Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Network Management and Monitoring

  • sFlow support for IP-IP traffic with VRF (PTX1000, PTX10002, PTX10008, QFX10002, and QFX10008)—Starting in Junos OS Release 21.2R1, you can use sFlow technology to sample IP over IP (IP-IP) traffic that is hosted on multiple virtual routing and forwarding (VRF) instances. sFlow sampling now reports the extended router data correctly when the incoming and outgoing interfaces of the traffic reside on two different VRFs in IP-IP traffic for egress sampling.

    [See Overview of sFlow Technology.]

  • Support for syslog over TLS (EX Series, MX Series, PTX Series, and QFX Series)—Starting in Junos OS Release 21.2R1, you can transport syslog (control plane) over Transport Layer Security (TLS) protocol. Encapsulating syslog over TLS allows you to:

    • Validate the remote destination (syslog server) before transmitting any sensitive syslog information. (Authentication)

    • Encrypt the syslog during the transport. (Encryption)

    • Verify that the data has not been modified or tampered with (Integrity)

    Before you enable this feature, ensure you:

    • Configure public key infrastructure (PKI) in Junos

    • Configure and load the digital certificates

    • Configure the remote destination (syslog server) that supports syslog over TLS

    To enable transport of syslog (control plane) over TLS, use the tls statement at the [edit system syslog host host-name transport] hierarchy level.