitoring QFabric Systems
Chapter 316 Software Architecture www.juniper.net
Using Aliases (contd.)
Changing the default group associations for a given Node device causes the affected Node device to
reboot. Making these types of changes is roughly equivalent to moving a linecard or interface card in
a traditional modular chassis from one slot to another. In that case, the linecard or interface card
assumes a new identity and must re-register with the system. The same basic concept applies with
Node devices and altering their identity or role.
In addition to configuring aliases for Node devices you can also configure them for Director and
Interconnect devices as shown in the following output:
[edit fabric]
root@qfabric# set aliases ?
Possible completions:
+ apply-groups Groups from which to inherit configuration data
+ apply-groups-except Don't inherit configuration data from these groups
> director-device Aliases of Director devices
> interconnect-device Aliases of Interconnect devices
> node-device Aliases of Node devices
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 317
Verifying the Results
Once changes have been made to the identity and role of Node devices, you will see the results in a
number of verification outputs. The slide illustrates this point and provides the appropriate output
showing the names and group designations for the Node devices. This output is a result of the
configuration illustrated on the previous slide.
This output shows that the aliases for all Node devices are properly mapped to their corresponding
identifiers, which are the serial numbers associated with each Node device. You can also see that
each Node group has received its designated configuration. We discuss the registration and
provisioning process for Node devices and groups in more detail later in this chapter.
Configuring and Monitoring QFabric Systems
Chapter 318 Software Architecture www.juniper.net
Internal Protocols
The slide highlights the topic we discuss next.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 319
System Functions
Similar to a traditional modular chassis used for Layer 2 and Layer 3 operations, the QFabric system
has a series of common functions that must be performed for proper system operations. The QFabric
system distributes these functions between some of the key virtual machines (VMs), which function
as internal Routing Engines (REs) in the system.
This slide shows the four common functions along with a mapping of which REs are assigned to
perform each function. We expand on these functions throughout this section and provide some
operational details of how each function is performed by its corresponding RE.
Configuring and Monitoring QFabric Systems
Chapter 320 Software Architecture www.juniper.net
Fabric Manager Routing Engine
When components such as Node and Interconnect devices are added to the system, the fabric
manager RE is responsible for discovering, provisioning, monitoring, and managing those devices.
Because of these assigned responsibilities, the fabric manager is one of the first components
initialized and brought up within the Director group; even before the other two REs shown on the
slide. We provide a system provisioning example later in this section that illustrates this point.
Continued on the next page.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 321
Fabric Manager Routing Engine (contd.)
The system maintains two fabric manager REs named FM-0 and FM-1; one is active while the other
is standby. When there are two active Director devices participating in the Director group, one of the
REs is associated with DG0 and the other RE is associated with DG1. FM-0 and FM-1, along with all
other system components, should be present in the systems inventory as shown in the following
sample output:
root@qfabric> show fabric administration inventory infrastructure
dg0:
Routing Engine Type Hostname PID CPU-Use(%)
-------------------------------------------------------------------------
Fabric control QFabric_default_FC-1_RE0 2700 1.4
Network Node group QFabric_default_NW-NG-1_RE1 1451 1.9
Debug Routing Engine QFabric_DRE 24106 2.6
Fabric manager FM-0 22433 0.9
dg1:
Routing Engine Type Hostname PID CPU-Use(%)
-------------------------------------------------------------------------
Fabric control QFabric_default_FC-0_RE0 1136 1.4
Network Node group QFabric_default_NW-NG-0_RE0 32623 1.6
Fabric manager FM-1 24397 1.2
Note that the lsvm command, when issued in the CentOS shell, lists all active VMs. The VMs
displayed in this output use different names than what is seen in the fabric admin CLI. For example,
the FM-0 VM is named _TAG_DCF_ROOT_. A sample output follows:
[root@dg0 ~]# lsvm
NODE ACTIVE TAG UUID
...
dg1 1 _TAG_DCF_ROOT_ 08a8be9a-f415-11e0-a9b3-00e081c57d4e
Configuring and Monitoring QFabric Systems
Chapter 322 Software Architecture www.juniper.net
System Discovery
One of the key responsibilities of the fabric manager RE is to discover all components within the
system. This discovery process is performed over the control plane network and uses the fabric
discovery protocol, which is based on the IS-IS protocol. Hello messages are exchanged between the
system components, which leads to all system components eventually learning about all other
system components.
This system discovery process serves the same basic purpose as the hardware assist mechanism
used in traditional modular chassis. The next few slides show the discovery and provisioning
example for the QFabric system.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 323
The End Result
Once the system components are discovered and provisioned, they are then added to a common
local area network (LAN) and can communicate using TCP/IP. This common LAN and the ability to
communicate using TCP/IP allow the system components to communicate other key details among
themselves such as data path discovery details and reachability information.
We cover the data path discovery process and how reachability information is distributed later in this
chapter and in subsequent chapters.
Configuring and Monitoring QFabric Systems
Chapter 324 Software Architecture www.juniper.net
Topology Discovery
As previously mentioned, the QFabric system does not have a hardware assist mechanism to
establish physical connectivity between the Node devices and Interconnect devices. To account for
this deficiency and to ensure that the required topological information is known and distributed to
the various components, the system uses an internal protocol designed for topology discovery.
The topology discovery protocol performs two primary functions. The first function is to facilitate
neighbor discovery between system components over the data plane network connections. The
second function is to compile and distribute the learned topological details to the appropriate
components throughout the system. We discuss these functions in more detail in the next few slides.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 325
Discovering Neighbors
One of the primary functions of the topology discovery protocol is to enable neighbor discovery
between Node devices and Interconnect devices over the data plane connections. The topology
discovery protocol includes the neighbor discovery portion of the IS-IS protocol for this purpose. To
discover their directly attached neighbors, Node devices and Interconnect devices exchange Hello
messages across their 40 Gbps data plane connections. Once the Node devices and Interconnect
devices discover their attached neighbors, they communicate that information to the fabric manager
RE. This fabric path information will then be organized in a topological database and shared
throughout the system.
Configuring and Monitoring QFabric Systems
Chapter 326 Software Architecture www.juniper.net
Distributing Fabric Path Information
Once the topology database is created and the information is organized, the fabric manager RE
distributes the connectivity information through the data plane to the required system components.
This information includes not only physical path information between the various Node devices but
also how the available paths through the fabric should be used; referred to as spray weight. The
spray weight of the available paths determines how the Node devices distribute fabric-bound traffic
between the available Interconnect devices.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 327
The End Result
After neighbors have been discovered and the topology database has been created and distributed
to the various system components, each component should have a complete view of the fabric
topology with itself as the root of the topology tree.
The number of available fabric paths depends on the deployment scenario. In the example on the
slide, each Node device has a single connection to each QFX3008 Interconnect device which
provides two distinct paths for traffic sent between Node devices. This point is illustrated on the
slide, which shows the expected fabric paths between Node devices 0 and 7.
Note that including additional connections to the Interconnect devices or adding more Interconnect
devices through which the Node devices are connected would result in a more diverse physical
topology and a better distribution of traffic sent between Node devices.
Configuring and Monitoring QFabric Systems
Chapter 328 Software Architecture www.juniper.net
Network Node Group Routing Engine
The third system function, which is to perform all routing and switching operations, is associated with
the network Node group RE. In addition to performing all routing and switching operations, the
network Node group RE also oversees the calculation of multicast trees within the system.
There are two network Node group REs; one active and one backup. When there are two active
Director devices participating in the Director group, one of the REs is associated with DG0 and the
other RE is associated with DG1. In situations where there is only one active Director device in the
Director group, both network Node group REs are associated with the active Director device.
In situations such as system upgrades and maintenance windows, it might be advantageous to
control the DG device mastership. Mastership can be manually switched using the request
fabric administration director-group change-master command.
We discuss routing and switching features and operations in subsequent chapters. We describe the
role of the network Node group REs in those chapters.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 329
Fabric Control Routing Engine
As introduced earlier in this section, the fourth system function is to distribute routing and forwarding
information to the system components. The fabric control RE is responsible for this system function.
The fabric control REs are typically distributed between the Director devices participating in the
Director group. In situations where only one active Director device exists in the Director group, both
fabric control REs are associated with that Director device.
Continued on the next page.
Configuring and Monitoring QFabric Systems
Chapter 330 Software Architecture www.juniper.net
Fabric Control Routing Engine (contd.)
The fabric control REs are named FC-0 and FC-1. These REs, along with all other system
components, should be present in the systems inventory as shown in the following sample output:
root@qfabric> show fabric administration inventory
Item Identifier Connection Configuration
...
Fabric control
FC-0 Connected Configured
FC-1 Connected Configured
Note that the FC-0 and FC-1 VMs are internally referred to as _DCF_default___RR-INE-0_RE0_
and _DCF_default___RR-INE-1_RE0_ as shown in the following output:
[root@dg0 ~]# lsvm
NODE ACTIVE TAG UUID
...
dg1 1 _DCF_default___RR-INE-0_RE0_ 09e7c952-f41c-11e0-a2c1-00e081c57d50
dg0 1 _DCF_default___RR-INE-1_RE0_ 0d947e60-f41c-11e0-9cf8-00e081c57d50
To distribute reachability information the fabric control REs, and all other system components run
the fabric control protocol, which is based on BGP. The fabric control REs function as BGP route
reflectors and peer with each other and all other system components. We provide more details
regarding the fabric control protocol on subsequent slides.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 331
Distributing Routing Information
The primary function of the fabric control REs and the fabric control protocol is to oversee and
facilitate the distribution of routing information within a QFabric system. To accomplish this task,
Node groups and the fabric control REs establish reliable TCP sessions using the fabric control
protocol.
The fabric control protocol is based on BGP and makes use of route reflectors, which have proven to
be a very scalable solution when establishing many BGP peers within a routing domain. The
Junos OS has added new address families to multiprotocol BGP to allow it to carry MAC routes in
addition to IP and VPN routes.
The mechanism of route distinguishers allows the conversion of overlapping addresses into unique
global addresses to be sent across a common infrastructure. Route targets allow the application of
filters while exporting and importing routes into and out of the common infrastructure, which allows
the selective sharing of network state.
In a classic Layer 3 VPN, the user must explicitly configure parameters such as route distinguishers
and route targets, but that is not the case with QFabric system. Instead, the QFabric system has
user-configured VLANs and virtual routers for that purpose, so the creation and use of route
distinguishers and route targets remain totally transparent to the user.
Configuring and Monitoring QFabric Systems
Chapter 332 Software Architecture www.juniper.net
Extending the VPN Model
The diagram on the slide shows a small network topology after Layer 2 network reachability state has
been shared between the various Node groups through the fabric control REs. To allow the creation
and sharing of this reachability state, the system uses unique route tags based on user-defined
variables such as VLAN IDs.
As highlighted on the slide, the fabric control REs and the network Node group REs maintain all
reachability information. To reduce unnecessary overhead throughout the system, the fabric control
REs only share relevant reachability information with the server Node group REs.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 333
Component Provisioning
As system components such as Node devices and Interconnect devices are discovered and
provisioned, their respective REs receive and automatically load their respective configuration files.
Part of this configuration includes BGP, running as a fabric control protocol.
Continued on the next page.
Configuring and Monitoring QFabric Systems
Chapter 334 Software Architecture www.juniper.net
Component Provisioning (contd.)
The output below illustrates the protocol families used to support the various traffic types as well as
the neighbor addresses of the route reflectors; 128.0.128.6 corresponds with FC-0 and 128.0.128.8
corresponds with FC-1.
qfabric-admin@sng1> show bgp summary fabric
Groups: 1 Peers: 2 Down peers: 0
Table Tot Paths Act Paths Suppressed History Damp State Pending
bgp.l3vpn.0 0 0 0 0 0 0
Peer AS InPkt OutPkt OutQ Flaps Last Up/Dwn
State|#Active/Received/Accepted/Damped...
128.0.128.6 100 47438 47819 0 0 2w0d22h Establ
bgp.l3vpn.0: 0/0/0/0
bgp.rtarget.0: 2/8/8/0
bgp.fabricvpn.0: 7/7/7/0
bgp.bridgevpn.0: 3/3/3/0
default.bridge.0: 3/3/3/0
default.fabric.0: 7/7/7/0
128.0.128.8 100 47429 47815 0 0 2w0d22h Establ
bgp.l3vpn.0: 0/0/0/0
bgp.rtarget.0: 0/8/8/0
bgp.fabricvpn.0: 0/7/7/0
bgp.bridgevpn.0: 0/3/3/0
default.bridge.0: 0/3/3/0
default.fabric.0: 0/7/7/0
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 335
Supporting the Different Traffic Types
The slide illustrates that the protocol families defined on the previous slide were properly negotiated
during the peer establishment process between the sng1 Node group and FC-0 (128.0.128.6).
Because the configured protocol families are properly negotiated, we see the corresponding route
tables along with the default route tables.
Configuring and Monitoring QFabric Systems
Chapter 336 Software Architecture www.juniper.net
The End Result
If the Node groups have established fabric control sessions with the fabric control REs, you should
see routes added to one or more of the various route tables. Note that the number and type of routes
added to these tables depends on the systems configuration. Also note, the command shown on the
slide was issued directly from the FC-0 RE and the output is not visible from the fabric administrator.
We explore some of these tables and how they are populated in subsequent chapters.
Configuring and Monitoring QFabric Systems
www.juniper.net Software Architecture Chapter 337
This Chapter Discussed:
Goals of the software architecture;
Purpose and functions of Director software;
Configuration of key software abstractions; and
Operations of internal protocols used in a QFabric system.
Configuring and Monitoring QFabric Systems
Chapter 338 Software Architecture www.juniper.net
Review Questions
1.
The fabric admin consists of a user interface service and key management processes and is how the QFabric
system provides the single administrative view to the end user.
2.
A number of Routing Engines exist within the QFabric system including the fabric manager RE, network
Node group REs, fabric control REs, diagnostic RE, and the local CPU REs, and server Node group REs
distributed throughout the system. The fabric manager RE is used for system discovery and provisioning as
well as topology discovery. The network Node group REs are used for Layer 2 and Layer 3 protocol
processing. The fabric control REs are used to learn about and distribute reachability information. The local
CPU REs and server Node group REs are used local processing tasks for distributed system operations.
3.
System components are discovered and provisioned by the fabric manager RE through the fabric discovery
protocol. The fabric manager RE interfaces with the fabric admin, VM manager and the individual VMs, and
Node devices and Interconnect devices throughout the discovery and provisioning process. The fabric
discovery protocol is based on IS-IS.
4.
Reachability information is learned and distributed through the fabric control REs and fabric control
protocol, which is based on BGP.
Configuring and Monitoring
QFabric Systems
Chapter 4: Setup and Initial Configuration
Configuring and Monitoring QFabric Systems
Chapter 42 Setup and Initial Configuration www.juniper.net
This Chapter Discusses:
Initial setup and configuration of the QFabric system;
Logging in and verifying status of the QFabric system; and
Configuring and monitoring interfaces on the QFabric system.
Configuring and Monitoring QFabric Systems
www.juniper.net Setup and Initial Configuration Chapter 43
System Setup
The slide lists the topics we cover in this chapter. We discuss the highlighted topic first.
Configuring and Monitoring QFabric Systems
Chapter 44 Setup and Initial Configuration www.juniper.net
System Bring Up Checklist
Deploying a system with many components and interdependencies between those components can
be a difficult task. To simplify the deployment of a QFabric system, you can group the major tasks
into the categories shown on the slide. We discussed the racking and cabling of a QFabric system in
prerequisite courseware and a previous chapter in this course. We discuss the other three categories
and their associated tasks throughout the remainder of this section.
Configuring and Monitoring QFabric Systems
www.juniper.net Setup and Initial Configuration Chapter 45
Bringing Up the Control Plane Network
Because all system components communicate through and depend on the control plane network, it
only makes sense that this would be our first major task. As shown on the slide there are a number
of steps, or smaller tasks, required to accomplish this first major task. Regardless of the deployment
scenario there are some common tasks that must be performed. These common tasks include:
Power on the EX Series switches;
Apply site-specific configuration to the switches, which might include unique
hostnames, user accounts, and other system services or parameters;
Upgrade or downgrade software, if needed;
Apply the configuration required to support the QFabric system; and
Verify connectivity and state of link aggregation group (LAG) between EX Series
switches.
Remember that the configuration required to support the QFabric system can be downloaded from
Juniper Networks website and can vary depending on your deployment scenario. The configuration
used in large deployments, where the QFX3008-I Interconnect devices are used, is different than the
configuration used in smaller deployments, where the QFX3600-I Interconnect devices are used.
Continued on the next page.
Configuring and Monitoring QFabric Systems
Chapter 46 Setup and Initial Configuration www.juniper.net
Bringing Up the Control Plane Network (contd.)
When bringing up the control plane network in large deployment scenarios, where the QFX3008-I
Interconnects are used, you will need to perform some additional tasks.
In these large deployment scenarios, you must use the Virtual Chassis cables to connect the
EX Series switches to form the two Virtual Chassis. Note that these connections should be made
before powering up the EX Series switches.
When powering up the switches, first power on the switch in each Virtual Chassis that you want to
serve as the master switch. After a few minutes, power on the switch in each Virtual Chassis that you
want to serve as the backup switch. Once the designated master and backup switches for each
Virtual Chassis have had time to boot, power up the remaining two EX Series switches associated
with each Virtual Chassis. These last two switches will serve as linecard member switches within
their respective Virtual Chassis.
You can verify the roles of the member switches using the show virtual-chassis status
command as shown in the following output:
{master:0}
user@VC0> show virtual-chassis status
Virtual Chassis ID: cd74.2d06.3b14
Virtual Chassis Mode: Enabled
Mastership Neighbor List
Member ID Status Serial No Model priority Role ID Interface
0 (FPC 0) Prsnt BM0210409748 ex4200-48t 255 Master* 1 vcp-0
3 vcp-1
1 (FPC 1) Prsnt BM0210399371 ex4200-48t 255 Backup 2 vcp-0
0 vcp-1
2 (FPC 2) Prsnt BM0210409518 ex4200-48t 255 Linecard 3 vcp-0
1 vcp-1
3 (FPC 3) Prsnt BM0210399621 ex4200-48t 255 Linecard 0 vcp-0
2 vcp-1
Member ID for next new member: 4 (FPC 4)
Configuring and Monitoring QFabric Systems
www.juniper.net Setup and Initial Configuration Chapter 47
Bringing Up the Director Group
Once the control plane network and data plane network are wired and the control plane network
infrastructure has been properly established, you must bring up the Director group. This slide
provides a list of the basic tasks required to bring up the Director group.
Before performing the tasks listed on the slide, we recommend that you identify which Director
device will be DG0 and which Director device will be DG1. Predetermining the name designations for
the Director devices does not impact system operations but it can ease administrative tasks later on.
Once you determine the Director device name designations, power on the device designated as DG0.
This device boots and searches for other Director devices. When it does not find any existing Director
device it then considers itself DG0. We recommend that you boot the second Director device no less
than two minutes after the first Director device to ensure that the predetermined designations are
actually assigned to their respective Director devices.
When the second Director device is booted, again no less than two minutes after the first, it
encounters an existing Director device within the group (DG0) and then becomes DG1. The two
Director devices are then mirrored and synchronized, which can take about 25 minutes. Note that
once this process has been completed, DG0 will remain as DG0 and DG1 will remain as DG1 upon
further reboots of the system.
Once the Director group is formed and the Director devices are synchronized, you log in to DG0 using
console access and perform the initial setup task. The initial setup task provisions the Director group
with some key local parameters and is illustrated on the next couple of slides.
Configuring and Monitoring QFabric Systems
Chapter 48 Setup and Initial Configuration www.juniper.net
Performing the Initial Setup: Part 1
To perform the initial setup of the Director group, you need some key information. Some of this
required information is specific to your environment and provided by your network administrator,
while other information is specific to your QFabric system and obtained through Juniper Networks.
The site-specific information, which includes the Director device addresses, Director group
addresses, management subnet, gateway address for the management subnet, and the passwords
for the Director group and the system components, is used to facilitate remote and future console
access to the system and its components.
The system-specific information, which includes a system serial number and a valid and unique
range of MAC addresses, is used to ensure the system can be uniquely identified for support and
licensing functions and can interface with other systems without any MAC address conflicts.
Configuring and Monitoring QFabric Systems
www.juniper.net Setup and Initial Configuration Chapter 49
Performing the Initial Setup: Part 2
This slide provides a sample output showing the initial setup of a Director group. The slide shows the
definition of the key information mentioned on the previous slide along with some other required
parameters.
This sample output includes IPv4 management address definitions only and uses the QFX3000-M
platform type (option 2). Note that the QFX3000-M platform type is required for deployment
scenarios that use the QFX3600-I Interconnect devices, and the QFX3000-G (option 1 in the sample
output on the slide) is required for deployments that use the QFX3008-I Interconnect devices.
To invoke the script manually you can use the following command:
[root@dg0 ~]# /root/reset_initial_configuration.sh
Configuring and Monitoring QFabric Systems
Chapter 410 Setup and Initial Configuration www.juniper.net
Logging In to the System
Once the initial setup of the Director group has been performed you should be able to access the
Director devices and the fabric admin CLI through the out of band (OoB) management network using
SSH. All incoming SSH sessions to the fabric admin are directed to the load balancing utility running
in the Director software and distributed between the Director devices participating in the Director
group.
Note that you do not need to SSH to the virtual IP address associated with the systems default
partition to gain access to the fabric admin, which, again, is the Junos CLI user interface for a
QFabric system. Instead, you can issue the cli command on DG0 or DG1, as shown in the following
output:
[root@dg0 ~]# cli
RUNNING ON DIRECTOR DEVICE : dg0
root@qfabric>
Note that the initial access to the fabric admin is obtained using the root account without a
password. Once you begin to configure the system, you must configure root authentication. We cover
the initial configuration of a QFabric system later in this chapter.
Configuring and Monitoring QFabric Systems
www.juniper.net Setup and Initial Configuration Chapter 411
Bringing Up Interconnect Devices and Node Devices
After the system is racked, cabled, has a functioning control plane network, and the Director group is
running, your focus turns to the Interconnect devices and Node devices participating in the system.
This slide provides a list of recommended steps used to bring up the Interconnect devices and Node
devices.
We recommend you bring up the Interconnect devices first and then the Node devices. Note that for
QFX3000-M deployments where the QFX3600-I Interconnect devices are used, the Director devices
must be running Junos operating system (OS) Release 12.2 or later. If the Director group software
version is a release prior to 12.2 the QFX3600-I Interconnect devices will not join the system.
For all deployment scenarios, you must ensure the software version on QFX3500 Node devices is
compatible with the QFabric system. The initial software version and some subsequent images used
on the QFX3500 devices is not compatible with the QFabric system. If the software image running on
the QFX3500 Node devices is not compatible with the QFabric system, you must upgrade the Node
devices to a compatible image. Note that software upgrades are covered in Appendix A.
The software version running on the Interconnect and Node devices does not need to be the same
version of software running on the Director group. As long as the images on the Interconnect devices
and Node devices are compatible with the version running on the Director group, the Director group
will register those devices and automatically upgrade them to the version running on the Director
group.
Continued on the next page.
Configuring and Monitoring QFabric Systems
Chapter 412 Setup and Initial Configuration www.juniper.net
Bringing Up Interconnect Devices and Node Devices (contd.)
In addition to the potential software compatibility issues, you must also ensure that the Node
devices are configured for fabric mode instead of standalone mode. The following sample output
illustrates the basic process for converting QFX3500 and QFX3600 devices from standalone mode
to fabric mode:
root> request chassis device-mode fabric
Device mode set to 'fabric' mode.
Please reboot the system to complete the process.
root> show chassis device-mode
Current device-mode : Standalone
Future device-mode after reboot : Fabric
root> request system reboot
Reboot the system ? [yes,no] (no) yes
Shutdown NOW!
family bridge-vpn {
unicast;
}