Monthly Archives: November 2014

The next-generation Facebook data center network

I´m stun! See the full article here.


References:

Introducing data center fabric, the next-generation Facebook data center network

Become an ingenious Champion with Juniper

I was not aware of this program from Juniper (only partners), but after know about it and decided to grab it! The benefit is understanding deeply about Juniper and his products, also become a member of Juniper Elite, meet Juniper SEs, attend JuniperU: Tech Summits, Beta exams, exam vouchers, an Open Lab, and much more…and off course recognized by Networking Folks and friends. If you are a Systems Engineer (or another mysterious “title”) and work closely (even not!) with customers is your job know how you can help them!

The Juniper Partner Training give everything you need such a Courseware, Student guides, Practise Exams for free. No extra cost for your Employer or for you! So why not make yourself an expert step up your career?

So, go to the Juniper Partner Training website and check the Juniper Champion Program. Well if you don´t have access ask you Employer to give you it!

What are the Champion Levels?

If you have an active JNCIP-SP, JNCIP-ENT, or JNCIP-SEC will be manually granted the Champion Aspiring level. Don´t forget to read the Champion Program Policies!

juniper_champion_levels

 How to become a Champion?

A few steps to land there…

juniper_champion_howto

 What OpenLab offers?

Juniper Networks OpenLab, the Junos® Center for Innovation, is located in central New Jersey and is the embodiment of the company’s commitment to lead and deliver networking technology innovation. With OpenLab, Juniper invites customers, partners, and other third parties to engage with this first-of-its-kind resource. It represents a versatile, multidimensional “tool” to spark and facilitate the development of new “network integrated” software applications and solutions that utilize Juniper’s leading SDN/network programmability and automation functionality.

OpenLab’s mission is aimed squarely at software innovators, such as our Champions, in building new software-oriented solutions that harness network intelligence and programmability/automation and enhance the value of the network as a strategic asset for competitive differentiation. Visitors/users of OpenLab gain access to polished briefing and collaboration space, a suite of locally and remotely accessible lab software and hardware resources, and educational programs and expertise to accelerate application development and minimize direct costs in creating their own infrastructure.

1416411090_OpenLab offerings

My Aspiring Level

First level achieved! So i received a ebook and a voucher. I chose the Junos High Availability and redeem the voucher for my next exam Juniper Networks Certified Specialist Service Provider Routing and Switching (JNCIS-SP)

Juniper Champion Aspiring

Next stop…Innovative Level!

juniper_champions-header

 References:

OpenLab, the Junos® Center for Innovation

Juniper Networks Certified Specialist Service Provider Routing and Switching (JNCIS-SP)

Juniper Partner Training

Juniper Champion Program

F5 Getting Started Series now on 11.x

Good news from F5! F5 refreshed his WBTs on F5 University using 11.x code. They called this the “F5 Getting Started Series” and each section has interactive questions to do a check up of your knowledge. This Series covers the following products:

  • BIG-IP LTM
  • BIG-IP GTM
  • BIG-IP APM
  • BIG-IP ASM

Just click on the product and that will open automatic a new window.

F5_Started_Series
As before you can have hands-on on a virtual lab for 11.x code with the following topology. After you login on F5 University click on F5 Training Lab menu and get you Lab guide. Unfortunately you can´t play HA features on this lab but you can try the F5 BIG-IP LTM virtual edition (request a trial licence 90 days) for your own lab.

 

F5_LearnLab_v11

References:

F5 Certification Program

F5 University

I took the F5 101v2-Application Delivery Fundamentals beta exam

I was a guinea pig for F5 101v2 beta and i did it well i guess. After answer 140 questions in 150 minutes + extension of 30 minutes (not english native, but was not necessary) the hard part of this was review all my answers, yes again 140! I didn´t find this hard as mention by other guys who did the 101v1. After you submit the exam you can comment the questions (no chance to change answers at this point), personally i did it to give the F5 Team my understanding of what they can improve! But they could give the cert away for the guys who passed this exam, yes it´s Christmas! :)

And yes, against other exams you can go back and forwarded!

All 5 sections have the same score, so i got 75%

I wrote a post about my Study Notes for this exam so check it out!

This exam is one of the pre-requirements for the Exam 201 – TMOS Administration to achieve the F5 BIG-IP Certified Administrator

F5_CertificationTrainingTrack_2014

And even virtually i have my logo!

f5_101v2_ADF

Study Notes for F5 101v2-Application Delivery Fundamentals exam

As i said before i got an opportunity to test my knowledge (101v2 beta) and off course learn more about F5 ADC and other stuff. The information you need to learn is published in the official Blueprint Application Delivery Fundamentals. This new version will be available on Q1 2015.

F5 doesn´t have any guide (book,etc) like most of the vendors have, so you need to do it by your self. But i found a nice compilation did by Philip Jönsson (direct link) and another one by Rich Hill

A good tool is F5 University where you have free WBTs of LTM&APM (and more!!!), and hands-on on a virtual lab (code 10.x and 11.x). I think the most important are:

Getting Started with BIG-IP: Part 1 – Administration

Getting Started with BIG-IP: Part 2 – Application Delivery

Getting Started with BIG-IP Access Policy Manager (APM)

Getting Started with BIG-IP LTM: Part 1 – High Availability and Traffic Processing

Getting Started with BIG-IP LTM: Part 2 – iRules and Accelerating Traffic

Viprion Basics

HTTP Basics I

HTTP Basics II

A few facts:

  • The exam is based on 11.4.0 code
  • Exam cost 105 euros + VAT
  • The exam 101v2 will have 80 questions (70 scored and 10 unscored), and a minimum of 69% to pass it
  • Pre-requirement to go to the next level Exam 201 – TMOS Administration and be a F5 Certified BIG-IP Administrator (F5-CA)
  • All questions are scored equally
  • Passing the exam will be valid for 2 years
  • Most people agree that the v2 practice exam is much harder than the v1 production exam (mostly because of the number of questions).

I took the followed information from http://veritablenetworks.blogspot.pt/(Rich Hill) and change a few things for the renewed exam (101v2).

You can download my personal notes here.

Section 1 – OSI

Most of this information is common knowledge in the networking industry, but you probably don´t a few things especially when you get to the application layer protocols (sorry if i undervalue you!). The Wikipedia articles play a big role here, and yes Wikipedia Rulez!

  • Objective 1.01 – Explain, compare and contrast the OSI layers

OSI Model Wiki
Another OSI Model Overview

  • Objective 1.02 – Explain protocols and technologies specific to the data-link layer

Explain the purpose of a switch’s forwarding database
ARP
ARP on F5
MAC Address
Broadcast Domain
VLANs
Link Aggregation Wiki
Big IP Link Aggregation

  • Objective 1.03 – Explain protocols and apply technologies specific to the network layer

Routing on F5
TCP/IP Overview
IP Addressing & Subnetting
Routing Protocols
IP Packet Fragmentation
IP TTL (Time to Live)

  • Objective 1.04 – Explain the features and functionality of protocols and technologies specific to the transport layer

MTU / MSS
TCP Functionality
UDP Functionality
TCP Connection Setup by Virtual Server Type
TCP Profile Settings (Tunables)
UDP Profile Settings (Tunables)
TCPDUMP on F5
Retransmissions
Functionality of ports in general
Process of a reset

  • Objective 1.05 – Explain the features and functionality of protocols and technologies specific to the application layer

Application Layer Traffic Managment on F5
HTTP Functionality
HTTP Status Codes
HTTP Headers
F5 HTTP White Paper
DNS Functionality
DNS Record Types
SIP Functionality
F5 SIP White Paper
FTP Functionality
SMTP Functionality
HTTP Cookies
My Name is URL

Section 2 – F5 Solutions and Technology

In this section, we get into the actual F5 Solutions. Most engineers taking this exam will be experienced with LTM and iRules, but little else. Hopefully, the familiarity gained from the F5 datasheets and white papers shown below will help you to understand the breadth of the F5 offerings. Prepare to take the first step into a larger world.

  • Objective 2.01 – Articulate the role of F5 products

Access Policy Manager (APM)
Application Security Manager (ASM)
Local Traffic Manager (LTM)
Global Traffic Manager (GTM)
Enterprise Manager
BIG-IQ and ADN Management
F5 White Papers
F5 Datasheets

  • Objective 2.02 – Explain the purpose, use and advantages of iRules

iRule Wiki (Requires Devcentral Login)

  • Objective 2.03 – Explain the purpose, use and advantages of iApps

iApp Wiki (Requires Devcentral Login)

  • Objective 2.05 – Explain the purpose of and use cases for full proxy and packet forwarding/packet based architectures

Full Proxy Architecture (Lori MacVittie rules!)
Packet-Based vs Full Proxy
SNAT
Virtual Server Types

  • Objective 2.06 – Explain the advantages and configurations of high availability (HA)

F5 HA Basics
Config Sync
Big IP HA Features
Mirroring
VLAN Failsafe

Section 3 – Load Balancing Essentials

This section is a short one compared to the previous two. If you’re going after an F5 certification, you’re probably already familiar with much of this material, so you probably won’t have to study as much for this section. It never hurts to brush up on the algorithms and persistence methods.

  • Objective 3.01 – Discuss the purpose of, use cases for, and key considerations related to load balancing

Load Balancing Wiki
Load Balancing 101
Load Balancing Algorithms (Devcentral)
More on Load Balancing Algorithms
Another Load Balancing Algorithm Article
Yet Another Load Balancing Algorithm Article
Persistence

  • Objective 3.02 – Differentiate between a client and a server

Client / Server on Wiki – Yes, I’m surprised this is even a question.

Section 4 – Security

  • Objective 4.01 – Compare and contrast positive and negative security models

Positive Security Model
Positive vs Negative Security

  • Objective 4.02 – Explain the purpose and cryptographic services

Cryptography
SSL Certificates (Devcentral)
Certificate Chains
Public-Key Cryptography
Symmetric vs Asymmetric Encryption
Client SSL Profiles
Server SSL Profiles
SSLDUMP Utility

  • Objective 4.03 – Describe the purpose and advantages of authentication

F5 Authentication 101
AAA
Single Sign On
Multi-factor Authentication

  • Objective 4.04 – Describe the purpose, advantages and use cases of IPsec and SSL VPN

SSL VPN
IPsec VPN
IPSEC vs SSL VPN

Section 5 – Application Delivery Platforms

  • Objective 5.01 – Describe the purpose, advantages, use cases, and challenges associated with hardware-based application delivery platforms and virtual machines

Virtualization
Virtualization Platforms

  • Objective 5.02 – Describe the purpose of the various types of advanced acceleration techniques.

Application Performance Optimization
TCP Optimization
Oneconnect
Caching
Compression
Pipelining
Acceleration 101

This is everything you need to know, but try learn deep something more!

References:

BIG-IP LTM 11.4.0 Documentation

Exam 101 – Application Delivery Fundamentals

Exam 201 – TMOS Administration

F5 Certification Program

Kakorrhaphiophobia of CCIEv5: How to Cope

This will be a good session with Speaker(s)  Scott Morris – Chief Technology Officer, Copper River IT at Cisco Live for those of us that failed/passed before CP-1010 – Kakorrhaphiophobia of CCIEv5: How to Cope – 1 Hour

I believe that one of the reasons is everyone spread a bad word or seed the fear….Don´t listen it!

Fear… We all have it, whether a lot or a little, but it’s there. Do you watch scary movies with one eye shut? Do you go through Haunted Houses with a death-grip on your best friends’ hand? Did you ever wonder whether those fears were rational?

Interestingly enough, many people surveyed were MORE afraid of the CCIE Lab Exam than they were of scary movies or haunted houses. Kakorrhaphiophobia is the irrational fear of failing. In the CCIE lab, nothing will jump out at you (though I would never advise scheduling a lab on either Halloween or April Fool’s Day just in case!) and the majority of people DO fail the CCIE lab. Sometimes more than once. But the fear can eat you alive, and actually CAUSE the failure itself, making it a self-filling prophecy.

Make your CCIE Lab the best day ever! Pass or Fail, it’s about the journey!

Join us for a look into the psyche of a fragile CCIE Candidate and some of the methods of overcoming that fear of failure along the way!

fear

 

Exame JNCIP-ENT JN0-643

Hoje realizei o exame JN0-643 da Juniper, este exame não é abrangido pelo “Fast track Program” :(. Depois de realizar as formações Advanced Junos Enterprise Routing (AJER) e Advanced Junos Enterprise Switching (AJEX) foi rever as notas e praticar mais a componente de Multicast e QoS.

Pré-Requisitos

É necessário ter a certificação JNCIA-Junos e JNCIS-ENT

Material de Estudo

Como referi anteriormente as formações foram uma base muito importante bem como os materiais disponibilizados. Além dos Labs durante as formações,  usei posteriormente o Juniper Olive , Virtual Labs e o JunosSphere.

Junos Software Release

  • 12.3
  • 12.1 for SRX Series Devices

Treinamento recomendado

Advanced Junos Enterprise Routing (AJER)

Advanced Junos Enterprise Switching (AJEX)

Download Notas Estudo Advanced Junos Enterprise Routing (AJER)

Download Notas Estudo Advanced Junos Enterprise Switching (AJEX)

Objectivos Exame

  • OSPF
  • BGP
  • IP Multicast
  • Ethernet Switching and Spanning Tree
  • Layer 2 Authentication and Access Control
  • IP Telephony Features
  • Class of Service (CoS)
**Clique para expandir/colapsar os objectivos em detalhe**

Exame

A prova tem a duração de 120 minutos com 70 questões. O minimo para passar é de 65%

Resultado

Como sempre o resultado é temporário, mas desta vez as as boas noticias chegaram mais depressa que o previsto. Passei!
juniper_certmanager_09112014
Aqui fica o logo oficial

junipe-jncip-ent

 

Referências:

Juniper Learning Portal

Juniper JNCIS-ENT

Junos documentation

Junos documentation for EX Series switches

Juniper Certificações Junho 2013

Exame JNCIA-Junos JN0-102

Exame JNCIS-ENT JN0-643

Notas estudo Advanced Junos Enterprise Routing (AJER)

Um dos cursos recomendados para obter o JNCIP-ENT é o Advanced Junos Enterprise Routing (AJER). Aqui ficam as minhas notas para download.

Objectives

After successfully completing this course, you should be able to:

  • Describe the various OSPF link-state advertisement (LSA) types.
  • Explain the flooding of LSAs in an OSPF network.
  • Describe the shortest-path-first (SPF) algorithm.
  • Describe OSPF area types and operations.
  • Configure various OSPF area types.
  • Summarize and restrict routes.
  • Identify scenarios that require routing policy or specific configuration options.
  • Use routing policy and specific configuration options to implement solutions for various scenarios.
  • Describe basic BGP operation and common BGP attributes.
  • Explain the route selection process for BGP.
  • Describe how to alter the route selection process.
  • Configure some advanced options for BGP peers.
  • Describe various BGP attributes in detail and explain the operation of those attributes.
  • Manipulate BGP attributes using routing policy.
  • Describe common routing policies used in the enterprise environment.
  • Explain how attribute modifications affect routing decisions.
  • Implement a routing policy for inbound and outbound traffic using BGP.
  • Identify environments that might require a modified CoS implementation.
  • Describe the various CoS components and their respective functions.
  • Explain the CoS processing along with CoS defaults on SRX Series Services Gateways.
  • Describe situations when some CoS features are used in the enterprise.
  • Implement some CoS features in an enterprise environment.
  • Describe IP multicast traffic flow.
  • Identify the components of IP multicast.
  • Explain how IP multicast addressing works.
  • Describe the need for reverse path forwarding (RPF) in multicast.
  • Explain the role of Internet Group Management Protocol (IGMP) and describe the available IGMP versions.
  • Configure and monitor IGMP.
  • Identify common multicast routing protocols.
  • Describe rendezvous point (RP) discovery options.
  • Configure and monitor Protocol Independent Multicast (PIM) sparse modes.
  • Configure and monitor RP discovery mechanisms.
  • Describe the basic requirements, benefits, and caveats of source-specific multicast (SSM).
  • List the address ranges used for SSM.
  • Illustrate the role of Internet Group Management Protocol version 3 (IGMPv3) and PIM sparse mode (PIM-SM) in an SSM implementation.
  • Configure and monitor SSM.

Intended Audience

This course benefits individuals responsible for configuring and monitoring devices running the Junos OS.

Course Level

AJER is an advanced-level course.

Prerequisites

Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) model and the TCP/IP protocol suite. Students should also have working experience with basic routing principles.

Students should also attend the Introduction to the Junos Operating System (IJOS), Junos Routing Essentials (JRE), and Junos Intermediate Routing (JIR) courses prior to attending this class.

Course Contents

Day 1

Chapter 1: Course Introduction

Chapter 2: OSPF

  • OSPFv2 Review
  • Link-State Advertisements
  • Protocol Operations
  • OSPF Authentication
  • OSPFv3
  • Lab 1: Configuring and Monitoring OSPF

Chapter 3: OSPF Areas

  • Review of OSPF Areas
  • Stub Area Operation
  • Stub Area Configuration
  • NSSA Operation
  • NSSA Configuration
  • Route Summarization
  • Lab 2: Configuring and Monitoring OSPF Areas and Route Summarization

Chapter 4: OSPF Case Studies and Solutions

  • IGP Transition Overview
  • Transition Case Study
  • OSPF Multiarea Adjacencies
  • External Reachability
  • Virtual Links
  • Lab 3: Configuring and Monitoring Routing Policy and Advanced OSPF Policy

Day 2

Chapter 5: BGP

  • Review of BGP
  • BGP Operations
  • Load Balancing Options
  • Path Selection and Configuration Options
  • Lab 4: Implementing BGP

Chapter 6: BGP Attributes and Policy

  • Policy and BGP
  • BGP Attributes
  • Details and Manipulation of Common BGP Path Attributes
  • Lab 5: BGP Attributes

Chapter 7: Enterprise Routing Policies

  • Enterprise BGP Core Network Design
  • Enterprise External Network Deployment
  • Lab 6: Implementing Enterprise Routing Policies

Day 3

Chapter 8: Introduction to Multicast

  • Overview of Multicast
  • Multicast Addressing
  • RPF
  • IGMP

Chapter 9: Multicast Routing Protocols and SSM

  • Overview of Multicast Routing Protocols
  • PIM-SM Using the ASM Model
  • Lab 7: Implementing PIM-SM
  • PIM-SM Using the SSM Model
  • Lab 8: Implementing SSM

Chapter 10: Class of Service

  • CoS Components Review and Case Study
  • CoS Processing and CoS Defaults on the SRX Series Device
  • Policing
  • Virtual Channels
  • Monitoring with Resource Performance Monitoring
  • Lab 9: Implementing CoS Features in the Enterprise

Appendix A: BGP Route Reflection

  • Route Reflection Operation
  • Configuration and Routing Knowledge
  • Lab 10: BGP Route Reflection (Optional)

 

Finally vMX on x86 from Juniper for the masses

We were waiting for this for a long time, and Juniper gave us a big surprise. After so many years developing and improving the MX box finally was born the vMX. This will be a amazing for Service Providers where sometimes to deploy a new box is a nightmare regarding delivery/deploy time. vMX will be available on 1Q2015

No shame to be a Virtual Route Reflector!

Architecture

The vMX scales to a minimum of 160 Gbps of unidirectional forwarding capacity that can be distributed among multiple customer and service instances.
The vMX consists of the following:

  • Virtual Control Plane (VCP), which is Junos OS hosted on a virtual machine (VM).
  • The Virtual Forwarding Plane (VCP) runs the packet forwarding engine, which is the    programmable Junos Trio microcode optimized and compiled for x86 environments.
    Juniper also leveraged Intel toolkits, including DPDK and Single Root IO Virtualization (SR-IOV), to further enhance forwarding performance.vmx_architecture

 

Specs

System Capacity 160 Gbps
Switch Fabric Capacity per slot N/A
DPCs and/or MPCs per chassis N/A
Chassis per rack N/A
Dimensions (W x H x D) N/A
Maximum Weight N/A
Mounting N/A

Features

  • Carrier-grade routing implementation optimized for the x86 environment.
  • Rapid service enablement by leveraging virtualization technology.
  • Leverages current and future Junos OS and Junos Trio R&D efforts.
  • Pay-as-you-grow licensing model for granular network scale-out.
  • Consistency with physical MX Series portfolio simplifies operations.
  • Enables new service introductions without reconfiguring current routing infrastructure.

References:

Juniper vMX

Juniper Networks Redefines Networking Industry With First Carrier-Grade Virtual Router

The New ‘Virtual’ Reality

Juniper Networks doubles down on virtualization

The Revolution is Here – Are You In? Because every Cloud needs an engine

Notas estudo Introduction to the Junos Operating System (IJOS)

Um dos cursos recomendados para obter o JNCIA-Junos é o Introduction to the Junos Operating System (IJOS) . Aqui ficam as minhas notas para download.

Objectives

After successfully completing this course, you should be able to:

  • Describe the basic design architecture of the Junos OS.
  • Identify and provide a brief overview of Junos devices.
  • Navigate within the Junos CLI.
  • Perform tasks within the CLI operational and configuration modes.
  • Restore a Junos device to its factory-default state.
  • Perform initial configuration tasks.
  • Configure and monitor network interfaces.
  • Describe user configuration and authentication options.
  • Perform secondary configuration tasks for features and services such as system logging (syslog) and tracing, Network Time Protocol (NTP), configuration archival, and SNMP.
  • Monitor basic operation for the Junos OS and devices.
  • Identify and use network utilities.
  • Upgrade the Junos OS.
  • Perform file system maintenance and password recovery on a Junos device.
  • Navigate within the Junos J-Web interface.

Intended Audience

This course benefits individuals responsible for configuring and monitoring devices running the Junos OS.

Course Level

IJOS is an introductory-level course.

Prerequisites

Students should have basic networking knowledge and an understanding of the Open Systems Interconnection (OSI) reference model and the TCP/IP protocol suite.

Course Contents

Day 1

Chapter 1: Course Introduction

Chapter 2: Junos Operating System Fundamentals

  • The Junos OS
  • Traffic Processing
  • Platforms Running the Junos OS

Chapter 3: User Interface Options

  • User Interface Options
  • The Junos CLI: CLI Basics
  • The Junos CLI: Operational Mode
  • The Junos CLI: Configuration Mode
  • Lab 1: The Junos CLI

Chapter 4: Initial Configuration

  • Factory-Default Configuration
  • Initial Configuration
  • Interface Configuration
  • Lab 2: Initial System Configuration

Chapter 5: Secondary System Configuration

  • User Configuration and Authentication
  • System Logging and Tracing
  • Network Time Protocol
  • Archiving Configurations
  • SNMP
  • Lab 3: Secondary System Configuration

Chapter 6: Operational Monitoring and Maintenance

  • Monitoring Platform and Interface Operation
  • Network Utilities
  • Maintaining the Junos OS
  • Password Recovery
  • Lab 4: Operational Monitoring and Maintenance

Appendix A: Interface Configuration Examples

  • Review of the Interface Configuration Hierarchy
  • Interface Configuration Examples
  • Using Configuration Groups

Appendix B: The J-Web Interface

  • The J-Web GUI
  • Configuration
  • Lab 5 (Optional): The J-Web Interface