Change Details

Creating this task to track all the small discrepancies around our network. Nothing major, but some items might need discussions before fix. Mostly discovering them with the Ansible automation POC, will update jnt when applicable. More items will most likely be added once those are tackled. CR: [x] Add `chassis redundancy failover on-disk-failure` to routers with redundant RE [] Re-activate `chassis redundancy graceful-switchover` on cr1/2-codfw. Any idea why it's deactivated? [x] Remove `routing-options forwarding-table unicast-reverse-path feasible-paths;` as we don't do RPF [x] Remove `commit synchronize` from routers with single RE [x] Delete `protocols ospf area 0.0.0.0 interface ae0.0 bfd-liveness-detection` on cr1/2-eqiad curently dactivated, directly connected [x] Add `ospf(3) area 0.0.0.0 interface lo0.0 passive` on cr1/2-ulsfo [x] Enable LLDP on all interface and disable on external, instead of enabling only on group infrastructure [x] Set OSPF metric of 20000 for the cr2-knams<->mr1-esams link [x] Remove `routing-options martians` Not needed anymore https://kb.juniper.net/InfoCenter/index?page=content&id=KB23884 ASW: [] Remove default vlan 1 [] Remove vlan descriptions where identical to vlan name [] Add missing vlans (eg. cloud-support1-b-codfw on asw-a-codfw) [] Fix typoed VLAN numbers [] Remove `auto-sw-update` statements [] add `protocols layer2-control nonstop-bridging` to VC (redundant RE) MR: [] Add `routing-options router-id ` [] Add `ospf3 area 0.0.0.0 interface lo0.0 passive` [] Add `security screen`

Creating this task to track all the small discrepancies around our network. Nothing major, but some items might need discussions before fix. Mostly discovering them with the Ansible automation POC, will update jnt when applicable. More items will most likely be added once those are tackled. CR: [x] Add `chassis redundancy failover on-disk-failure` to routers with redundant RE [] Re-activate `chassis redundancy graceful-switchover` on cr1/2-codfw. Any idea why it's deactivated? (done and monitoring on cr1) [x] Remove `routing-options forwarding-table unicast-reverse-path feasible-paths;` as we don't do RPF [x] Remove `commit synchronize` from routers with single RE [x] Delete `protocols ospf area 0.0.0.0 interface ae0.0 bfd-liveness-detection` on cr1/2-eqiad curently dactivated, directly connected [x] Add `ospf(3) area 0.0.0.0 interface lo0.0 passive` on cr1/2-ulsfo [x] Enable LLDP on all interface and disable on external, instead of enabling only on group infrastructure [x] Set OSPF metric of 20000 for the cr2-knams<->mr1-esams link [x] Remove `routing-options martians` Not needed anymore https://kb.juniper.net/InfoCenter/index?page=content&id=KB23884 ASW: [x] Remove default vlan 1 [x] Remove vlan descriptions where identical to vlan name [x] Add missing vlans (eg. cloud-support1-b-codfw on asw-a-codfw) [x] Fix typoed VLAN numbers [x] Remove `auto-sw-update` statements MR: [] Add `routing-options router-id ` [] Add `ospf3 area 0.0.0.0 interface lo0.0 passive` [] Add `security screen`

Creating this task to track all the small discrepancies around our network. Nothing major, but some items might need discussions before fix. Mostly discovering them with the Ansible automation POC, will update jnt when applicable. More items will most likely be added once those are tackled. CR: [x] Add `chassis redundancy failover on-disk-failure` to routers with redundant RE [] Re-activate `chassis redundancy graceful-switchover` on cr1/2-codfw. Any idea why it's deactivated? (done and monitoring on cr1) [x] Remove `routing-options forwarding-table unicast-reverse-path feasible-paths;` as we don't do RPF [x] Remove `commit synchronize` from routers with single RE [x] Delete `protocols ospf area 0.0.0.0 interface ae0.0 bfd-liveness-detection` on cr1/2-eqiad curently dactivated, directly connected [x] Add `ospf(3) area 0.0.0.0 interface lo0.0 passive` on cr1/2-ulsfo [x] Enable LLDP on all interface and disable on external, instead of enabling only on group infrastructure [x] Set OSPF metric of 20000 for the cr2-knams<->mr1-esams link [x] Remove `routing-options martians` Not needed anymore https://kb.juniper.net/InfoCenter/index?page=content&id=KB23884 ASW: [x] Remove default vlan 1 [] Remove vlan descriptions where identical to vlan name [] Add missingx] Remove vlans (eg. cloud-support1-b-codfw on asw-a-codfw) descriptions where identical to vlan name [] Fix typoed VLAN numbersx] Add missing vlans (eg. cloud-support1-b-codfw on asw-a-codfw) [] Remove `auto-sw-update` statementsx] Fix typoed VLAN numbers [] add `protocols layer2-control nonstop-bridging` to VC (redundant RE)x] Remove `auto-sw-update` statements MR: [] Add `routing-options router-id ` [] Add `ospf3 area 0.0.0.0 interface lo0.0 passive` [] Add `security screen`