What's Changed
Learn about what changed in this release for EX Series switches.
EVPN
-
EVPN system log messages for CCC interface up and down events—Devices will now log EVPN and EVPN-VPWS interface up and down event messages for interfaces configured with circuit cross-connect (CCC) encapsulation types. You can look for error messages with message types EVPN_INTF_CCC_DOWN and EVPN_INTF_CCC_UP in the device system log file
/var/log/syslog
.
Forwarding and Sampling
-
Support added for interface-group match condition for MPLS firewall filter family.
General Routing
-
Non-revertive switchover for sender based MoFRR—In earlier Junos OS releases, source-based MoFRR ensured that the traffic reverted to the primary path from the backup path, when the primary path or session was restored. This reversion could result in traffic loss. Starting in Junos OS 22.4R3-S1, source-based MoFRR will not revert to the primary path, that is, traffic will continue to flow through the backup path as long as the traffic flow rate on the backup path does not go below the configured threshold set under
protocols mvpn hot-root-standby min-rate
.[See min-rate]
-
For MPC5E line card with flexible-queuing-mode enabled, queue resources are shared between scheduler block 0 and 1. Resource monitor CLI output displays an equal distribution of the total available and used queues between scheduler blocks. This correctly represents the queue availability to the Routing Engine.
[See https://uat.juniper.net/documentation/test/us/en/junos-24.2/software/junos/cli-reference/topics/ref/command/show-system-resource-monitor-summary.html and https://uat.juniper.net/documentation/test/us/en/junos-24.2/software/junos/cli-reference/topics/ref/command/show-system-resource-monitor-ifd-cos-queue-mapping-fpc.html]
-
Enhancement to fix output with Junos PyEz for duplicate keys in PKI (MX Series, SRX Series, EX Series)—In earlier releases, though the CLI output displayed all the duplicate keys for the corresponding hash algorithms in PKI using
show security pki local-certificate detail | display json
command, for the same requested data, Junos PyEz displayed the last key only. Starting this release, the CLI output and the PyEz displays all the duplicate keys with the enhanced tags. -
In a firewall filter configured with a port-mirror-instance or port-mirror action, if l2-mirror action is also configured, then port-mirroring instance family should be any. In the absence of the l2-mirror action, port-mirroring instance family should be the firewall filter family.
-
Change to the commit process—In prior Junos OS and Junos OS Evolved releases, if you use the commit prepare command and modify the configuration before activating the configuration using the commit activate command, the prepared commit cache becomes invalid due to the interim configuration change. As a result, you cannot perform a regular commit operation using the commit command. The CLI shows an error message: 'error: Commit activation is pending, either activate or clear commit prepare'. If you now try running the commit activate command, the CLI shows an error message: 'error: Prepared commit cache invalid, failed to activate'. You then must clear the prepared configuration using the clear system commit prepared command before performing a regular commit operation. From this Junos and Junos OS Evolved release, when you modify a device configuration after 'commit prepare' and then issue a 'commit', the OS detects that the prepared cache is invalid and automatically clears the prepared cache before proceeding with regular 'commit' operation.
-
Option
allow-transients
is set by default for the EZ-LAG commit script—The EZ-LAG feature simplifies setting up EVPN multihoming configurations using a set of configuration statements and a commit script. The commit script applies transient configuration changes, which requires theallow-transients
system commit scripts option to be set. Now the default system configuration sets theallow-transients
option at the EZ-LAG commit script file level, removing the need to set this option manually. In earlier releases where this option isn?t set by default, you must still configure the option explicitly either globally or only for the EZ-LAG commit script.
Junos XML API and Scripting
-
Commit script input to identify software upgrades during boot time (ACX Series, EX Series, MX Series, QFX Series, SRX Series, and vSRX)—The
junos-context
node-set includes thesw-upgrade-in-progress
tag. Commit scripts can test thesw-upgrade-in-progress
tag value to determine if the commit is taking place during boot time and a software upgrade is in progress. The tag value isyes
if the commit takes place during the first reboot after a software upgrade, software downgrade, or rollback. The tag value isno
if the device is booting normally.[See Global Parameters and Variables in Junos OS Automation Scripts.]
Routing Protocols
-
Update to IGMP snooping membership command options— The
instance
option is now visible when issuing theshow igmp snooping membership ?
command. Earlier, theinstance
option was available but not visible when?
was issued to view all possible completions for theshow igmp snooping membership
command. -
MLD snooping proxy and l2-querier source-address (ACX7024, ACX7100-32C, EX4400-24MP, PTX10001-36MR, QFX5120-32C, and QFX5130-32CD)— The
source-address
configured forproxy
andl2-querier
under the[mld-snooping]
hierarchy should be an IPv6 link-local address in the range of fe80::/64. The CLI help text has been updated to "Source IPv6 link local address to use for proxy/L2 querier". In earlier releases, the CLI help text read, "Source IP address to use for proxy/L2 querier".[See source-address.]
User Interface and Configuration
-
Compact format deprecated for JSON-formatted state data (ACX Series, EX Series, MX Series, QFX Series, SRX Series, and vSRX)—We've removed the
compact
option at the[edit system export-format state-data json]
hierarchy level because Junos devices no longer support emitting JSON-formatted state data in compact format.