- Introduction
- Cover Page
- play_arrow Junos OS Release Notes for ACX Series
- play_arrow Junos OS Release Notes for cPCE
- play_arrow Junos OS Release Notes for cRPD
- play_arrow Junos OS Release Notes for cSRX
- play_arrow Junos OS Release Notes for JRR Series
- play_arrow Junos OS Release Notes for MX Series
- play_arrow What's New
- Hardware
- Authentication and Access Control
- Chassis
- Class of Service
- Dynamic Host Configuration Protocol
- EVPN
- Forwarding Options
- High Availability
- Interfaces
- Juniper Extension Toolkit (JET)
- Junos OS API and Scripting
- Junos Telemetry Interface
- MPLS
- Network Management and Monitoring
- Precision Time Protocol (PTP)
- Public Key Infrastructure (PKI)
- Routing Policy and Firewall Filters
- Routing Protocols
- Securing GTP and SCTP Traffic
- Serviceability
- Services Applications
- Source Packet Routing in Networking (SPRING) or Segment Routing
- Software Installation and Upgrade
- Subscriber Management and Services
- Additional Features
- What's Changed
- Known Limitations
- Open Issues
- Resolved Issues
- Migration, Upgrade, and Downgrade Instructions
- play_arrow Junos OS Release Notes for NFX Series
- play_arrow Junos OS Release Notes for QFX Series
-
- play_arrow What's New
- Hardware
- Application Identification (AppID)
- Chassis
- Flow-Based and Packet-Based Processing
- High Availability
- Interfaces
- Juniper Advanced Threat Prevention Cloud (ATP Cloud)
- Juniper Extension Toolkit (JET)
- J-Web
- Network Management and Monitoring
- Public Key Infrastructure (PKI)
- Serviceability
- Software Installation and Upgrade
- VPNs
- Additional Features
- What's Changed
- Known Limitations
- Open Issues
- Resolved Issues
- Migration, Upgrade, and Downgrade Instructions
- Documentation Updates
- play_arrow Junos OS Release Notes for vSRX
- Licensing
- Finding More Information
- Requesting Technical Support
- Revision History
ON THIS PAGE
What's Changed
Learn about what changed in this release for EX Series switches.
General Routing
Change in options and generated configuration for the EZ-LAG configuration IRB subnet-address statement--With the EZ-LAG
subnet-address inet
orsubnet-address inet6
options at the[edit services evpn evpn-vxlan irb <varname>irb-instance</varname>]
hierarchy, you can now specify multiple IRB subnet addresses in a single statement using the list syntax[ addr1 addr2 ... ]
. Also, in the generated configuration for IRB interfaces, the commit script now includes defaultrouter-advertisement
statements at the[edit protocols]
hierarchy level for that IRB interface.Change in use of RSA signatures with SHA-1 hash algorithm-Starting in Junos OS Release 24.2R1, there is a behavioural change by OpenSSH 8.8/8.8p1. OpenSSH 8.8/8.8p1 disables the use of RSA signatures with SHA-1 hash algorithm by default. You can use RSA signatures with SHA-256 or SHA-512 hash algorithm.
[See show multicast route.]
Show active forwarding session for sender based MoFRR]-- The
show multicast route extensive
command will show the active forwarding session in the case of source-based MoFRR. The field Session Status: Up & Forwarding will indicate that the particular session is currently forwarding traffic.When you run the
run show lldp local-information interface <interface-name> | display xml
command, the output is displayed under thelldp-local-info root
tag and in thelldp-local-interface-info
container tag. When you run therun show lldp local-information interface | display xml
command, thelldp-tlv-filter
andlldp-tlv-select information
are displayed under thelldp-local-interface-info
container tag in the output.Starting in Junos OS Release 24.2R1, when you run the run show lldp local-information interface
interface-name
| display xml command, the output is displayed under the lldp-local-info root tag and in the lldp-local-interface-info container tag. When you run the run show lldp local-information interface | display xml command, the lldp-tlv-filter and lldp-tlv-select information are displayed under the lldp-local-interface-info container tag in the output.Show active forwarding session for sender based MoFRR— The
show multicast route extensive
command will show the active forwarding session in the case of source-based MoFRR. The field Session Status: Up and Forwarding will indicate that the particular session is currently forwarding traffic.
EVPN
OISM SBD bit in EVPN Type 3 route multicast flags extended community—In EVPN Type 3 Inclusive Multicast Ethernet Tag (IMET) route advertisements for interfaces associated with the supplemental bridge domain (SBD) in an EVPN optimized intersubnet multicast (OISM) network, we now set the SBD bit in the multicast flags extended community. We set this bit for interoperability with other vendors, and to comply with the IETF draft standard for OISM, draft-ietf-bess-evpn-irb-mcast .
See the description of the
show route table bgp.evpn.0 ? extensive
command in CLI Commands to Verify the OISM configuration.- Default behavior changes and new options for the easy EVPN LAG configuration (EZ-LAG) feature—The easy EVPN LAG configuration feature now uses some new default or derived values, as follows:
Peer PE device
peer-id
value can only be 1 or 2.You are required to configure the loopback subnet addresses for each peer PE device using the new
loopback peer1-subnet
andloopback peer2-subnet
options at theedit services evpn device-attribute
hierarchy level. The commit script uses these values for each peer PE device's loopback subnet instead of deriving those values on each PE device. These replace theloopback-subnet
option at theedit services evpn device-attribute
hierarchy level, which has been deprecated.If you configure the
no-policy-and-routing-options-config
option, you must configure a policy statement called EXPORT-LO0 that the default underlay configuration requires, or configure the newno-underlay-config
option and include your own underlay configuration.The commit script generates "notice" messages instead of "error" messages for configuration errors so you can better handle
edit services evpn
configuration issues.The commit script includes the element names you configure (such as IRB instance names and server names) in description statements in the generated configuration.
This feature also now includes a few new options so you have more flexibility to customize the generated configuration:
no-underlay-config
at theedit services evpn
hierarchy level—To provide your own underlay peering configuration.mtu overlay-mtu
andmtu underlay-mtu
options at theedit services evpn global-parameters
hierarchy level—To change the default assigned MTU size for underlay or overlay packets.
Group-based Policy (GBP) tag displayed with CLI command-On platforms that support VXLAN-GBP, the
show bridge mac-table
command now displays a GBP TAG output column that lists the GBP tag associated with the MAC address for a bridge domain or VLAN in a routing instance. Even if the device doesn?t support or isn?t using GBP itself, the output includes this information for GBP tags in packets received from remote EVPN-VXLAN peers.See Example: Micro and Macro Segmentation using Group Based Policy in a VXLAN
VPN
Increase in revert-delay timer range--The
revert-delay
timer range is increased to 600 seconds from 20 seconds.[See min-rate.]