Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Interfaces

 

Viewing Interfaces Configuration Page Options

  1. Select Configure>Interfaces>Ports in the J-Web user interface.

    The Interfaces configuration page appears. Table 108 explains the contents of this page.

  2. Click one:
    • Add or +—Add a new or duplicate interface configuration. See Table 109.

    • Edit or /—Edit the selected interface configuration.

    • Delete or X—Delete the selected interface configuration.

  3. Click one:
    • OK—Saves the configuration and returns to the main configuration page.

    • Commit Options>Commit—Commits the configuration and returns to the main configuration page.

    • Cancel—Cancels your entries and returns to the main configuration page.

  4. Click Switch to L2 mode to switch between L2 and L3 mode and vice versa. Table 110 explains the contents of this page.Note

    This feature is not supported on SRX1500 devices.

    This feature is not supported in Junos OS Release 15.1 and later.

Table 108: Interfaces Configuration Page

Field

Function

Interface

Displays the interface name. Logical interfaces configured under this interface appear in a collapsible list under the physical interface.

Admin status

Displays the administrative status of the interface. Status can be either Up or Down.

Link Status

Displays the operational status of the link. Status can be either Up or Down.

IP Address

Displays the configured IP addresses. Multiple IP addresses configured on one logical interface are displayed in a collapsible list under the logical interface.

Zone

Displays the security zone with which this interface is associated.

MTU

Displays the maximum transmission unit value for this physical interface.

Speed

Displays the Interface speed (10 Mbps, 100 Mbps, 1 Gbps, or Auto).

Link Mode

Displays the link mode status for this interface. Status can be Active, Passive, or None.

Auto Negotiation

Displays the auto negotiation status of the interface. Status can be either Enabled or Disabled.

Table 109: Viewing Interfaces Configuration Details

Field FunctionAction

Filter

Interface Type

Displays the list of interfaces available on the device.

Note: By default, only interfaces ge and fe are displayed. Others are hidden.

Select an option.

Interface State

Displays the state options. The options available are:

  • Admin Up

  • Link Up

  • Admin Up and Link Down

  • Admin Down

Select an option.

Zone Association

Displays the list of security zones available.

Select an option.

Go

Displays the list of interfaces based on the interface type, interface state, or zone association that you have used to filter the interface information.

Clear

Clears the filter options that you have selected and displays all the interfaces.

Expand All

Expands the tree under the interfaces.

Global Settings

Opens a window, where you can configure all the interfaces on the device with respect to MAC table size, MAC limit, and packet action.

MAC Table size—Specify the size of MAC address forwarding table.

MAC Limit—Specify the maximum number of MAC addresses learned per interface. The range is between 1 and 65,535.

Packet Action—Specify the action when MAC limit is reached. The options available are: drop, drop-and-log, log, none, and shutdown.

Add

Adds a new or duplicate logical interface configuration.

Select any of the listed Interface and select Add>Logical Interface.

Edit

Edits the selected interface configuration.

Select any of the listed Interface and select Edit.

Disable

Disables the selected interface.

 

Delete

Deletes the selected interface.

 

Table 110: L2/L3 Switching Mode

Field FunctionAction

Switch to L2 mode

Management IP

Specifies the management IP address.

Caution: When you click Switch to L2 mode, the following confirm message appears: “Transitioning to L2 Transparent mode might fail due to some security configurations like (NAT, IPSEC, VPN). Are you sure you want to proceed?”

Note: This confirm message appears only when the security configurations like (NAT, IPSEC, VPN) were available in L3 mode.

Enter a valid IP address for the management interface.

Caution: When you enter the management IP address and click OK, the following confirm message appears: “During this action, the device will be rebooted and J-Web connectivity will be lost. Are you sure you want to continue?”

Switch to L3 mode

Management IP

Specifies the management IP address.

Enter a valid IP address for the management interface.

Management Interface

Displays the list of interfaces available on the device.

Select an option.

Caution: When you select the interface and click OK, the following confirm message appears: “During this action, the device will be rebooted and J-Web connectivity will be lost. Are you sure you want to continue?”

Interconnecting Interface Ports Configuration Page Options

On SRX Series Services Gateways, the logical tunnel interface is used to interconnect logical systems. Use this page to interconnect logical system that serves as an internal virtual private LAN service (VPLS) switch connecting one logical system on the device to another.

  1. Select Configure>Interfaces>Interconnect Ports in the J-Web user interface.

    The Interfaces configuration page appears. Table 111 explains the contents of this page.

  2. Click one:
    • Add or +—Add a new or duplicate interface configuration. See, Table 112.

    • Edit or /—Edit the selected interface configuration.

    • Delete or X—Delete the selected interface configuration.

  3. Click Commit icon at the top of the J-Web page. The following commit options are displayed.

    • Commit—Commits the configuration and returns to the main configuration page.

    • Compare—Enables you to compare the current configuration with the previous configuration.

    • Discard—Discards the configuration changes you performed in the J-Web.

    • Preferences—There are two tab:

      • Commit preferences—You can choose to just validate or validate and commit the changes.

      • Confirm commit timeout (in min) —You can select the commit timeout interval.

Table 111: Interconnect Ports Configuration Page

Field

Function

Interface

Displays the interface name. Logical interfaces configured under this interface appear in a collapsible list under the physical interface.

Link Status

Displays the operational status of the link. Status can be either Up or Down.

IP Addresses

Displays the configured IP addresses. Multiple IP addresses configured on one logical interface are displayed in a collapsible list under the logical interface.

Encapsulation

Displays the mode of encapsulation. Encapsulation is the process of taking data from one protocol and translating it into another protocol, so the data can continue across a network. It can from the following points:

  • Ethernet

  • Frame Relay

  • Ethernet VPLS

Ethernet and Frame Relay are used if logical tunnel interfaces connected between two logical systems. Ethernet VPLS will be used on logical tunnel interface which is connecting VPLS switch to logical system.

LSYS/Tenant/VPLS Switch

Displays the name of the logical system or the name of VPLS Switch.

Peer Interface

Displays the peer details.

Peer Encapsulation

Displays the peer encapsulation mode.

Peer LSYS/VPLS Switch

Displays the name of the peer logical system and VPLS Switch.

Table 112: Creating and Editing LT Logical Interface - Configuration Details

Field FunctionAction
Local Details

Unit

Specify the unit for logical interface.

Enter the Logical unit number

Type

Specify the type for logical interface.

Select a type from the drop down list. The options available are Logical System, Tenant, and VPLS Switch.

Logical System

Specify the logical system created.

Select a logical system from the list. If not present in the list, then we need to create a logical system.

Note: Starting from Junos OS 19.1R1, the user interface will autocomplete the logical system names when you type the partial name.

Tenant

Specify the tenant created.

Select a tenant from the list.

Note: Starting from Junos OS 19.1R1, the user interface will autocomplete the tenant names when you type the partial name.

VPLS Switch

Specify the VPLS switch created.

Select a VPLS switch from the list.

Description

Specify the interface description.

Enter description for the interface.

IPv4 Address

Specify the IPv4 address.

Click + and enter the following:

  • IPv4 address—IP Addresses added here would be used as interconnect IP.

  • Prefix Length—Enter the prefix length. This specifies the number of bits set in the subnet mask.

IPv6 Address

Specify the IPv6 address.

Click + and enter the following:

  • IPv6 address—IP Addresses added here would be used as interconnect IP.

  • Prefix Length—Enter the prefix length. This specifies the number of bits set in the subnet mask.

Peer Details

Type

Specify the type of connection.

Select any one of the connection type from the following:

  • Logical system

  • Tenant

  • VPLS Switch

Logical System

Displays the name of the logical system.

Select a logical system from the list. If not present in the list, then we need to create a logical system.

Tenant

Specify the tenant created.

Select a tenant from the list.

Unit

Specify the peering logical system unit number.

Enter the logical system unit number

Description

Specify the interface description.

Enter description for the interface.

IPv4 Address

Specify the IPv4 address.

Click + and enter the following:

  • IPv4 address—IP Addresses added here would be used as interconnect IP.

  • Prefix Length—Enter the prefix length. This specifies the number of bits set in the subnet mask.

IPv6 Address

Specify the IPv6 address.

Click + and enter the following:

  • IPv6 address—IP Addresses added here would be used as interconnect IP.

  • Prefix Length—Enter the prefix length. This specifies the number of bits set in the subnet mask.

VLAN Configuration Page Options

  1. Select Configure>Switching>VLAN in the J-Web user interface if you are using SRX5400, SRX5600, or SRX5800 platforms.

    Or

    Select Configure>Interfaces>VLAN in the J-Web user interface.

    The VLAN configuration page appears. Table 113 explains the contents of this page.

  2. Click one:
    • Add or +—Adds a new or duplicate VLAN configuration. Enter information as specified in Table 114.

    • Edit or /—Edits a selected VLAN configuration.

    • Delete or X—Deletes the selected VLAN configuration.

  3. Click one:
    • OK—Saves the configuration and returns to the main configuration page.

    • Commit Options>Commit—Commits the configuration and returns to the main configuration page.

    • Cancel—Cancels your entries and returns to the main configuration page.

Table 113: VLAN Configuration Page

Field

Function

General

VLAN Name

Displays the name for the VLAN.

VLAN ID/Range

Displays the identifier or range for the VLAN.

Description

Displays a brief description for the VLAN.

Details of VLAN

Multilayer switching (RVI)

Displays the multilayer switching details.

IP Address

Displays the IP address of the VLAN.

IPv6 Address

Displays the IPv6 address of the VLAN.

Layer3-interface-input Filter

Displays the details for the layer 3 interface filter that is applied to incoming packets.

Layer3-interface-output Filter

Displays the details for the layer 3 interface filter that is applied to outgoing packets.

Input Filter

Displays the details for the VLAN firewall filter that is applied to incoming packets.

Output Filter

Displays the details for the VLAN firewall filter that is applied to outgoing packets.

Table 114: Add VLAN Configuration Details

Field

Function

Action

General

VLAN Name

Specifies a unique name for the VLAN.

Enter a name.

Note: The VLAN text field is disabled when vlan-tagging is not enabled.

VLAN ID/Range

Specifies the identifier or range for the VLAN.

The available options are as follows:

  • VLAN ID—Type a unique identification number from 1 through 4094. If no value is specified, the default is 1.

  • VLAN Range—Type a number range to create VLANs with IDs corresponding to the range. For example, the range 2–3 will create two VLANs with the ID 2 and 3.

Select an option.

Description

Provides a description of the VLAN.

Enter a brief description for the VLAN.

Input Filter

Specifies the VLAN firewall filter that is applied to incoming packets.

To apply an input firewall filter, select the firewall filter from the list.

Output Filter

Specifies the VLAN firewall filter that is applied to outgoing packets.

To apply an output firewall filter, select the firewall filter from the list.

Ports

Ports

Specifies the ports to be associated with this VLAN for data traffic. You can also remove the port association.

The available options are as follows:

  • Add—Select the ports from the available list.

  • Remove—Select the port or ports that you do not want associated with the VLAN.

Select an option.

IP Address

Layer 3 Information

Specifies IP address options for the VLAN.

The available options are as follows:

  • IPv4 address

  • IPv6 address

Select an option.

IP Address

Specifies the IP address of the VLAN.

Enter the IP address.

Subnet Mask

Specifies the range of logical addresses within the address space that is assigned to an organization.

Enter the address, for example, 255.255.255.0. You can also specify the address prefix.

Input Filter

Specifies the VLAN interface firewall filter that is applied to incoming packets.

To apply an input firewall filter to an interface, select the firewall filter from the list.

Output Filter

Specifies the VLAN interface firewall filter that is applied to outgoing packets.

To apply an output firewall filter to an interface, select the firewall filter from the list.

ARP/MAC Details

Specifies the details for configuring the static IP address and the MAC address.

Click the ARP/MAC Details button. Enter the static IP address and the MAC address in the window.

VoIP

Ports

Specifies the ports to be associated with this VLAN for voice traffic. You can also remove the port association.

The available options are as follows:

  • Add—Select the ports from the available list.

  • Remove—Select the port or ports that you do not want associated with the VLAN.

Select any of the available option.

Link Aggregation Configuration Page Options

  1. Select Configure>Interface>Link Aggregation in the J-Web user interface if you are using SRX5400, SRX5600, or SRX5800 platforms.

    Or

    Select Configure>Interfaces>Link Aggregation in the J-Web user interface.

    The Link Aggregation configuration page appears. Table 115 explains the contents of this page.

  2. Click one:
    • Global Setting—Creates an Link Aggregated Ethernet interface, or LAG. You can choose the number of device that you want to create. Enter information as specified in Table 116.

    • Add or +—Adds a new link aggregation configuration. Enter information as specified in Table 117.

    • Edit or /—Edits a selected link aggregation configuration.

    • Delete or X—Deletes a selected link aggregation configuration.

    • Disable Port—Disables or enables the configured port.

  3. Click one:
    • OK—Saves the configuration and returns to the main configuration page.

    • Commit Options>Commit—Commits the configuration and returns to the main configuration page.

    • Cancel—Cancels your entries and returns to the main configuration page.

Field

Function

Aggregated Interface

Displays the name of the aggregated interface.

Link Status

Displays whether the interface is linked (Up) or not linked (Down).

VLAN (VLAN ID)

Displays the Virtual LAN identifier value for IEEE 802.1Q VLAN tags (0.4094).

Description

Provides a description of the LAG.

Details of Aggregation

Name

Displays the name of the select LAG.

Value

Displays the value of the LAG.

Field FunctionAction

Enable aggregation

Specifies the option to enable aggregation.

Select the option.

Device Count

Specifies the device count.

Enter the device count by clicking the arrow button.

System Priority

Specifies the priority level that you associate with the LAG.

Select the priority level that you want to associate with the LAG by clicking the arrow button.

Link Protection

Specifies the option to protect the link.

Select the option.

Non-Revertive

Specifies not to choose even if a higher priority link is available.

Select the option.

Field FunctionAction

Aggregated Interface

Specifies the name of the aggregated interface. If an aggregated interface already exists, then the field is displayed as read-only.

Enter the aggregated interface name.

LACP Mode

Specifies the mode in which Link Aggregation Control Protocol packets are exchanged between the interfaces. The modes are:

  • None—Indicates that no mode is applicable.

  • Active—Indicates that the interface initiates transmission of LACP packets

  • Passive—Indicates that the interface only responds to LACP packets.

Select an option.

Description

Provides a description for the LAG.

Enter a description.

Interface

Displays the interfaces available for aggregation. The options available are:

  • Add—Adds the interface.

  • Remove—Removes the interface.

Note: Only interfaces that are configured with the same speed can be selected together for a LAG.

Select an option.

Speed

Displays the speed of the interface.

  • Add—Adds the interface.

  • Remove—Removes the interface.

Select an option.

Enable Log

Specifies whether or not to enable generation of log entries for a LAG.

Select to enable log generation.

Release History Table
Release
Description
Starting from Junos OS 19.1R1, the user interface will autocomplete the logical system names when you type the partial name.
Starting from Junos OS 19.1R1, the user interface will autocomplete the tenant names when you type the partial name.