Product Architecture
The JUNOS Software provides IP routing protocol software as well as software for interface, network, and chassis management. The JUNOS Software runs on all Juniper Networks J Series, M Series, MX Series, and T Series routers.
- J Series Services Routers (J2300, J4300, and J6300) are deployed at the remote edge of distributed networks.
- Most M Series routers are deployed in small and medium cores in peering, route reflector, and data center applications; or at the IP or Multiprotocol Label Switching (MPLS) edge to support high-performance Layer 2 and Layer 3 services. All M Series routers have redundant power and cooling and the M10i, M20, M40e, M120, M160, and M320 routers have fully redundant hardware, including Routing Engines, switch interface components, and packet forwarding components. The M120 router also supports Forwarding Engine Board (FEB) failover. In the event of a FEB failure, a backup FEB can quickly take over packet forwarding.
- The MX Series Ethernet Services Routers are Ethernet-optimized edge routers that provide both switching and carrier-class Ethernet routing. The MX Series routers support two types of Dense Port Concentrators (DPCs) with built-in Ethernet ports: Gigabit Ethernet 40-port and 10-Gigabit Ethernet 4-port.
- T Series routers (T320, T640, T1600, TX Matrix, and TX Matrix Plus routers) are deployed at the core of provider networks. These routers have fully redundant hardware, including power and cooling, Routing Engines, and Switch Interface Boards.
A routing matrix is a multi-chassis architecture composed of either one TX Matrix router and from one to four T640 routers connected to the TX Matrix router, or one TX Matrix Plus router and from one to four T1600 routers connected to the TX Matrix Plus router. From the perspective of the user interface, the routing matrix appears as a single router. On a routing matrix composed of a TX Matrix router and T640 routers, the TX Matrix router controls all the T640 routers. On a routing matrix composed of a TX Matrix Plus router and T1600 routers, the TX Matrix Plus router controls all the T1600 routers.
The routing process is handled by the following two components (see Figure 1):
- Routing Engine
- Packet Forwarding Engine
Because this architecture separates control operations such as routing updates and system management from packet forwarding, the router can deliver superior performance and highly reliable Internet operation.
Figure 1: Product Architecture
The Packet Forwarding Engine uses application-specific integrated circuits (ASICs) to perform Layer 2 and Layer 3 packet switching, route lookups, and packet forwarding. The Packet Forwarding Engine forwards packets between input and output interfaces. The M Series routers (except the M7i, M40, and M320 routers) have redundant Packet Forwarding Engines. The J Series Services Routers have a software-based Packet Forwarding Engine.
The Routing Engine controls the routing updates and system management. The Routing Engine consists of routing protocol software processes running inside a protected memory environment on a general-purpose computer platform. The Routing Engine handles all the routing protocol processes and other software processes that control the routers’ interfaces, some of the chassis components, system management, and user access to the router. These routers and software processes run on top of a kernel that interacts with the Packet Forwarding Engine. All M Series (except the M7i and M40) routers and T Series routers have redundant Routing Engines.
The Routing Engine has these features:
- Routing protocol packets processing—All routing protocol packets from the network are directed to the Routing Engine, and therefore do not delay the Packet Forwarding Engine unnecessarily.
- Software modularity—Software functions have been divided into separate processes, so a failure of one process has little or no effect on other software processes.
- In-depth IP functionality—Each routing protocol is implemented with a complete set of IP features and provides full flexibility for advertising, filtering, and modifying routes. Routing policies are set according to route parameters, such as prefix, prefix lengths, and Border Gateway Protocol (BGP) attributes.
- Scalability—The JUNOS routing tables are designed to hold all the routes used in current and near-future networks. Additionally, the JUNOS Software can efficiently support large numbers of interfaces and virtual circuits.
- Management interfaces—System management is possible with a command-line interface (CLI), a craft interface, and Simple Network Management Protocol (SNMP).
- Storage and change management—Configuration files, system images, and microcode can be held and maintained in one primary and two secondary storage systems, permitting local or remote upgrades.
- Monitoring efficiency and flexibility—Alarms can be generated and packets can be counted without adversely affecting packet forwarding performance.
The Routing Engine constructs and maintains one or more routing tables. From the routing tables, the Routing Engine derives a table of active routes, called the forwarding table, which is then copied into the Packet Forwarding Engine. The forwarding table in the Packet Forwarding Engine can be updated without interrupting the router’s forwarding.
In a JUNOS-FIPS environment, hardware configurations with two Routing Engines must use IPsec and a private routing instance for all communications between the Routing Engines. IPsec communication between the Routing Engines and Adaptive Services (AS) II FIPS PICs is also required.
JUNOS Software Overview
Juniper Networks provides high-performance network routers that create a responsive and trusted environment for accelerating the deployment of services and applications over a single network. JUNOS Software is the foundation of these high-performance networks. Unlike other complex, monolithic software architectures, JUNOS Software incorporates key design and developmental differences to deliver increased network availability, operational efficiency, and flexibility. These key advantages are:
- One operating system
- One software release
- One modular software architecture
One Operating System
Unlike other network operating systems that share a common name but splinter into many different programs, JUNOS Software is a single, cohesive operating system that is shared across all routers and product lines. This enables Juniper Network engineers to develop software features once and share the features across all product lines simultaneously. Because features are common to a single source, generally these features are implemented the same way for all the product lines, thus reducing the training required to learn different tools and methods for each product. Furthermore, because all Juniper Networks products use the same code base, interoperability among products is not an issue.
One Software Release
Each new version of JUNOS Software is released concurrently for all product lines following a preset quarterly schedule. Each new version of software must include all working features released in previous releases of the software and must achieve zero critical regression errors. This discipline ensures reliable operations for the entire release.
One Modular Software Architecture
Although individual modules of the JUNOS Software communicate through well-defined interfaces, each module runs in its own protected memory space, preventing one module from disrupting another. It also enables the independent restart of each module as necessary. This is in contrast to monolithic operating systems for which a malfunction in one module can ripple to others and cause a full system crash or restart. This modular architecture then provides for a high level of performance, high availability, security, and device scalability not found in other operating systems.
The JUNOS Software is preinstalled on your Juniper Networks router when you receive it from the factory. Thus, when you first power on the router, all software starts automatically. You simply need to configure the software so that the router can participate in the network.
You can upgrade the router software as new features are added or software problems are fixed. You normally obtain new software by downloading the images from the Juniper Networks Support Web page onto your router or onto another system on your local network. Then you install the software upgrade onto the router.
Juniper Networks routers run only binaries supplied by Juniper Networks. Each JUNOS Software image includes a digitally signed manifest of executables, which are registered with the system only if the signature can be validated. JUNOS Software will not execute any binary without a registered fingerprint. This feature protects the system against unauthorized software and activity that might compromise the integrity of your router.
No comments:
Post a Comment