Bidirectional Forwarding Detection (BFD) fails to establish a session when the transmit/receive hello intervals are set at very low values on traffic that is evaluated by a service-set. This article explains how to configure the firewall filter to skip the BFD packets from being evaluated by the service-set. If the BFD traffic does not have to be NAT'd, we can create a … [Read more...]
In MC-LAG setup, ICCP protocol can’t be “Established” due to asymmetric design
ICCP may stuck in “In process/Down” state when there’s some asymmetric design/configuration. Those possibility includes: Junos version mismatch on two PEs; BFD single-hop/multihop mismatch on two PEs The following example is trying to build ICCP connection between R1 and R2. R1 is running on 12.3R9.4, R2 is running 13.3R1.8. The configuration of R1 is given. The … [Read more...]
BFDD_WRITE_ERROR
BFDD_WRITE_ERROR message is reported into the system message file anytime the Bidirectional Forwarding Detection daemon (BFDD) is shut down abruptly during a session. This is any informational level message. The problem related to this syslog message is described in the following sections: A pipe is a unidirectional, stream communication abstraction. One process writes to … [Read more...]
RPD_OSPF_NBRDOWN
RPD_OSPF_NBRDOWN An OSPF adjacency with the indicated neighboring router was terminated. The local router no longer exchanges routing information with, or directs traffic to, the neighboring router. This message is generated by the routing protocol process (rpd) which controls the routing protocols that run on the router. The RPD_OSPF_NBRDOWN message is logged each time an … [Read more...]
Interpretation of DDOS_PROTOCOL_VIOLATION_SET: Protocol Reject:aggregate is violated message
This article focuses on one type of message shown in the /var/log/message (show log message) and interpretation for the same. This type of message is generated by the DDoS protection feature, which is supported on MX Series routers that have only MPCs installed, or T4000 routers that have only FPC5s installed. The customer might see a message similar to below when DDoS is … [Read more...]