Page MenuHomePhabricator
Create Task
Maniphest T320244

Junos: use mgmt_junos for syslog and ntp
Closed, ResolvedPublic
Actions

Description

Similar to T317175

See https://apps.juniper.net/feature-explorer/feature-info.html?fKey=8739&fn=System%20logging%20over%20management%20VRF%20(mgmt_junos)

MX routers now support sending syslog through mgmt_junos which seems more appropriate than the production interface.

Similarly for NTP, see https://www.juniper.net/documentation/us/en/software/junos/junos-getting-started/topics/topic-map/management-interface-in-non-default-instance.html

NTP would allow us to remove the loopback rules allow_ntp_src4/6 and allow_ntp_dst4/6

The mgmt firewalls ACLs might need to be updated accordingly.

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
Configure mgmt_junos on L2 switchesoperations/homer/publicmaster+15 -34
Customize query in gerrit

Related Objects

Event Timeline

ayounsi created this task.Oct 7 2022, 12:48 PM
ayounsi triaged this task as Low priority.
Restricted Application added a project: Infrastructure-Foundations. · View Herald TranscriptOct 7 2022, 12:48 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
ayounsi renamed this task from Junos: send syslog through mgmt_junos to Junos: use mgmt_junos for syslog and ntp.Oct 7 2022, 12:53 PM
ayounsi updated the task description. (Show Details)
ayounsi mentioned this in T317175: Junos: resolve DNS through mgmt_junos.
Maintenance_bot added a project: SRE.Oct 7 2022, 1:29 PM
ayounsi moved this task from Backlog to Next quarter on the netops board.Feb 20 2023, 3:33 PM
ayounsi moved this task from Next quarter to This quarter on the netops board.Apr 5 2023, 12:18 PM
gerritbot added a comment.May 16 2023, 3:39 PM

Change 920311 had a related patch set uploaded (by Ayounsi; author: Ayounsi):

[operations/homer/public@master] Configure mgmt_junos on L2 switches

https://gerrit.wikimedia.org/r/920311

gerritbot added a project: Patch-For-Review.May 16 2023, 3:39 PM
gerritbot added a comment.May 22 2023, 4:53 PM

Change 920311 merged by jenkins-bot:

[operations/homer/public@master] Configure mgmt_junos on L2 switches

https://gerrit.wikimedia.org/r/920311

Maintenance_bot removed a project: Patch-For-Review.May 22 2023, 5:10 PM
ayounsi closed this task as Resolved.May 22 2023, 6:52 PM
ayounsi claimed this task.

All done where possible.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits