Juniper JUNOS SOFTWARE 10.2 - SOFTWARE INSTALLATION AND UPGRADE GUIDE 4-28-2010, JUNOS 10.2 Upgrade Manual

JUNOS® Software

Software Installation and Upgrade Guide

Release 10.2

Juniper Networks, Inc.

1194 North Mathilda Avenue

Sunnyvale, California 94089

USA

408-745-2000

www.juniper.net

Published: 2010-04-28

This product includes the Envoy SNMP Engine, developed by Epilogue Technology, an Integrated Systems Company. Copyright © 1986-1997, Epilogue
Technology Corporation. All rights reserved. This program and its documentation were developed at private expense, and no part of them is in the public
domain.

This product includes memory allocation software developed by Mark Moraes, copyright © 1988, 1989, 1993, University of Toronto.

This product includes FreeBSD software developed by the University of California, Berkeley, and its contributors. All of the documentation and software
included in the 4.4BSD and 4.4BSD-Lite Releases is copyrighted by the Regents of the University of California. Copyright © 1979, 1980, 1983, 1986, 1988,
1989, 1991, 1992, 1993, 1994. The Regents of the University of California. All rights reserved.

GateD software copyright © 1995, the Regents of the University. All rights reserved. Gate Daemon was originated and developed through release 3.0 by
Cornell University and its collaborators. Gated is based on Kirton’s EGP, UC Berkeley’s routing daemon (routed), and DCN’s HELLO routing protocol.
Development of Gated has been supported in part by the National Science Foundation. Portions of the GateD software copyright © 1988, Regents of the
University of California. All rights reserved. Portions of the GateD software copyright © 1991, D. L. S. Associates.

This product includes software developed by Maker Communications, Inc., copyright © 1996, 1997, Maker Communications, Inc.

Juniper Networks, the Juniper Networks logo, JUNOS, NetScreen, ScreenOS, and Steel-Belted Radius are registered trademarks of Juniper Networks, Inc. in
the United States and other countries. JUNOSe is a trademark of Juniper Networks, Inc. All other trademarks, service marks, registered trademarks, or
registered service marks are the property of their respective owners.

Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify, transfer, or
otherwise revise this publication without notice.

Products made or sold by Juniper Networks or components thereof might be covered by one or more of the following patents that are owned by or licensed
to Juniper Networks: U.S. Patent Nos. 5,473,599, 5,905,725, 5,909,440, 6,192,051, 6,333,650, 6,359,479, 6,406,312, 6,429,706, 6,459,579, 6,493,347,
6,538,518, 6,538,899, 6,552,918, 6,567,902, 6,578,186, and 6,590,785.

JUNOS® Software Software Installation and Upgrade Guide

Release 10.2
Copyright © 2010, Juniper Networks, Inc.
All rights reserved. Printed in USA.

Writing: Donice G. Evans-Mitchell, Mark Barnard, Stephen Meiers, Michael Scruggs, Philomena Dolla
Editing: Sonia Saruba, Nancy Kurahashi
Illustration: Faith Bradford
Cover Design: Edmonds Design

Revision History
May 2010—R1 JUNOS 10.2

The information in this document is current as of the date listed in the revision history.

YEAR 2000 NOTICE

Juniper Networks hardware and software products are Year 2000 compliant. The JUNOS Software has no known time-related limitations through the year

2038. However, the NTP application is known to have some difficulty in the year 2036.

ii ■

END USER LICENSE AGREEMENT

READ THIS END USER LICENSE AGREEMENT (“AGREEMENT”) BEFORE DOWNLOADING, INSTALLING, OR USING THE SOFTWARE. BY DOWNLOADING,
INSTALLING, OR USING THE SOFTWARE OR OTHERWISE EXPRESSING YOUR AGREEMENT TO THE TERMS CONTAINED HEREIN, YOU (AS CUSTOMER
OR IF YOU ARE NOT THE CUSTOMER, AS A REPRESENTATIVE/AGENT AUTHORIZED TO BIND THE CUSTOMER) CONSENT TO BE BOUND BY THIS
AGREEMENT. IF YOU DO NOT OR CANNOT AGREE TO THE TERMS CONTAINED HEREIN, THEN (A) DO NOT DOWNLOAD, INSTALL, OR USE THE SOFTWARE,
AND (B) YOU MAY CONTACT JUNIPER NETWORKS REGARDING LICENSE TERMS.

1. The Parties. The parties to this Agreement are (i) Juniper Networks, Inc. (if the Customer’s principal office is located in the Americas) or Juniper Networks
(Cayman) Limited (if the Customer’s principal office is located outside the Americas) (such applicable entity being referred to herein as “Juniper”), and (ii)
the person or organization that originally purchased from Juniper or an authorized Juniper reseller the applicable license(s) for use of the Software (“Customer”)
(collectively, the “Parties”).

2. The Software. In this Agreement, “Software” means the program modules and features of the Juniper or Juniper-supplied software, for which Customer
has paid the applicable license or support fees to Juniper or an authorized Juniper reseller, or which was embedded by Juniper in equipment which Customer
purchased from Juniper or an authorized Juniper reseller. “Software” also includes updates, upgrades and new releases of such software. “Embedded
Software” means Software which Juniper has embedded in or loaded onto the Juniper equipment and any updates, upgrades, additions or replacements
which are subsequently embedded in or loaded onto the equipment.

3. License Grant. Subject to payment of the applicable fees and the limitations and restrictions set forth herein, Juniper grants to Customer a non-exclusive
and non-transferable license, without right to sublicense, to use the Software, in executable form only, subject to the following use restrictions:

a. Customer shall use Embedded Software solely as embedded in, and for execution on, Juniper equipment originally purchased by Customer from Juniper
or an authorized Juniper reseller.

b. Customer shall use the Software on a single hardware chassis having a single processing unit, or as many chassis or processing units for which Customer
has paid the applicable license fees; provided, however, with respect to the Steel-Belted Radius or Odyssey Access Client software only, Customer shall use
such Software on a single computer containing a single physical random access memory space and containing any number of processors. Use of the
Steel-Belted Radius or IMS AAA software on multiple computers or virtual machines (e.g., Solaris zones) requires multiple licenses, regardless of whether
such computers or virtualizations are physically contained on a single chassis.

c. Product purchase documents, paper or electronic user documentation, and/or the particular licenses purchased by Customer may specify limits to
Customer’s use of the Software. Such limits may restrict use to a maximum number of seats, registered endpoints, concurrent users, sessions, calls,
connections, subscribers, clusters, nodes, realms, devices, links, ports or transactions, or require the purchase of separate licenses to use particular features,
functionalities, services, applications, operations, or capabilities, or provide throughput, performance, configuration, bandwidth, interface, processing,
temporal, or geographical limits. In addition, such limits may restrict the use of the Software to managing certain kinds of networks or require the Software
to be used only in conjunction with other specific Software. Customer’s use of the Software shall be subject to all such limitations and purchase of all applicable
licenses.

d. For any trial copy of the Software, Customer’s right to use the Software expires 30 days after download, installation or use of the Software. Customer
may operate the Software after the 30-day trial period only if Customer pays for a license to do so. Customer may not extend or create an additional trial
period by re-installing the Software after the 30-day trial period.

e. The Global Enterprise Edition of the Steel-Belted Radius software may be used by Customer only to manage access to Customer’s enterprise network.
Specifically, service provider customers are expressly prohibited from using the Global Enterprise Edition of the Steel-Belted Radius software to support any
commercial network access services.

The foregoing license is not transferable or assignable by Customer. No license is granted herein to any user who did not originally purchase the applicable
license(s) for the Software from Juniper or an authorized Juniper reseller.

4. Use Prohibitions. Notwithstanding the foregoing, the license provided herein does not permit the Customer to, and Customer agrees not to and shall
not: (a) modify, unbundle, reverse engineer, or create derivative works based on the Software; (b) make unauthorized copies of the Software (except as
necessary for backup purposes); (c) rent, sell, transfer, or grant any rights in and to any copy of the Software, in any form, to any third party; (d) remove
any proprietary notices, labels, or marks on or in any copy of the Software or any product in which the Software is embedded; (e) distribute any copy of
the Software to any third party, including as may be embedded in Juniper equipment sold in the secondhand market; (f) use any ‘locked’ or key-restricted
feature, function, service, application, operation, or capability without first purchasing the applicable license(s) and obtaining a valid key from Juniper, even
if such feature, function, service, application, operation, or capability is enabled without a key; (g) distribute any key for the Software provided by Juniper
to any third party; (h) use the Software in any manner that extends or is broader than the uses purchased by Customer from Juniper or an authorized Juniper
reseller; (i) use Embedded Software on non-Juniper equipment; (j) use Embedded Software (or make it available for use) on Juniper equipment that the
Customer did not originally purchase from Juniper or an authorized Juniper reseller; (k) disclose the results of testing or benchmarking of the Software to
any third party without the prior written consent of Juniper; or (l) use the Software in any manner other than as expressly provided herein.

5. Audit. Customer shall maintain accurate records as necessary to verify compliance with this Agreement. Upon request by Juniper, Customer shall furnish
such records to Juniper and certify its compliance with this Agreement.

■ iii

6. Confidentiality. The Parties agree that aspects of the Software and associated documentation are the confidential property of Juniper. As such, Customer
shall exercise all reasonable commercial efforts to maintain the Software and associated documentation in confidence, which at a minimum includes
restricting access to the Software to Customer employees and contractors having a need to use the Software for Customer’s internal business purposes.

7. Ownership. Juniper and Juniper’s licensors, respectively, retain ownership of all right, title, and interest (including copyright) in and to the Software,
associated documentation, and all copies of the Software. Nothing in this Agreement constitutes a transfer or conveyance of any right, title, or interest in
the Software or associated documentation, or a sale of the Software, associated documentation, or copies of the Software.

8. Warranty, Limitation of Liability, Disclaimer of Warranty. The warranty applicable to the Software shall be as set forth in the warranty statement that
accompanies the Software (the “Warranty Statement”). Nothing in this Agreement shall give rise to any obligation to support the Software. Support services
may be purchased separately. Any such support shall be governed by a separate, written support services agreement. TO THE MAXIMUM EXTENT PERMITTED
BY LAW, JUNIPER SHALL NOT BE LIABLE FOR ANY LOST PROFITS, LOSS OF DATA, OR COSTS OR PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES,
OR FOR ANY SPECIAL, INDIRECT, OR CONSEQUENTIAL DAMAGES ARISING OUT OF THIS AGREEMENT, THE SOFTWARE, OR ANY JUNIPER OR
JUNIPER-SUPPLIED SOFTWARE. IN NO EVENT SHALL JUNIPER BE LIABLE FOR DAMAGES ARISING FROM UNAUTHORIZED OR IMPROPER USE OF ANY
JUNIPER OR JUNIPER-SUPPLIED SOFTWARE. EXCEPT AS EXPRESSLY PROVIDED IN THE WARRANTY STATEMENT TO THE EXTENT PERMITTED BY LAW,
JUNIPER DISCLAIMS ANY AND ALL WARRANTIES IN AND TO THE SOFTWARE (WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE), INCLUDING
ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NONINFRINGEMENT. IN NO EVENT DOES JUNIPER
WARRANT THAT THE SOFTWARE, OR ANY EQUIPMENT OR NETWORK RUNNING THE SOFTWARE, WILL OPERATE WITHOUT ERROR OR INTERRUPTION,
OR WILL BE FREE OF VULNERABILITY TO INTRUSION OR ATTACK. In no event shall Juniper’s or its suppliers’ or licensors’ liability to Customer, whether
in contract, tort (including negligence), breach of warranty, or otherwise, exceed the price paid by Customer for the Software that gave rise to the claim, or
if the Software is embedded in another Juniper product, the price paid by Customer for such other product. Customer acknowledges and agrees that Juniper
has set its prices and entered into this Agreement in reliance upon the disclaimers of warranty and the limitations of liability set forth herein, that the same
reflect an allocation of risk between the Parties (including the risk that a contract remedy may fail of its essential purpose and cause consequential loss),
and that the same form an essential basis of the bargain between the Parties.

9. Termination. Any breach of this Agreement or failure by Customer to pay any applicable fees due shall result in automatic termination of the license
granted herein. Upon such termination, Customer shall destroy or return to Juniper all copies of the Software and related documentation in Customer’s
possession or control.

10. Taxes. All license fees payable under this agreement are exclusive of tax. Customer shall be responsible for paying Taxes arising from the purchase of
the license, or importation or use of the Software. If applicable, valid exemption documentation for each taxing jurisdiction shall be provided to Juniper prior
to invoicing, and Customer shall promptly notify Juniper if their exemption is revoked or modified. All payments made by Customer shall be net of any
applicable withholding tax. Customer will provide reasonable assistance to Juniper in connection with such withholding taxes by promptly: providing Juniper
with valid tax receipts and other required documentation showing Customer’s payment of any withholding taxes; completing appropriate applications that
would reduce the amount of withholding tax to be paid; and notifying and assisting Juniper in any audit or tax proceeding related to transactions hereunder.
Customer shall comply with all applicable tax laws and regulations, and Customer will promptly pay or reimburse Juniper for all costs and damages related
to any liability incurred by Juniper as a result of Customer’s non-compliance or delay with its responsibilities herein. Customer’s obligations under this
Section shall survive termination or expiration of this Agreement.

11. Export. Customer agrees to comply with all applicable export laws and restrictions and regulations of any United States and any applicable foreign
agency or authority, and not to export or re-export the Software or any direct product thereof in violation of any such restrictions, laws or regulations, or
without all necessary approvals. Customer shall be liable for any such violations. The version of the Software supplied to Customer may contain encryption
or other capabilities restricting Customer’s ability to export the Software without an export license.

12. Commercial Computer Software. The Software is “commercial computer software” and is provided with restricted rights. Use, duplication, or disclosure
by the United States government is subject to restrictions set forth in this Agreement and as provided in DFARS 227.7201 through 227.7202-4, FAR 12.212,
FAR 27.405(b)(2), FAR 52.227-19, or FAR 52.227-14(ALT III) as applicable.

13. Interface Information. To the extent required by applicable law, and at Customer's written request, Juniper shall provide Customer with the interface
information needed to achieve interoperability between the Software and another independently created program, on payment of applicable fee, if any.
Customer shall observe strict obligations of confidentiality with respect to such information and shall use such information in compliance with any applicable
terms and conditions upon which Juniper makes such information available.

14. Third Party Software. Any licensor of Juniper whose software is embedded in the Software and any supplier of Juniper whose products or technology
are embedded in (or services are accessed by) the Software shall be a third party beneficiary with respect to this Agreement, and such licensor or vendor
shall have the right to enforce this Agreement in its own name as if it were Juniper. In addition, certain third party software may be provided with the
Software and is subject to the accompanying license(s), if any, of its respective owner(s). To the extent portions of the Software are distributed under and
subject to open source licenses obligating Juniper to make the source code for such portions publicly available (such as the GNU General Public License
(“GPL”) or the GNU Library General Public License (“LGPL”)), Juniper will make such source code portions (including Juniper modifications, as appropriate)
available upon request for a period of up to three years from the date of distribution. Such request can be made in writing to Juniper Networks, Inc., 1194

N. Mathilda Ave., Sunnyvale, CA 94089, ATTN: General Counsel. You may obtain a copy of the GPL at http://www.gnu.org/licenses/gpl.html, and
a copy of the LGPL at http://www.gnu.org/licenses/lgpl.html.

15. Miscellaneous. This Agreement shall be governed by the laws of the State of California without reference to its conflicts of laws principles. The provisions
of the U.N. Convention for the International Sale of Goods shall not apply to this Agreement. For any disputes arising under this Agreement, the Parties
hereby consent to the personal and exclusive jurisdiction of, and venue in, the state and federal courts within Santa Clara County, California. This Agreement
constitutes the entire and sole agreement between Juniper and the Customer with respect to the Software, and supersedes all prior and contemporaneous

iv ■

agreements relating to the Software, whether oral or written (including any inconsistent terms contained in a purchase order), except that the terms of a
separate written agreement executed by an authorized Juniper representative and Customer shall govern to the extent such terms are inconsistent or conflict
with terms contained herein. No modification to this Agreement nor any waiver of any rights hereunder shall be effective unless expressly assented to in
writing by the party to be charged. If any portion of this Agreement is held invalid, the Parties agree that such invalidity shall not affect the validity of the
remainder of this Agreement. This Agreement and associated documentation has been written in the English language, and the Parties agree that the English
version will govern. (For Canada: Les parties aux présentés confirment leur volonté que cette convention de même que tous les documents y compris tout
avis qui s'y rattaché, soient redigés en langue anglaise. (Translation: The parties confirm that this Agreement and all related documentation is and will be
in the English language)).

■ v

vi ■

Abbreviated Table of Contents

About This Guide xvii

Part 1 Introduction

Chapter 1 Introduction to JUNOS Software 3

Chapter 2 Hardware Architecture 13

Part 2 JUNOS Software Installation

Chapter 3 Installation Overview 25

Chapter 4 Completing a Standard or Change Category Installation 29

Chapter 5 Completing a Recovery Installation 43

Part 3 JUNOS Software Licenses

Chapter 6 JUNOS Software Licenses Overview 61

Chapter 7 Managing JUNOS Software Licenses 65

Part 4 Index

Index 71

Abbreviated Table of Contents ■ vii

JUNOS Release 10.2 Software Installation and Upgrade Guide

viii ■

Table of Contents

About This Guide xvii

JUNOS Documentation and Release Notes ...................................................xvii

Objectives ....................................................................................................xvii

Audience .....................................................................................................xviii

Supported Routing Platforms ......................................................................xviii

Documentation Conventions ........................................................................xix

Documentation Feedback ..............................................................................xx

Requesting Technical Support ......................................................................xxi

Self-Help Online Tools and Resources ....................................................xxi

Opening a Case with JTAC .....................................................................xxi

Part 1 Introduction

Chapter 1 Introduction to JUNOS Software 3

JUNOS Software Overview ..............................................................................3

One Operating System ..............................................................................3

One Software Release ...............................................................................4

One Modular Software Architecture ..........................................................4

Software Naming Convention ..........................................................................4

JUNOS Software Editions .................................................................................5

FIPS 140-2 Security Compliance ......................................................................5

JUNOS Installation Packages ............................................................................6

Installation Media ............................................................................................6

Installation Bundles .........................................................................................7

Installation Modules ........................................................................................7

JUNOS Software Release Numbers ..................................................................8

JUNOS Feature Licenses ..................................................................................9

Software Package Information Security ...........................................................9

Configuration Files ..........................................................................................9

Configuration File Selection Sequence ......................................................9

Remote Storage of Configuration Files ....................................................10

Automatic Installation of Configuration Files (J Series Routers) ......................11

Table of Contents ■ ix

JUNOS Release 10.2 Software Installation and Upgrade Guide

Chapter 2 Hardware Architecture 13

Hardware Architecture Overview ..................................................................13

M Series, MX Series, T Series, TX Matrix, and TX Matrix Plus Routers ...........14

Hardware Overview (M Series, MX Series, T Series, and TX Matrix

Routers) ............................................................................................14

System Memory ...............................................................................15

Storage Media ..................................................................................16

Routing Engines and Storage Media Names (M Series, MX Series, T Series,

TX Matrix, and TX Matrix Plus Routers) ............................................16

Boot Sequence (M Series, MX Series, T Series, TX Matrix, and TX Matrix

Plus Routers) ....................................................................................18

J Series Routers .............................................................................................19

Hardware Overview (J Series Routers) ....................................................20

System Memory ...............................................................................20

Storage Media ..................................................................................21

Routing Engines and Storage Media Names (J Series Routers) .................21

Boot Sequence (J Series Routers) .............................................................21

Part 2 JUNOS Software Installation

Chapter 3 Installation Overview 25

Installation Type Overview ............................................................................25

Standard Installation ...............................................................................25

Category Change Installation ..................................................................26

Recovery Installation ..............................................................................26

Installation Categories on the M Series, MX Series, T Series, TX Matrix, and

TX Matrix Plus Routers ...........................................................................26

Installation Categories on the J Series Routers ...............................................27

Verifying PIC Combinations ..........................................................................27

Chapter 4 Completing a Standard or Change Category Installation 29

Checking the Current Configuration and Candidate Software

Compatibility ..........................................................................................30

Determining the JUNOS Software Version .....................................................30

Downloading Software ..................................................................................30

Downloading Software with a Browser ...................................................30

Downloading Software Using the Command-Line Interface ....................31

Connecting to the Console Port .....................................................................32

Backing Up the Current Installation (M Series, MX Series, T Series, TX Matrix,

and TX Matrix Plus Routers) ...................................................................32

x ■ Table of Contents

Table of Contents

Backing Up the Current Installation (J Series Routers) ....................................33

Installing the Software Package on a Router with a Single Routing

Engine ....................................................................................................33

Installing the Software Package on a Router with Redundant Routing

Engines ...................................................................................................34

Preparing the Router for the Installation .................................................35

Installing Software on the Backup Routing Engine ..................................36

Installing Software on the Primary Routing Engine .................................37

Finalizing the Installation ........................................................................38

Upgrading Individual Software Packages .......................................................39

Upgrading Routers Using ISSU .......................................................................41

Chapter 5 Completing a Recovery Installation 43

Creating an Emergency Boot Disk .................................................................43

Saving a Rescue Configuration File ................................................................44

Performing a Recovery Installation ...............................................................45

Creating a New Configuration on a Single Routing Engine .............................46

Log In to the Router Console ...................................................................46

Configure Administration User Accounts ................................................47

Add the Management Console to the Network ........................................47

Commit Changes ....................................................................................49

Creating a New Configuration with Redundant Routing Engines ...................51

Configure Administration User Accounts ................................................51

Set Up Routing Engine Configuration Groups ..........................................52

Complete the Management Console Configuration .................................54

Commit and Synchronize Changes .........................................................54

Restoring a Saved Configuration ...................................................................56

Copy Saved Files to the Router ...............................................................57

Load and Commit the Configuration File ................................................57

Part 3 JUNOS Software Licenses

Chapter 6 JUNOS Software Licenses Overview 61

JUNOS Feature Licenses ................................................................................61

License Enforcement .....................................................................................61

Software Feature Licenses .............................................................................62

License Key Components ..............................................................................63

Chapter 7 Managing JUNOS Software Licenses 65

Adding New Licenses ....................................................................................65

Deleting a License .........................................................................................66

Table of Contents ■ xi

JUNOS Release 10.2 Software Installation and Upgrade Guide

Saving License Keys ......................................................................................66

Verifying JUNOS Licenses ..............................................................................66

Displaying Installed Licenses ..................................................................66

Displaying License Usage ........................................................................67

Displaying Installed License Keys ...........................................................68

Part 4 Index

Index .............................................................................................................71

xii ■ Table of Contents

List of Figures

Part 1 Introduction

Chapter 1 Introduction to JUNOS Software 3

Figure 1: Configuration Selection Sequence ...................................................10

Chapter 2 Hardware Architecture 13

Figure 2: Routing Engines .............................................................................15

Figure 3: J Series Routers (J4300 Shown) .......................................................20

List of Figures ■ xiii

JUNOS Release 10.2 Software Installation and Upgrade Guide

xiv ■ List of Figures

List of Tables

About This Guide xvii

Table 1: Notice Icons ....................................................................................xix

Table 2: Text and Syntax Conventions .........................................................xix

Part 1 Introduction

Chapter 2 Hardware Architecture 13

Table 3: Routing Engines and Storage Media Names (M Series, MX Series, T

Series, TX Matrix, and TX Matrix Plus Routers) .......................................17

Table 4: Routing Engines and Storage Media Names (J Series Routers) ..........21

Part 3 JUNOS Software Licenses

Chapter 6 JUNOS Software Licenses Overview 61

Table 5: JUNOS Software Feature Licenses ....................................................62

List of Tables ■ xv

JUNOS Release 10.2 Software Installation and Upgrade Guide

xvi ■ List of Tables

About This Guide

This preface provides the following guidelines for using the JUNOS® Software Software
Installation and Upgrade Guide:

■ JUNOS Documentation and Release Notes on page xvii

■ Objectives on page xvii

■ Audience on page xviii

■ Supported Routing Platforms on page xviii

■ Documentation Conventions on page xix

■ Documentation Feedback on page xx

■ Requesting Technical Support on page xxi

JUNOS Documentation and Release Notes

For a list of related JUNOS documentation, see

http://www.juniper.net/techpubs/software/junos/ .

If the information in the latest release notes differs from the information in the
documentation, follow the JUNOS Release Notes.

Objectives

To obtain the most current version of all Juniper Networks® technical documentation,
see the product documentation page on the Juniper Networks website at

http://www.juniper.net/techpubs/.

Juniper Networks supports a technical book program to publish books by Juniper
Networks engineers and subject matter experts with book publishers around the
world. These books go beyond the technical documentation to explore the nuances
of network architecture, deployment, and administration using JUNOS Software and
Juniper Networks devices. In addition, the Juniper Networks Technical Library,
published in conjunction with O'Reilly Media, explores improving network security,
reliability, and availability using JUNOS configuration techniques. All the books are
for sale at technical bookstores and book outlets around the world. The current list
can be viewed at http://www.juniper.net/books .

This guide provides a description of the JUNOS Software packages and includes
detailed information about how to initially configure, reinstall, and upgrade the JUNOS
system software.

JUNOS Documentation and Release Notes ■ xvii

JUNOS Release 10.2 Software Installation and Upgrade Guide

NOTE: For additional information about JUNOS Software—either corrections to or
information that might have been omitted from this guide—see the software release
notes at http://www.juniper.net/.

Audience

This guide is designed for network administrators who are configuring and monitoring
a Juniper Networks M Series, MX Series, T Series, EX Series, or J Series router or
switch.

To use this guide, you need a broad understanding of networks in general, the Internet
in particular, networking principles, and network configuration. You must also be
familiar with one or more of the following Internet routing protocols:

■ Border Gateway Protocol (BGP)

■ Distance Vector Multicast Routing Protocol (DVMRP)

■ Intermediate System-to-Intermediate System (IS-IS)

■ Internet Control Message Protocol (ICMP) router discovery

■ Internet Group Management Protocol (IGMP)

■ Multiprotocol Label Switching (MPLS)

■ Open Shortest Path First (OSPF)

■ Protocol-Independent Multicast (PIM)

■ Resource Reservation Protocol (RSVP)

■ Routing Information Protocol (RIP)

■ Simple Network Management Protocol (SNMP)

Personnel operating the equipment must be trained and competent; must not conduct
themselves in a careless, willfully negligent, or hostile manner; and must abide by
the instructions provided by the documentation.

Supported Routing Platforms

For the features described in this manual, the JUNOS Software currently supports
the following routers:

■ J Series

■ M Series

■ MX Series

■ T Series

■ EX Series

xviii ■ Audience

Documentation Conventions

Table 1 on page xix defines notice icons used in this guide.

Table 1: Notice Icons

About This Guide

DescriptionMeaningIcon

Indicates important features or instructions.Informational note

Indicates a situation that might result in loss of data or hardware damage.Caution

Alerts you to the risk of personal injury or death.Warning

Table 2 on page xix defines the text and syntax conventions used in this guide.

Table 2: Text and Syntax Conventions

Bold text like this

Fixed-width text like this

Italic text like this

Alerts you to the risk of personal injury from a laser.Laser warning

Represents text that you type.

Represents output that appears on the
terminal screen.

Introduces important new terms.

■

Identifies book names.

■

Identifies RFC and Internet draft

■

titles.

ExamplesDescriptionConvention

To enter configuration mode, type the

configure command:

user@host> configure

user@host> show chassis alarms
No alarms currently active

A policy term is a named structure

■

that defines match conditions and
actions.

JUNOS System Basics Configuration

■

Guide
RFC 1997, BGP Communities

■

Attribute

Italic text like this

Represents variables (options for which
you substitute a value) in commands or
configuration statements.

Configure the machine’s domain name:

[edit]
root@# set system domain-name

domain-name

Documentation Conventions ■ xix

JUNOS Release 10.2 Software Installation and Upgrade Guide

Table 2: Text and Syntax Conventions (continued)

ExamplesDescriptionConvention

Plain text like this

| (pipe symbol)

# (pound sign)

[ ] (square brackets)

Indention and braces ( { } )

; (semicolon)

Represents names of configuration
statements, commands, files, and
directories; IP addresses; configuration
hierarchy levels; or labels on routing
platform components.

Enclose optional keywords or variables.< > (angle brackets)

Indicates a choice between the mutually
exclusive keywords or variables on either
side of the symbol. The set of choices is
often enclosed in parentheses for clarity.

Indicates a comment specified on the
same line as the configuration statement
to which it applies.

Enclose a variable for which you can
substitute one or more values.

Identify a level in the configuration
hierarchy.

Identifies a leaf statement at a
configuration hierarchy level.

To configure a stub area, include

■

the stub statement at the [edit

protocols ospf area area-id]

hierarchy level.
The console port is labeled

■

CONSOLE.

stub <default-metric metric>;

broadcast | multicast

(string1 | string2 | string3)

rsvp { # Required for dynamic MPLS only

community name members [
community-ids ]

[edit]
routing-options {

static {

route default {

nexthop address;
retain;

}

}

}

J-Web GUI Conventions

Bold text like this

> (bold right angle bracket)

Documentation Feedback

We encourage you to provide feedback, comments, and suggestions so that we can
improve the documentation. You can send your comments to

techpubs-comments@juniper.net, or fill out the documentation feedback form at

https://www.juniper.net/cgi-bin/docbugreport/. If you are using e-mail, be sure to include

the following information with your comments:

■ Document or topic name

■ URL or page number

xx ■ Documentation Feedback

Represents J-Web graphical user
interface (GUI) items you click or select.

Separates levels in a hierarchy of J-Web
selections.

In the Logical Interfaces box, select

■

All Interfaces.
To cancel the configuration, click

■

Cancel.

In the configuration editor hierarchy,
select Protocols>Ospf.

■ Software release version (if applicable)

Requesting Technical Support

Technical product support is available through the Juniper Networks Technical
Assistance Center (JTAC). If you are a customer with an active J-Care or JNASC support
contract, or are covered under warranty, and need postsales technical support, you
can access our tools and resources online or open a case with JTAC.

■ JTAC policies—For a complete understanding of our JTAC procedures and policies,

review the JTAC User Guide located at

http://www.juniper.net/us/en/local/pdf/resource-guides/7100059-en.pdf .

■ Product warranties—For product warranty information, visit

http://www.juniper.net/support/warranty/ .

■ JTAC Hours of Operation —The JTAC centers have resources available 24 hours

a day, 7 days a week, 365 days a year.

About This Guide

Self-Help Online Tools and Resources

For quick and easy problem resolution, Juniper Networks has designed an online
self-service portal called the Customer Support Center (CSC) that provides you with
the following features:

■

Find CSC offerings: http://www.juniper.net/customers/support/

■

Search for known bugs: http://www2.juniper.net/kb/

■

Find product documentation: http://www.juniper.net/techpubs/

■ Find solutions and answer questions using our Knowledge Base:

http://kb.juniper.net/

■ Download the latest versions of software and review release notes:

http://www.juniper.net/customers/csc/software/

■ Search technical bulletins for relevant hardware and software notifications:

https://www.juniper.net/alerts/

■ Join and participate in the Juniper Networks Community Forum:

http://www.juniper.net/company/communities/

■

Open a case online in the CSC Case Management tool: http://www.juniper.net/cm/

To verify service entitlement by product serial number, use our Serial Number
Entitlement (SNE) Tool: https://tools.juniper.net/SerialNumberEntitlementSearch/

Opening a Case with JTAC

You can open a case with JTAC on the Web or by telephone.

■

Use the Case Management tool in the CSC at http://www.juniper.net/cm/ .

■ Call 1-888-314-JTAC (1-888-314-5822 toll-free in the USA, Canada, and Mexico).

Requesting Technical Support ■ xxi

JUNOS Release 10.2 Software Installation and Upgrade Guide

For international or direct-dial options in countries without toll-free numbers, visit
us at http://www.juniper.net/support/requesting-support.html

xxii ■ Requesting Technical Support

Part 1

Introduction

■ Introduction to JUNOS Software on page 3

■ Hardware Architecture on page 13

Introduction ■ 1

JUNOS Release 10.2 Software Installation and Upgrade Guide

2 ■ Introduction

Chapter 1

Introduction to JUNOS Software

This chapter includes the following sections:

■ JUNOS Software Overview on page 3

■ Software Naming Convention on page 4

■ JUNOS Software Editions on page 5

■ FIPS 140-2 Security Compliance on page 5

■ JUNOS Installation Packages on page 6

■ Installation Media on page 6

■ Installation Bundles on page 7

■ Installation Modules on page 7

■ JUNOS Software Release Numbers on page 8

■ JUNOS Feature Licenses on page 9

■ Software Package Information Security on page 9

■ Configuration Files on page 9

■ Automatic Installation of Configuration Files (J Series Routers) on page 11

JUNOS Software Overview

Juniper Networks provides high-performance network devices that create a responsive
and trusted environment for accelerating the deployment of services and applications
over a single network. JUNOS Software is the foundation of these high-performance
networks. Unlike other complex, monolithic software architectures, JUNOS Software
incorporates key design and developmental differences to deliver increased network
availability, operational efficiency, and flexibility. The key advantages to this approach
are:

■ One Operating System on page 3

■ One Software Release on page 4

■ One Modular Software Architecture on page 4

One Operating System

Unlike other network operating systems that share a common name but splinter into
many different programs, JUNOS Software is a single, cohesive operating system
that is shared across all routers and product lines. This allows Juniper Networks

JUNOS Software Overview ■ 3

JUNOS Release 10.2 Software Installation and Upgrade Guide

engineers to develop software features once and share these features across all
product lines simultaneously. Because features are common to a single source, they
generally are implemented the same way for all product lines, thus reducing the
training required to learn different tools and methods for each product. Because all
Juniper Networks products use the same code base, interoperability between products
is not an issue.

One Software Release

Each new version of JUNOS Software is released concurrently for all product lines
following a preset quarterly schedule. Furthermore, each new version of software
must include all working features released in previous releases of the software, and
must have no critical regression errors. This discipline ensures reliable operations
for the entire release.

One Modular Software Architecture

Although individual modules of the JUNOS Software communicate through
well-defined interfaces, each module runs in its own protected memory space,
preventing one module from disrupting another. This separation enables the
independent restart of each module as necessary. This is in contrast to monolithic
operating systems where a malfunction in one module can ripple to other modules
and cause a full system crash or restart. This modular architecture then provides for
high performance, high availability, security, and device scalability not found in other
operating systems.

The JUNOS Software is preinstalled on your Juniper Networks router when you receive
it from the factory. Thus, when you first power on the router, all software starts
automatically. You simply need to configure the software so that the router can
participate in the network.

You can upgrade the router software as new features are added or software problems
are fixed. You normally obtain new software by downloading the software installation
packages from the Juniper Networks Support Web page onto your router or onto
another system on your local network. You then install the software upgrade onto
the router.

Juniper Networks routing platforms run only binaries supplied by Juniper Networks.
Each JUNOS Software image includes a digitally signed manifest of executables that
are registered with the system only if the signature can be validated. JUNOS Software
will not execute any binary without a registered signature. This feature protects the
system against unauthorized software and activity that might compromise the integrity
of your router.

Related Topics Impacts of the Operating System on the Performance of Enterprise Networks white paper:

http://www.juniper.net/solutions/literature/white_papers/200239.pdf

Software Naming Convention

All JUNOS Software conforms to the following naming convention:

4 ■ Software Naming Convention

package-release-edition-cfxxx-signed.comp

For example:

jinstall-9.2R1.8–domestic-signed.tgz

where:

■

package is the name of the JUNOS package.

■

cfxxx designates the CompactFlash card size to use with the software. This value

is optional.

■

signed means that the software includes a digital signature for verification

purposes. This value is not used with all software packages.

JUNOS Software Editions

JUNOS Software is released in the following editions:

Chapter 1: Introduction to JUNOS Software

■ Domestic—JUNOS Software for customers in the United States and Canada. This

edition includes high-encryption capabilities for data leaving the router.

■ Export—JUNOS Software for all other customers. This edition does not include

any high-encryption capabilities for data leaving the router.

■ JUNOS-FIPS—JUNOS Software that provides advanced network security for

customers who need software tools to configure a network of Juniper Networks
routers in a Federal Information Processing Standards (FIPS) 140-2 environment.
For more information about JUNOS-FIPS, see “FIPS 140-2 Security Compliance”
on page 5.

FIPS 140-2 Security Compliance

For advanced network security, a special version of JUNOS, called JUNOS-FIPS 140-2,
is available. JUNOS-FIPS 140-2 provides customers with software tools to configure
a network of Juniper Networks routers in a FIPS environment. FIPS support includes:

■ Upgrade package to convert JUNOS to JUNOS-FIPS 140-2

■ Revised installation and configuration procedures

■ Enforced security for remote access

■ FIPS user roles (Crypto Officer, User, and Maintenance)

■ FIPS-specific system logging and error messages

■ IPsec configuration for Routing Engine–to–Routing Engine communication

■ Enhanced password creation and encryption

JUNOS-FIPS has special installation and configuration requirements. Installation
procedures include downloading the FIPS software package from www.juniper.net.
For detailed guidelines on how installation and configuration procedures differ
between JUNOS and JUNOS-FIPS 140-2, see the Secure Configuration Guide for Common
Criteria and JUNOS-FIPS.

JUNOS Software Editions ■ 5

JUNOS Release 10.2 Software Installation and Upgrade Guide

NOTE: JUNOS-FIPS has special password requirements. FIPS passwords must be
between 10 and 20 characters in length. Passwords must use at least three of the
five defined character sets (uppercase letters, lowercase letters, digits, punctuation
marks, and other special characters). If JUNOS-FIPS is installed on the router, you
cannot configure passwords unless they meet this standard.

JUNOS Installation Packages

The installation package is used to upgrade and downgrade from one release to
another. When installed, the installation package completely reinstalls the software,
rebuilds the JUNOS file system, and may erase system logs and other auxiliary
information from the previous installation. The installation package does, however,
retain the configuration files from the previous installation.

The following installation packages are available for download:

Installation Media

DescriptionInstallation Package

jinstall*

jinstall-ex*

junos-jsr*

junos-juniper*

JUNOS Software for the M Series, MX Series, T Series, TX Matrix, and
TX Matrix Plus routers.

JUNOS Software for the EX Series Ethernet switch portfolio.

JUNOS Software for the J Series routers.

JUNOS-FIPS for the M Series, MX Series, T Series, TX Matrix, and TX
Matrix Plus routers.

Once the package is installed on a device, you cannot revert back to
the standard JUNOS Software installation without performing a software
recovery procedure.

The installation media is used to recover a router from a software failure. The
installation media repartitions the media and completely reinstalls the JUNOS
Software. No information from previous installations is retained during this
installation. Thus, an initial configuration is required before the router can be put
back into service. For more information on creating an initial configuration, see the
Getting Started Guide for your router.

NOTE: Once you have rebuilt a router using the installation media, access to the
router is restricted to the console port until the management port is configured during
the initial configuration.

6 ■ JUNOS Installation Packages

Chapter 1: Introduction to JUNOS Software

The following installation media files are available for download:

DescriptionInstallation Media

floppy1–<release>*

floppy2–<release>*

JUNOS Software for the M40 router when you use the
LS-120 external drive.

Installation Bundles

install-media*

junos-jsr-<release>-export-cf<size>.gz

JUNOS Software for the M Series, MX Series, T Series, TX
Matrix, and TX Matrix Plus routers.

JUNOS Software for the J Series routers. You must select
the correct installation media file that corresponds to the
correct CompactFlash card you are using.

The installation bundle can be used to downgrade or upgrade the JUNOS Software
between minor revisions (from Release 9.1 to Release 9.2, for example). When used,
the installation bundle modifies only the files required for the upgrade or downgrade
between versions.

NOTE: You should only use the installation bundle under direction of a Juniper
Networks support representative.

The following installation bundle files are available for download:

DescriptionInstallation Bundle

jbundle*

JUNOS Software for the M Series, MX Series, T Series, TX Matrix,
and TX Matrix Plus routers.

Installation Modules

Installation modules are used to upgrade individual software modules within the
software. For example, you can upgrade only the Routing Engine software by installing
the jroute* installation module.

NOTE: You should only use installation module files under the direction of a Juniper
Networks support representative.

The following installation module files are available for download:

DescriptionInstallation Module

Installation Bundles ■ 7