Technical Documentation

Configuring Bridge Domains Properties (NSM Procedure)

You can configure the bridge domain properties using the following options. See the following topics:

Configuring a Bridge Domain (NSM Procedure)

A bridge domain must include a set of logical interfaces that participate in Layer 2 learning and forwarding. You can optionally configure a VLAN identifier and a routing interface for the bridge domain to also support Layer 3 IP routing.

To configure bridge domain in NSM:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device to select it.
  3. Click the Configuration tab. In the configuration tree, expand Bridge Domains.
  4. Select Domain.
  5. Add or modify settings as specified in Table 1.
  6. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.

Table 1: Bridge Domain Configuration Details

Task Your Action

Configure bridge domain.
  1. Click Add new entry next to Domain.
  2. Click domain.
  3. In the Name box, enter the name of the bridge domain.
  4. In the Comment box, enter the comment.
  5. In the Description box, enter the text to describe the bridge domain.
  6. From the Domain Type list, select the type of domain for a Layer 2 bridge domain.
  7. Select the No Local Switching check box to enable or disable local switching within customer edge(ce)-facing interfaces.
  8. In the Routing Interface box, enter the interface name.

Configuring Layer 2 Learning and Forwarding Properties for a Bridge Domain (NSM Procedure)

When you configure a bridge domain, Layer 2 address learning is enabled by default. The bridge domain learns unicast media access control (MAC) addresses to avoid flooding the packets to all the ports in the bridge domain. Each bridge domain creates a source MAC entry in its source and destination MAC tables for each source MAC address learned from packets received on the ports that belong to the bridge domain.

To configure bridge options in NSM:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device to select it.
  3. Click the Configuration tab. In the configuration tree, expand Bridge Domains.
  4. Select Domain.
  5. Add or modify settings as specified in Table 2.
  6. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.

Table 2: Bridge Options Configuration Details

Task Your Action

Configure bridge domain.
  1. Click Add new entry next to Domain.
  2. Click Bridge Options.
  3. Expand Bridge Options.
  4. In the Comment box, enter the comment.
  5. In the Mac Table Aging Time list, select the timeout interval for entries in the MAC table.
  6. Select the No Mac Learning check box to disable MAC learning.
  7. Select the Mac Statistics check box to enable MAC accounting either for a specific bridge domain, or for a set of bridge domains associated with a Layer 2 trunk port.
  8. In the Routing Interface box, enter the interface name.

Specify the logical interfaces to include in the bridge domain.

  1. Click Interface next to Bridge Options.
  2. Click Add new entry next to Interface.
  3. In the Name box, enter the interface name.
  4. In the Comment box, enter the comment.
  5. From the Remote Site Id list, select the remote site ID.
  6. Select the No Mac Learning check box to disable MAC learning.
  7. In the Description box, enter the description.
  8. Click Interface Mac Limit next to interface.
  9. In the Comment box, enter the comment.
  10. From the Limit list, select the maximum number of MAC addresses learned from an interface. Range: 1 through 131,071 MAC addresses per interface
  11. From the Packet Action list, select the packet action for the packets for new source MAC addresses.
  12. Click Static Mac next to interface.
  13. Click Add new entry next to Static Mac.
  14. In the Name box, enter the interface name.
  15. In the Comment box, enter the comment.
  16. Click Vlan Id next to static-mac.
  17. Click Add new entry next to Vlan ID.
  18. From the Name list, select the VLAN identifier to associate with the static MAC address.

    Range: 1 to 4094

  19. In the Comment box, enter the comment.

Configure a limit to the number of MAC addresses that can be learned from a bridge domain, virtual switch, or set of bridge domains.

  1. Click Interface Mac Limit next to Bridge Options.
  2. In the Comment box, enter the comment.
  3. From the Limit list, select the maximum number of MAC addresses learned from an interface.

    Range: 1 through 131,071 MAC addresses per interface

Modify the size of the MAC address table for the bridge domain, a set of bridge domains associated with a trunk port, or a virtual switch.

  1. Click Mac Table Size next to Bridge Options.
  2. In the Comment box, enter the comment.
  3. From the Limit list, select the maximum number of addresses in the MAC address table.

    Range: 16 through 1,048,575 MAC addresses

    Default: 5120 MAC addresses

Configuring Forwarding Options (NSM Procedure)

To configure forwarding options in NSM:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device to select it.
  3. Click the Configuration tab. In the configuration tree, expand Bridge Domains.
  4. Select Domain.
  5. Add or modify settings as specified in Table 3.
  6. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.

Table 3: Forwarding Options Configuration Details

Task Your Action

Configuring the extended DHCP relay agent.
  1. Click Add new entry next to Domain.
  2. Click Forwarding Options.
  3. Expand Dhcp Relay.
  4. Select Authentication.
  5. For Configuring Authentication Support for the DHCP Relay Agent, see Configuring Authentication Support for the DHCP Relay Agent (NSM Procedure).

Configuring Group.
  1. Click Group next to Dhcp Relay.
  2. For configuring group, see Configuring Group (NSM Procedure).

Overriding the default configuration settings for the extended DHCP relay agent.

  1. Click Overrides next to Dhcp Relay.
  2. For overriding the default configuration settings for the extended DHCP relay agent, see Overriding the Default Configuration Settings for the Extended DHCP Relay Agent (NSM Procedure).

Configuring relay option 60 information for forwarding client traffic to specific DHCP servers.

  1. Click Relay option 60 next to Dhcp Relay.
  2. For configuring relay option 60 information for forwarding client traffic to specific DHCP servers, see Configuring Relay Option 60 Information for Forwarding Client Traffic to Specific DHCP Servers (NSM Procedure).

Configuring relay option 82 for a DHCP server.
  1. Click Relay option 82 next to Dhcp Relay.
  2. For configuring relay option 82 for a DHCP server, see Configuring Relay Option 82 for a DHCP Server (NSM Procedure).

Specifying the name of a group of DHCP server addresses for use by the extended DHCP relay agent.

  1. Click Server Group next to Dhcp Relay.
  2. For specifying the name of a group of DHCP server addresses for use by the extended DHCP relay agent, see Specifying the Name of a Group of DHCP Server Addresses for Use by the Extended DHCP Relay Agent (NSM Procedure)

Configuring tracing operations for extended DHCP relay agent processes.

  1. Click Traceoptions next to Dhcp Relay.
  2. For configuring tracing operations for extended DHCP relay agent processes see Configuring Operations for Extended DHCP Relay Agent Processes (NSM Procedure)

Apply a forwarding table filter at the ingress of a forwarding table.

  1. Click Filter next to Forwarding Options.
  2. In the Comment box, enter the comment.
  3. From the Input list, select the name of the applied filter.

Apply a forwarding table filter to a flood table.
  1. Click Flood next to Forwarding Options.
  2. In the Comment box, enter the comment.
  3. From the Input list, select the name of the forwarding table filter.

Configuring Logical Interfaces (NSM Procedure)

You can specify the logical interfaces to include in the bridge domain, VPLS instance, or virtual switch.

To configure logical interfaces in NSM:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device to select it.
  3. Click the Configuration tab. In the configuration tree, expand Bridge Domains.
  4. Select Domain.
  5. Add or modify settings as specified in Table 4.
  6. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.

Table 4: Logical Interface Configuration Details

Task Your Action

Configure logical interface to include in the bridge domain, VPLS instance, or virtual switch.

  1. Click Add new entry next to Domain.
  2. Click Interface.
  3. Click Add new entry next to Interface.
  4. From the Name list, select the name of a logical interface.
  5. In the Comment box, enter the comment.

Configuring Multicast Snooping Options (NSM Procedure)

Multicast snooping is a way for a Layer 2 device to snoop at the Layer 3 packet content to determine which actions are to be taken to process or forward a frame. There are specific forms of snooping, such as IGMP snooping or PIM snooping. In all cases, snooping involves a device configured to function at Layer 2 having access to Layer 3 (packet) information. Snooping makes multicasting more efficient in these devices.

To configure Multicast Snooping:

  1. In the navigation tree select Device Manager > Devices.
  2. In the Devices list, double-click the device to select it.
  3. In the Configuration tab, expand Bridge Domains.
  4. Select Domain.
  5. Add or modify the settings as specified in Table 5.
  6. Click one:
    • OK—saves the changes
    • Cancel—cancels the modifications

Table 5: Multicast Snooping Options Configuration Details

Task Your Action

Establish multicast snooping option values.

  1. Click Add new entry next to Domain.
  2. Click Multicastsnooping Options next to domain.

Establish a list of flood group addresses for multicast snooping.

  1. Click Flood Groups next to Multicast Snooping Options.
  2. Click Add new entry next to Flood Groups.
  3. In the dialog box, enter the IP addresses.

Configure multicast forwarding cache properties.

  1. Click Forwarding Cache next to Multicast Snooping Options.
  2. In the Comment box, enter the comments.
  3. Expand Forwarding Cache.
  4. Click Threshold next to Forwarding Cache.
  5. In the Comment box, enter the comments.
  6. From the Suppress list, select the threshold value for a forwarding cache.

    Range: 1 through 200,000

  7. From the Reuse list, select the reuse value for the threshold. The reuse value must be less than the suppression threshold value.

    Range: 1 through 200,000

Establish the graceful restart duration for multicast snooping.

  1. Click Graceful Restart next to Multicast Snooping Options.
  2. In the Comment box, enter the comments.
  3. From the Restart Duration list, select the duration for graceful restart.
    Range: 0 to 300 seconds

    Default : 180 seconds

Establish multicast snooping option values.

  1. Click Option next to Multicast Snooping Options.
  2. In the Comment box, enter the comments.
  3. Expand Options.
  4. Click Syslog next to Options.
  5. In the Comment box, enter the comments.
  6. From the Upto list, select the level up to which severity the messages are to be syslogged.
  7. From the Mark list, select the time interval in seconds to mark the trace file.

    Range : -2147483647 seconds to 2147483647 Seconds

    Default : 0

  8. Expand Syslog.
  9. Click Level next to Syslog.
  10. Select the Level of severity to be logged.

Configure tracing options.
  1. Click Traceoptions next to Multicast Snooping Options.
  2. In the Comment box, enter the comments.
  3. Expand Traceoptions.
  4. Click File next to Trace Options.
  5. In the Comment box, enter the comments.
  6. In the Filename box, enter the name of the file to receive the output of the tracing operation. Enclose the name within quotation marks.
  7. In the Size box, enter the maximum size of each trace file in bytes.

    Range : 10240 to 4294967295 bytes

  8. From the Files list, select the maximum number of files.
  9. Select one of the following:
    • world-readable—To enable log file access to all users.
    • no-world-readable—To prevent all users from reading the log file.
  10. Click Flag next to Trace Options.
  11. Click Add new entry next to flag.
  12. From the Name list, select a tracing operation to perform.
  13. In the Comment box, enter the comments.

Configuring IGMP Snooping (NSM Procedure)

The Internet Group Management Protocol (IGMP) manages the membership of hosts and routers in multicast groups. IP hosts use IGMP to report their multicast group memberships to any immediately neighboring multicast routers. Multicast routers use IGMP to learn, for each of their attached physical networks, which groups have members. IGMP is also used as the transport for several related multicast protocols (for example, Distance Vector Multicast Routing Protocol [DVMRP] and Protocol Independent Multicast version 1 [PIMv1]). IGMP is an integral part of IP and must be enabled on all routers and hosts that need to receive IP multicast traffic.

To configure IGMP snooping in NSM:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device to select it.
  3. Click the Configuration tab. In the configuration tree, expand Bridge Domains.
  4. Select Domain.
  5. Add or modify settings as specified in Table 6.
  6. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.

Table 6: Igmp Snooping Configuration Details

Task Your Action

Configure IGMP snooping.
  1. Click Add new entry next to Domain.
  2. Click and expand Protocol.
  3. Select Igmp Snooping.
  4. In the Comment box, enter the comment.
  5. From the Query Interval list, select the time interval the querier router sends general host-query messages.

    Range: 1 through 1024

    Default: 125 seconds

  6. In the Query Response Interval box, enter the time interval the querier router waits to receive a response to a host-query message from a host. This interval must be less than the interval between general host-query messages.

    Range: 1 through 1024

    Default: 10 seconds

  7. In the Query Last Member Interval box, enter the time interval the querier router sends group-specific query messages.

    Range: 0.1 through 0.9, then in 1-second intervals 1 through 1024

    Default: 1 second

  8. From the Robust Count list, select the robustness variable used to calculate several IGMP message intervals.

    Range: 2 through 10

    Default: 2

  9. Select the Immediate Leave check box to enable immediate leave.

    When this statement is enabled on a router running IGMP version 2 (IGMPv2), after the router receives a leave group membership message from a host associated with the interface, the router immediately removes the group membership from the interface and suppresses the sending of any group-specific queries for the multicast group.

    When this statement is enabled on a router running IGMP version 3 (IGMPv3), after the router receives a report with the type BLOCK_OLD_SOURCES, the router suppresses the sending of group-and-source queries but relies on the host-tracking mechanism supported by the JUNOS Software to determine whether or not it removes a particular source group membership from the interface.

    Note: When issuing this command on IGMPv2 interfaces, ensure that the IGMP interface has only one IGMP host connected. If more than one IGMPv2 host is connected to a LAN through the same interface, and one host sends a done message, the router removes all hosts on the interface from the multicast group. The router loses contact with the hosts that properly remain in the multicast group until they send join requests in response to the next general multicast listener query from the router.

Enable IGMP on an interface and configure interface-specific properties.

  1. Click Interface next to Igmp Snooping.
  2. Click Add new entry next to Interface.
  3. In the Name box, enter the interface name.
  4. In the Comment box, enter the comment.
  5. Select the Multicast Router Interface check box if the interface is a multicast router interface.
  6. Select the Immediate Leave check box to enable immediate leave on a router.
  7. Select the Host Only Interface check box if the interface is to be configured as a host-facing interface.
  8. From the Group Limit list, select the limit for the number of multicast groups (or [S,G] channels in IGMPv3) allowed on an interface.

    After this limit is reached, new reports will be ignored and all related flows are not flooded on the interface.

  9. Click Static next to interface.
  10. In the Comment box, enter the comment.
  11. Expand Static.
  12. Click Group next to Static.
  13. Click Add new entry next to Group.
  14. In the Name box, enter the IGMP multicast group address.
  15. In the Comment box, enter the comment.
  16. Click Source next to group.
  17. Click Add new entry next to Source.
  18. In the Name box, enter the IP version 4 (IPv4) unicast source address for the multicast group being statically configured on an interface.
  19. In the Comment box, enter the comment.

Configuring IGMP snooping proxy mode.
  1. Click Proxy next to Igmp Snooping.
  2. In the Comment box, enter the comment.
  3. In the Source Address box, enter the IP address to use as the source for IGMP snooping reports in proxy mode.

Configure IGMP tracing options.
  1. In the Comment box, enter the comment for the traceoptions.
  2. Click File next to Traceoptions.
  3. In the Comment box, enter the comment for the filename.
  4. In the Filename box, enter the name of the file to receive the output of the tracing operation.
  5. In the Size box, enter the maximum trace file size in bytes.

    Range : 10240 to 4294967295

  6. From the Files list, select the maximum number of trace files.

    Range: 2 through 1000 files

    Default: 2 files

  7. Select one of the following:
    • no-world-readable—To restrict the file access to owner.
    • world-readable—To enable unrestricted access.
  8. Click Flag next to Traceoptions.
  9. Click Add new entry next to Flag.
  10. From the Name list, select the flag to perform the trace operation.
  11. In the Comment box, enter the comment for the flag.
  12. Select the corresponding flag modifier check box.

Configure IGMP snooping parameters for a particular VLAN.
  1. From the Name list, select the VLAN ID.
  2. In the Comment box, enter the comment.
  3. From the Query Interval list, select the time interval the querier router sends general host-query messages.

    Range: 1 through 1024

    Default: 125 seconds

  4. In the Query Response Interval box, enter the time interval the querier router waits to receive a response to a host-query message from a host. This interval must be less than the interval between general host-query messages.

    Range: 1 through 1024

    Default: 10 seconds

  5. In the Query Last Member Interval box, enter the time interval querier router sends group-specific query messages.

    Range: 0.1 through 0.9, then in 1-second intervals 1 through 1024

    Default: 1 second

  6. From the Robust Count list, select the robustness variable used to calculate several IGMP message intervals.

    Range: 2 through 10

    Default: 2

  7. Select the Immediate Leave check box to enable immediate leave.

    When this statement is enabled on a router running IGMP version 2 (IGMPv2), after the router receives a leave group membership message from a host associated with the interface, the router immediately removes the group membership from the interface and suppresses the sending of any group-specific queries for the multicast group.

    When this statement is enabled on a router running IGMP version 3 (IGMPv3), after the router receives a report with the type BLOCK_OLD_SOURCES, the router suppresses the sending of group-and-source queries but relies on the host-tracking mechanism supported by the JUNOS Software to determine whether or not it removes a particular source group membership from the interface.

    Note: When issuing this command on IGMPv2 interfaces, ensure that the IGMP interface has only one IGMP host connected. If more than one IGMPv2 host is connected to a LAN through the same interface, and one host sends a done message, the router removes all hosts on the interface from the multicast group. The router loses contact with the hosts that properly remain in the multicast group until they send join requests in response to the next general multicast listener query from the router.

Configure interface specific properties.
  1. Click Interface next to vlan.
  2. Click Add new entry next to Interface.
  3. In the Name box, enter the interface name.
  4. In the Comment box, enter the comment.
  5. Select the Multicast Router Interface check box if the interface is a multicast router interface.
  6. Select the Immediate Leave check box to enable immediate group leave on a router.
  7. Select the Host Only Interface check box if the interface is to be configured as a host-facing interface.
  8. From the Group Limit list, select the limit for the number of multicast groups (or [S,G] channels in IGMPv3) allowed on an interface.

    After this limit is reached, new reports will be ignored and all related flows are not flooded on the interface.

  9. Click Static next to interface.
  10. In the Comment box, enter the comment.
  11. Expand Static.
  12. Click Group next to Static.
  13. Click Add new entry next to Group.
  14. In the Name box, enter the IGMP multicast group address.
  15. In the Comment box, enter the comment.
  16. Click Source next to group.
  17. Click Add new entry next to Source.
  18. In the Name box, enter the IP version 4 (IPv4) unicast source address for the multicast group being statically configured on an interface.
  19. In the Comment box, enter the comment.
  20. Click Proxy next to vlan.
  21. In the Comment box, enter the comment.
  22. In the Source Address box, enter the IP address to use as the source for IGMP snooping reports in proxy mode.

Configuring VLAN ID (NSM Procedure)

You can configure VLAN IDs using the Vlan Id option.

To configure VLAN ID in NSM:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device to select it.
  3. Click the Configuration tab. In the configuration tree, expand Bridge Domains.
  4. Select Domain.
  5. Add or modify settings as specified in Table 7.
  6. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.

Table 7: VLAN ID Configuration Details

Task Your Action

Configure a VLAN ID
  1. Click Add new entry next to Domain.
  2. Click Vlan Id.
  3. Select vlan-id and enter the VLAN ID.
  4. Select vlan tag to tag the VLAN interface so that it can be compared with the normalizing VLAN identifier.
  5. In the Comment box, enter the comment.
  6. In the Inner box, enter the VLAN identifier.
  7. In the Outer box, enter the VLAN identifier.

Published: 2009-08-23