Mix - Hard Flashcards

1
Q

What is the role of the Routing Engine in Junos OS and how does it differ from the Packet Forwarding Engine?

A

The Routing Engine handles the Control Plane, responsible for routing decisions, protocol management, and system operations. The Packet Forwarding Engine (PFE) processes and forwards packets in the Data Plane.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

In Junos OS, what command would you use to verify if the system’s configuration is valid before applying it?

A

You would use the command commit check to validate the configuration before committing changes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How does Junos OS ensure the separation of Control Plane and Data Plane traffic for scalability and performance?

A

Junos OS uses a physically separated architecture where the Routing Engine handles the Control Plane, and the Packet Forwarding Engine handles the Data Plane, allowing for dedicated resources and higher performance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

When configuring a Junos device for dynamic routing with OSPF, what command would you use to verify OSPF neighbors?

A

The command show ospf neighbor will display the status of OSPF neighbors and their details.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Explain the difference between the “permit” and “deny” actions in a Junos OS firewall filter.

A

The “permit” action allows traffic to pass through the firewall based on the filter criteria, while the “deny” action blocks traffic that matches the filter conditions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the significance of “Commit Confirm” in Junos OS and how does it help avoid configuration errors?

A

The commit confirm command allows administrators to apply a configuration change with a specified timeout, ensuring that if no further commits are made, the configuration will automatically revert after a defined period, reducing the risk of leaving a device in an unstable state.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How does Junos OS handle packet forwarding when multiple routing protocols have overlapping prefixes?

A

Junos OS uses the Longest Prefix Match (LPM) algorithm to determine the best match for a destination IP, preferring the route with the longest matching prefix.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the difference between a static and dynamic routing protocol in Junos OS, and when would you prefer one over the other?

A

Static routing requires manual configuration of routes, while dynamic routing protocols (like OSPF or BGP) automatically adjust to network changes. Static routing is preferable in stable environments with few changes, whereas dynamic routing is used in large, complex networks with frequent topology changes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How does Junos OS handle multicast traffic and what protocol is commonly used for this?

A

Junos OS handles multicast traffic using protocols like IGMP (Internet Group Management Protocol) for managing group memberships and PIM (Protocol Independent Multicast) for routing multicast traffic.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the significance of using different security zones in Junos OS firewalls?

A

Security zones group interfaces based on their trust level (e.g., inside, outside), helping define and enforce policies for traffic between zones, improving security.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How do you configure a static route with a preference value in Junos OS?

A

You can configure a static route with a preference value using the command: set routing-options static route <destination> next-hop <next-hop> preference <value>.</value></next-hop></destination>

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the function of the “show system uptime” command in Junos OS?

A

The show system uptime command displays the duration since the system was last rebooted, providing insight into the device’s stability and operational history.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

How can you verify the BGP state of a neighbor in Junos OS?

A

Use the command show bgp neighbor <neighbor-ip> to verify the state of a BGP session and its operational status.</neighbor-ip>

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is the purpose of J-Web in Junos OS, and how does it enhance network management?

A

J-Web provides a graphical interface for managing and configuring Junos OS devices, allowing for easier configuration, monitoring, and troubleshooting without needing to use the command line.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

When using Junos XML API, how do you fetch the routing table from a Junos device?

A

Using the Junos XML API, you can fetch the routing table by sending an XML request with the appropriate operation, such as <get-route-table> to retrieve routing information.</get-route-table>

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How would you troubleshoot a BGP route advertisement failure in Junos OS?

A

To troubleshoot BGP route advertisement failures, you could use commands like show bgp summary, show bgp neighbor, and show route advertising-protocol bgp to identify misconfigurations or network issues.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What is the role of the “set security policies” command in Junos OS?

A

The set security policies command is used to configure firewall policies between different security zones, defining rules for allowing or blocking traffic based on source and destination criteria.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What is the default behavior of an interface in Junos OS when no IP address is configured?

A

By default, when no IP address is configured on an interface, it will be in an administratively down state and will not process any traffic.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

How can you configure a VLAN on a Junos device and assign it to an interface?

A

To configure a VLAN, use the command: set vlans <vlan-name> vlan-id <vlan-id>. Then, assign it to an interface with the command: set interfaces <interface-name> unit 0 family ethernet-switching vlan members <vlan-name>.</vlan-name></interface-name></vlan-id></vlan-name>

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What is the purpose of “commit check” in Junos OS?

A

The commit check command validates the configuration changes to ensure they are syntactically correct and do not cause conflicts or errors before committing them.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Explain the significance of “Junos PyEZ” in network automation.

A

Junos PyEZ is a Python library used for automating tasks such as configuration, monitoring, and troubleshooting Junos OS devices. It simplifies device interaction and integration into larger automation workflows.

22
Q

How would you configure a basic OSPF network in Junos OS?

A

To configure OSPF, you would use commands such as set protocols ospf area <area-id> interface <interface-name> to define OSPF areas and specify which interfaces participate in OSPF.</interface-name></area-id>

23
Q

In Junos OS, how do you configure and monitor a VPN tunnel?

A

VPNs in Junos OS are configured using the set security ike gateway and set security ipsec commands. You can monitor VPN status with show security ike and show security ipsec commands.

24
Q

What command would you use to display interface statistics on a Junos device?

A

Use the command show interfaces <interface-name> to display statistics, including traffic, errors, and other important metrics for a specific interface.</interface-name>

25
Q

How would you verify that a route is being advertised in Junos OS?

A

You can verify that a route is being advertised using the command: show route advertising-protocol <protocol>.</protocol>

26
Q

How does Junos OS handle traffic filtering based on application type?

A

Junos OS uses application-aware firewall filters that allow administrators to define filtering policies based on application signatures, providing granular control over application traffic.

27
Q

What is the role of the Control Plane in Junos OS?

A

The Control Plane manages routing decisions, protocols, and policies, interacting with the Routing Engine to maintain network topology and route information.

28
Q

What is the purpose of the show log messages command in Junos OS?

A

The show log messages command displays system logs, providing valuable diagnostic information and insights into system events and errors.

29
Q

How do you configure an access port on a Junos OS switch?

A

To configure an access port, use the command: set interfaces <interface-name> unit 0 family ethernet-switching port-mode access.</interface-name>

30
Q

What is the role of the “Data Plane” in Junos OS?

A

The Data Plane handles the actual packet forwarding based on routing decisions made by the Control Plane, ensuring traffic is delivered to its destination.

31
Q

How does Junos OS handle hierarchical configuration?

A

Junos OS uses a hierarchical configuration model where configurations are organized in a tree structure, allowing for clear and organized configuration management.

32
Q

How can you view active routing protocol neighbors in Junos OS?

A

Use the command show protocols or show <protocol> neighbor to view active neighbors for specific routing protocols like BGP, OSPF, or RIP.</protocol>

33
Q

What is the difference between an internal and external BGP route in Junos OS?

A

Internal BGP (iBGP) routes are exchanged within the same Autonomous System (AS), while external BGP (eBGP) routes are exchanged between different ASes.

34
Q

How can you monitor the performance of the Junos OS firewall?

A

You can monitor the firewall performance using commands like show security flow session to view active sessions and show security policies to analyze applied security policies.

35
Q

What is the default interface family used by Junos OS for Layer 2 Ethernet switching?

A

The default interface family for Layer 2 Ethernet switching is ethernet-switching.

36
Q

What command would you use to check the status of a BGP route in Junos OS?

A

The command show route protocol bgp allows you to view the status and details of BGP-learned routes.

37
Q

What is the purpose of a commit in Junos OS?

A

The commit command applies configuration changes made to the system, activating them and making them persistent across reboots.

38
Q

How can you use J-Web to monitor system health?

A

J-Web provides a user-friendly interface to view system health by showing CPU utilization, memory usage, interface statistics, and overall device performance.

39
Q

What command would you use to apply a Junos OS configuration change without immediately committing it?

A

Use the command commit and-quit to apply the configuration changes and then exit configuration mode.

40
Q

How can you configure a dynamic routing protocol like OSPF in Junos OS for multiple areas?

A

To configure multiple areas, use the command set protocols ospf area <area-id> interface <interface-name> for each area to define which interfaces belong to which OSPF area.</interface-name></area-id>

41
Q

What is the purpose of the NETCONF protocol in Junos OS?

A

NETCONF is a network management protocol that allows for configuration, monitoring, and management of Junos OS devices using XML-based communication over secure connections.

42
Q

What is the role of the “Management Plane” in Junos OS?

A

The Management Plane is responsible for managing and monitoring the device, including tasks such as configuration, logging, and troubleshooting.

43
Q

How does Junos OS handle long prefix matches in routing?

A

Junos OS applies the Longest Prefix Match (LPM) rule, where the route with the longest matching prefix to the destination IP address is selected.

44
Q

What is the significance of using commit rollback in Junos OS?

A

commit rollback allows administrators to revert to a previous configuration, enabling easy recovery from misconfigurations.

45
Q

How would you configure a trunk port on a Junos OS switch?

A

To configure a trunk port, use the command: set interfaces <interface-name> unit 0 family ethernet-switching port-mode trunk.</interface-name>

46
Q

What does the “show route” command display in Junos OS?

A

The show route command displays the system’s routing table, listing active routes and their associated next hops.

47
Q

How do you configure a secure connection between a Junos device and an external management system?

A

You can configure secure communication using protocols like SSH or NETCONF over an encrypted channel to ensure secure device management.

48
Q

How can you check the status of VPN tunnels in Junos OS?

A

You can use the command show security ipsec security-associations to check the status of active VPN tunnels.

49
Q

What does the command show system processes display in Junos OS?

A

The show system processes command displays the status of running processes on the system, including their CPU and memory usage.

50
Q

How do you configure a firewall filter that matches traffic based on application type in Junos OS?

A

You can configure an application-aware firewall filter by specifying the application using the application match criteria in the firewall rule.