ON THIS PAGE
Example: N+1 Support for BNG M:N Subscriber Service Redundancy
Use this configuration example to configure and verify the N+1 support for BNG subscribers service redundancy on your device. The configuration works for multiple primary BNG gateways and a single over-subscribed backup BNG gateway.
Tip:
|
Readability Score |
|
|
Reading Time |
Less than 20 minutes. |
|
Configuration Time |
Less than an hour. |
Example Prerequisites
|
Hardware requirements |
MX204, MX10003 with MPC7 or later, and EX4200 switch. |
|
Software requirements |
Junos OS Release 25.2 or later |
Before You Begin
|
Benefits |
|
|
Know more |
|
|
Learn more |
Deploying Junos Subscriber Management On-Demand |
Functional Overview
|
Interfaces |
|
|
Pseudowire (PS) interface |
Two PS interfaces with VRF loopback IPs as the local inet address:
|
|
Loopback interface |
Global loopback IP addresses for core router. VRF loopback IP addresses for BNG routers:
|
|
Layer 2 |
|
|
Layer 2 Circuit |
Two Layer 2 circuits connecting the access switch to primary BNG 1 and backup BNG router, and to primary BNG 2 and backup BNG router. |
|
VRFs |
|
|
VLANS |
|
|
DHCP |
|
|
DHCP subscribers |
Two DHCP subscribers:
|
|
Active Lease Query (ALQ) |
Two ALQs inside the VRFs for peering between:
|
|
Profiles |
|
|
Dynamic Profile |
|
|
Protocols |
|
| BGP |
BGP peering between the core router and BNG routers to exchange subscriber and service routes |
| Access-internal |
For primary BNGs to advertise subscriber routes |
| Other supporting protocols |
|
|
Primary verification tasks |
|
Topology Overview
This topology implements N+1 support for M:N subscriber redundancy by using two primary Broadband Network Gateways (BNGs) and a shared backup BNG to ensure uninterrupted subscriber services. Subscriber devices connect through an access switch, which forwards traffic to the BNGs over layer 2 circuits (pseudowires) for transparent L2 transport. All BNGs connect to a core router that provides service reachability and connectivity to external networks. OSPF runs across all nodes to maintain infrastructure and loopback reachability, ensuring fast convergence and stable control‑plane paths. Each BNG uses BGP to exchange service routes with the core route; primary BNGs advertise the learned subscriber routes to the core so the network forwards return traffic to the active gateway correctly.
DHCP and AAA integration drive subscriber onboarding and service delivery. BNGs
support DHCP local server, DHCP relay, and DHCP relay‑proxy modes, allowing
flexibility in how IP addresses are assigned while enabling the BNG to act as the
DHCP agent toward an external DHCP server. RADIUS server provides subscriber
authentication, authorization, and service policy selection, with
subscriber‑specific settings applied via dynamic profiles. Active Leasequery (ALQ)
proactively synchronizes subscriber state from primary BNGs to backup BNG, enabling
immediate traffic redirection to backup BNG through existing Layer‑2 circuits upon
primary BNG failure. Virtual Routing and Forwarding (VRF) configuration enables
service isolation for subscribers. Replicating primary BNG configurations on the
backup BNG—including Layer‑2 circuits, subscriber‑facing interfaces, and associated
VRFs—ensures accurate subscriber identification and seamless service association
during failover. The backup BNG initially forwards traffic in service
activation on failover mode, which minimizes forwarding plane resource
usage, and then progressively restores full services such as CoS and firewall
policies.
|
Hostname |
Role |
Function |
|---|---|---|
|
Primary BNG 1 and Primary BNG 2 Routers |
Primary gateways |
Active BNGs that manage subscriber sessions |
|
Backup Router |
Backup gateway |
Serves as a failover or standby gateway to take over subscriber session management if the primary BNG fails, ensuring continuous service availability |
|
Access Switch |
Edge device |
Connects subscribers to the network topology |
|
Core Router |
Core network manager |
Provides centralized routing and transport connectivity between BNGs and external networks |
|
RADIUS Server |
External AAA (authentication, authorization, accounting) server |
Controls subscriber access by providing centralized authentication, authorization, and accounting (AAA) services |
|
DHCP Server |
Address authority |
Serves as the source of IP addressing used by subscribers during normal operation and failover |
|
DHCP Clients |
Subscribers |
End‑devices behind the access switch that request IP configuration via DHCP and consume network and Internet services |
|
Internet |
External network |
Provides access to public network through the core router |
Topology Illustration
Figure 1: N+1 Support for BNG M:N Subscriber Service Redundancy
.png)
Step-by-step Configuration on Primary BNG 1
Note: For complete sample configurations, see:
Follow the steps below to configure Primary BNG 1 router.
Step-by-step Configuration on Primary BNG 2
Note: For complete sample configurations, see:
Follow the steps below to configure Primary BNG 2 router.
Step-by-step Configuration on Backup BNG Router
Note: For complete sample configurations, see:
Follow the steps below to configure the backup BNG to take over subscribers from primary BNGs during failover.
Verification
Use the show commands in this section to verify status of subscribers before and after failover of a primary BNG.
| Command | Verification Task |
|---|---|
|
Verify Layer 2 circuit connections |
|
|
Verify ALQ status |
|
|
Verify BGP connection |
|
|
Verify DHCP binding |
|
|
Verify subscribers |
|
|
Verify routes for subscribers before failover |
|
|
|
Verify redundancy state for subscribers before failover |
|
Initiate failover from primary BNG 1 to backup BNG |
|
|
|
Verify redundancy state for subscribers after failover |
|
Verify routes for subscribers after failover |
|
|
|
Verify restoring of backup BNG to primary BNG |
- Verify layer 2 circuit connections
- Verify ALQ status
- Verify BGP connection
- Verify DHCP binding
- Verify subscribers
- Verify routes for subscribers before failover
- Verify redundancy state for the subscribers before failover
- Initiate failover from primary to backup BNG
- Verify redundancy state for the subscribers after failover
- Verify routes for subscribers after failover
- Verify restoring of backup BNG to primary BNG
Verify layer 2 circuit connections
Purpose
Verify layer 2 circuit connections between the access switch and BNG servers.
Action
Verify on the access switch:
user@Access-Switch> show l2circuit connections brief
Layer-2 Circuit Connections:
Neighbor: 192.168.1.2
Interface Type St Time last up # Up trans
ge-0/0/1.10(vc 10) rmt Up Nov 27 23:05:45 2025 1
Neighbor: 192.168.1.3
Interface Type St Time last up # Up trans
ge-0/0/1.10(vc 10) rmt HS ----- ----
ge-0/0/1.40(vc 40) rmt HS ----- ----
Neighbor: 192.168.1.5
Interface Type St Time last up # Up trans
ge-0/0/1.40(vc 40) rmt Up Nov 27 23:05:45 2025 1Meaning
Access switch and primary BNG 1 have an L2circuit with virtual circuit ID 10. Access switch and primary BNG 2 have an L2circuit with virtual circuit ID 40. Access switch and backup BNG have an L2circuit with virtual circuit IDs 10 and 40. All connections are up.
Verify ALQ status
Purpose
Verify active-leasequery status between the primary and backup BNG servers. The output below shows the peering between primary BNG 1 and backup BNG within the routing instance 3000.
Action
Verify on the primary BNG 1 router:
user@Primary-1-BNG> show dhcp relay active-leasequery routing-instance 3000
Active Lease-query peer List:
peer Connected Peers Connecting Peers
10.80.3.2 1 0Verify on the backup BNG router:
user@Backup-BNG> show dhcp relay active-leasequery routing-instance 3000
Active Lease-query peer List:
peer Connected Peers Connecting Peers
10.80.3.1 1 0Meaning
ALQ is running in the routing instance and the primary and backup BNG servers are successfully peered.
Verify BGP connection
Purpose
Verify BGP peering between the core router and the BNG servers.
Action
Verify BGP peering on the core router:
user@Core-Router> show bgp summary Peer AS InPkt OutPkt OutQ Flaps Last Up/Dwn State|#Active/Received/Accepted/Damped... 66.66.0.1 65123 22743 22655 0 0 1w0d 3:38:22 Establ inet.0: 1/1/1/0 77.77.0.1 65123 22604 22665 0 0 1w0d 3:42:13 Establ inet.0: 0/0/0/0 88.88.0.1 65123 22850 22694 0 0 1w0d 3:55:40 Establ inet.0: 1/1/1/0 99.99.0.1 65123 22602 22664 0 0 1w0d 3:42:09 Establ inet.0: 0/0/0/0
Meaning
BGP peering is successful.
Verify DHCP binding
Purpose
Verify DHCP binding from the DHCP server.
Action
Verify on the DHCP server:
user@DHCP_SERVER> show dhcp server binding IP address Session Id Hardware address Expires State Interface Physical interface VLAN 10.80.20.43 34 00:10:94:00:2e:e3 44437 BOUND ge-1/0/0.0 ge-1/0/0 10.80.20.44 35 00:10:94:00:2e:e3 44450 BOUND ge-1/0/0.0 ge-1/0/0
Meaning
Two subscribers are in the bound state.
Verify subscribers
Purpose
Verify subscribers and their mapped routing instances in the backup BNG.
Action
Verify on the backup BNG router:
user@Backup-BNG> show subscribers Interface IP Address/VLAN ID User Name LS:RI ps4.3221225566 0x8100.3200 0x8100.200 vlan@ps4:3200-200 default:4000 demux0.3221225567 10.80.20.43 subscriber1-dhcp@bng.com default:4000 ps1.3221225568 0x8100.200 0x8100.200 vlan@ps1:200-200 default:3000 demux0.3221225569 10.80.20.44 subscriber2-dhcp@bng.com default:3000
Meaning
Two subscribers are logged in to the backup BNG—subscriber1
(IP address 10.80.20.43) is in routing instance 4000, and
subscriber2 (IP address 10.80.20.44)
is in routing instance 3000.
Verify routes for subscribers before failover
Purpose
Verify how the core router routes subscriber traffic before a layer 2 circuit switchover occurs between the primary and backup BNG server.
Action
Verify on the core router:
user@Core-Router> show route protocol bgp
10.80.20.43/32 *[BGP/170] 2d 23:48:54, localpref 100, from 88.88.0.1
AS path: I, validation-state: unverified
> to 10.130.4.1 via ge-1/0/7.0
10.80.20.44/32 *[BGP/170] 2d 23:48:40, localpref 100, from 66.66.0.1
AS path: I, validation-state: unverified
> to 10.80.4.1 via ge-1/0/4.0Meaning
Routes for the subscribers are advertised only by the primary BNG servers. During a failover, the system replaces the advertising primary BNG with the backup BNG, which takes over as the primary.
Verify redundancy state for the subscribers before failover
Purpose
Verify the transition of N+1 redundancy services when the layer 2 circuit switchover from primary BNG 1 to backup BNG. Repeat this step after initiating a layer 2 circuit switchover to verify failover between the primary and backup BNG servers.
Action
Verify on the primary BNG 1 router:
user@Primary-1-BNG> show system subscriber-management redundancy-state interface ps1.0
Interface: ps1.0
Standby-mode: service-activation-on-failover
Forwarding State: Active
Service Activation Programming: Not-applicableMeaning
The output displays Service Activation Programming and
Forwarding State statuses before failover. These output
field statuses will change after a successful Layer 2 circuit
switchover.
Initiate failover from primary to backup BNG
Purpose
Initiate failover from primary BNG 1 to backup BNG by using the
request l2circuit-switchover command in the access
switch.
Action
Initiate on the access switch:
user@Access-Switch> request l2circuit-switchover neighbor 192.168.1.2
Meaning
Switchover is initiated from the access switch to verify failover in the next steps.
Verify redundancy state for the subscribers after failover
Purpose
Verify the transition of N+1 redundancy services after the layer 2 circuit switchover from primary BNG 1 to backup BNG.
Action
Verify on the primary BNG 1 router before failover:
user@Primary-1-BNG> show system subscriber-management redundancy-state interface ps1.0
Interface: ps1.0
Standby-mode: service-activation-on-failover
Forwarding State: Active
Service Activation Programming: Not-applicableVerify on the primary BNG 1 router after failover:
user@Primary-1-BNG> show system subscriber-management redundancy-state interface ps1.0
Interface: ps1.0
Standby-mode: service-activation-on-failover
Forwarding State: Inactive
Service Activation Programming: CompletedMeaning
The Forwarding State of primary BNG 1 transitioned from
Active (primary) to Inactive (backup)
and the Service Activation Programming state shows the
failover is completed successfully.
Verify routes for subscribers after failover
Purpose
Verify how the subscriber traffic is routed on the core router after encountering a L2circuit switchover between the primary BNG 1 and the backup BNG.
Action
Verify on the core router:
user@Core-Router> show route protocol bgp
10.80.20.43/32 *[BGP/170] 2d 23:48:54, localpref 100, from 88.88.0.1
AS path: I, validation-state: unverified
> to 10.130.4.1 via ge-1/0/7.0
10.80.20.44/32 *[BGP/170] 00:10:59, localpref 100, from 77.77.0.1
AS path: I, validation-state: unverified
> to 10.80.5.1 via ge-1/0/6.5Meaning
Routes for subscriber2 (IP address
10.80.20.44) are now advertised by the backup BNG.
Verify restoring of backup BNG to primary BNG
Purpose
Verify switchover reverts primary BNG 1 to its original primary state.
Action
Verify on the access switch:
user@Access-Switch# show l2circuit connections brief
Layer-2 Circuit Connections:
Neighbor: 192.168.1.2
Interface Type St Time last up # Up trans
ge-0/0/1.10(vc 10) rmt HS ----- ----
Neighbor: 192.168.1.3
Interface Type St Time last up # Up trans
ge-0/0/1.10(vc 10) rmt Up Nov 27 23:05:45 2025 1
ge-0/0/1.40(vc 40) rmt HS ----- ----
Neighbor: 192.168.1.5
Interface Type St Time last up # Up trans
ge-0/0/1.40(vc 40) rmt Up Nov 27 23:05:45 2025 user@Access-Switch# request l2circuit-switchover neighbor 192.168.1.3 virtual-circuit-id 10
user@Access-Switch# show l2circuit connections brief
Layer-2 Circuit Connections:
Neighbor: 192.168.1.2
Interface Type St Time last up # Up trans
ge-0/0/1.10(vc 10) rmt Up Nov 27 23:05:45 2025 1
Neighbor: 192.168.1.3
Interface Type St Time last up # Up trans
ge-0/0/1.10(vc 10) rmt HS ----- ----
ge-0/0/1.40(vc 40) rmt HS ----- ----
Neighbor: 192.168.1.5
Interface Type St Time last up # Up trans
ge-0/0/1.40(vc 40) rmt Up Nov 27 23:05:45 2025 1
Verify access-internal routes on the primary BNG 1 router
after failover to backup BNG:
user@Primary-1-BNG> show route protocol access-internal inet.0: 14 destinations, 14 routes (14 active, 0 holddown, 0 hidden) inet.3: 1 destinations, 1 routes (1 active, 0 holddown, 0 hidden) 3000.inet.0: 20 destinations, 21 routes (18 active, 0 holddown, 2 hidden) mpls.0: 9 destinations, 9 routes (9 active, 0 holddown, 0 hidden) l2circuit.0: 2 destinations, 2 routes (2 active, 0 holddown, 0 hidden)
Verify access-internal routes on the primary BNG 1 router
after reverting to primary state:
user@Primary-1-BNG> show route protocol access-internal
inet.0: 14 destinations, 14 routes (14 active, 0 holddown, 0 hidden)
inet.3: 1 destinations, 1 routes (1 active, 0 holddown, 0 hidden)
3000.inet.0: 20 destinations, 21 routes (18 active, 0 holddown, 2 hidden)
+ = Active Route, - = Last Active, * = Both
10.80.20.44/32 *[Access-internal/12] 00:13:34
Private unicast
mpls.0: 11 destinations, 11 routes (11 active, 0 holddown, 0 hidden)
l2circuit.0: 2 destinations, 2 routes (2 active, 0 holddown, 0 hidden)Meaning
The failover is successful. The primary BNG 1 returns to the primary state
after failover. The Primary BNG 1 server advertises the
access-internal protocol route once it transitions from
backup to primary server.
Appendix 1: Set Commands on All Devices
Primary BNG 1
[edit] set system host-name Primary-1-BNG set system configuration-database max-db-size 104857600 set system services subscriber-management enable force set system services subscriber-management redundancy interface ge-1/0/0.0 virtual-inet-address 10.80.1.100 set system services subscriber-management redundancy interface ps1.0 local-inet-address 66.66.0.1 set system services subscriber-management redundancy interface ps1.0 shared-key ps1-key set system services subscriber-management redundancy no-advertise-routes-on-backup set system services subscriber-management redundancy route-operation-interval 2 set system services subscriber-management redundancy group g1 interface ps1.0 standby-mode service-activation-on-failover set chassis aggregated-devices ethernet device-count 4 set chassis aggregated-devices maximum-links 16 set chassis pseudowire-service device-count 2048 set chassis network-services enhanced-ip set interfaces ge-1/0/0 description "To Access-Switch ge-0/0/8" set interfaces ge-1/0/0 unit 0 family inet address 10.80.1.2/24 set interfaces ge-1/0/0 unit 0 family mpls set interfaces ge-1/0/2 description "To Core-Router ge-1/0/4" set interfaces ge-1/0/2 unit 0 family inet address 10.80.4.1/24 set interfaces ge-1/0/2 unit 0 family mpls set interfaces ge-1/0/9 description "To Backup-BNG ge-1/0/9" set interfaces ge-1/0/9 unit 0 family inet address 10.80.3.1/24 primary set interfaces ge-1/0/9 unit 0 family inet address 10.80.3.1/24 preferred set interfaces lo0 unit 0 family inet address 192.168.1.2/32 set interfaces lo0 unit 3000 family inet address 66.66.0.1/32 set interfaces ps1 anchor-point lt-1/0/0 set interfaces ps1 flexible-vlan-tagging set interfaces ps1 auto-configure stacked-vlan-ranges dynamic-profile DHCP-STACKED-VLAN-PROFILE accept any set interfaces ps1 auto-configure stacked-vlan-ranges dynamic-profile DHCP-STACKED-VLAN-PROFILE ranges any,any set interfaces ps1 auto-configure stacked-vlan-ranges authentication username-include delimiter "@" set interfaces ps1 auto-configure stacked-vlan-ranges authentication username-include user-prefix vlan set interfaces ps1 auto-configure stacked-vlan-ranges authentication username-include interface-name set interfaces ps1 auto-configure remove-when-no-subscribers set interfaces ps1 mtu 9192 set interfaces ps1 mac 00:00:5e:00:53:bb set interfaces ps1 unit 0 encapsulation ethernet-ccc set forwarding-options dhcp-relay forward-snooped-clients configured-interfaces set forwarding-options dhcp-relay dynamic-profile dhcp set forwarding-options dhcp-relay overrides always-write-option-82 set forwarding-options dhcp-relay relay-option-82 circuit-id set forwarding-options dhcp-relay server-group DHCPv4-1 172.16.0.10 set policy-options policy-statement access-internal from protocol access-internal set policy-options policy-statement access-internal then accept set access domain map ps1.* target-routing-instance 3000 set access domain parse-order realm-first set access domain realm-delimiter / set routing-instances 3000 instance-type vrf set routing-instances 3000 routing-options static route 172.16.0.0/24 next-hop 10.80.4.2 set routing-instances 3000 protocols bgp group internet-vpn type internal set routing-instances 3000 protocols bgp group internet-vpn local-address 66.66.0.1 set routing-instances 3000 protocols bgp group internet-vpn mtu-discovery set routing-instances 3000 protocols bgp group internet-vpn family inet any set routing-instances 3000 protocols bgp group internet-vpn multipath set routing-instances 3000 protocols bgp group internet-vpn neighbor 192.168.1.4 set routing-instances 3000 protocols bgp group internet-vpn neighbor 77.77.0.1 set routing-instances 3000 protocols bgp export access-internal set routing-instances 3000 protocols ospf area 0.0.0.0 interface all set routing-instances 3000 forwarding-options dhcp-relay forward-snooped-clients configured-interfaces set routing-instances 3000 forwarding-options dhcp-relay dynamic-profile dhcp set routing-instances 3000 forwarding-options dhcp-relay overrides always-write-option-82 set routing-instances 3000 forwarding-options dhcp-relay relay-option-82 circuit-id set routing-instances 3000 forwarding-options dhcp-relay server-group DHCPv4-1 172.16.0.10 set routing-instances 3000 forwarding-options dhcp-relay bulk-leasequery attempts 10 set routing-instances 3000 forwarding-options dhcp-relay active-leasequery peer-address 10.80.3.2 set routing-instances 3000 interface ge-1/0/2.0 set routing-instances 3000 interface ge-1/0/9.0 set routing-instances 3000 interface lo0.3000 set routing-instances 3000 route-distinguisher 69.158.196.105:9999 set routing-instances 3000 vrf-target target:65501:3003 set routing-instances 3000 vrf-table-label set dynamic-profiles dhcp routing-instances "$junos-routing-instance" interface "$junos-interface-name" set dynamic-profiles dhcp routing-instances "$junos-routing-instance" routing-options access-internal route $junos-subscriber-ip-address qualified-next-hop "$junos-interface-name" set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" no-traps set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" proxy-arp unrestricted set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" demux-options underlying-interface "$junos-underlying-interface" set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet mac-validate loose set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet demux-source $junos-subscriber-demux-ip-address set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet unnumbered-address "$junos-loopback-interface" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE routing-instances "$junos-routing-instance" interface "$junos-interface-name" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" no-traps set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" proxy-arp set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" vlan-tags outer "$junos-stacked-vlan-id" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" vlan-tags inner "$junos-vlan-id" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" demux-options underlying-interface "$junos-interface-ifd-name" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet mac-validate strict set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet unnumbered-address "$junos-loopback-interface" set routing-options router-id 192.168.1.2 set routing-options autonomous-system 65123 set routing-options static route 10.3.0.0/16 next-hop 10.80.4.2 set routing-options static route 172.16.0.0/24 next-hop 10.80.4.2 set routing-options static route 192.168.1.1/32 next-hop 10.80.1.1 set protocols bgp group IBGP type internal set protocols bgp group IBGP local-address 192.168.1.2 set protocols bgp group IBGP neighbor 192.168.1.1 set protocols bgp precision-timers set protocols bgp export access-internal set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 virtual-circuit-id 10 set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 encapsulation-type ethernet set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 ignore-encapsulation-mismatch set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 ignore-mtu-mismatch set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 pseudowire-status-tlv set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 switchover-delay 1000 set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 revert-time 0 set protocols ldp track-igp-metric set protocols ldp deaggregate set protocols ldp explicit-null set protocols ldp transport-address router-id set protocols ldp interface ge-1/0/0.0 set protocols ldp interface lo0.0 set protocols mpls explicit-null set protocols mpls interface ge-1/0/0.0 set protocols ospf traffic-engineering set protocols ospf area 0.0.0.0 interface all set protocols ospf area 0.0.0.0 interface fxp0.0 disable set protocols rsvp interface ge-1/0/0.0
Primary BNG 2
[edit] set system host-name Primary-2-BNG set system configuration-database max-db-size 104857600 set system services subscriber-management enable force set system services subscriber-management redundancy interface ge-1/0/2.0 virtual-inet-address 10.130.2.100 set system services subscriber-management redundancy interface ps4.0 local-inet-address 88.88.0.1 set system services subscriber-management redundancy interface ps4.0 shared-key ps4-key set system services subscriber-management redundancy no-advertise-routes-on-backup set system services subscriber-management redundancy route-operation-interval 2 set system services subscriber-management redundancy group g1 interface ps4.0 standby-mode service-activation-on-failover set chassis aggregated-devices ethernet device-count 4 set chassis aggregated-devices maximum-links 16 set chassis pseudowire-service device-count 2048 set chassis network-services enhanced-ip set interfaces ge-1/0/2 description "To Access-Switch ge-0/0/9" set interfaces ge-1/0/2 unit 0 family inet address 10.130.2.2/24 set interfaces ge-1/0/2 unit 0 family mpls set interfaces ge-1/0/5 description "To Core-Router ge-1/0/7" set interfaces ge-1/0/5 unit 0 family inet address 10.130.4.1/24 set interfaces ge-1/0/5 unit 0 family mpls set interfaces ge-1/0/7 description "To Backup-BNG ge-1/0/5" set interfaces ge-1/0/7 unit 0 family inet address 10.130.5.1/24 primary set interfaces ge-1/0/7 unit 0 family inet address 10.130.5.1/24 preferred set interfaces lo0 unit 0 family inet address 192.168.1.5/32 primary set interfaces lo0 unit 0 family inet address 192.168.1.5/32 preferred set interfaces lo0 unit 4000 family inet address 88.88.0.1/32 set interfaces ps4 anchor-point lt-1/0/0 set interfaces ps4 flexible-vlan-tagging set interfaces ps4 auto-configure stacked-vlan-ranges dynamic-profile DHCP-STACKED-VLAN-PROFILE accept any set interfaces ps4 auto-configure stacked-vlan-ranges dynamic-profile DHCP-STACKED-VLAN-PROFILE ranges any,any set interfaces ps4 auto-configure stacked-vlan-ranges authentication username-include delimiter "@" set interfaces ps4 auto-configure stacked-vlan-ranges authentication username-include user-prefix vlan set interfaces ps4 auto-configure stacked-vlan-ranges authentication username-include interface-name set interfaces ps4 auto-configure remove-when-no-subscribers set interfaces ps4 mtu 9192 set interfaces ps4 mac 00:00:5e:00:53:dd set interfaces ps4 unit 0 encapsulation ethernet-ccc set forwarding-options dhcp-relay forward-snooped-clients configured-interfaces set forwarding-options dhcp-relay dynamic-profile dhcp set forwarding-options dhcp-relay overrides always-write-option-82 set forwarding-options dhcp-relay relay-option-82 circuit-id set forwarding-options dhcp-relay server-group DHCPv4-1 172.16.0.10 set policy-options policy-statement access-internal from protocol access-internal set policy-options policy-statement access-internal then accept set access domain parse-order realm-first set access domain realm-delimiter / set routing-instances 4000 instance-type vrf set routing-instances 4000 routing-options static route 172.16.0.0/24 next-hop 10.130.4.2 set routing-instances 4000 protocols bgp group internet-vpn type internal set routing-instances 4000 protocols bgp group internet-vpn local-address 88.88.0.1 set routing-instances 4000 protocols bgp group internet-vpn mtu-discovery set routing-instances 4000 protocols bgp group internet-vpn family inet any set routing-instances 4000 protocols bgp group internet-vpn multipath set routing-instances 4000 protocols bgp group internet-vpn neighbor 99.99.0.1 set routing-instances 4000 protocols bgp group internet-vpn neighbor 192.168.1.4 set routing-instances 4000 protocols bgp export access-internal set routing-instances 4000 protocols ospf area 0.0.0.0 interface all set routing-instances 4000 forwarding-options dhcp-relay forward-snooped-clients configured-interfaces set routing-instances 4000 forwarding-options dhcp-relay dynamic-profile dhcp set routing-instances 4000 forwarding-options dhcp-relay overrides always-write-option-82 set routing-instances 4000 forwarding-options dhcp-relay relay-option-82 circuit-id set routing-instances 4000 forwarding-options dhcp-relay server-group DHCPv4-1 172.16.0.10 set routing-instances 4000 forwarding-options dhcp-relay bulk-leasequery attempts 10 set routing-instances 4000 forwarding-options dhcp-relay active-leasequery peer-address 10.130.5.2 set routing-instances 4000 interface ge-1/0/5.0 set routing-instances 4000 interface ge-1/0/7.0 set routing-instances 4000 interface lo0.4000 set routing-instances 4000 route-distinguisher 70.158.196.105:9999 set routing-instances 4000 vrf-target target:65501:4003 set routing-instances 4000 vrf-table-label set dynamic-profiles dhcp routing-instances "$junos-routing-instance" interface "$junos-interface-name" set dynamic-profiles dhcp routing-instances "$junos-routing-instance" routing-options access-internal route $junos-subscriber-ip-address qualified-next-hop "$junos-interface-name" set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" no-traps set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" proxy-arp unrestricted set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" demux-options underlying-interface "$junos-underlying-interface" set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet mac-validate loose set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet demux-source $junos-subscriber-demux-ip-address set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet unnumbered-address "$junos-loopback-interface" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE routing-instances "$junos-routing-instance" interface "$junos-interface-name" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" no-traps set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" proxy-arp set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" vlan-tags outer "$junos-stacked-vlan-id" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" vlan-tags inner "$junos-vlan-id" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" demux-options underlying-interface "$junos-interface-ifd-name" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet mac-validate strict set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet unnumbered-address "$junos-loopback-interface" set routing-options router-id 192.168.1.5 set routing-options autonomous-system 65123 set routing-options static route 10.3.0.0/16 next-hop 10.80.4.2 set routing-options static route 172.16.0.0/24 next-hop 10.80.4.2 set routing-options static route 172.16.0.0/24 next-hop 10.130.4.2 set routing-options static route 192.168.1.1/32 next-hop 10.130.2.1 set protocols bgp group IBGP type internal set protocols bgp group IBGP local-address 192.168.1.5 set protocols bgp group IBGP neighbor 192.168.1.1 set protocols bgp precision-timers set protocols bgp export access-internal set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 virtual-circuit-id 40 set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 encapsulation-type ethernet set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 ignore-encapsulation-mismatch set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 ignore-mtu-mismatch set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 pseudowire-status-tlv set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 switchover-delay 1000 set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 revert-time 0 set protocols ldp track-igp-metric set protocols ldp deaggregate set protocols ldp explicit-null set protocols ldp transport-address router-id set protocols ldp interface ge-1/0/2.0 set protocols ldp interface lo0.0 set protocols mpls explicit-null set protocols mpls interface ge-1/0/2.0 set protocols ospf traffic-engineering set protocols ospf area 0.0.0.0 interface all set protocols ospf area 0.0.0.0 interface fxp0.0 disable set protocols rsvp interface ge-1/0/2.0
Backup BNG
[edit] set system host-name Backup-BNG set system services subscriber-management enable force set system services subscriber-management redundancy interface ps1.0 local-inet-address 77.77.0.0 set system services subscriber-management redundancy interface ps1.0 shared-key ps1-key set system services subscriber-management redundancy interface ps4.0 local-inet-address 99.99.0.1 set system services subscriber-management redundancy interface ps4.0 shared-key ps4-key set system services subscriber-management redundancy no-advertise-routes-on-backup set system services subscriber-management redundancy route-operation-interval 2 set system services subscriber-management redundancy group g1 interface ps1.0 standby-mode service-activation-on-failover set system services subscriber-management redundancy group g4 interface ps4.0 standby-mode service-activation-on-failover set chassis aggregated-devices ethernet device-count 4 set chassis aggregated-devices maximum-links 16 set chassis pseudowire-service device-count 2048 set chassis network-services enhanced-ip set interfaces ge-1/0/1 description "To Access-Switch" set interfaces ge-1/0/1 flexible-vlan-tagging set interfaces ge-1/0/1 unit 0 vlan-id 80 set interfaces ge-1/0/1 unit 0 family inet address 10.80.2.2/24 set interfaces ge-1/0/1 unit 0 family mpls set interfaces ge-1/0/5 description "To Primary-2-BNG ge-1/0/7" set interfaces ge-1/0/5 unit 0 family inet address 10.130.5.2/24 primary set interfaces ge-1/0/5 unit 0 family inet address 10.130.5.2/24 preferred set interfaces ge-1/0/7 description "To Core-Router ge-1/0/6" set interfaces ge-1/0/7 flexible-vlan-tagging set interfaces ge-1/0/7 unit 5 vlan-id 5 set interfaces ge-1/0/7 unit 5 family inet address 10.80.5.1/24 set interfaces ge-1/0/7 unit 140 vlan-id 140 set interfaces ge-1/0/7 unit 140 family inet address 10.80.140.1/24 set interfaces ge-1/0/9 description "To Primary-1-BNG ge-1/0/9" set interfaces ge-1/0/9 unit 0 family inet address 10.80.3.2/24 primary set interfaces ge-1/0/9 unit 0 family inet address 10.80.3.2/24 preferred set interfaces lo0 unit 0 family inet address 192.168.1.3/32 primary set interfaces lo0 unit 0 family inet address 192.168.1.3/32 preferred set interfaces lo0 unit 3000 family inet address 77.77.0.1/32 set interfaces lo0 unit 4000 family inet address 99.99.0.1/32 set interfaces ps1 anchor-point lt-1/1/0 set interfaces ps1 flexible-vlan-tagging set interfaces ps1 auto-configure stacked-vlan-ranges dynamic-profile DHCP-STACKED-VLAN-PROFILE accept any set interfaces ps1 auto-configure stacked-vlan-ranges dynamic-profile DHCP-STACKED-VLAN-PROFILE ranges any,any set interfaces ps1 auto-configure stacked-vlan-ranges authentication username-include delimiter "@" set interfaces ps1 auto-configure stacked-vlan-ranges authentication username-include user-prefix vlan set interfaces ps1 auto-configure stacked-vlan-ranges authentication username-include interface-name set interfaces ps1 auto-configure remove-when-no-subscribers set interfaces ps1 mtu 9192 set interfaces ps1 mac 00:00:5e:00:53:cc set interfaces ps1 unit 0 encapsulation ethernet-ccc set interfaces ps4 anchor-point lt-1/3/0 set interfaces ps4 flexible-vlan-tagging set interfaces ps4 auto-configure stacked-vlan-ranges dynamic-profile DHCP-STACKED-VLAN-PROFILE accept any set interfaces ps4 auto-configure stacked-vlan-ranges dynamic-profile DHCP-STACKED-VLAN-PROFILE ranges any,any set interfaces ps4 auto-configure stacked-vlan-ranges authentication username-include delimiter "@" set interfaces ps4 auto-configure stacked-vlan-ranges authentication username-include user-prefix vlan set interfaces ps4 auto-configure stacked-vlan-ranges authentication username-include interface-name set interfaces ps4 auto-configure remove-when-no-subscribers set interfaces ps4 mtu 9192 set interfaces ps4 mac 00:00:5e:00:53:ee set interfaces ps4 unit 0 encapsulation ethernet-ccc set forwarding-options dhcp-relay forward-snooped-clients configured-interfaces set forwarding-options dhcp-relay dynamic-profile dhcp set forwarding-options dhcp-relay overrides always-write-option-82 set forwarding-options dhcp-relay relay-option-82 circuit-id set forwarding-options dhcp-relay server-group DHCPv4-1 172.16.0.10 set forwarding-options dhcp-relay group local-2 active-server-group DHCPv4-1 set forwarding-options dhcp-relay group local-2 authentication password testradius set forwarding-options dhcp-relay group local-2 authentication username-include domain-name bng.com set forwarding-options dhcp-relay group local-2 authentication username-include user-prefix subscriber2-dhcp-vrf2 set forwarding-options dhcp-relay group local-2 overrides always-write-option-82 set forwarding-options dhcp-relay group local-2 overrides trust-option-82 set forwarding-options dhcp-relay group local-2 relay-option-82 circuit-id set forwarding-options dhcp-relay group local-2 relay-option-82 remote-id keep-incoming-remote-id set forwarding-options dhcp-relay group local-2 relay-option-82 vendor-specific host-name set forwarding-options dhcp-relay group local-2 interface ps4.0 set policy-options policy-statement access-internal from protocol access-internal set policy-options policy-statement access-internal then accept set access address-assignment pool ipv4-pool family inet network 10.80.0.0/16 set access address-assignment pool ipv4-pool family inet range limits low 10.80.20.10 set access address-assignment pool ipv4-pool family inet range limits high 10.80.255.255 set access domain map ps1.* target-routing-instance 3000 set access domain map ps4.* target-routing-instance 4000 set access domain parse-order realm-first set access domain realm-delimiter / set routing-instances 3000 instance-type vrf set routing-instances 3000 protocols bgp group internet-vpn type internal set routing-instances 3000 protocols bgp group internet-vpn local-address 77.77.0.1 set routing-instances 3000 protocols bgp group internet-vpn mtu-discovery set routing-instances 3000 protocols bgp group internet-vpn family inet any set routing-instances 3000 protocols bgp group internet-vpn multipath set routing-instances 3000 protocols bgp group internet-vpn neighbor 66.66.0.1 set routing-instances 3000 protocols bgp group internet-vpn neighbor 192.168.1.4 set routing-instances 3000 protocols bgp export access-internal set routing-instances 3000 protocols ospf area 0.0.0.0 interface all set routing-instances 3000 forwarding-options dhcp-relay forward-snooped-clients configured-interfaces set routing-instances 3000 forwarding-options dhcp-relay dynamic-profile dhcp set routing-instances 3000 forwarding-options dhcp-relay overrides always-write-option-82 set routing-instances 3000 forwarding-options dhcp-relay relay-option-82 circuit-id set routing-instances 3000 forwarding-options dhcp-relay server-group DHCPv4-1 172.16.0.10 set routing-instances 3000 forwarding-options dhcp-relay bulk-leasequery attempts 10 set routing-instances 3000 forwarding-options dhcp-relay active-leasequery peer-address 10.80.3.1 set routing-instances 3000 interface ge-1/0/7.5 set routing-instances 3000 interface ge-1/0/9.0 set routing-instances 3000 interface lo0.3000 set routing-instances 3000 route-distinguisher 69.158.196.105:9999 set routing-instances 3000 vrf-target target:65501:3003 set routing-instances 3000 vrf-table-label set routing-instances 4000 instance-type vrf set routing-instances 4000 protocols bgp group internet-vpn type internal set routing-instances 4000 protocols bgp group internet-vpn local-address 99.99.0.1 set routing-instances 4000 protocols bgp group internet-vpn mtu-discovery set routing-instances 4000 protocols bgp group internet-vpn family inet any set routing-instances 4000 protocols bgp group internet-vpn multipath set routing-instances 4000 protocols bgp group internet-vpn neighbor 192.168.1.4 set routing-instances 4000 protocols bgp group internet-vpn neighbor 88.88.0.1 set routing-instances 4000 protocols bgp export access-internal set routing-instances 4000 protocols ospf area 0.0.0.0 interface all set routing-instances 4000 forwarding-options dhcp-relay forward-snooped-clients configured-interfaces set routing-instances 4000 forwarding-options dhcp-relay dynamic-profile dhcp set routing-instances 4000 forwarding-options dhcp-relay overrides always-write-option-82 set routing-instances 4000 forwarding-options dhcp-relay relay-option-82 circuit-id set routing-instances 4000 forwarding-options dhcp-relay server-group DHCPv4-1 172.16.0.10 set routing-instances 4000 forwarding-options dhcp-relay bulk-leasequery attempts 10 set routing-instances 4000 forwarding-options dhcp-relay active-leasequery peer-address 10.130.5.1 set routing-instances 4000 interface ge-1/0/5.0 set routing-instances 4000 interface ge-1/0/7.140 set routing-instances 4000 interface lo0.4000 set routing-instances 4000 route-distinguisher 70.158.196.105:9999 set routing-instances 4000 vrf-target target:65501:4003 set routing-instances 4000 vrf-table-label set dynamic-profiles dhcp routing-instances "$junos-routing-instance" interface "$junos-interface-name" set dynamic-profiles dhcp routing-instances "$junos-routing-instance" routing-options access-internal route $junos-subscriber-ip-address qualified-next-hop "$junos-interface-name" set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" no-traps set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" proxy-arp unrestricted set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" demux-options underlying-interface "$junos-underlying-interface" set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet mac-validate loose set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet demux-source $junos-subscriber-demux-ip-address set dynamic-profiles dhcp interfaces demux0 unit "$junos-interface-unit" family inet unnumbered-address "$junos-loopback-interface" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE routing-instances "$junos-routing-instance" interface "$junos-interface-name" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" no-traps set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" proxy-arp set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" vlan-tags outer "$junos-stacked-vlan-id" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" vlan-tags inner "$junos-vlan-id" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" demux-options underlying-interface "$junos-interface-ifd-name" set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet mac-validate strict set dynamic-profiles DHCP-STACKED-VLAN-PROFILE interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet unnumbered-address "$junos-loopback-interface" set routing-options router-id 192.168.1.3 set routing-options autonomous-system 65123 set routing-options static route 10.3.0.0/16 next-hop 10.80.5.2 set routing-options static route 172.16.0.0/24 next-hop 10.80.5.2 set routing-options static route 192.168.1.1/32 next-hop 10.80.2.1 set protocols bgp group IBGP type internal set protocols bgp group IBGP local-address 192.168.1.3 set protocols bgp group IBGP neighbor 192.168.1.1 set protocols bgp precision-timers set protocols bgp export access-internal set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 virtual-circuit-id 10 set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 encapsulation-type ethernet set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 ignore-encapsulation-mismatch set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 ignore-mtu-mismatch set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 pseudowire-status-tlv set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 switchover-delay 1000 set protocols l2circuit neighbor 192.168.1.1 interface ps1.0 revert-time 30 set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 virtual-circuit-id 40 set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 encapsulation-type ethernet set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 ignore-encapsulation-mismatch set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 ignore-mtu-mismatch set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 pseudowire-status-tlv set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 switchover-delay 1000 set protocols l2circuit neighbor 192.168.1.1 interface ps4.0 revert-time 30 set protocols ldp track-igp-metric set protocols ldp deaggregate set protocols ldp explicit-null set protocols ldp transport-address router-id set protocols ldp interface ge-1/0/1.0 set protocols ldp interface lo0.0 set protocols mpls explicit-null set protocols mpls interface ge-1/0/1.0 set protocols ospf traffic-engineering set protocols ospf area 0.0.0.0 interface all set protocols ospf area 0.0.0.0 interface fxp0.0 disable set protocols rsvp interface ge-1/0/2.0 set protocols rsvp interface ge-1/0/1.0
Access Switch
[edit] set system host-name Access-Switch set chassis aggregated-devices ethernet device-count 2 set chassis network-services enhanced-ip set interfaces ge-0/0/1 description "To DHCP Client" set interfaces ge-0/0/1 flexible-vlan-tagging set interfaces ge-0/0/1 encapsulation flexible-ethernet-services set interfaces ge-0/0/1 unit 10 encapsulation vlan-ccc set interfaces ge-0/0/1 unit 10 vlan-id-list 1-1000 set interfaces ge-0/0/1 unit 20 encapsulation vlan-ccc set interfaces ge-0/0/1 unit 20 vlan-id-list 1001-2000 set interfaces ge-0/0/1 unit 30 encapsulation vlan-ccc set interfaces ge-0/0/1 unit 30 vlan-id-list 2001-3000 set interfaces ge-0/0/1 unit 40 encapsulation vlan-ccc set interfaces ge-0/0/1 unit 40 vlan-id-list 3001-4094 set interfaces ge-0/0/4 description "To Backup BNG ge-1/0/1" set interfaces ge-0/0/4 vlan-tagging set interfaces ge-0/0/4 unit 80 vlan-id 80 set interfaces ge-0/0/4 unit 80 family inet address 10.80.2.1/24 set interfaces ge-0/0/4 unit 80 family mpls set interfaces ge-0/0/8 description "To primary-1-BNG ge-1/0/0" set interfaces ge-0/0/8 unit 0 family inet address 10.80.1.1/24 set interfaces ge-0/0/8 unit 0 family mpls set interfaces ge-0/0/9 description "To primary-2-BNG ge-1/0/2;" set interfaces ge-0/0/9 unit 0 family inet address 10.130.2.1/24 set interfaces ge-0/0/9 unit 0 family mpls set interfaces lo0 unit 0 family inet address 192.168.1.1/32 set interfaces lo0 unit 0 family mpls set routing-options router-id 192.168.1.1 set routing-options autonomous-system 65123 set routing-options static route 192.168.1.2/32 next-hop 10.80.1.2 set routing-options static route 192.168.1.3/32 next-hop 10.80.2.2 set routing-options static route 192.168.1.5/32 next-hop 10.130.2.2 set protocols bgp group IBGP type internal set protocols bgp group IBGP local-address 192.168.1.1 set protocols bgp group IBGP neighbor 192.168.1.2 set protocols bgp group IBGP neighbor 192.168.1.3 set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 virtual-circuit-id 10 set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 encapsulation-type ethernet set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 ignore-encapsulation-mismatch set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 ignore-mtu-mismatch set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 no-vlan-id-validate set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 pseudowire-status-tlv set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 switchover-delay 1000 set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 revert-time 0 set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 backup-neighbor 192.168.1.3 virtual-circuit-id 10 set protocols l2circuit neighbor 192.168.1.2 interface ge-0/0/1.10 backup-neighbor 192.168.1.3 hot-standby set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 virtual-circuit-id 40 set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 encapsulation-type ethernet set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 ignore-encapsulation-mismatch set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 ignore-mtu-mismatch set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 no-vlan-id-validate set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 pseudowire-status-tlv set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 switchover-delay 1000 set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 revert-time 0 set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 backup-neighbor 192.168.1.3 virtual-circuit-id 40 set protocols l2circuit neighbor 192.168.1.5 interface ge-0/0/1.40 backup-neighbor 192.168.1.3 hot-standby set protocols ldp interface ge-0/0/4.80 set protocols ldp interface ge-0/0/8.0 set protocols ldp interface ge-0/0/9.0 set protocols ldp interface lo0.0 set protocols mpls explicit-null set protocols mpls icmp-tunneling set protocols mpls interface ge-0/0/8.0 set protocols mpls interface ge-0/0/4.80 set protocols mpls interface ge-0/0/9.0 set protocols rsvp interface ge-0/0/8.0 set protocols rsvp interface ge-0/0/4.80 set protocols rsvp interface ge-0/0/9.0
Core Router
[edit] set system host-name Core-Router set chassis aggregated-devices ethernet device-count 4 set interfaces ge-1/0/2 description "To Internet" set interfaces ge-1/0/2 unit 0 family inet address 44.44.0.1/24 set interfaces ge-1/0/4 description "To primary-1-BNG ge-1/0/2" set interfaces ge-1/0/4 unit 0 family inet address 10.80.4.2/24 set interfaces ge-1/0/6 description "To Backup-BNG ge-1/0/7" set interfaces ge-1/0/6 flexible-vlan-tagging set interfaces ge-1/0/6 unit 5 vlan-id 5 set interfaces ge-1/0/6 unit 5 family inet address 10.80.5.2/24 set interfaces ge-1/0/6 unit 140 vlan-id 140 set interfaces ge-1/0/6 unit 140 family inet address 10.80.140.2/24 set interfaces ge-1/0/7 description "To primary-2-BNG ge-1/0/5;" set interfaces ge-1/0/7 unit 0 family inet address 10.130.4.2/24 set interfaces ge-1/0/9 description "To DHCP Server" set interfaces ge-1/0/9 unit 0 family inet address 172.16.0.1/24 set interfaces lo0 unit 0 family inet address 192.168.1.4/32 set routing-options router-id 192.168.1.4 set routing-options autonomous-system 65123 set routing-options static route 10.90.1.0/24 next-hop 10.80.4.1 set routing-options static route 10.100.1.0/24 next-hop 10.80.5.1 set routing-options static route 10.100.2.0/24 next-hop 10.80.5.1 set routing-options static route 66.66.0.0/24 next-hop 10.80.4.1 set routing-options static route 77.77.0.0/24 next-hop 10.80.5.1 set routing-options static route 88.88.0.0/24 next-hop 10.130.4.1 set routing-options static route 99.99.0.0/24 next-hop 10.80.140.1 set protocols bgp group internet-vpn type internal set protocols bgp group internet-vpn local-address 192.168.1.4 set protocols bgp group internet-vpn mtu-discovery set protocols bgp group internet-vpn family inet any set protocols bgp group internet-vpn multipath set protocols bgp group internet-vpn neighbor 66.66.0.1 set protocols bgp group internet-vpn neighbor 77.77.0.1 set protocols bgp group internet-vpn neighbor 88.88.0.1 set protocols bgp group internet-vpn neighbor 99.99.0.1 set protocols bgp precision-timers set protocols ldp interface ge-1/0/4.0 set protocols ldp interface ge-1/0/6.0 set protocols ldp interface lo0.0 set protocols ldp sr-mapping-client set protocols mpls interface ge-1/0/4.0 set protocols mpls interface ge-1/0/6.0 set protocols ospf traffic-engineering set protocols ospf area 0.0.0.0 interface all set protocols ospf area 0.0.0.0 interface fxp0.0 disable
DHCP Server
[edit] set system host-name DHCP_SERVER set system configuration-database max-db-size 314572800 set system services subscriber-management enable force set chassis network-services enhanced-ip set interfaces ge-1/0/0 unit 0 family inet address 172.16.0.10/24 set interfaces ge-1/0/0 unit 0 family inet6 address 172:16:0::10/64 set access radius-server 10.216.98.59 secret "$9$WZXXxdwYoJZjwYz69pRE24a" set access address-assignment pool ipv4-pool family inet network 10.80.0.0/16 set access address-assignment pool ipv4-pool family inet range limits low 10.80.20.10 set access address-assignment pool ipv4-pool family inet range limits high 10.80.255.255 set access address-assignment pool IPTV-POOL1 family inet network 66.66.0.0/16 set access address-assignment pool IPTV-POOL1 family inet range r1 low 66.66.0.50 set access address-assignment pool IPTV-POOL1 family inet range r1 high 66.66.255.255 set access address-assignment pool IPTV-POOL2 family inet network 77.77.0.0/16 set access address-assignment pool IPTV-POOL2 family inet range r1 low 77.77.0.50 set access address-assignment pool IPTV-POOL2 family inet range r1 high 77.77.255.255 set dynamic-profiles dyn-lns-profile2 routing-instances "$junos-routing-instance" interface "$junos-interface-name" set dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" dial-options l2tp-interface-id ce-l2tp-interface-id set dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" dial-options dedicated set dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" ppp-options initiate-ncp ip set dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" ppp-options initiate-ncp ipv6 set dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" keepalives set dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet unnumbered-address "$junos-loopback-interface" set dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet6 address $junos-ipv6-address deactivate dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet6 address $junos-ipv6-address set dynamic-profiles dyn-lns-profile2 interfaces "$junos-interface-ifd-name" unit "$junos-interface-unit" family inet6 unnumbered-address "$junos-loopback-interface" set dynamic-profiles dyn-lns-profile2 protocols router-advertisement interface "$junos-interface-name" managed-configuration set dynamic-profiles dyn-lns-profile2 protocols router-advertisement interface "$junos-interface-name" other-stateful-configuration set dynamic-profiles dyn-lns-profile2 protocols router-advertisement interface "$junos-interface-name" link-mtu set dynamic-profiles dyn-lns-profile2 protocols router-advertisement interface "$junos-interface-name" solicit-router-advertisement-unicast set dynamic-profiles dyn-lns-profile2 protocols router-advertisement interface "$junos-interface-name" prefix $junos-ipv6-ndra-prefix valid-lifetime 14400 set dynamic-profiles dyn-lns-profile2 protocols router-advertisement interface "$junos-interface-name" prefix $junos-ipv6-ndra-prefix on-link set dynamic-profiles dyn-lns-profile2 protocols router-advertisement interface "$junos-interface-name" prefix $junos-ipv6-ndra-prefix preferred-lifetime 14400 set routing-options static route 10.80.0.0/16 next-hop 172.16.0.1 set routing-options static route 10.130.0.0/16 next-hop 172.16.0.1 set routing-options static route 66.66.0.0/16 next-hop 172.16.0.1 set routing-options static route 77.77.0.0/16 next-hop 172.16.0.1 set routing-options static route 88.88.0.0/16 next-hop 172.16.0.1 set routing-options static route 99.99.0.0/16 next-hop 172.16.0.1 set routing-options static route 128.220.12.0/24 next-hop 172.16.0.1 set routing-options static route 192.168.0.0/16 next-hop 172.16.0.1
Appendix 2: Show Configuration Output on DUT
Primary BNG 1
[edit]
user@Primary-1-BNG# show
system {
host-name Primary-1-BNG;
configuration-database {
max-db-size 104857600;
}
services {
subscriber-management {
enable {
force;
}
redundancy {
interface ge-1/0/0.0 {
virtual-inet-address 10.80.1.100;
}
interface ps1.0 {
local-inet-address 66.66.0.1;
shared-key ps1-key;
}
no-advertise-routes-on-backup;
route-operation-interval 2;
group g1 {
interface ps1.0 {
standby-mode {
service-activation-on-failover;
}
}
}
}
}
}
}
chassis {
aggregated-devices {
ethernet {
device-count 4;
}
maximum-links 16;
}
pseudowire-service {
device-count 2048;
}
network-services enhanced-ip;
}
interfaces {
ge-1/0/0 {
description "To Access-Switch ge-0/0/8";
unit 0 {
family inet {
address 10.80.1.2/24;
}
family mpls;
}
}
ge-1/0/2 {
description "To Core-Router ge-1/0/4";
unit 0 {
family inet {
address 10.80.4.1/24;
}
family mpls;
}
}
ge-1/0/9 {
description "To Backup-BNG ge-1/0/9";
unit 0 {
family inet {
address 10.80.3.1/24 {
primary;
preferred;
}
}
}
}
lo0 {
unit 0 {
family inet {
address 192.168.1.2/32;
}
}
unit 3000 {
family inet {
address 66.66.0.1/32;
}
}
}
ps1 {
anchor-point {
lt-1/0/0;
}
flexible-vlan-tagging;
auto-configure {
stacked-vlan-ranges {
dynamic-profile DHCP-STACKED-VLAN-PROFILE {
accept any;
ranges {
any,any;
}
}
authentication {
username-include {
delimiter "@";
user-prefix vlan;
interface-name;
}
}
}
remove-when-no-subscribers;
}
mtu 9192;
mac 00:00:5e:00:53:bb;
unit 0 {
encapsulation ethernet-ccc;
}
}
}
forwarding-options {
dhcp-relay {
forward-snooped-clients configured-interfaces;
dynamic-profile dhcp;
overrides {
always-write-option-82;
}
relay-option-82 {
circuit-id;
}
server-group {
DHCPv4-1 {
172.16.0.10;
}
}
}
}
policy-options {
policy-statement access-internal {
from protocol access-internal;
then accept;
}
}
access {
domain {
map ps1.* {
target-routing-instance 3000;
}
parse-order realm-first;
realm-delimiter /;
}
}
routing-instances {
3000 {
instance-type vrf;
routing-options {
static {
route 172.16.0.0/24 next-hop 10.80.4.2;
}
}
protocols {
bgp {
group internet-vpn {
type internal;
local-address 66.66.0.1;
mtu-discovery;
family inet {
any;
}
multipath;
neighbor 192.168.1.4;
neighbor 77.77.0.1;
}
export access-internal;
}
ospf {
area 0.0.0.0 {
interface all;
}
}
}
forwarding-options {
dhcp-relay {
forward-snooped-clients configured-interfaces;
dynamic-profile dhcp;
overrides {
always-write-option-82;
}
relay-option-82 {
circuit-id;
}
server-group {
DHCPv4-1 {
172.16.0.10;
}
}
bulk-leasequery {
attempts 10;
}
active-leasequery {
peer-address {
10.80.3.2;
}
}
}
}
interface ge-1/0/2.0;
interface ge-1/0/9.0;
interface lo0.3000;
route-distinguisher 69.158.196.105:9999;
vrf-target target:65501:3003;
vrf-table-label;
}
}
dynamic-profiles {
dhcp {
routing-instances {
"$junos-routing-instance" {
interface "$junos-interface-name";
routing-options {
access-internal {
route $junos-subscriber-ip-address {
qualified-next-hop "$junos-interface-name";
}
}
}
}
}
interfaces {
demux0 {
unit "$junos-interface-unit" {
no-traps;
proxy-arp unrestricted;
demux-options {
underlying-interface "$junos-underlying-interface";
}
family inet {
mac-validate loose;
demux-source {
$junos-subscriber-demux-ip-address;
}
unnumbered-address "$junos-loopback-interface";
}
}
}
}
}
DHCP-STACKED-VLAN-PROFILE {
routing-instances {
"$junos-routing-instance" {
interface "$junos-interface-name";
}
}
interfaces {
"$junos-interface-ifd-name" {
unit "$junos-interface-unit" {
no-traps;
proxy-arp;
vlan-tags outer "$junos-stacked-vlan-id" inner "$junos-vlan-id";
demux-options {
underlying-interface "$junos-interface-ifd-name";
}
family inet {
mac-validate strict;
unnumbered-address "$junos-loopback-interface";
}
}
}
}
}
}
routing-options {
router-id 192.168.1.2;
autonomous-system 65123;
static {
route 10.3.0.0/16 next-hop 10.80.4.2;
route 172.16.0.0/24 next-hop 10.80.4.2;
route 192.168.1.1/32 next-hop 10.80.1.1;
}
}
protocols {
bgp {
group IBGP {
type internal;
local-address 192.168.1.2;
neighbor 192.168.1.1;
}
precision-timers;
export access-internal;
}
l2circuit {
neighbor 192.168.1.1 {
interface ps1.0 {
virtual-circuit-id 10;
encapsulation-type ethernet;
ignore-encapsulation-mismatch;
ignore-mtu-mismatch;
pseudowire-status-tlv;
switchover-delay 1000;
revert-time 0;
}
}
}
ldp {
track-igp-metric;
deaggregate;
explicit-null;
transport-address router-id;
interface ge-1/0/0.0;
interface lo0.0;
}
mpls {
explicit-null;
interface ge-1/0/0.0;
}
ospf {
traffic-engineering;
area 0.0.0.0 {
interface all;
interface fxp0.0 {
disable;
}
}
}
rsvp {
interface ge-1/0/0.0;
}
}Backup BNG
[edit]
user@Backup-BNG# show
system {
host-name Backup-BNG;
services {
subscriber-management {
enable {
force;
}
redundancy {
interface ps1.0 {
local-inet-address 77.77.0.0;
shared-key ps1-key;
}
interface ps4.0 {
local-inet-address 99.99.0.1;
shared-key ps4-key;
}
no-advertise-routes-on-backup;
route-operation-interval 2;
group g1 {
interface ps1.0 {
standby-mode {
service-activation-on-failover;
}
}
}
group g4 {
interface ps4.0 {
standby-mode {
service-activation-on-failover;
}
}
}
}
}
}
}
chassis {
aggregated-devices {
ethernet {
device-count 4;
}
maximum-links 16;
}
pseudowire-service {
device-count 2048;
}
network-services enhanced-ip;
}
interfaces {
ge-1/0/1 {
description "To Access-Switch";
flexible-vlan-tagging;
unit 0 {
vlan-id 80;
family inet {
address 10.80.2.2/24;
}
family mpls;
}
}
ge-1/0/5 {
description "To Primary-2-BNG ge-1/0/7";
unit 0 {
family inet {
address 10.130.5.2/24 {
primary;
preferred;
}
}
}
}
ge-1/0/7 {
description "To Core-Router ge-1/0/6";
flexible-vlan-tagging;
unit 5 {
vlan-id 5;
family inet {
address 10.80.5.1/24;
}
}
unit 140 {
vlan-id 140;
family inet {
address 10.80.140.1/24;
}
}
}
ge-1/0/9 {
description "To Primary-1-BNG ge-1/0/9";
unit 0 {
family inet {
address 10.80.3.2/24 {
primary;
preferred;
}
}
}
}
lo0 {
unit 0 {
family inet {
address 192.168.1.3/32 {
primary;
preferred;
}
}
}
unit 3000 {
family inet {
address 77.77.0.1/32;
}
}
unit 4000 {
family inet {
address 99.99.0.1/32;
}
}
}
ps1 {
anchor-point {
lt-1/1/0;
}
flexible-vlan-tagging;
auto-configure {
stacked-vlan-ranges {
dynamic-profile DHCP-STACKED-VLAN-PROFILE {
accept any;
ranges {
any,any;
}
}
authentication {
username-include {
delimiter "@";
user-prefix vlan;
interface-name;
}
}
}
remove-when-no-subscribers;
}
mtu 9192;
mac 00:00:5e:00:53:cc;
unit 0 {
encapsulation ethernet-ccc;
}
}
ps4 {
anchor-point {
lt-1/3/0;
}
flexible-vlan-tagging;
auto-configure {
stacked-vlan-ranges {
dynamic-profile DHCP-STACKED-VLAN-PROFILE {
accept any;
ranges {
any,any;
}
}
authentication {
username-include {
delimiter "@";
user-prefix vlan;
interface-name;
}
}
}
remove-when-no-subscribers;
}
mtu 9192;
mac 00:00:5e:00:53:ee;
unit 0 {
encapsulation ethernet-ccc;
}
}
}
forwarding-options {
dhcp-relay {
forward-snooped-clients configured-interfaces;
dynamic-profile dhcp;
overrides {
always-write-option-82;
}
relay-option-82 {
circuit-id;
}
server-group {
DHCPv4-1 {
172.16.0.10;
}
}
group local-2 {
active-server-group DHCPv4-1;
authentication {
password testradius;
username-include {
domain-name bng.com;
user-prefix subscriber2-dhcp-vrf2;
}
}
overrides {
always-write-option-82;
trust-option-82;
}
relay-option-82 {
circuit-id;
remote-id {
keep-incoming-remote-id;
}
vendor-specific host-name;
}
interface ps4.0;
}
}
}
policy-options {
policy-statement access-internal {
from protocol access-internal;
then accept;
}
}
access {
address-assignment {
pool ipv4-pool {
family inet {
network 10.80.0.0/16;
range limits {
low 10.80.20.10;
high 10.80.255.255;
}
}
}
}
domain {
map ps1.* {
target-routing-instance 3000;
}
map ps4.* {
target-routing-instance 4000;
}
parse-order realm-first;
realm-delimiter /;
}
}
routing-instances {
3000 {
instance-type vrf;
protocols {
bgp {
group internet-vpn {
type internal;
local-address 77.77.0.1;
mtu-discovery;
family inet {
any;
}
multipath;
neighbor 66.66.0.1;
neighbor 192.168.1.4;
}
export access-internal;
}
ospf {
area 0.0.0.0 {
interface all;
}
}
}
forwarding-options {
dhcp-relay {
forward-snooped-clients configured-interfaces;
dynamic-profile dhcp;
overrides {
always-write-option-82;
}
relay-option-82 {
circuit-id;
}
server-group {
DHCPv4-1 {
172.16.0.10;
}
}
bulk-leasequery {
attempts 10;
}
active-leasequery {
peer-address {
10.80.3.1;
}
}
}
}
interface ge-1/0/7.5;
interface ge-1/0/9.0;
interface lo0.3000;
route-distinguisher 69.158.196.105:9999;
vrf-target target:65501:3003;
vrf-table-label;
}
4000 {
instance-type vrf;
protocols {
bgp {
group internet-vpn {
type internal;
local-address 99.99.0.1;
mtu-discovery;
family inet {
any;
}
multipath;
neighbor 192.168.1.4;
neighbor 88.88.0.1;
}
export access-internal;
}
ospf {
area 0.0.0.0 {
interface all;
}
}
}
forwarding-options {
dhcp-relay {
forward-snooped-clients configured-interfaces;
dynamic-profile dhcp;
overrides {
always-write-option-82;
}
relay-option-82 {
circuit-id;
}
server-group {
DHCPv4-1 {
172.16.0.10;
}
}
bulk-leasequery {
attempts 10;
}
active-leasequery {
peer-address {
10.130.5.1;
}
}
}
}
interface ge-1/0/5.0;
interface ge-1/0/7.140;
interface lo0.4000;
route-distinguisher 70.158.196.105:9999;
vrf-target target:65501:4003;
vrf-table-label;
}
}
dynamic-profiles {
dhcp {
routing-instances {
"$junos-routing-instance" {
interface "$junos-interface-name";
routing-options {
access-internal {
route $junos-subscriber-ip-address {
qualified-next-hop "$junos-interface-name";
}
}
}
}
}
interfaces {
demux0 {
unit "$junos-interface-unit" {
no-traps;
proxy-arp unrestricted;
demux-options {
underlying-interface "$junos-underlying-interface";
}
family inet {
mac-validate loose;
demux-source {
$junos-subscriber-demux-ip-address;
}
unnumbered-address "$junos-loopback-interface";
}
}
}
}
}
DHCP-STACKED-VLAN-PROFILE {
routing-instances {
"$junos-routing-instance" {
interface "$junos-interface-name";
}
}
interfaces {
"$junos-interface-ifd-name" {
unit "$junos-interface-unit" {
no-traps;
proxy-arp;
vlan-tags outer "$junos-stacked-vlan-id" inner "$junos-vlan-id";
demux-options {
underlying-interface "$junos-interface-ifd-name";
}
family inet {
mac-validate strict;
unnumbered-address "$junos-loopback-interface";
}
}
}
}
}
}
routing-options {
router-id 192.168.1.3;
autonomous-system 65123;
static {
route 10.3.0.0/16 next-hop 10.80.5.2;
route 172.16.0.0/24 next-hop 10.80.5.2;
route 192.168.1.1/32 next-hop 10.80.2.1;
}
}
protocols {
bgp {
group IBGP {
type internal;
local-address 192.168.1.3;
neighbor 192.168.1.1;
}
precision-timers;
export access-internal;
}
l2circuit {
neighbor 192.168.1.1 {
interface ps1.0 {
virtual-circuit-id 10;
encapsulation-type ethernet;
ignore-encapsulation-mismatch;
ignore-mtu-mismatch;
pseudowire-status-tlv;
switchover-delay 1000;
revert-time 30;
}
interface ps4.0 {
virtual-circuit-id 40;
encapsulation-type ethernet;
ignore-encapsulation-mismatch;
ignore-mtu-mismatch;
pseudowire-status-tlv;
switchover-delay 1000;
revert-time 30;
}
}
}
ldp {
track-igp-metric;
deaggregate;
explicit-null;
transport-address router-id;
interface ge-1/0/1.0;
interface lo0.0;
}
mpls {
explicit-null;
interface ge-1/0/1.0;
}
ospf {
traffic-engineering;
area 0.0.0.0 {
interface all;
interface fxp0.0 {
disable;
}
}
}
rsvp {
interface ge-1/0/2.0;
interface ge-1/0/1.0;
}
}