Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Validation Framework

Test Bed

In the diagram below, you will see the suggested topology used for the phase 2 lab evaluating a CRB Fabric with a single site.

Figure 1: JVD Lab Proposal A diagram of a network Description automatically generated

The suggested lab design provides the ability to evaluate the following:

  • Five-stage CRB single-site fabric with:
    • Two redundant core switches acting as spines.
    • Two redundant distribution switches acting as leafs.
    • One 4 Member Virtual Chassis access switch acting as ToR.
    • One standalone access switch acting as ToR.
  • Service block function via:
    • Integrated to existing core switches (default) acting as service-leaf and core at the same time.
    • Attached WAN routers via Layer 2 or Layer 3 exit.
    • Attached servers via ESI-LAG redundant links.
  • WAN router integration:
    • Layer 2 fabric exit:
      • ESI-LAG-based trunks.
    • Layer 3 fabric exit:
      • OSPF as routing protocol.
      • eBGP as routing protocol
    • Attached to:
      • Core switch.
    • Redundant WAN router design:
      • Two Juniper MX routers.
      • Two Juniper SRX Firewalls in cluster configuration.
  • Wi-Fi Access Points:
    • Local attached to the access switches with PoE.
    • Various Wi-Fi clients.
    • Basic Wi-Fi roaming.
  • Overlay Server attached to service block functionality:
    • DHCP server.
    • Other services.
  • RADIUS server:
    • Server location:
      • Local Server attached to underlay network.
      • Remote Juniper Mist Access Assurance via public cloud.
    • Authentication for the following Client:
      • Wired clients attached to access switches.
      • Wi-Fi clients using the access points.
    • Authentication based on Clients:
      • MAC address.
      • 802.1X EAP authentication.
    • Dynamic authorization profiles:
      • Single VLAN assign.
      • Multiple VLANs assigned.
  • Testing fabric features such as:
    • DHCP relay
    • Protect RE-Filter
    • DHCP snooping
    • Storm control
    • MAC address limit with aging
    • DNS
    • NTP

Platforms / Devices Under Test (DUT)

In phase 2, the devices tested and on which Junos version is reported in the table below.

Table 1: Devices Under Test
Devices Under Test
Fabric function Device Junos Release
Core Switches QFX5120 22.4R3-S2
Distribution Switches QFX5120 22.4R3-S2
Access Virtual Chassis EX4400 22.4R3-S2
Access standalone switch EX3400 22.4R3-S2
WAN Router SRX1500  

Test Bed Configuration

In the appendix section of this JVD, we are sharing information on exactly how some of the tests were performed. Contact your Juniper representative to obtain the full archive of the test bed configuration used for this JVD.