Knowledge Search


×
 

18.1R3-S5: Software Release Notification for Junos Software Service Release version 18.1R3-S5

  [TSB17569] Show Article Properties


Alert Type:
SRN - Software Release Notification
Product Affected:
EX QFX
Alert Description:
Junos Software Service Release version is now available for download from the Junos software download site
Download Junos Software Service Release:
  1. Go to Junos Platforms - Download Software page
  2. Input your product in the "Find a Product" search box
  3. From the Type/OS drop-down menu, select Junos SR
  4. From the Version drop-down menu, select your version
  5. Click the Software tab
  6. Select the Install Package as need and follow the prompts
Solution:

Junos Software service Release version 18.1R3-S5 is now available.

The following are incremental changes in 18.1R3-S5.

 

PR Number Synopsis Description
600308

JUNOS BGP Established state is not shown in "show bgp summary" if only master rouing instance is present.

When only default routing-instance is present, the JUNOS command "show bgp summary" does not show the BGP ESTABLISH state. If the BGP state is not an ESTABLISHED state, then it shows the states as design (i.e Active, Idle, Connect). If there is a routing-instance configured (apart from master routing-instance inet.0), the BGP ESTABLISH state is showed properly. Issue happens for IPv4 BGP sessions only, on IPV6 we always see all the BGP states as default.

1315437

The "Platform failed to bind rewrite" message could be seen when chassis control restart is done with the COS rewrite rule configured on AE interface

When chassis control restart is done with the COS rewrite rule configured on AE interface, the "Platform failed to bind rewrite" messages could be seen in syslog. Issue is specific to AE interfaces. It is a timing issue that can occur when IFL deletion is delayed due to high scale and when IFLs come up again post restart they have different indices. 

1317750

Port LEDs do not work on QFX5100 in QFX5110-QFX5100 mixed mode virtual chassis

Port LEDs on QFX5100 do not work. If a device connects to a port on QFX5100, the port LED stays unlit. 

1335523

Fan speed goes up and down continuously on SRX1500.

SRX1500 fan speed often goes up and down if the environment temperature up to 63 degrees Celsius. 

1336004

telemetry software package not running after system zeroize

The directory where the init and configuration files are stored are removed when "request system zeroize" is executed. Hence the telemetry process doesn't start after the zeroize is done. 

1357911

L2ALD restarts when changing "protocols" related configuration.

protocol configuration changes might trigger l2ald to restart unexpectedly. 

1365265

The kernel crash might be observed when there is a firewall filter modification

In firewall scenario, when the apply-path statement is used to expand a prefix-list pointed to a defined path, if any configuration modification causes the prefix-list changes, in a rare condition, the kernel crash might happen. Traffic disruption might be seen if NSR (Nonstop active routing) is not used during the crash. 

1366575

RPD may restarts unexpectedly with "no-cspf" and lo0 is not include under RSVP

With "no-cspf" is configured and the lo0 interface is not configured under "protocol rsvp", RPD may restart unexpectedly. 

1367424

Qualified next hop of static route might not be withdrawn when BFD is down

For static routes configured with multiple qualified next hops, BFD might not work as expected due to incorrect handling of BFD enabled flag for routes. If BFD is enabled for a next hop which is not the first one of the qualified next hops, when the BFD session is down, that next hop cannot be withdrawn. To make BFD work, it is necessary to configure BFD on the first qualified next hop. 

1369638

IPv6 router advertisement (RA) messages can increase internal Kernel memory usage.

IPv6 router advertisement (RA) messages can potentially cause increase in Kernel heap memory usage which can eventually lead to FXPC core-dump on master or backup member. 

1370463

RE-based micro BFD packets do not go out with configured source IP when the interface is in logical-system

When the loopback interface is configured in a logical-system and Routing Engine-based micro BFD is configured to use the loopback address as source address, BFD packets go out with source address belonging to outgoing interface rather than the loopback address. Due to this issue, the micro BFD session might not be able to come up. 

1377782

Traffic loss during ISSU with MPC7E/8E/9E

Traffic loss might occur during ISSU on MX series platforms with MPC7E/8E/9E installed, due to a feature introduced to enhance packets handling but not supporting ISSU effectively. 

1379718

Host destined packets with filter log action might reach the RE

On EX4300/EX4600/QFX Series switches except for QFX10k, if host destined packets (i.e., the destination address belongs to the device) come from the interface with ingress filter of log/syslog action (e.g., 'filter <> term <> then log/syslog'), such packets might not be dropped and reach the RE unexpectedly. 

1387720

BGP sessions might keep flapping on backup RE if proxy-macip-advertisement is configured on IRB interface for EVPN+VXLAN

In EVPN+VXLAN scenario, if proxy-macip-advertisement is configured on IRB (Integrated Routing and Bridging) interface for the EVPN (Ethernet VPN), the BGP sessions might flap on backup RE even the system is shown ready for the hitless switchover, hence there might be traffic loss after GRES switchover if BGP sessions are down on backup RE at the time of GRES switchover. 

1388159

MX-Series: CLI knob "as-path-expand last-as" Commit Failure

When "as-path-expand last-as" is configured without "count" knob, the configuration commit fails set policy-options policy-statement test then as-path-expand last-as root# commit check error: Check-out failed for Routing protocols process (/usr/sbin/rpd) without details 

1391443

lcmd core and FPC restarted

In corner cases lcmd may crash 

1393276

QFX : error message 'Failed with error (-7) while deleting the trunk 1 on the device 0'

On QFX series switch, error message below would be seen when adding or removing local-bias setting on SP style LAG interface. %PFE-3: fpc0 Failed with error (-7) while deleting the trunk 1 on the device 0 

1394866

JDI-RCT: EVPN-VXLAN NON-COLLAPSED: AUTONEG Errors and flush operation failed error, seen after power cycle of the device

AUTONEG Errors and flush operation failed error, seen after power cycle of the device as mentioned below. These error message does not have any functionality impact. "LOG: Err] ifd 153; Ether autonegotiation error (1000)" and "ch_vchassis_ipc_flush_pipe: flush operation failed for pipe 155333280" 

1398022

CLI command "show system firmware" might provide unexpected output on some MX platform such as MX104

CLI command "show system firmware" might provide unexpected output on some MX platform such as MX104. The "current version" might be shown as ?? instead of the correct version number. 

1398128

On QFX5100/EX4600 platforms, PR1398128 changed not to display the 3rd temp sensor for Power Supply units in the output by "show chassis environment pem" but need to revert the fix.

On QFX5100/EX4600 platforms, PR1398128 changed not to display the 3rd temp sensor for Power Supply units in the output by "show chassis environment pem" but need to revert the fix. 

1398632

CPU Interrupt process high due to intr{swi4: clock (0)} on qfx5100-48t-6q running a "QFX 5e Series" image and 18.x code

The output by "show system processes extensive" indicates high CPU on intr{swi4: clock (0)}. root@jtac-qfx5100-48t-6q> show system processes extensive last pid: 6413; load averages: 0.86, 0.81, 0.68 up 0+00:26:41 01:39:25 244 processes: 5 running, 206 sleeping, 1 zombie, 32 waiting Mem: 374M Active, 1019M Inact, 229M Wired, 27M Buf, 239M Free Swap: 3072M Total, 3072M Free PID USERNAME PRI NICE SIZE RES STATE C TIME WCPU COMMAND 11 root 155 ki31 0K 32K RUN 0 19:47 79.69% idle{idle: cpu0} 11 root 155 ki31 0K 32K RUN 1 17:29 69.48% idle{idle: cpu1} 16 root -60 - 0K 528K CPU0 0 13:03 51.76% intr{swi4: clock (0)} <<<<<< Here!! 

1399484

The rpd process might crash when executing "traceroute mpls bgp"

When traceroute to a remote host for an MPLS LSP using the command "traceroute mpls bgp", in very rare cases, it is possible that mplsoam daemon is holding the stale BGP instance handle in the query to the rpd process to get the information for the FEC (Forwarding Equivalence Class), hence rpd crash might occur because of the invalid instance. It may cause traffic impact till rpd comes back up. 

1402342

Traffic loss seen in IGMP subscribers after GRES.

There is a chance that some subscribers may not have IPTV post GRES. This condition will be seen if subscribers are logged in before the system has initialized fully or if dynamic profiles are changed with subscriber activity. 

1405189

Executing command "request system configuration rescue save" may fail with error messages

The command "request configuration rescue save" is not functioning well and it prints an error log for the nonexisting FPCs. It might affect the traffic when the device?s configuration is misconfigured in the VC/VCF scenario as the configuration cannot roll back in time. Also, it cannot restore the device in time in the event of a software failure. 

1405814

QFX:EVPN-VXLAN - Unicast IPv6 NS message gets flooded on L3GW, So both IPv4 and IPv6 traffic gets dropped on L2SW

In case of multihome (ESI) scenario, if IPV6 NS packet is flooded by peer leaf device over VTEP, when it comes to QFX5K device, it will be flooded back to access ESI host also which is not expected. Because of this if there is L2 switch before host, there might be loop happening. Work around is to disable arp-suppression. 

1406400

The rpd may crash when RSVP bypass path flaps

In the MPLS-TE with RSVP scenario, when bypass path of RSVP goes down or comes up, CSPF re-calculation is triggered by this update event of state changing and rpd needs to try to remove/add this path from the TED (Traffic Engineering Database), and that may cause the rpd crash. 

1406472

The rpd crashes after iw0 interface is configured under a VPLS instance

The rpd crashes when iw0 interface is configured under a VPLS instance. Since currently iw0 interface with VPLS is not supported, blocking the commit until it is supported. 

1407345

L2VPN might flap repeatedly after the link up between PE and CE

The Layer 2 VPN (L2VPN) on 1x100GE CFP MIC/10X10GE SFPP MIC/2X40GE QSFP MIC with asynchronous-notification and ccc configured might keep flapping when the link is going up between PE and CE. 

1407367

The rpd might crash when a commit check is executed on LDP trace options filtering

After upgrading to latest branch, core would not be seen by enabling trace options. 

1407855

Traffic over the AE getting policed to the policer applied on one of the IFLs when the vlan-id is changed

Sometimes in AE case, the CVLAN information is not available during filter bind. Subsequently, when child IFL is added multiple times, AE IFL finally gets the CVLAN information and filter entries were updated. But the AE IFL still does not have CVLAN info and entire IFD traffic is matchedin filter entry. This causes disruption to IFLs which does not have any filter. For solution, a new table is maintained to keep track of AE IFLs which does not have CVLAN info. When the tirgger comes from child IFL add, the table is checked & if present allowed to proceed for tcam reinstall for that IFL. 

1408055

Replace Multihome advertisement proxy bit from L2_info community to ARP/ND extended community

Replace Multihome advertisement proxy bit from L2_info community to ARP/ND extended community. The default value is 0x4. 

1408159

Class-of-service configuration changes might lead to traffic drop on cascade port in Junos Fusion setup

In Junos Fusion provider edge setup, if COS (class-of-service) is configured in the cascade port, when doing some COS configurations changes, such as deactivating or activating COS configurations on the cascade port, the traffic on this port would be silently dropped due to PFE mis programming for COS queue of the cascade port. 

1408380

Fan failure alarms might be seen on QFX5100-96S after upgrade to 17.3R1

On QFX5100-96S, starting from Junos version 17.3R1, the QFX5100 may experience fan failure alarms and fan performance degradation. The software change in this PR address these issues. 

1408558

The MPC linecards might crash when performing ISSU to 19.1R1 or above release

On MX with MPC1/1E/2/2E/3E/4E linecards installed, the MPC might crash when performing ISSU to 19.1R1 or above release. 

1408817

Traffic drop occurs when deleting MPLS family or disabling interface which has non-default EXP rewrite-rules

The non-VPN packets might be dropped when deleting family MPLS or disabling interface which has non-default EXP rewrite-rules. This is due to a cos-rewrite mask programming issue in Packet Forwarding Engine (PFE). 

1409406

MX-MPC2-3D-EQ and MPC-3D-16XGE-SFPP will now show "Exhaust A" temperature, rather than Intake temperature.

MX-MPC2-3D-EQ, MPC-3D-16XGE-SFPP and other MPCs prior to MPC5 will now show the "Exhaust A" temperature, rather than "Intake" temperature, in "show chassis fpc", "show chassis fpc detail", and via SNMP (Object Name jnxoperatingtemp, OID: 1.3.6.1.4.1.2636.3.1.13.1.7). Exhaust and Intake temperatures are still available in "show chassis environment". Note that MPC5, 6, 7, 8, 9 already show the "Exhaust A" temperature. 

1409523

Traffic is getting dropped when there is a combination of DPC/FPC card and MPC card on egress PE router in L3VPN

In L3VPN scenario with a combination of DPC/FPC(i-chip) card and MPC(trio-chip) card installed on egress PE router, if the ingress card is MPC and the egress card is DPC/FPC, the TTL (Time to live) value of the bottom (service) MPLS label for L3VPN packets is set to 0 when the knob "no-propagate-ttl" and "chained-composite-next-hop" are enabled, due to this, traffic is getting dropped on egress LSR (Label Switching Router) or PHP (Penultimate Hop Popping) router. 

1410239

LLDP memory leak when ieee dcbx packet is received in auto-neg mode followed by another dcbx packet with none of ieee_dcbx tlvs present.

LLDP memory leak when ieee dcbx packet is received in auto-neg mode followed by another dcbx packet within same second with none of ieee_dcbx tlvs present which is leading to this second packet not being classified as ieee_dcbx. 

1410649

QFX5110VC generates DDOS messages of different protocols on inserting a 1G/10G SFP or forming VCP connection

QFX5110VC generates DDOS messages of different protocols on inserting a 1G/10G SFP or forming VCP connection. The messages are cosmetic and do not cause any impact to traffic for which DDOS message is generated. 

1411303

SNMP OID IFOutDiscards not updated when drops increasing

When interface drop happens on interface, the SNMP OID IfOutDiscars might not be updated until a new "show interface extensive" cli command issued. 

1411389

PFE heap memory leak may happen during frequent flapping of PPPoE subscribers connected over Aggregate Ethernet interface

In case of frequent flap of PPPoE subscriber flaps connected via Aggregate Ethernet happens slow PFE heap memory leak may be observed  

1411549

The traffic to the NLB server may not be forwarded if the NLB cluster works on multicast mode

NLB (Network Load Balancer) cluster works on multicast mode and EX/QFX works as the gateway of the NLB server. The traffic to the NLB server may not be forwarded. 

1412161

Over Temperature trap does not sent out even though there is Temperature Hot alarm

Over Temperature trap does not sent out even though there is Temperature Hot alarm 

1412429

EX/QFX : PEM Alarm for Backup FPC will be remained on Master FPC though backup FPC was detached from VC

On EX and QFX series switch which is configured virtual chassis, PEM alarm for backup FPC will be remained in output of "show chassis alarms" on Master FPC though backup FPC was detached from VC. 

1413758

PEM 0 or PEM 1 I2C Failure major alarm might be set and cleared for multiple times

On SRX4600 device, the "Major alarm set" and "Major alarm cleared" for PEM 0/1 with I2C Failure might be seen for multiple times when SRX4600 fails to read the PEM register via I2C within two consecutive times. 

1414109

The services load balance might not be effective for AMS if the hash key under the forwarding-options hierarchy is configured

On all MX-Series platforms with services load balance hash key under forwarding-options is configured, the load balance might not be effective in next-hop for aggregated multi-services (AMS) system interface. 

1414213

QFX5K: EVPN / VxLAN: Mutlicast NH limit is 4K

In QFX5K, multicast next hop limit is 4K. so based on the configuration, if there are more than 4K multicast NHs getting created, some of NHs won't be installed and you may see traffic drop for those groups. 

1414492

VC Ports using DAC may not establish link on QFX5200

On QFX5200, when virtual-chassis is configured, if the QSFP configured as VCP is removed and then inserted, VC Ports using direct attach copper (DAC) may not establish link. 

1415077

Dynamic routing protocol flapping with vmhost RE switchover on NG-RE

In NG-RE dual RE platform, some commands for RE switchover might lead process rpd to go down/up, due to a delay that makes the process chassisd fail to update its status of mastership promptly. As the mastership status the chassisd governs determines which action the process rpd needs to take the next, if RE is rebooted and the chassisd mastership state is RE-Master then, in that case, rpd clears all the kernel states; and if chassisd mastership state for that RE is RE-Backup, then rpd just quits silently and restarts again in backup mode without any kernel states being cleaned. So that rpd cleanup of kernel states causes this issue. 

1415130

PMTU issue IPv4/IPv6 MX does not respond when MTU exceeded for clients terminated on tunnel type interfaces.

PMTU issue IPv4/IPv6 MX does not respond when MTU exceeded for clients terminated on tunnel type interfaces. Subscribers impacted are L2TP LNS terminated on si-interface inline-service and subscribers terminated on psuedowire ps-interface anchored on lt-interface tunnel-service. When a packet destined for client exceeds MTU and packet has do not fragment set, the MX does not properly respond with ICMP Destination unreachable Fragmentation needed in case of IPv4 or ICMP6 packet too big for IPv6. PMTU does work correctly when clients are terminated on physical interfaces, ge, xe, and ae. 

1415614

The L2circuit egress PE might drop the traffic in FAT+CW enabled L2circuit scenario when another FAT+CW enabled L2circuit PW flaps

On PTX1000/PTX10002/PTX10008/PTX10016 platforms, when multiple FAT+CW (FAT->flow-aware transport, CW->control-word) are enabled in L2circuit PWs (pseduo-wires) scenario, the L2circuit egress PE might drop the traffic (the affected PW is unsure/unkown) and also corrupt the PW traffic/packet received from MPLS core when another FAT+CW enabled L2circuit PW flaps (such as, link down, FPC crashes, do enable/disable of flow label on PW, etc). 

1416025

The QFX and EX switch may not install all IRB MAC addresses in the initialization

On QFX5100/QFX5110/QFX5120/QFX5200/EX4600 which is configured as a layer 3 gateway in an EVPN topology, it may not install all MAC-addresses for the integrated bridging and routing (IRB) interface in the TCAM table. Even though the MAC-address for the IRB gets installed by removing and reconfiguration, but the MAC-address is missed again in the TCAM table after reboot. 

1416228

Broadcast traffics may be discarded in a VPLS local-switching scenario

In a VPLS local-switching scenario (LDP/BGP signaled or FEC 129), say LDP signaled, broadcast traffics may be discarded after deleting the statement "vpls-id" from the routing instance config without firstly deactivating the corresponding routing instance. The same issue may also be observed in BGP signaled VPLS (deleting the "route target") and FEC 129 (deleting the statement "l2vpn-id"). 

1416585

Two instances of Junos are running after Junos upgrade to 18.1R3-S3.7

Two instances of Junos could possibly be running after Junos upgrade to 18.1R3-S3.7 on white box. It is fixed by removing Fast Reboot support for AS7816. 

1416925

TPI-57956: 18.1R3-S3 : Restart routing on Spines lead to DCPFE core @ nh_composite_change

Under extremely rare circumstances, in an large EVPN-VXLAN configuration on QFX10k devices, the PFE may crash under a lot of configuration changes because of an external event like a rpd restart. There is no workaround. 

1417139

The traffic might get blackholed in Junos Fusion Enterprise scenario with dual-AD

In Junos Fusion Enterprise scenario with dual-aggregate device (dual-AD), if the inter-chassis link (ICL) is over FPC EX9200-12QS , "show chassis satellite redundancy-group" might show "session pending". ICL link may not come up, so that redundancy with dual-AD cannot be achieved and the cascade port on a AD goes down, traffic diversion over ICL cannot occur and hence traffic will be blackholed. 

1417170

After a GRES on a MX104 some tunnels will fail to pass traffic after a re-key.

After a GRES on a MX104 some tunnels will fail to pass traffic after a re-key. 

1417215

An IPv4 packet with a zero checksum may not be translated to IPv6 packet properly under NAT64 scenario

On MX platform with MS-MPC/MS-MIC, NAT64 scenario, if the checksum of the fragmented IPv4 packet in ESP encapsulation is zero, the packet may not be translated to IPv6 format properly and this may cause it to be dropped finally. 

1417269

An invalid XML reply containing a duplicate tag might be seen when requesting get-arp-table-information via netconf

With Netconf the xmlns attribute is printed twice for rpc to the router. 

1417344

The deletion of (S,G) entry might be skipped after the PIM join timeout

On all Junos platforms enabled with Protocol Independent Multicast (PIM), the deletion of (S,G) entry might be skipped after the PIM join timeout in some rare conditions, if Multicast Virtual Private Network (MVPN) is configured in rpt-spt mode, there might be a creating problem for the affected (S,G) entry since the PIM (S,G) discard entry seems to be retained. Due to this issue, the traffic is not able to hit the MVPN installed (*,G) entry, hence it will be blocked. 

1417839

EX3400 : "show chassis environment" repeats "OK" and "Failed" at short intervals

Chassisd was receiving wrong values from LCMD for the RPM values, it changes the Fan status to "Failed" from "Ok" and vice versa. 

1418128

CGNAT with MS-MPC card doesn't account for AP-P out of port errors or generate a syslog message when this condition is met.

Subscriber is requesting another block while there is no more ports available in that NAT address, you see APP errors increasing and this condition should be logged 

1418162

ERSPAN Traffic not tag when output interface is trunk port

ERSPAN traffic is not tagged when the output interface is a trunk port. 

1418461

there is no SNMP Trap message generated for jnxHardDiskMissing/jnxHardDiskFailed on Summit MX

There is no Trap message generated in case of SSD missing or Disk failed on Summit platform (MX10003 and PTX10002 .etc.), with the fix of the PR, JUNOS will generate OID as below accordingly. OID: 1.3.6.1.4.1.2636.4.1.15 jnxHardDiskMissing OID: 1.3.6.1.4.1.2636.4.1.14 jnxHardDiskFailed 

1418490

The EX3400 VC status might be unstable during the boot up of the VC or after the VC port flaps

On EX3400 platform virtual chassis with two members, during the boot up of the VC or after the VC port flaps, The VC port might flap and the VC status might be unstable for several minutes. 

1418696

COS table error can sometimes cause traffic outages and SNMP timeouts if the optic is plugged out and inserted back

COS table error can sometimes cause traffic outages and SNMP timeouts if the optic is plugged out and inserted back 

1418937

lsp-cleanup-timer is not being honored when lsp-cleanup-timer is configured to be greater than 2147483647

The lsp-cleanup-timer, configured under [edit protocols pcep pce ] currently accepts values between 1 and 4294967294; however, only values between 1 and 2147483647 are valid for this configuration statement. If a value larger than 2147483647 is configured then when the path-computation-client status goes down the LSP is removed from the router immediately. Similarly if the LSP is PCE initiated and lsp-cleanup-timer is configured with a value above 2147483647 then the LSP will be removed immediately after the dead-timer expiry. 

1419465

Rebooting QFX5200-48Y using "request system reboot" doesn't take physical links offline immediately

After rebooting QFX5200-48Y using "request system reboot", the physical link doesn't become offline immediately, which might result in traffic loss. 

1419500

A PPP session under negotiation might be terminated if another PPPoE client bearing the same session ID

In PPPoE (Point-to-Point Protocol over Ethernet) subscriber scenario, if a PPPoE client is under PPP (Point-to-Point Protocol) session negotiation while another PPPoE client bearing the same session ID sends LCP (Link Control Protocol) terminate request to the MX, the MX might terminate this PPP session. The issue results in failure of PPPoE client negotiation. 

1419800

A memory leak in rpd might be seen if source packet routing is enabled for IS-IS protocol

If source packet routing or segment routing is enabled for IS-IS protocol, a memory leak might happen in the routing protocol process (rpd). The rpd will crash and restart once the rpd runs out of memory. 

1419809

Change the nd6 nexthops to reject NH once l2 interfaces gets disassociated with ipv6 entries

When IPv6 neighbors are learnt on IRB + L2 interface, upon L2 interface is link down, the ND6 neighbor nexthop state will change to reject instead of earlier behavior of remaining in UNICAST state leading to not resolving L2 interface again successfully. 

1419891

The rpd process might crash in rare conditions when Extranet NG-MVPN is configured

When Extranet NG-MVPN/overlapping MVPN is configured, in rare cases, rpd might crash due to Next-hop reference count becomes 0. During the crash, the routing table and neighborship will become unstable and traffic will be dropped. 

1420514

Monitor ethernet loss-measurement command returns Invalid ETH-LM request for Unsupported outgoing IFL

Monitor ethernet loss-measurement command returns Invalid ETH-LM request for Unsupported outgoing IFL 

1420764

Multicast mac addresses being learned in the ethernet switching table with vxlan via an arp packet in a pure L2 configuration

Multicast mac addresses being learned in the ethernet switching table with vxlan via an arp packet in a pure L2 configuration. Specific application affected is Microsoft NLB, but other multicast mac applications will be affected as well. 

1420776

IPv6 ISIS routes might be deleted and not be reinstalled when MTU is changed under the IFL level for family inet6

In ISIS IPv6 scenario, if MTU is changed under the IFL (Logical Interface) level for family inet6, the ISIS IPv6 route might be deleted and might not be reinstalled. These routes remain present in ISIS database and ISIS adjacency remains UP as well. The reason is that ISIS interface data is not added for IPv6 unicast topology after the interface MTU changing event. And this does not allow the ISIS IPV6 routes to get resolved. 

1420921

Sometimes, IGMP-Snooping may not work. Workaround is to restart multicast-snooping process

Sometimes, IGMP-Snooping may not work. Workaround is to restart multicast-snooping process 

1421075

Error messages might be seen on PTX10K/QFX10K platforms during DFE tuning.

Insufficient Hold Time delay of MDIO for port 7, 9, 17, 19, 27, 29 can cause misbehavior on the retimer associated to these ports. Port will be down until rebooting of the FPC. 

1421257

The pfex process might crash and core dump when reinsert SFP

On EX4300-32F platform, when SFP-T phy is used in a port earlier and SFP phy is inserted and then removed from the same port, the pfex process might crash and core dump. 

1421429

Fusion: ETS config not applied on non-cascade ports when AD is rebooted

ETS configuration is not applied on native (non-cascade) ports on when AD (qfx10k) is rebooted with the configuration applied. The same configurations works well, when AD is up and running. 

1421539

failed to reload keyadmin database for /var/etc/keyadmin.conf

During commit of the configuration change the following warning message can appear: warning: Command exited: PID 7527, status 255, command keyadmin error: failed to reload keyadmin database for /var/etc/keyadmin.conf 

1421569

jdhcpd daemon might crash during continuous stress test

jdhcpd daemon might crash during continuous stress test 

1421629

MX-VC: VCP port reports MTU value 9152 in the ICMP MTU exceeded message while the VCP port mtu is set to 9148

In MX-VC setup VCP port reports MTU value 9152 in the ICMP MTU exceeded message while the VCP port media mtu is set to 9148. The MTU value returned in the ICMP MTU exceeded message is correct, but the VCP IFD MTU value displayed in the 'show interfaces vcp-1/1/0 extensive' output is incorrect. The VCP IFD MTU should be 9192. 

1421857

Incorrect value on speed will cause traffic destined to the IRB's VIP dropped

In VRRP scenario, once an invalid interface speed is configured (such as speed 100m on 1G SFP), the VRRP VIP of IRB will be deleted accordingly. In the end, all traffic destined to that VIP gets dropped. 

1421977

remote gateway address change is not effective on MX150 platform when its an initiator

remote gateway address change is not effective on MX150 platform when its an initiator. Please note it works fine in below scenarios: 1. When "set services ipsec-vpn establish-tunnels immediately" 2. If Peer initiates the tunnel establishment  

1422132

Virtual Chassis may become unstable and FXPC cores when there are a lot of configured filter entries

On EX2300/EX3400 Virtual Chassis platform with storm-control enabled, when multiple filter entries get exhausted, VC becomes unstable and FXPC cores. 

1422148

arp request is not replied although proxy-arp configured

arp request might not be replied by MX although proxy-arp is configured 

1422542

The CoS ieee-802.1 classifier might not get applied when it is configured with service activation on underlying-interface

In a subscriber management environment, the Class-of-Service (CoS) ieee-802.1 classifier might not get applied when it is configured with service activation on underlying-interface. Instead, the default IP Precedence classifier would be applied. 

1422645

LDP might not update the LDP ingress route metric when inet.3 route flash happens before inet.0

LDP route metric might not match IGP route metric even with "ldp track-igp-metric" configured. 

1422789

BFD might stuck in slow mode on QFX10002/QFX10008/QFX100016 platform

On QFX10002/QFX10008/QFX100016 platform, if BFD session is configured on fast mode, when the BFD session is across a dual-tagged interfaces (for example QinQ), BFD might switch to slow mode. BFD triggered FRR will have more loss and it takes more time to detect BFD down. 

1422920

Traffic may loss when one of logical interfaces on LAG was deactivated or deleted

If SP style config is used in EX4300, deactivated or deleted one of logical interfaces on LAG would cause traffic failure passing through the same LAG interface. Using EP style config will be a workaround. 

1423106

Add the second IRB to an AE and roll it back might cause the first IRB to stop working

Adding the second IRB to an AE and then removing it would cause the first IRB to stop working. 

1423288

MX10003:" enhanced-hash-key symmetric" is not effective and not shown on fpc.

MX10003:" enhanced-hash-key symmetric" is not effective and not shown on fpc. 

1423556

Multicast traffic might be silently dropped on ingress port with igmp-snooping enabled

On EX2300/EX3400/EX4300/EX4600 and QFX series except QFX10k virtual chassis platforms, if igmp-snooping is enabled, multicast traffic might be dropped silently. 

1423707

Traffic is dropped after FPC reboot with AE member links deactivated by remote device

On PTX series platforms with Link Aggregation Control Protocol (LACP) enabled, deactivating a remote Aggregate Ethernet (AE) member link will make the local member link move to LACP Detached state. The Detached link will be invalidated from the PFE AE-Forwarding table as expected. However, if the device is rebooted with this state, all the member links will be enabled in PFE AE-Forwarding table irrespective of LACP states and result in traffic drop. 

1424030

Auditd crashed when Accounting RADIUS server not reachable..

When Junos device tries to send accounting messages to the accounting server and when the accounting radius server is not responding to accounting request messages from the Junos device, Junos will try to resend the accounting request messages after a timeout. If the number of accounting messages is huge, these messages will be stored in a queue and Junos will read the messages one by one from the queue and send the messages out. While trying to allocate memory and store the messages in a queue, memory allocation is failing resulting in a crash. This issue will not occur if the accounting radius server is responding. As part of the fix, if memory allocation fails, half of the messages in the queue are deleted so that memory for those messages will get freed. 

1424244

IPv6 neighbor solicitation packets for link-local address were dropped when passing through QFX10002-60C

IPv6 neighbor solicitation packets for link-local address were dropped when passing through QFX10002-60C 

1424284

After deleting IRB IFL, mac entry for the IRB will be deleted for the IRB Hardware address, packets destined to other IRB ifls where Mac is not configured will get impacted.

After deleting IRB IFL, mac entry for the IRB will be deleted for the IRB Hardware address, packets destined to other IRB ifls where Mac is not configured will get impacted. 

1424884

Memory leaks might be seen on the jsqlsyncd process on SRX chassis clusters

On all SRX chassis clusters, memory leaks occur on the jsqlsyncd process, eventually, the jsqlsyncd process runs out of memory and generates a core-dump file while accessing NULL pointer or non-initialized pointer. 

1425231

RPD will crash if protocol authentication is used along with master-password.

RPD will crash on routers running 64 bit vmhost image if protocol authentication is used along with master-password. Any routing protocol that supports authentication can trigger this; some examples include BGP,ISIS,OSPF. 

1425339

[EVPN] Aggregate-Ethernet interface flaps followed by commit

A software defect is introduced via PR1390063. This defect causes an EVPN ESI aggregate-Ethernet interface to flap when there is a commit after any configuration change. The interface flaps may cause significant network events in a large network. 

1425414

"flexible-queuing-mode" is not working on MPC5E of VC member1

Fix the RE SCC chassis control daemon (scchassisd) on MX-series routers to properly process FPC flexible-queuing-mode configuration for member1 FPCs. Currently, the SCC is processing the queuing mode configuration using local FPC numbers, so it does not mark interfaces on member 1 FPCs as queuing capable. 

1425716

All interfaces creation failed after NSSU

On all Junos platform supporting RE switchover, all interfaces creation might be failed after NSSU. 

1425828

The rpd process might crash and core dump during mpls ping command on l2circuit

When end-interface or backup-interface/protect-interface in end-interface is used as an interface for "ping mpls l2circuit interface" command, the rpd process might crash and core dump. 

1426711

A timing issue while closing a PIM task and an Auto-RP at the same time may sometimes result in an RPD core dump.

In the scenario where both a PIM session task and an Auto-RP session task are being closed by rpd very near to one another, a timing issue may occur where a timer for the auto-rp task, maintained in the PIM session task, expires after we have closed the auto-rp task but before the PIM task has finished closing causing a rpd core dump. 

1426757

Loop-detect feature not working in Junos Fusion Enterprise

In Junos Fusion Enterprise environment with EX2300-48P or EX2300-48T acting as satellite devices, loop-detect feature does not work for ports 0-23, since the loop detect filter is not properly applied. 

1426975

Traffic loss might be seen when multiple IPsec tunnels are established with the remote peer

In IPsec DEP (Dynamic Endpoint) scenario, if multiple IPsec tunnels are established with the same traffic selector to the remote peer, only the reverse route pointing to the latest tunnel will be installed. Traffic sent through other tunnels will be dropped. If any of these tunnels is deleted, the installed reverse route will be deleted as well and traffic sent through the working tunnel will be dropped too. 

1427294

Traffic not flowing through macsec interfaces when configured with an unknown cipher algorithm and change back

When an unsupported cipher was configured, macsec_cap_is_not_capable flag in pic structure will be set to TRUE. However, the issue was that the flag remained TRUE and was not being set to FALSE even though the cipher suite was reverted back from unsupported one to supported. As a result the check always returned TRUE. The fix now corrects this and updates the macsec_cap_is_not_capable flag to FALSE when it is a supported cipher suite. 

1428936

QFX : EVPN-VXLAN : L2ALD cores when number of VXLAN HW IFBDS exceeds the max limit of 16382

l2-learning daemon will core when the number of hardware vxlan IFBDs exceeds the maximum limit of 16382. 

1431111

QFX switch : 'Validation of meta data files failed' on hypervisor

On QFX511x or QFX52xx, 'Validation of meta data files failed' message when you login into hypervisor. This is a harmless message which could be seen since 17.3R3 release. 

Modification History:
First publication 2019-05-14
Related Links: