Posts tagged: juniper -

Deploying vSRX fails: "undefined undefined" in Deployment Type

11 February 2023 - Posted in VMware by aners

Use ovftool to deploy the image directly to the ESXi-host instead:

ovftool -dm=thick -ds=<DATASTORENAME> -n=<VMNAME> --net:"VM Network"="<VMNETWORKNAME>" "junos-media-vsrx-x86-64-vmdisk-18.2R1.9.scsi.ova" vi://root@esxi-host.tld

Replace with your own settings

Enable IKE debug logging in Junos

11 February 2023 - Posted in Juniper by aners

Enable IKE debug logging in Junos by configuring the following:

set security ike traceoptions file ike-debug
set security ike traceoptions file size 10m
set security ike traceoptions file files 2
set security ike traceoptions flag all
set security ike traceoptions level 15
set security ike traceoptions gateway-filter local-address 10.0.0.123 remote-address 172.16.0.123

The log file is written to /var/log/ - disable the configuration when it's no longer needed, to not wear down the CF/SSD in the device.

Extras:

request security ike debug-enable local 10.0.0.123 remote 172.16.0.123

show security ike traceoptions

show security ike debug-status

Junos, save dump to pcap-file

11 February 2023 - Posted in Juniper by aners

To save monitoring to a pcap-file in Junos, use the write-file argument:

monitor traffic interface ge-0/0/1.0 write-file test.pcap

The file will be saved in /cf/var/home/<userid>/test.pcap

To read back the file in the Junos CLI, use the read-file argument:

monitor traffic read-file test.pcap

Invalid configuration for device '0'.

One of my Veeam Backup Copy jobs failed for every VM in the job, reporting...

Encrypted storage container with LUKS

Create an encrypted container for storage with LUKS Change the names and...

vSRX license monitoring, the dirty way

In case monitoring of vSRX/SRX-licensing isn't available from the official...