SRX5800 Services Gateway Hardware
Published
2020-12-07
Guide
Juniper Networks, Inc.
1133 Innovation Way
Sunnyvale, California 94089
USA
408-745-2000
www.juniper.net
Juniper Networks, the Juniper Networks logo, Juniper, and Junos are registered trademarks of Juniper Networks, Inc. in
the United States and other countries. All other trademarks, service marks, registered marks, or registered service marks
are the property of their respective owners.
Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right
to change, modify, transfer, or otherwise revise this publication without notice.
SRX5800 Services Gateway Hardware Guide
Copyright © 2020 Juniper Networks, Inc. All rights reserved.
The information in this document is current as of the date on the title page.
ii
YEAR 2000 NOTICE
Juniper Networks hardware and software products are Year 2000 compliant. Junos OS has no known time-related
limitations through the year 2038. However, the NTP application is known to have some difficulty in the year 2036.
END USER LICENSE AGREEMENT
The Juniper Networks product that is the subject of this technical documentation consists of (or is intended for use with)
Juniper Networks software. Use of such software is subject to the terms and conditions of the End User License Agreement
(“EULA”) posted at https://support.juniper.net/support/eula/. By downloading, installing or using such software, you
agree to the terms and conditions of that EULA.
Table of Contents
1
About the Documentation | xiv
Documentation and Release Notes | xiv
Using the Examples in This Manual | xiv
Merging a Full Example | xv
Merging a Snippet | xvi
Documentation Conventions | xvi
Documentation Feedback | xix
Requesting Technical Support | xix
Self-Help Online Tools and Resources | xx
Creating a Service Request with JTAC | xx
iii
Overview
SRX5800 Services Gateway System Overview | 22
SRX5800 Services Gateway Description | 22
Benefits of the SRX5800 Services Gateway | 23
SRX5800 Services Gateway Field-Replaceable Units | 23
SRX5800 Services Gateway Component Redundancy | 24
SRX5800 Chassis | 25
SRX5800 Services Gateway Chassis | 26
SRX5800 Services Gateway Physical Specifications | 29
SRX5800 Services Gateway Midplane Description | 31
SRX5800 Services Gateway Cable Manager Description | 32
SRX5800 Services Gateway Craft Interface Overview | 33
SRX5800 Services Gateway Craft Interface Alarm LEDs and Alarm Cutoff/Lamp Test
Button | 34
SRX5800 Services Gateway Craft Interface Host Subsystem LEDs | 34
SRX5800 Services Gateway Craft Interface Power Supply LEDs | 35
SRX5800 Services Gateway Craft Interface Card OK/Fail LEDs | 35
SRX5800 Services Gateway Craft Interface Fan LEDs | 36
SRX5800 Services Gateway Craft Interface Online Buttons | 36
SRX5800 Services Gateway Craft Interface Alarm Relay Contacts | 39
SRX5800 Services Gateway Cooling System | 41
SRX5800 Power System | 43
SRX5800 Services Gateway Power System Overview | 44
SRX5800 Services Gateway Standard-Capacity AC Power Supply | 47
SRX5800 Services Gateway Standard-Capacity AC Power Supply LEDs | 47
SRX5800 Services Gateway High-Capacity AC Power Supply | 48
SRX5800 Services Gateway High-Capacity AC Power Supply LEDs | 50
SRX5800 Services Gateway AC Power Supply Specifications | 51
AC Power Cord Specifications for the SRX5800 Services Gateway | 52
AC Power Circuit Breaker Requirements for the SRX5800 Services Gateway | 54
SRX5800 Services Gateway Standard-Capacity DC Power Supply | 54
SRX5800 Services Gateway Standard-Capacity DC Power Supply LEDs | 55
iv
SRX5800 Services Gateway High-Capacity DC Power Supply | 56
SRX5800 Services Gateway High-Capacity DC Power Supply LEDs | 58
SRX5800 Services Gateway DC Power Supply Specifications | 59
DC Power Cable Specifications for the SRX5800 Services Gateway | 60
DC Power Cable Lug Specifications for the SRX5800 Services Gateway | 61
DC Power Circuit Breaker Requirements for the SRX5800 Services Gateway | 62
DC Power Source Cabling for the SRX5800 Services Gateway | 62
SRX5800 Services Gateway Chassis Grounding Point Specifications | 63
SRX5800 Services Gateway Grounding Cable Specifications | 64
SRX5800 Services Gateway Grounding-Cable Lug Specification | 65
SRX5800 Host Subsystem | 66
SRX5800 Services Gateway Host Subsystem Description | 66
Switch Control Board SRX5K-SCB Overview | 67
Switch Control Board SRX5K-SCB Specifications | 69
Switch Control Board SRX5K-SCBE Overview | 72
Switch Control Board SRX5K-SCBE Specifications | 73
SRX5K-SCBE LEDs | 74
Switch Control Board SRX5K-SCB3 Overview | 75
Switch Control Board SRX5K-SCB3 Specifications | 76
SRX5K-SCB3 LEDs | 77
Switch Control Board SRX5K-SCB4 Overview | 78
Switch Control Board SRX5K-SCB4 Specifications | 79
SRX5K-SCB4 LEDs | 81
Routing Engine SRX5K-RE-13-20 Overview | 81
Routing Engine SRX5K-RE-13-20 Specifications | 82
Routing Engine SRX5K-RE-1800X4 Overview | 86
SRX5K-RE-1800X4 Routing Engine Boot Sequence | 87
Routing Engine SRX5K-RE-1800X4 Specifications | 87
SRX5K-RE-1800X4 LEDs | 89
Routing Engine SRX5K-RE3-128G Specifications | 90
SRX5K-RE3-128G Routing Engine Components | 92
SRX5K-RE3-128G Routing Engine LEDs | 93
SRX5K-RE3-128G Routing Engine Boot Sequence | 94
v
SRX5800 Line Cards and Modules | 94
SRX5400, SRX5600, and SRX5800 Services Gateway Card Overview | 95
Cards Supported on SRX5400, SRX5600, and SRX5800 Services Gateways | 96
SRX5800 Services Gateway Card Cage and Slots | 100
SRX5800 Services Gateway SPC Description | 102
Services Processing Card SRX5K-SPC-2-10-40 Specifications | 102
Services Processing Card SRX5K-SPC-4-15-320 Specifications | 107
Services Processing Card SRX5K-SPC3 Specifications | 112
Modular Port Concentrator (SRX5K-MPC) Specifications | 116
MIC with 20x1GE SFP Interfaces (SRX-MIC-20GE-SFP) | 118
MIC with 10x10GE SFP+ Interfaces (SRX-MIC-10XG-SFPP) | 124
MIC with 1x100GE CFP Interface (SRX-MIC-1X100G-CFP) | 129
MIC with 2x40GE QSFP+ Interfaces (SRX-MIC-2X40G-QSFP) | 131
SRX5K-MPC3-40G10G Specifications | 132
SRX5K-MPC3-100G10G Specifications | 135
SRX5K-IOC4-10G Specifications | 138
SRX5K-IOC4-MRAT Specifications | 141
SRX5800 Services Gateway Interface Card Description | 145
I/O Card SRX5K-40GE-SFP Specifications | 147
I/O Card SRX5K-4XGE-XFP Specifications | 149
Flex I/O Card (SRX5K-FPC-IOC) Specifications | 151
Flex I/O Card Port Module SRX-IOC-16GE-SFP Specifications | 153
2
Flex I/O Card Port Module SRX-IOC-16GE-TX Specifications | 155
Flex I/O Card Port Module SRX-IOC-4XGE-XFP Specifications | 156
Site Planning, Preparation, and Specifications
Site Preparation Checklist for the SRX5800 Services Gateway | 160
SRX5800 Site Guidelines and Requirements | 161
SRX5800 Services Gateway Environmental Specifications | 161
General Site Guidelines | 162
Site Electrical Wiring Guidelines | 163
Clearance Requirements for SRX5800 Services Gateway Airflow and Hardware
Maintenance | 163
SRX5800 Rack and Cabinet Requirements | 165
SRX5800 Services Gateway Rack-Mounting Hardware | 165
vi
SRX5800 Services Gateway Rack Size and Strength Requirements | 165
Spacing of Rack-Mounting Bracket Holes for the SRX5800 Services Gateway | 166
Connection to Building Structure for the SRX5800 Services Gateway Rack | 166
SRX5800 Services Gateway Cabinet Size and Clearance Requirements | 167
SRX5800 Services Gateway Cabinet Airflow Requirements | 167
Calculating Power Requirements for the SRX5800 Services Gateway | 168
SRX5800 Network Cable and Transceiver Planning | 185
Routing Engine Interface Cable and Wire Specifications for the SRX5800 Services Gateway | 185
Signal Loss in Multimode and Single-Mode Fiber-Optic Cable for the SRX5800 Services
Gateway | 186
Attenuation and Dispersion in Fiber-Optic Cable for the SRX5800 Services Gateway | 186
Calculating Power Budget for Fiber-Optic Cable for the SRX5800 Services Gateway | 187
Calculating Power Margin for Fiber-Optic Cable for the SRX5800 Services Gateway | 188
SRX5800 Alarm and Management Cable Specifications and Pinouts | 189
Alarm Relay Contact Wire Specifications for the SRX5800 Services Gateway | 190
Console Port Cable and Wire Specifications for the SRX5800 Services Gateway | 190
RJ-45 Connector Pinouts for the SRX5800 Services Gateway Routing Engine Ethernet Port | 190
RJ-45 Connector Pinouts for the SRX5800 Services Gateway Routing Engine Auxiliary and
Console Ports | 191
Initial Installation and Configuration
3
Overview of Installing the SRX5800 Services Gateway | 194
Unpacking the SRX5800 | 195
Tools and Parts Required to Unpack the SRX5800 Services Gateway | 195
Unpacking the SRX5800 Services Gateway | 196
Verifying the SRX5800 Services Gateway Parts Received | 197
Installing the SRX5800 Mounting Hardware | 199
Tools Required to Install the SRX5800 Services Gateway | 200
Installing the SRX5800 Services Gateway Mounting Hardware for a Four-Post Rack or
Cabinet | 200
Installing the SRX5800 Services Gateway Mounting Hardware in an Open-Frame Rack | 202
Removing Components from the SRX5800 Chassis Before Installing It in the Rack | 204
vii
Removing the Power Supplies Before Installing the SRX5800 Services Gateway Chassis | 204
Removing the Cable Manager Before Installing the SRX5800 Services Gateway Chassis | 205
Removing Fan Trays Before Installing the SRX5800 Services Gateway Chassis | 206
Removing Cards Before Installing the SRX5800 Services Gateway Chassis | 208
Installing the SRX5800 Services Gateway Chassis in the Rack | 210
Reinstalling Components in the SRX5800 Services Gateway Chassis After Installing It in the
Rack | 212
Reinstalling Power Supplies After Installing the SRX5800 Services Gateway Chassis | 213
Reinstalling Fan Trays After Installing the SRX5800 Services Gateway Chassis | 214
Reinstalling Cards After Installing the SRX5800 Services Gateway Chassis | 216
Reinstalling the Cable Manager After Installing the SRX5800 Services Gateway Chassis | 218
Connecting the SRX5800 to External Devices | 219
Tools and Parts Required for SRX5800 Services Gateway Connections | 220
Connecting the SRX5800 Services Gateway to a Management Console or an Auxiliary
Device | 220
Connecting the SRX5800 Services Gateway to a Network for Out-of-Band Management | 221
Connecting an SRX5800 Services Gateway to an External Alarm-Reporting Device | 222
Connecting Network Cables to SRX5800 Services Gateway IOCs and Port Modules | 223
Connecting the SRX5800 to Power | 225
4
Tools and Parts Required for SRX5800 Services Gateway Grounding and Power
Connections | 226
Grounding the SRX5800 Services Gateway | 226
Connecting Power to an AC-Powered SRX5800 Services Gateway | 228
Powering On an AC-Powered SRX5800 Services Gateway | 230
Connecting Power to a DC-Powered SRX5800 Services Gateway | 232
Powering On a DC-Powered SRX5800 Services Gateway | 234
Powering Off the SRX5800 Services Gateway | 236
Performing the Initial Software Configuration for the SRX5800 | 236
SRX5800 Services Gateway Software Configuration Overview | 237
Initially Configuring the SRX5800 Services Gateway | 237
Performing Initial Software Configuration Using J-Web | 243
viii
Configuring Root Authentication and the Management Interface from the CLI | 243
Configuring Interfaces, Zones, and Policies with J-Web | 244
Maintaining Components
Maintaining the SRX5800 Chassis | 249
Routine Maintenance Procedures for the SRX5800 Services Gateway | 249
Replacing the SRX5800 Services Gateway Craft Interface | 249
Disconnecting the Alarm Relay Wires from the SRX5800 Services Gateway Craft
Interface | 249
Removing the SRX5800 Services Gateway Craft Interface | 250
Installing the SRX5800 Services Gateway Craft Interface | 251
Connecting the Alarm Relay Wires to the SRX5800 Services Gateway Craft Interface | 252
Maintaining the SRX5800 Cooling System | 253
Maintaining the Fan Trays on the SRX5800 Services Gateway | 254
Replacing an SRX5800 Services Gateway Fan Tray | 254
Removing an SRX5800 Services Gateway Fan Tray | 255
Installing an SRX5800 Services Gateway Fan Tray | 257
Maintaining the Air Filter on the SRX5800 Services Gateway | 259
Replacing the SRX5800 Services Gateway Air Filter | 260
Removing the SRX5800 Services Gateway Air Filter | 260
Installing the SRX5800 Services Gateway Air Filter | 261
Maintaining the SRX5800 Power System | 262
Maintaining SRX5800 Services Gateway Power Supplies | 263
Replacing an SRX5800 Services Gateway AC Power Supply | 264
Removing an SRX5800 Services Gateway AC Power Supply | 264
Installing an SRX5800 Services Gateway AC Power Supply | 267
Replacing an SRX5800 Services Gateway AC Power Supply Cord | 270
Disconnecting an SRX5800 Services Gateway AC Power Supply Cord | 270
Connecting an SRX5800 Services Gateway AC Power Supply Cord | 271
Replacing an SRX5800 Services Gateway DC Power Supply | 273
Removing an SRX5800 Services Gateway DC Power Supply | 273
Installing an SRX5800 Services Gateway DC Power Supply | 276
Replacing an SRX5800 Services Gateway DC Power Supply Cable | 282
Disconnecting an SRX5800 Services Gateway DC Power Supply Cable | 282
Connecting an SRX5800 Services Gateway DC Power Supply Cable | 283
ix
Upgrading an SRX5800 Services Gateway from Standard-Capacity to High-Capacity Power
Supplies | 286
Maintaining the SRX5800 Host Subsystem | 290
Maintaining the SRX5800 Services Gateway Host Subsystem and SCBs | 290
Taking the SRX5800 Services Gateway Host Subsystem Offline | 292
Operating and Positioning the SRX5800 Services Gateway SCB Ejectors | 292
Replacing an SRX5800 Services Gateway SCB | 293
Removing an SRX5800 Services Gateway SCB | 293
Installing an SRX5800 Services Gateway SCB | 295
Replacing the SRX5800 Services Gateway Routing Engine | 297
Removing the SRX5800 Services Gateway Routing Engine | 297
Installing the SRX5800 Services Gateway Routing Engine | 299
Low Impact Hardware Upgrade for SCB3 and IOC3 | 303
In-Service Hardware Upgrade for SRX5K-RE-1800X4 and SRX5K-SCBE or SRX5K-RE-1800X4
and SRX5K-SCB3 in a Chassis Cluster | 321
Maintaining the SRX5800 Line Cards and Modules | 325
Maintaining Interface Cards and SPCs on the SRX5800 Services Gateway | 326
Replacing SRX5800 Services Gateway IOCs | 328
Removing an SRX5800 Services Gateway IOC | 328
Installing an SRX5800 Services Gateway IOC | 331
Replacing SRX5800 Services Gateway Flex IOCs | 335
Removing an SRX5800 Services Gateway Flex IOC | 335
Installing an SRX5800 Services Gateway Flex IOC | 338
Replacing SRX5800 Services Gateway Port Modules | 341
Removing an SRX5800 Services Gateway Port Module | 341
Installing an SRX5800 Services Gateway Port Module | 343
Replacing SRX5800 Services Gateway SPCs | 346
Removing an SRX5800 Services Gateway SPC | 346
Installing an SRX5800 Services Gateway SPC | 349
x
Replacing SPCs in an Operating SRX5400, SRX5600, or SRX5800 Services Gateways Chassis
Cluster | 356
In-Service Hardware Upgrade for SRX5K-SPC3 in a Chassis Cluster | 359
Maintaining MICs and Port Modules on the SRX5800 Services Gateway | 362
Replacing SRX5800 Services Gateway MICs | 363
Removing an SRX5800 Services Gateway MIC | 363
Installing an SRX5800 Services Gateway MIC | 365
Replacing SRX5800 Services Gateway MPCs | 369
Removing an SRX5800 Services Gateway MPC | 369
Installing an SRX5800 Services Gateway MPC | 372
Maintaining the SRX5800 Cables and Connectors | 374
Maintaining SRX5800 Services Gateway Network Cables | 375
Replacing the Management Ethernet Cable on an SRX5800 Services Gateway | 377
Replacing the SRX5800 Services Gateway Console or Auxiliary Cable | 378
Replacing an SRX5800 Services Gateway Network Interface Cable | 379
Removing an SRX5800 Services Gateway Network Interface Cable | 379
Installing an SRX5800 Services Gateway Network Interface Cable | 380
Replacing SRX5800 Services Gateway XFP and SFP Transceivers | 382
Removing an SRX5800 Services Gateway SFP or XFP Transceiver | 382
Installing an SRX5800 Services Gateway SFP or XFP Transceiver | 384
Replacing the SRX5800 Services Gateway Cable Manager | 385
5
6
Removing the SRX5800 Services Gateway Cable Manager | 386
Installing the SRX5800 Services Gateway Cable Manager | 387
Replacing a Routing Engine in an SRX Series High-End Chassis Cluster | 388
Replacing a Routing Engine: USB Flash-Drive Method | 389
Replacing a Routing Engine: External SCP Server Method | 396
Replacing the Routing Engine: File Transfer Method | 403
Troubleshooting Hardware
Troubleshooting the SRX5800 | 410
Troubleshooting the SRX5800 Services Gateway with the Junos OS CLI | 410
Troubleshooting the SRX5800 Services Gateway with Chassis and Interface Alarm
Messages | 411
Chassis Component Alarm Conditions on SRX5400, SRX5600, and SRX5800 Services
Gateways | 411
xi
Backup Routing Engine Alarms | 426
Troubleshooting the SRX5800 Services Gateway with Alarm Relay Contacts | 428
Troubleshooting the SRX5800 Services Gateway with the Craft Interface LEDs | 428
Troubleshooting the SRX5800 Services Gateway with the Component LEDs | 429
Troubleshooting the SRX5800 Services Gateway Cooling System | 430
Troubleshooting SRX5800 Services Gateway Interface Cards | 430
Troubleshooting SRX5800 Services Gateway MICs and Port Modules | 432
Troubleshooting SRX5800 Services Gateway SPCs | 433
Troubleshooting the SRX5800 Services Gateway Power System | 434
Behavior of the SRX5400, SRX5600, and SRX5800 Services Gateways When the SRX5K-SCBE
and SRX5K-RE-1800X4 in a Chassis Cluster Fail | 440
Contacting Customer Support and Returning the Chassis or Components
Returning the SRX5800 Chassis or Components | 443
Contacting Customer Support | 443
Return Procedure for the SRX5800 Services Gateway | 444
Listing the SRX5800 Services Gateway Component Serial Numbers with the Command-Line
Interface | 445
Locating the SRX5800 Services Gateway Chassis Serial Number Label | 446
Locating the SRX5800 Services Gateway Power Supply Serial Number Label | 447
Locating the SRX5800 Services Gateway Craft Interface Serial Number Label | 450
7
Information You Might Need to Supply to JTAC | 451
Required Tools and Parts for Packing the SRX5800 Services Gateway | 451
Packing the SRX5800 Services Gateway for Shipment | 452
Packing SRX5800 Services Gateway Components for Shipment | 453
Safety and Compliance Information
General Safety Guidelines and Warnings | 456
Definitions of Safety Warning Levels | 457
Restricted Access Area Warning | 461
Fire Safety Requirements | 463
Fire Suppression | 463
Fire Suppression Equipment | 464
xii
Qualified Personnel Warning | 465
Warning Statement for Norway and Sweden | 465
Installation Instructions Warning | 466
Chassis and Component Lifting Guidelines | 466
Ramp Warning | 467
Rack-Mounting and Cabinet-Mounting Warnings | 467
Grounded Equipment Warning | 473
Laser and LED Safety Guidelines and Warnings | 474
General Laser Safety Guidelines | 474
Class 1 Laser Product Warning | 475
Class 1 LED Product Warning | 476
Laser Beam Warning | 477
Radiation from Open Port Apertures Warning | 478
Maintenance and Operational Safety Guidelines and Warnings | 479
Battery Handling Warning | 480
Jewelry Removal Warning | 481
Lightning Activity Warning | 483
Operating Temperature Warning | 484
Product Disposal Warning | 486
General Electrical Safety Guidelines and Warnings | 487
Prevention of Electrostatic Discharge Damage | 488
AC Power Electrical Safety Guidelines | 489
AC Power Disconnection Warning | 491
DC Power Electrical Safety Guidelines | 492
DC Power Electrical Safety Guidelines | 492
DC Power Disconnection Warning | 494
DC Power Grounding Requirements and Warning | 496
DC Power Wiring Sequence Warning | 498
xiii
DC Power Wiring Terminations Warning | 501
DC Power Disconnection Warning | 504
DC Power Grounding Requirements and Warning | 506
DC Power Wiring Sequence Warning | 508
DC Power Wiring Terminations Warning | 511
Multiple Power Supplies Disconnection Warning | 514
TN Power Warning | 515
Action to Take After an Electrical Accident | 515
SRX5800 Services Gateway Agency Approvals | 516
SRX5800 Services Gateway Compliance Statements for EMC Requirements | 517
Canada | 517
European Community | 517
Israel | 518
Japan | 518
United States | 518
Statements of Volatility for Juniper Network Devices | 519
About the Documentation
IN THIS SECTION
Documentation and Release Notes | xiv
Using the Examples in This Manual | xiv
Documentation Conventions | xvi
Documentation Feedback | xix
Requesting Technical Support | xix
Use this guide to install hardware and perform initial software configuration, routine maintenance, and
troubleshooting for the SRX5800 Services Gateway.
xiv
After completing the installation and basic configuration procedures covered in this guide, refer to the
Junos OS documentation for information about further software configuration.
Documentation and Release Notes
To obtain the most current version of all Juniper Networks®technical documentation, see the product
documentation page on the Juniper Networks website at https://www.juniper.net/documentation/.
If the information in the latest release notes differs from the information in the documentation, follow the
product Release Notes.
Juniper Networks Books publishes books by Juniper Networks engineers and subject matter experts.
These books go beyond the technical documentation to explore the nuances of network architecture,
deployment, and administration. The current list can be viewed at https://www.juniper.net/books.
Using the Examples in This Manual
If you want to use the examples in this manual, you can use the load merge or the load merge relative
command. These commands cause the software to merge the incoming configuration into the current
candidate configuration. The example does not become active until you commit the candidate configuration.
If the example configuration contains the top level of the hierarchy (or multiple hierarchies), the example
is a full example. In this case, use the load merge command.
If the example configuration does not start at the top level of the hierarchy, the example is a snippet. In
this case, use the load merge relative command. These procedures are described in the following sections.
Merging a Full Example
To merge a full example, follow these steps:
1. From the HTML or PDF version of the manual, copy a configuration example into a text file, save the
file with a name, and copy the file to a directory on your routing platform.
For example, copy the following configuration to a file and name the file ex-script.conf. Copy the
ex-script.conf file to the /var/tmp directory on your routing platform.
system {
scripts {
commit {
file ex-script.xsl;
}
}
}
interfaces {
fxp0 {
disable;
unit 0 {
family inet {
address 10.0.0.1/24;
}
}
}
}
xv
2. Merge the contents of the file into your routing platform configuration by issuing the load merge
configuration mode command:
[edit]
user@host# load merge /var/tmp/ex-script.conf
load complete
Merging a Snippet
To merge a snippet, follow these steps:
1. From the HTML or PDF version of the manual, copy a configuration snippet into a text file, save the
file with a name, and copy the file to a directory on your routing platform.
For example, copy the following snippet to a file and name the file ex-script-snippet.conf. Copy the
ex-script-snippet.conf file to the /var/tmp directory on your routing platform.
commit {
file ex-script-snippet.xsl; }
2. Move to the hierarchy level that is relevant for this snippet by issuing the following configuration mode
command:
[edit]
user@host# edit system scripts
[edit system scripts]
xvi
3. Merge the contents of the file into your routing platform configuration by issuing the load merge
relative configuration mode command:
[edit system scripts]
user@host# load merge relative /var/tmp/ex-script-snippet.conf
load complete
For more information about the load command, see CLI Explorer.
Documentation Conventions
Table 1 on page xvii defines notice icons used in this guide.
Table 1: Notice Icons
xvii
DescriptionMeaningIcon
Indicates important features or instructions.Informational note
Caution
Indicates a situation that might result in loss of data or hardware
damage.
Alerts you to the risk of personal injury or death.Warning
Alerts you to the risk of personal injury from a laser.Laser warning
Indicates helpful information.Tip
Alerts you to a recommended use or implementation.Best practice
Table 2 on page xvii defines the text and syntax conventions used in this guide.
Table 2: Text and Syntax Conventions
ExamplesDescriptionConvention
Fixed-width text like this
Italic text like this
Represents text that you type.Bold text like this
Represents output that appears on
the terminal screen.
Introduces or emphasizes important
•
new terms.
Identifies guide names.
•
Identifies RFC and Internet draft
•
titles.
To enter configuration mode, type
the configure command:
user@host> configure
user@host> show chassis alarms
No alarms currently active
A policy term is a named structure
•
that defines match conditions and
actions.
Junos OS CLI User Guide
•
RFC 1997, BGP Communities
•
Attribute
Table 2: Text and Syntax Conventions (continued)
xviii
ExamplesDescriptionConvention
Italic text like this
Text like this
< > (angle brackets)
| (pipe symbol)
Represents variables (options for
which you substitute a value) in
commands or configuration
statements.
Represents names of configuration
statements, commands, files, and
directories; configuration hierarchy
levels; or labels on routing platform
components.
variables.
Indicates a choice between the
mutually exclusive keywords or
variables on either side of the symbol.
The set of choices is often enclosed
in parentheses for clarity.
Configure the machine’s domain
name:
[edit]
root@# set system domain-name
domain-name
To configure a stub area, include
•
the stub statement at the [edit
protocols ospf area area-id]
hierarchy level.
The console port is labeled
•
CONSOLE.
stub <default-metric metric>;Encloses optional keywords or
broadcast | multicast
(string1 | string2 | string3)
# (pound sign)
[ ] (square brackets)
Indention and braces ( { } )
; (semicolon)
GUI Conventions
Indicates a comment specified on the
same line as the configuration
statement to which it applies.
Encloses a variable for which you can
substitute one or more values.
Identifies a level in the configuration
hierarchy.
Identifies a leaf statement at a
configuration hierarchy level.
rsvp { # Required for dynamic MPLS
only
community name members [
community-ids ]
[edit]
routing-options {
static {
route default {
nexthop address;
retain;
}
}
}
Table 2: Text and Syntax Conventions (continued)
xix
ExamplesDescriptionConvention
Bold text like this
> (bold right angle bracket)
Represents graphical user interface
(GUI) items you click or select.
Separates levels in a hierarchy of
menu selections.
In the Logical Interfaces box, select
•
All Interfaces.
To cancel the configuration, click
•
Cancel.
In the configuration editor hierarchy,
select Protocols>Ospf.
Documentation Feedback
We encourage you to provide feedback so that we can improve our documentation. You can use either
of the following methods:
Online feedback system—Click TechLibrary Feedback, on the lower right of any page on the Juniper
•
Networks TechLibrary site, and do one of the following:
Click the thumbs-up icon if the information on the page was helpful to you.
•
Click the thumbs-down icon if the information on the page was not helpful to you or if you have
•
suggestions for improvement, and use the pop-up form to provide feedback.
E-mail—Send your comments to techpubs-comments@juniper.net. Include the document or topic name,
•
URL or page number, and software version (if applicable).
Requesting Technical Support
Technical product support is available through the Juniper Networks Technical Assistance Center (JTAC).
If you are a customer with an active Juniper Care or Partner Support Services support contract, or are
covered under warranty, and need post-sales technical support, you can access our tools and resources
online or open a case with JTAC.
JTAC policies—For a complete understanding of our JTAC procedures and policies, review the JTAC User
•
Guide located at https://www.juniper.net/us/en/local/pdf/resource-guides/7100059-en.pdf.
Product warranties—For product warranty information, visit https://www.juniper.net/support/warranty/.
•
JTAC hours of operation—The JTAC centers have resources available 24 hours a day, 7 days a week,
•
365 days a year.
Self-Help Online Tools and Resources
For quick and easy problem resolution, Juniper Networks has designed an online self-service portal called
the Customer Support Center (CSC) that provides you with the following features:
Find CSC offerings: https://www.juniper.net/customers/support/
•
Search for known bugs: https://prsearch.juniper.net/
•
xx
Find product documentation: https://www.juniper.net/documentation/
•
Find solutions and answer questions using our Knowledge Base: https://kb.juniper.net/
•
Download the latest versions of software and review release notes:
•
https://www.juniper.net/customers/csc/software/
Search technical bulletins for relevant hardware and software notifications:
•
https://kb.juniper.net/InfoCenter/
Join and participate in the Juniper Networks Community Forum:
•
https://www.juniper.net/company/communities/
Create a service request online: https://myjuniper.juniper.net
•
To verify service entitlement by product serial number, use our Serial Number Entitlement (SNE) Tool:
https://entitlementsearch.juniper.net/entitlementsearch/
Creating a Service Request with JTAC
You can create a service request with JTAC on the Web or by telephone.
Visit https://myjuniper.juniper.net.
•
Call 1-888-314-JTAC (1-888-314-5822 toll-free in the USA, Canada, and Mexico).
•
For international or direct-dial options in countries without toll-free numbers, see
https://support.juniper.net/support/requesting-support/.
1
CHAPTER
Overview
SRX5800 Services Gateway System Overview | 22
SRX5800 Chassis | 25
SRX5800 Services Gateway Cooling System | 41
SRX5800 Power System | 43
SRX5800 Host Subsystem | 66
SRX5800 Line Cards and Modules | 94
SRX5800 Services Gateway System Overview
IN THIS SECTION
SRX5800 Services Gateway Description | 22
Benefits of the SRX5800 Services Gateway | 23
SRX5800 Services Gateway Field-Replaceable Units | 23
SRX5800 Services Gateway Component Redundancy | 24
SRX5800 Services Gateway Description
22
The SRX5800 Services Gateway is a high-performance, highly scalable, carrier-class security device with
multi-processor architecture.
The services gateway provides 12 slots that you can populate with 2 or 3 Switch Control Boards (SCBs)
and up to 12 additional cards of the following types:
Services Processing Cards (SPCs) provide the processing capacity to run integrated services such as
•
firewall, IPsec, and IDP.
Modular PIC Concentrators (MPCs) provide Ethernet interfaces that connect the services gateway to
•
your network.
I/O cards (IOCs) provide Ethernet interfaces that connect the services gateway to your network.
•
Flex IOCs are similar to IOCs, but have slots for port modules that allow you greater flexibility in adding
•
different types of Ethernet ports to your services gateway.
For detailed information about the cards supported by the services gateway, see the SRX5400, SRX5600,
and SRX5800 Services Gateway Card Reference at www.juniper.net/documentation/.
Benefits of the SRX5800 Services Gateway
The SRX5800 Services Gateway is the market-leading security solution supporting up to 1.2 Tbps firewall
•
throughput and latency as low as 32 microseconds for stateful firewall, 395 million concurrent sessions,
and 1 Tbps IPS.
Equipped with the full range of advanced security services, massive performance, scalability, and flexibility
make the SRX5800 ideal for securing large enterprise, hosted, or colocated data centers, mobile operator
environments, densely consolidated processing environments, cloud and managed service providers.
IPS Capabilities - Juniper Networks IPS capabilities offer several unique features such as Protocol decodes,
•
Zero-day protection, Active/active traffic monitoring, and packet capture logging per rule assure the
highest level of network security.
Content Security UTM Capabilities - The UTM services offered on the SRX5000 line of Services Gateways
•
include industry-leading antivirus, antispam, content filtering, and additional content security services.
The UTM services provide sophisticated protection from:
Antivirus experts against malware attacks that can lead to data breaches and lost productivity.
•
23
Advanced persistent threats perpetrated through social networking attacks and the latest phishing
•
scams with sophisticated e-mail filtering and content blockers.
Lost productivity and the impact of malicious URLs and extraneous or malicious content on the network
•
to help maintain bandwidth.
Advanced Threat Prevention (ATP) - Juniper Sky ATP, a SaaS-based service, and the Juniper ATP
•
Appliance, an on-premises solution:
Protects enterprise users from a spectrum of advanced malware that exploits “zero-day” vulnerabilities.
•
Proactively blocks malware communication channels.
•
The Juniper ATP Appliance includes support for cloud-based e-mail services such as Office 365 and
•
Google Mail, and detects threats in SMB traffic.
Single pane-of-glass management with Security Director and JSA Series integration.
•
SRX5800 Services Gateway Field-Replaceable Units
Field-replaceable units (FRUs) are services gateway components that can be replaced at the customer site.
The services gateway uses the following types of FRUs:
Table 3 on page 24 lists the FRUs of the services gateway and the action to perform to install, remove, or
replace an FRU.
Table 3: Field-Replaceable Units
24
ActionField-Replaceable Units (FRUs)
Air filter
Fan tray
Craft interface
AC and DC power supplies (if redundant)
SFP and XFP transceivers
IOCs
Flex IOCs
Port modules of the Flex IOCs
Routing Engine
SCBs
SPCs
You need not power off the services gateway to install, remove, or
replace any of these FRUs.
Power off the services gateway to install, remove, or replace any of
these FRUs.
MPCs
MICs
SRX5800 Services Gateway Component Redundancy
The following major hardware components are redundant:
Switch Control Boards (SCBs)—The SRX5800 Services Gateway has two SCBs installed and you can
•
install a third SCB for switch fabric redundancy. The SCB of the host subsystem functions as the primary
and the others function as backup. If the SCB of the host subsystem fails, one of the other SCBs takes
over as the primary.
NOTE: The SRX5800 Services Gateway supports a redundant SCB, provided the SCB is a
SRX5K-SCBE (SCB2) running Junos OS Release 12.1X47-D15 and later, or a SRX5K-SCB3
(SCB3) running Junos OS Release 15.1X49-D10 and later.
The SRX5800 Services Gateway does not support a redundant SCB (third SCB) card if
SRX5K-SPC-4-15-320 (SPC2) is installed with SCB1 (SRX5K-SCB). If you have installed a SPC2
on a SRX5800 Services Gateway with a redundant SCB1 card, make sure to remove the
redundant SCB1 card.
Power supplies—When powered by standard-capacity AC power supplies, a minimum of three power
•
supplies are required to supply power to a fully configured services gateway. All AC power supplies
share the load evenly. The addition of a fourth power supply provides full power redundancy. If one
power supply fails in a redundant configuration, the three remaining power supplies provide full power.
When powered by DC power supplies or high-capacity AC power supplies, two power supplies are
required to supply power to a fully configured services gateway. One power supply supports approximately
half of the components in the services gateway, and the other power supply supports the remaining
components. The installation of two additional power supplies provides full power redundancy. If one
or two power supplies fail, the remaining power supplies can provide full power to the services gateway.
25
Cooling system—The cooling system has redundant components, which are controlled by the host
•
subsystem. If one of the fans fails, the host subsystem increases the speed of the remaining fans to
provide sufficient cooling for the services gateway indefinitely.
SRX5800 Chassis
IN THIS SECTION
SRX5800 Services Gateway Chassis | 26
SRX5800 Services Gateway Physical Specifications | 29
SRX5800 Services Gateway Midplane Description | 31
SRX5800 Services Gateway Cable Manager Description | 32
SRX5800 Services Gateway Craft Interface Overview | 33
SRX5800 Services Gateway Craft Interface Alarm LEDs and Alarm Cutoff/Lamp Test Button | 34
SRX5800 Services Gateway Craft Interface Host Subsystem LEDs | 34
SRX5800 Services Gateway Craft Interface Power Supply LEDs | 35
SRX5800 Services Gateway Craft Interface Card OK/Fail LEDs | 35
SRX5800 Services Gateway Craft Interface Fan LEDs | 36
SRX5800 Services Gateway Craft Interface Online Buttons | 36
SRX5800 Services Gateway Craft Interface Alarm Relay Contacts | 39
SRX5800 Services Gateway Chassis
The services gateway chassis is a rigid sheet metal structure that houses all the other services gateway
components (see Figure 1 on page 27, Figure 2 on page 28, and Figure 3 on page 29). The chassis measures
27.75 in. (70.49 cm) high, 17.37 in. (44.11 cm) wide, and 23.0 in. (58.42 cm) deep (from the front-mounting
flanges to the rear of the chassis). The chassis installs in 19-in. equipment racks or telco open-frame racks.
The chassis can be installed in standard 800-mm (or deeper) enclosed cabinets when powered by
standard-capacity power supplies, or in 1000-mm (or deeper) enclosed cabinets when powered by
high-capacity power supplies.
26
Up to three services gateways can be installed in one standard (48 U) rack if the rack can handle their
combined weight, which can be greater than 1,134 lb (515 kg). See “SRX5800 Services Gateway Physical
Specifications” on page 29 for physical specifications for the SRX5800 Services Gateway.
Mounting hardware includes front-mounting flanges on the front of the chassis, and two center-mounting
brackets attached to the center of the chassis.
WARNING: To meet safety and electromagnetic interference (EMI) requirements and
to ensure proper operation, you must properly ground the services gateway chassis
before connecting power. See “Grounding the SRX5800 Services Gateway” on page 226
for instructions.
CAUTION: Before removing or installing components of a services gateway, attach
an ESD strap to an ESD point and place the other end of the strap around your bare
wrist. Failure to use an ESD strap can result in damage to the services gateway.
Figure 1: Front View of a Fully Configured Services Gateway Chassis
OK
0
FAIL
ONLINE
OK
1
FAIL
ONLINE
OK
2
FAIL
ONLINE
OK
3
FAIL
ONLINE
OK
4
FAIL
ONLINE
OK
5
FAIL
ONLINE
OK
0
FAIL
ONLINE
MASTER
ONLINE
OFFLINE
RE0
FAN
PEM
1
0
0
1
2
3
RE1
OK
1
FAIL
ONLINE
OK
7
FAIL
ONLINE
OK
8
FAIL
ONLINE
OK
9
FAIL
ONLINE
OK
10
FAIL
ONLINE
OK
11
FAIL
ONLINE
OK
2
6
FAIL
ONLINE
ACO/LT
YELLOWALARM
REDALARM
NC
NO
C
NC
NO
C
Craft interface
Front-mounting
flange
Center-mounting
bracket
Air intake
Lower
fan tray
Upper
fan tray
Air
filter tray
SCB0
Card
slots 0-5
IOCs
Card
slots 7-11
Routing
engine
SCB1
SCB2
or Card slot 6
g030200
ESD point
CHASSISCLUSTERCONTROL0
CHASSISCLUSTERCONTROL1
CHASSISCLUSTERCONTROL0
CHASSISCLUSTERCONTROL1
SPCs
27
Figure 2: Rear View of a Fully Configured AC-Powered Services Gateway Chassis
28
Figure 3: Rear View of a Fully Configured DC-Powered Services Gateway Chassis
29
SRX5800 Services Gateway Physical Specifications
Table 4 on page 30 summarizes the physical specifications for the services gateway chassis.
Table 4: Physical Specifications
30
ValueDescription
27.75 in. (70.5 cm) highHeightChassis dimensions
17.37 in. (44.1 cm) wideWidth
Services gateway weight
Depth, with standard-capacity
power supplies
Depth, with high-capacity AC
power supplies
Depth, with high-capacity DC
power supplies
23.0 in. (58.4 cm) deep from front-mounting bracket
to chassis rear
27.8 in. (70.6 cm) total depth including cable
management system
25.5 in. (64.8 cm) deep from front-mounting bracket
to chassis rear
30.3 in. (77.0 cm) total depth including cable
management system
27.8 in. (70.6 cm) deep from front-mounting bracket
to chassis rear
32.6 in. (82.8 cm) total depth including cable
management system
Chassis with midplane, fan tray, air filter, and cable
manager: 150 lb (60.4 kg)
Maximum configuration: 400 lb (182 kg)
Routing Engine weight
SCB weight
SRX5K-RE-13-20: 2.4 lb (1.1 kg)
SRX5K-RE-1800X4: 2.4 lb (1.1 kg)
SRX5K-SCB: 9.6 lb (4.4 kg)
SRX5K-SCBE: 9.6 lb (4.4 kg)
SRK5K-SCB3: 10.14 lb (4.6 kg)
13.1 lb (5.9 kg)MPC weight (with two MICs)
13.1 lb (5.9 kg)IOC weight
1.1 lb (0.5 kg)Craft interface weight
4.2 lb (1.9 kg)Fan tray weight
Table 4: Physical Specifications (continued)
devices with SRX5K-SCB and SRX5K-RE-13-20)
devices with SRX5K-SCB and SRX5K-RE-13-20)
31
ValueDescription
1.0 lb (0.5 kg)Air filter weight
0.3 lb (0.14 kg)Cable management weight
3.8 lb (1.7 kg)Standard-capacity DC power supply weight (only supported on
12.0 lb (5.5 kg)High-capacity DC power supply weight
5.0 lb (2.3 kg)Standard-capacity AC power supply weight (only supported on
12.0 lb (5.5 kg)High-capacity AC power supply weight
NOTE: For the weights of specific cards, Routing Engines, or port modules, see the SRX5400,
SRX5600, and SRX5800 Services Gateway Card Guide at www.juniper.net/documentation/.
SRX5800 Services Gateway Midplane Description
The midplane is located toward the rear of the chassis and forms the rear of the card cage (see
Figure 4 on page 32). IOCs, SPCs, and SCBs install into the midplane from the front of the chassis, and the
power supplies install into the midplane from the rear of the chassis. The cooling system components also
connect to the midplane.
The midplane performs the following major functions:
Data path—Data packets are transferred across the midplane between the IOCs and SPCs through the
•
fabric ASICs on the SCBs.
Power distribution—The power supplies are connected to the midplane, which distributes power to all
•
the services gateway components.
Signal path—The midplane provides the signal path to the IOCs, SCBs, SPCs, Routing Engine, and other
•
system components for monitoring and control of the system.
The enhanced midplane supports Junos OS Release15.1X49-D10. It provides greater per-slot fabric
performance and signal integrity, along with error-free high speed data transfer, and it reduces cross-talk.
The midplane supports link speeds up to 10 Gbps and is not field replaceable.
Figure 4: Midplane
32
SRX5800 Services Gateway Cable Manager Description
The cable management system (see Figure 5 on page 33) is a tray located below the card cage that has a
row of fourteen dividers for securing the cables for each card. Features in the cable management tray
allow you to gently secure the cables with cable strips or other ties. To secure the cables in place, loop
the tie through the cable anchor and secure the tie.
You can pull the cable management system up and outward to lock it into the maintenance position. This
allows you to access the lower fan tray and the air filter.
Figure 5: Cable Management System
Release handles
Maintenance linkage
OK0FAIL
ONLINE
OK1FAIL
ONLINE
OK2FAIL
ONLINE
OK3FAIL
ONLINE
OK4FAIL
ONLINE
OK
FAN
RE 0 RE 1
ACO/LT
MASTER
ONLINE
OFFLINE
PEM
1
0
0 1 2 3
5
FAIL
ONLINE
OK0FAIL
ONLINE
OK1FAIL
ONLINE
OK
2 6
FAIL
ONLINE
OK7FAIL
YELLOW ALARM RED ALARM
NC NOC NC NOC
ONLINE
OK8FAIL
ONLINE
OK9FAIL
ONLINE
OK10FAIL
ONLINE
OK11FAIL
ONLINE
Alarm
relay
contacts
Yellow
alarm
LED
Red
alarm
LED
Alarm
cutoff
button
IOC and SPC LEDs and online/offline buttons
Routing
Engine
LEDs
Fan
LEDs
PEM
LEDs
g030202
SRX5800 Services Gateway Craft Interface Overview
The craft interface shows you status and troubleshooting information at a glance and lets you perform
many system control functions (see Figure 6 on page 33). It is hot-insertable and hot-removable. The craft
interface is located on the front of the services gateway above the upper fan tray.
33
Figure 6: Front Panel of the Craft Interface
NOTE: The craft interface draws its power from the SCBs installed in the SCB slots 0, 1, and 2
at the center of the card cage. At least one SCB must be installed in the services gateway for
the craft interface to obtain power.
SRX5800 Services Gateway Craft Interface Alarm LEDs and Alarm Cutoff/Lamp Test Button
Two large alarm LEDs are located at the upper right of the craft interface. The circular red LED lights to
indicate a critical condition that can result in a system shutdown. The triangular yellow LED lights to indicate
a less severe condition that requires monitoring or maintenance. Both LEDs can be lit simultaneously. A
condition that causes an LED to light also activates the corresponding alarm relay contact on the craft
interface.
To deactivate the red and yellow alarms, press the button labeled ACO/LT (for “alarm cutoff/lamp test”),
which is located to the right of the alarm LEDs. Deactivating an alarm turns off both LEDs and deactivates
the device attached to the corresponding alarm relay contact on the craft interface.
Table 5 on page 34 describes the alarm LEDs and alarm cutoff button in more detail.
Table 5: Alarm LEDs and Alarm Cutoff/Lamp Test Button
DescriptionStateColorShape
34
On steadilyRed
On steadilyYellow
––
Critical alarm LED—Indicates a critical condition that can cause the
device to stop functioning. Possible causes include component removal,
failure, or overheating.
Warning alarm LED—Indicates a serious but nonfatal error condition,
such as a maintenance alert or a significant increase in component
temperature.
Alarm cutoff/lamp test button—Deactivates red and yellow alarms.
Causes all LEDs on the craft interface to light (for testing) when pressed
and held.
SRX5800 Services Gateway Craft Interface Host Subsystem LEDs
The host subsystem has three LEDs, located in the middle of the craft interface, that indicate its status.
The LEDs labeled RE0 show the status of the Routing Engine and SCB in slot 0 .
The LEDs labeled RE1 show the status of the Routing Engine and SCB in slot 1. Table 6 on page 35 describes
the functions of the host subsystem LEDs.
Table 6: Host Subsystem LEDs
DescriptionStateColorLabel
Host is functioning as the master.On steadilyGreenMASTER
Host is online and is functioning normally.On steadilyGreenONLINE
Host is installed but the Routing Engine is offline.On steadilyRedOFFLINE
Host is not installed.Off
SRX5800 Services Gateway Craft Interface Power Supply LEDs
Each power supply has two LEDs on the craft interface that indicate its status. The LEDs, labeled 0 through
3, are located near the middle of the craft interface next to the PEM label. Table 7 on page 35 describes
the functions of the power supply LEDs on the craft interface.
35
Table 7: Power Supply LEDs on the Craft Interface
DescriptionStateColorLabel
Power supply is functioning normally.On steadilyGreenPEM
Power supply has failed or power input has failed.On steadilyRed
SRX5800 Services Gateway Craft Interface Card OK/Fail LEDs
Each slot in the card cage has a pair of LEDs on the craft interface that indicates the status of the card
installed in it. The card LEDs are located along the bottom edge of the craft interface and are labeled as
follows:
0 through 5 on the left
•
0 and 1 for the two center slots reserved for SCBs
•
2/6 and 7 through 11 on the right
•
Table 8 on page 36 describes the functions of the OK and Fail LEDs.
Table 8: Card OK/Fail LEDs
DescriptionStateColorLabel
The card is functioning normally.On steadilyGreenOK
The card is transitioning online or offline.Blinking
The card is not online.Off
The card has failed.On steadilyRedFAIL
SRX5800 Services Gateway Craft Interface Fan LEDs
Each fan LED is located on the top left of the craft interface. Table 9 on page 36 describes the functions
of the fan LEDs.
36
Table 9: Fan LEDs
DescriptionStateColorLabel
Fan tray is functioning normally.On steadilyGreenOK
Fan tray has failed.On steadilyRedFAIL
SRX5800 Services Gateway Craft Interface Online Buttons
The craft interface has a row of Online/Offline buttons along its lower edge. Each button corresponds to
one slot in the card cage. The Online/Offline buttons are only supported for slots containing MPC interface
cards. You can install MPCs into slots:
SRX5400–Any slot except bottom slot 0
•
SRX5600–Any slot except bottom slots 0 or 1
•
SRX5800–Any slot except center slots 0 or 1
•
NOTE: The Online/Offline buttons are not supported for removal and replacement of SPCs or
SCB.
CAUTION: While traffic is passing through the Services Gateway, particularly if the
device is configured as part of a high availability (HA) cluster, we strongly recommend
that you do not push any of the Online/Offline buttons.
To take an MPC offline using the Online/Offline buttons:
1. Press and hold the corresponding card’s Online/Offline button on slot 1 on the craft interface. The
green OK/FAIL LED next to the button begins to blink. Hold until both the button’s LED and the MPC’s
LED are off.
2. Issue the CLI show chassis fpc command to check the status of installed MPCs. As shown in the sample
output, the value Offline in the column labeled State indicates that the MPC in slot 1 is now offline:
user@host> show chassis fpc
Slot State (C) Total Interrupt DRAM (MB) Heap Buffer
0 Online 35 4 0 1024 13 25
1 Online 47 3 0 1024 13 25
2 Online 37 8 0 2048 18 14
37
An MPC can also be taken offline via CLI command:
user@host> request chassis fpc slot 2 offline
node0:
-------------------------------------------------------------------------Offline initiated, use "show chassis fpc" to verify
{primary:node0}
user@host> show chassis fpc
node0:
------------------------------------------------------------------------- Temp CPU Utilization (%) Memory Utilization (%)
Slot State (C) Total Interrupt DRAM (MB) Heap Buffer
0 Online 35 7 0 1024 13 25
1 Online 46 4 0 1024 13 25
2 Offline ---Offlined by cli command---
After pushing MPC online button:
user@host> show chassis fpc
Temp CPU Utilization (%) Memory Utilization (%)
Slot State (C) Total Interrupt DRAM (MB) Heap Buffer
0 Online 34 5 0 1024 13 25
1 Online 46 3 0 1024 13 25
2 Offline ---Offlined by button press---
To bring an MPC back online using the Online/Offline buttons:
1. Press and hold the corresponding card’s Online/Offline button on slot 1 on the craft interface. The
green OK/FAIL LED next to the button and the MPC’s LED begins to blink. Hold until both the button’s
LED and the MPC’s LED are green and steady.
2. Issue the CLI show chassis fpc command to check the status of installed MPCs. As shown in the sample
output, the value Online in the column labeled State indicates that the MPC in slot 1 is functioning
normally:
38
Verify if the MPC is offline:
user@host> show chassis fpc
node0:
------------------------------------------------------------------------- Temp CPU Utilization (%) Memory Utilization (%)
Slot State (C) Total Interrupt DRAM (MB) Heap Buffer
0 Online 37 23 0 2048 19 14
1 Offline ---Offlined by cli command-- 2 Online 49 37 0 1024 14 25
The command output indicates the MPC is offline.
Bring the MPC online for the first time by using the following CLI command:
user@host> request chassis fpc slot 1 online
node0:
-------------------------------------------------------------------------Online initiated, use "show chassis fpc" to verify
Verify that the MPC is online:
user@host> request chassis fpc slot 1 online node 0
node0:
-------------------------------------------------------------------------FPC 1 already online
The command output indicates the MPC is online.
Confirm that the MPC in the chassis is online:
user@host> show chassis fpc
node0:
------------------------------------------------------------------------- Temp CPU Utilization (%) Memory Utilization (%)
Slot State (C) Total Interrupt DRAM (MB) Heap Buffer
0 Online 37 6 0 2048 19 14
1 Online 44 11 0 1024 23 29
2 Online 49 22 0 1024 14 25
39
SRX5800 Services Gateway Craft Interface Alarm Relay Contacts
The craft interface has two alarm relay contacts for connecting the device to external alarm devices (see
Figure 7 on page 39). Whenever a system condition triggers either the major or minor alarm on the craft
interface, the alarm relay contacts are also activated. The alarm relay contacts are located on the upper
right of the craft interface.
Figure 7: Alarm Relay Contacts
The alarm relay contacts consist of two sets of connectors, one set for each of the two alarms (major and
minor). For each alarm color there are three connectors. Table 10 on page 40 describes the functions of
the connectors.
Table 10: Alarm Relay Contact Functions
g030297
40
FunctionContact NameContact Label
Normally ClosedNC
Current InC
Normally OpenNO
Connects the alarm relay to an external alarm-reporting device that
activates when the circuit between C and NC is closed.
Connects the alarm relay to the current source for the external
alarm-reporting device.
Connects the alarm relay to an external alarm-reporting device that
activates when the circuit between C and NC is open.
Table 11 on page 40 shows the electrical specifications for the alarm relay contacts.
Table 11: Alarm Relay Contact Electrical Specifications
Current Type
DCAC
30250Maximum Voltage
8 AMaximum Current
Figure 8 on page 40 shows an example wiring diagram for a simple alarm reporting device. In this case the
device is a 12-volt light bulb that illuminates when the device encounters a condition that activates the
major alarm LED and relay contacts. The alarm relay contacts can also be used to activate other devices
such as bells or buzzers.
Figure 8: Example Alarm Reporting Device
SRX5800 Services Gateway Cooling System
The cooling system consists of the following components:
Upper fan tray
•
Bottom fan tray
•
Air filter tray and air filter
•
The cooling system components work together to keep all services gateway components within the
acceptable temperature range (see Figure 9 on page 42, Figure 10 on page 42, Figure 11 on page 42,
Figure 12 on page 43, and Figure 13 on page 43). The services gateway has two fan trays located in the
front of the device that install horizontally above and below the card cage.
NOTE:
In the Junos OS command-line interface (CLI):
41
The show chassis hardware command output displays the fan trays as Fan Tray 0 for the upper
•
fan tray and Fan Tray 1 for the bottom fan tray.
The show chassis environment command output displays the fan trays as Upper Fan Tray and
•
Bottom Fan Tray.
Two different types of fan trays are available:
The standard capacity fan tray has six fans that operate at 728 cubic feet per minute (CFM) at full speed
•
and is adequate for services gateways in which standard-capacity power supplies are installed.
The high-capacity fan tray has 12 fans that operate at 976 cubic feet per minute (CFM) at full speed and
•
is required when high-capacity power supplies are installed. When high-capacity fan trays are installed,
you must also install the high-capacity air filter tray.
The fan trays are interchangeable and are hot-insertable and hot-removable.
Figure 9: Airflow Through the Chassis
g004022
g030294
The host subsystem monitors the temperature of the device components. When the device is operating
normally, the fans function at lower than full speed. If a fan fails or the ambient temperature rises above
a threshold, the speed of the remaining fans is automatically adjusted to keep the temperature within the
acceptable range. If the ambient maximum temperature specification is exceeded and the system cannot
be adequately cooled, the Routing Engine shuts down the system by disabling output power from each
PEM.
42
There is a single air intake in the front of the services gateway. Air is pushed up through an air filter, through
the card cage, and then through the upper fan tray where it combines in a common exhaust plenum and
is exhausted out the upper rear of the system.
Figure 10: Standard-Capacity Fan Tray (Same Upper and Bottom)
Figure 11: High-Capacity Fan Tray (Same Upper and Bottom)
Figure 12: Air Filter
g004072
g004071
g030299
Figure 13: Standard-Capacity Air Filter Tray
43
Figure 14: High-Capacity Air Filter Tray
SRX5800 Power System
IN THIS SECTION
SRX5800 Services Gateway Power System Overview | 44
SRX5800 Services Gateway Standard-Capacity AC Power Supply | 47
SRX5800 Services Gateway Standard-Capacity AC Power Supply LEDs | 47
SRX5800 Services Gateway High-Capacity AC Power Supply | 48
SRX5800 Services Gateway High-Capacity AC Power Supply LEDs | 50
SRX5800 Services Gateway AC Power Supply Specifications | 51
AC Power Cord Specifications for the SRX5800 Services Gateway | 52
AC Power Circuit Breaker Requirements for the SRX5800 Services Gateway | 54
SRX5800 Services Gateway Standard-Capacity DC Power Supply | 54
SRX5800 Services Gateway Standard-Capacity DC Power Supply LEDs | 55
SRX5800 Services Gateway High-Capacity DC Power Supply | 56
SRX5800 Services Gateway High-Capacity DC Power Supply LEDs | 58
SRX5800 Services Gateway DC Power Supply Specifications | 59
DC Power Cable Specifications for the SRX5800 Services Gateway | 60
DC Power Cable Lug Specifications for the SRX5800 Services Gateway | 61
DC Power Circuit Breaker Requirements for the SRX5800 Services Gateway | 62
DC Power Source Cabling for the SRX5800 Services Gateway | 62
SRX5800 Services Gateway Chassis Grounding Point Specifications | 63
SRX5800 Services Gateway Grounding Cable Specifications | 64
SRX5800 Services Gateway Grounding-Cable Lug Specification | 65
44
SRX5800 Services Gateway Power System Overview
The SRX5800 Services Gateway uses either AC or DC power supplies. The services gateway is configurable
with two to four AC power supplies or two or four DC power supplies. The power supplies connect to the
midplane, which distributes the different output voltages produced by the power supplies to the services
gateway components, depending on their voltage requirements.
Table 12 on page 44 describes the different types of power supplies available.
Table 12: Power Supply Type Summary
Power
DistributionRedundancyMaximum OutputInput Condition (If Any)Power Supply Type
Shared3+11700 WAC standard-capacity
Zoned2+21700 WOne AC inputAC high-capacity
4100 WTwo AC inputs
1700 WDC standard-capacity
1700 WOne DC inputDC high-capacity
4100 WTwo DC inputs
NOTE: The services gateway must be running Junos OS Release 10.4 or later in order to use
high-capacity AC power supplies. The services gateway must be running Junos OS Release
12.1X44-D10 or later in order to use high-capacity DC power supplies.
Redundant power supplies are hot-removable and hot-insertable. Each power supply is cooled by its own
internal cooling system.
NOTE: Devices configured from the factory with DC power supplies are shipped with a blank
panel installed over the power distribution modules. Devices configured with AC power supplies
have no blank panel.
CAUTION: The services gateway cannot be powered from AC and DC power supplies
simultaneously. The first type of power supply detected by the services gateway when
initially powered on determines the type of power supply allowed by the services
gateway. All installed power supplies of the other type are disabled by the services
gateway. If you install a power supply of the other type while the services gateway is
operating, the services gateway disables the power supply and generates an alarm.
45
When the services gateway is powered by standard-capacity AC power supplies, the services gateway
contains either three or four AC power supplies, located at the rear of the chassis in slots PEM0 through
PEM3 (left to right). Each power supply provides power to all components in the services gateway. When
three power supplies are present, they share power almost equally within a fully populated system. Four
power supplies provide full power redundancy. If one power supply fails or is removed, the remaining
power supplies instantly assume the entire electrical load without interruption. Three power supplies
provide the maximum configuration with full power for as long as the services gateway is operational.
When the services gateway is powered by either standard- or high-capacity DC power supplies, or by
high-capacity AC power supplies, power distribution within the chassis is divided into zones, as described
in Table 13 on page 45.
Table 13: SRX5800 Services Gateway Power Distribution (DC or High-Capacity AC Power Supplies)
Provide Power To:Power SuppliesZone
Zone 0
•
•
PEM0
PEM2
Bottom fan tray
•
IOC or SPC slots 6 through 11
•
SCB slots 1 and 2
•
Table 13: SRX5800 Services Gateway Power Distribution (DC or High-Capacity AC Power
Zone 0Zone 1
PEM0
PEM1
PEM2 PEM3
g030291
Supplies) (continued)
Provide Power To:Power SuppliesZone
46
Zone 1
•
•
PEM1
PEM3
Upper fan tray
•
IOC or SPC slots 0 through 5
•
SCB slot 0
•
Figure 15 on page 46 shows the distribution of power from the power supplies to the chassis components
in an SRX5800 Services Gateway chassis powered by DC power supplies or high-capacity AC power
supplies.
Figure 15: Power Distribution from DC and High-Capacity AC Power Supplies in the SRX5800 Services
Gateway Chassis
NOTE: The craft interface draws its power from the SCBs installed in the SCB slots 0, 1, and 2
at the center of the card cage. In the standard configuration, with SCBs in slots 0 and 1, the craft
interface is powered on even when one of the two zones loses power. But if the chassis only
has one SCB installed, the craft interface draws all of its power from that card, and consequently
is powered off if the zone in which that SCB is installed loses power.
You can install either two or four DC power supplies or high-capacity AC power supplies. Two power
supplies are required to power the two zones, while four power supplies provide full redundancy for both
zones. The power supplies in slots PEM0 and PEM2 form a redundant pair, as do the power supplies in
slots PEM1 and PEM3. When two power supplies are installed for a zone, they share the load. If a power
supply fails, its redundant power supply assumes the full load of that zone without interruption.
If you do install only two power supplies, they must be installed so that one is in an odd-numbered slot
and the other is in an even-numbered slot. For example, you can install one high-capacity AC power supply
in each of the slots PEM0 and PEM1.
SRX5800 Services Gateway Standard-Capacity AC Power Supply
Each standard-capacity AC power supply has a corresponding AC appliance inlet located in the chassis
directly above the power supply. Each inlet requires a dedicated AC power feed and a dedicated
15 A (250 VAC) circuit breaker. See Figure 16 on page 47.
WARNING: To meet safety and electromagnetic interference (EMI) requirements and
to ensure proper operation, the services gateway chassis must be adequately grounded
before power is connected. See “Grounding the SRX5800 Services Gateway” on page 226
for instructions.
47
Figure 16: Standard-Capacity AC Power Supply
SRX5800 Services Gateway Standard-Capacity AC Power Supply LEDs
Each standard-capacity AC power supply faceplate contains three LEDs that indicate the status of the
power supply (see Table 14 on page 48). The power supply status is also reflected in two LEDs on the
craft interface. In addition, a power supply failure triggers the red alarm LED on the craft interface.
Table 14: Standard Capacity AC Power Supply LEDs
DescriptionStateColorLabel
48
OffGreenAC OK
OffGreenDC OK
On
On
AC power applied to power supply is not within the normal operating
range.
AC power applied to power supply is within the normal operating range.On
DC power outputs generated by the power supply are not within the
normal operating ranges.
DC power outputs generated by the power supply are within the normal
operating ranges.
Power supply is functioning normally.OffRedPS FAIL
Power supply is not functioning normally. Check AC OK and DC OK LEDs
for more information.
SRX5800 Services Gateway High-Capacity AC Power Supply
High-capacity AC power supplies provide a maximum of 4100 W of power each. Two high-capacity power
supplies are required, and you can install four high-capacity power supplies for redundancy. Each
high-capacity AC power supply has two corresponding AC appliance inlets: one located in the chassis
directly above the power supply and one located near the top edge of the power supply itself. For each
power supply, you connect one power cord to the inlet on the chassis above the power supply and one
power cord to the inlet on the power supply itself. Each inlet you connect requires a dedicated AC power
feed and a dedicated 15 A (250 VAC) circuit breaker. See Figure 17 on page 50.
NOTE: The services gateway cannot be powered from standard-capacity and high-capacity AC
power supplies simultaneously. The one exception is during the process of replacing
standard-capacity AC power supplies with high-capacity AC power supplies, when it is permissible
to have both types installed briefly.
NOTE: The high-capacity power supply will operate with only one of its two AC inlets connected
to an AC power feed. However, its DC output will be limited to a maximum of 1700 W. We
recommend that you connect two AC power feeds to each high-capacity AC power supply.
NOTE: The services gateway must be running Junos OS Release 10.4 or later in order to use
high-capacity AC power supplies.
Each high-capacity AC power supply has an input mode switch, covered by a small metal plate. The input
mode switch tells the system the number of AC power feeds it should expect. The input mode switch
settings are described in Table 15 on page 49. The default setting is 1.
Table 15: High-Capacity AC Power Supply Input Mode Switch Settings
Mode Switch
Setting
ResultAC Inputs
49
Both AC inlets powered1
Only one AC inlet powered
Both AC inlets powered0
Only one AC inlet powered
AC output of 4100 W
AC OK LED lights
AC output of 1700 W
AC OK LED lights
AC output of 4100 W
AC OK LED lights
AC output disabled
AC OK LED unlit
NOTE: We recommend that you set the input mode switch to 1 and connect two AC input feeds
to each high-capacity AC power supply.
WARNING: To meet safety and electromagnetic interference (EMI) requirements and
g004710
0
1
1
0
to ensure proper operation, the services gateway chassis must be adequately grounded
before power is connected. See “Grounding the SRX5800 Services Gateway” on page 226
for instructions.
Figure 17: High-Capacity AC Power Supply
50
SRX5800 Services Gateway High-Capacity AC Power Supply LEDs
Each high-capacity AC power supply faceplate contains four LEDs that indicate the status of the power
supply (see Table 16 on page 51). The power supply status is also reflected in two LEDs on the craft
interface. In addition, a power supply failure triggers the red alarm LED on the craft interface.
Table 16: High-Capacity AC Power Supply LEDs
DescriptionStateColorLabel
51
OffGreenAC-1 OK
On
OffGreenAC-2 OK
On
OffGreenDC OK
On
On
AC power applied to power supply at the upper appliance inlet is not within
the normal operating range.
AC power applied to power supply at the upper appliance inlet is within the
normal operating range.
AC power applied to power supply at the lower appliance inlet is not within
the normal operating range.
AC power applied to power supply at the lower appliance inlet is within the
normal operating range.
DC power outputs generated by the power supply are not within the normal
operating ranges.
DC power outputs generated by the power supply are within the normal
operating ranges.
Power supply is functioning normally.OffRedPS FAIL
Power supply is not functioning normally. Check the AC-1 OK, AC-2 OK,
and DC OK LEDs for more information.
SRX5800 Services Gateway AC Power Supply Specifications
Table 17 on page 51 lists the AC power supply electrical specifications for both the standard-capacity and
high-capacity AC power supply. Table 18 on page 52 lists the AC power system electrical specifications.
Table 17: AC Power Supply Electrical Specifications
Specification
Item
1700 WMaximum output power
High-CapacityStandard-Capacity
4100 W (two AC inputs)
1700 W (one AC input)
Table 17: AC Power Supply Electrical Specifications (continued)
Specification
52
Item
11 A @ 240 VAC maximumAC input current rating
Operating range: 200 to 240 VACAC input voltage
50 to 60 HzAC input line frequency
Efficiency
~88%
NOTE: This value is at full load and nominal voltage.
Table 18: AC Power System Specifications
Normal-CapacityItem
High-CapacityStandard-Capacity
13 A @ 240 VAC maximum per AC input (26 A
per power supply when two AC inputs are used)
High-Capacity
Two AC inputs for each
power supply
One AC input for each
power supply
2+22+23+1Redundancy
1700 W4100 W1700 WOutput power (maximum) per
supply
3400 W8200 W5100 WOutput power (maximum) per
system
AC Power Cord Specifications for the SRX5800 Services Gateway
Each AC power supply has a single AC appliance inlet located in the chassis directly above the power
supply that requires a dedicated AC power feed. Most sites distribute power through a main conduit that
leads to frame-mounted power distribution panels, one of which can be located at the top of the rack that
houses the services gateway. An AC power cord connects each power supply to the power distribution
panel.
The services gateway is not shipped with AC power cords. You must order power cords separately using
the model number shown in Table 19 on page 53. The C19 appliance coupler end of the cord inserts into
the AC appliance inlet coupler, type C20 (right angle) as described by International Electrotechnical
Commission (IEC) standard 60320. The plug end of the power cord fits into the power source receptacle
North America
(L6-20P)
North America
NEMA
(6-20)
Australia
(SAA/3)
g003187
Japan
(L6-20P)
China
(PSB-10)
Italy
(CEI 23-16/VII)
Europe
(CEE 7/7)
UK
(BS89/13)
that is standard for your geographical location.
Table 19 on page 53 provides specifications and Figure 18 on page 53 depicts the plug on the AC power
cord provided for each country or region.
Table 19: AC Power Cord Specifications
Plug TypeElectrical SpecificationModel NumberCountry
SAA/3240 VAC, 50 Hz ACCBL-M-PWR-RA-AUAustralia
PSB-10220 VAC, 50 Hz ACCBL-M-PWR-RA-CHChina
CEE 7/7220 or 230 VAC, 50 Hz ACCBL-M-PWR-RA-EUEurope (except Denmark,
Italy, Switzerland, and
United Kingdom)
CEI 23-16/VII230 VAC, 50 Hz ACCBL-M-PWR-RA-ITItaly
53
Figure 18: AC Plug Types
NEMA L6-20P220 VAC, 50 or 60 Hz ACCBL-M-PWR-RA-JPJapan
NEMA L6-20P250 VAC, 60 Hz ACCBL-M-PWR-RA-TWLK-USNorth America
BS89/13240 VAC, 50 Hz ACCBL-M-PWR-RA-UKUnited Kingdom
WARNING: The AC power cord for the services gateway is intended for use with the
services gateway only and not for any other use.
WARNING: To meet safety and electromagnetic interference (EMI) requirements and
to ensure proper operation, you must properly ground the services gateway chassis
before connecting power. See “Grounding the SRX5800 Services Gateway” on page 226
for instructions.
CAUTION: Power cords and cables must not block access to services gateway
components or drape where people could trip on them.
54
NOTE: In North America, AC power cords must not exceed 4.5 m (approximately 14.75 ft) in
length, to comply with National Electrical Code (NEC) Sections 400-8 (NFPA 75, 5-2.2) and
210-52, and Canadian Electrical Code (CEC) Section 4-010(3). The cords listed in
Table 19 on page 53 are in compliance.
AC Power Circuit Breaker Requirements for the SRX5800 Services Gateway
Each AC power supply has a single AC appliance inlet located in the chassis directly above the power
supply that requires a dedicated AC power feed. We recommend that you use a dedicated customer site
circuit breaker rated for 15 A (250 VAC) minimum for each AC power supply, or as required by local code.
SRX5800 Services Gateway Standard-Capacity DC Power Supply
In the DC power configuration, the services gateway contains either two or four DC power supplies (see
Figure 19 on page 55), located at the lower rear of the chassis in slots PEM0 through PEM3 (left to right).
You can upgrade your DC power system from two to four power supplies.
Four power supplies provide full redundancy. If a DC power supply fails, its redundant power supply takes
over without interruption.
Each DC power supply has a single DC input (–48 VDC and return) that requires a dedicated 80 A (–48 VDC)
circuit breaker for the maximum hardware configuration.
Figure 19: Standard-Capacity DC Power Supply
55
SRX5800 Services Gateway Standard-Capacity DC Power Supply LEDs
Each standard-capacity DC power supply faceplate contains three LEDs that indicate the status of the
power supply (see Table 20 on page 56). The power supply status is also reflected in two LEDs on the
craft interface. In addition, a power supply failure triggers the red alarm LED on the craft interface.
Table 20: DC Power Supply LEDs
56
DescriptionStateColorLabel
OffGreenPWR OK
ON
Power supply is not functioning normally. Check the INPUT OK
LED for more information.
Power supply is functioning normally.On
DC power supply circuit breaker is turned off.OffGreenBREAKER
DC power supply circuit breaker is turned on.On
DC input to the PEM is not present.OffGreenINPUT OK
DC input is present, and is connected in correct polarity.On
DC input is present, but connected in reverse polarity.OnAmber
SRX5800 Services Gateway High-Capacity DC Power Supply
High-capacity DC power supplies provide a maximum of 4100 W of power each. Two high-capacity DC
power supplies are required, and you can install four high-capacity DC power supplies for redundancy.
Each high-capacity DC power supply has inlets for two DC power feeds. The four power connectors (-48V
and RTN for each of the two inlets) are located behind a clear plastic cover near the bottom of the power
supply. Each DC power inlet you use requires a dedicated DC power feed and a dedicated 80 A circuit
breaker. See Figure 20 on page 58.
NOTE: The services gateway cannot be powered from standard-capacity and high-capacity DC
power supplies simultaneously. The one exception is during the process of replacing
standard-capacity DC power supplies with high-capacity DC power supplies, when it is permissible
to have both types installed briefly.
NOTE: The high-capacity power supply will operate with only one of its two DC inlets connected
to a DC power feed. However, its DC output will be limited to a maximum of 1700 W. We
recommend that you connect two DC power feeds to each high-capacity DC power supply.
NOTE: The services gateway must be running Junos OS Release 12.1X44-D10 or later in order
to use high-capacity DC power supplies.
Each high-capacity DC power supply has an input mode switch, covered by a small metal plate. The input
mode switch tells the system the number of DC power feeds it should expect. The input mode switch
settings are described in Table 21 on page 57. The default setting is 1.
Table 21: High-Capacity DC Power Supply Input Mode Switch Settings
Mode Switch
Setting
ResultDC Inputs
57
Both DC inlets powered1
Only one DC inlet powered
Both DC inlets powered0
Only one DC inlet powered
DC output of 4100 W
DC OK LED lights
DC output of 1700 W
DC OK LED unlit
DC output of 4100 W
DC OK LED lights
DC output disabled
DC OK LED unlit
NOTE: We recommend that you set the input mode switch to 1 and connect two DC input feeds
to each high-capacity DC power supply.
WARNING: To meet safety and electromagnetic interference (EMI) requirements and
to ensure proper operation, the services gateway chassis must be adequately grounded
before power is connected. See “Grounding the SRX5800 Services Gateway” on page 226
for instructions.
Figure 20: High-Capacity DC Power Supply
g030306
58
SRX5800 Services Gateway High-Capacity DC Power Supply LEDs
Each high-capacity DC power supply faceplate contains four LEDs that indicate the status of the power
supply (see Table 22 on page 59). The power supply status is also reflected in two LEDs on the craft
interface. In addition, a power supply failure triggers the red alarm LED on the craft interface.
Table 22: High-Capacity DC Power Supply LEDs
DescriptionStateColorLabel
59
OffGreenINP0 OK
On
OffGreenINP1 OK
On
OffGreenDC OK
On
On
DC power applied to the power supply at input INP0 is not within the normal
operating range.
DC power applied to the power supply at input INP0 is within the normal
operating range.
DC power applied to the power supply at input INP1 is not within the normal
operating range.
DC power applied to the power supply at input INP1 is within the normal
operating range.
DC power outputs generated by the power supply are not within the normal
operating ranges.
DC power outputs generated by the power supply are within the normal
operating ranges.
Power supply is functioning normally.OffRedPS FAIL
Power supply is not functioning normally. Check the INP0 OK, INP1 OK,
and DC OK LEDs for more information.
SRX5800 Services Gateway DC Power Supply Specifications
Table 23 on page 59 lists the DC power supply electrical specifications.
Table 23: DC Power Supply Electrical Specifications
High-Capacity
Standard-CapacityItem One-Feed ModeTwo-Feed Mode
DC input voltage
Nominal: –48 VDC
Operating range: –40 to
–72 VDC
Nominal: –48 VDC
Operating range: –40 to
–72 VDC
1700 W4100 W2800 WMaximum output power
Nominal: –48 VDC
Operating range: –40 to
–72 VDC
Table 23: DC Power Supply Electrical Specifications (continued)
High-Capacity
Standard-CapacityItem One-Feed ModeTwo-Feed Mode
60
70 AMaximum input current
rating @ 40 VDC
DC nominal input current
rating @48 VDC
58 A maximum@–48 VDC
(nominal)
NOTE: This value is at full load and nominal voltage.
62 A per feed)
50 A per feed)
86%99%Efficiency
Table 24 on page 60 lists the power system electrical specifications.
Table 24: Power System Electrical Specifications
High-CapacityNormal-CapacityItem
2+22+2Redundancy
supply
52 A128 A for both feeds (66 A and
42 A104 A for both feeds (54 A and
––80 AInternal Circuit Breaker
One-feed modeTwo-feed mode2800 WOutput power (maximum) per
1700 W4100 W
3400 W8200 W5600 WOutput power (maximum) per
system
DC Power Cable Specifications for the SRX5800 Services Gateway
Table 25 on page 60 summarizes the specifications for the power cables, which you must supply.
Table 25: DC Power Cable Specifications
SpecificationQuantityCable Type
Power
Four 6-AWG (13.3 mm2) cables for each
power supply
Minimum 60°C wire, or as required by the
local code
CAUTION: You must ensure that power connections maintain the proper polarity.
Crimp area
6 AWG conductor
All measurements in inches
0.28
diameter
each hole
2.25
0.25 0.370.625
g001188
0.55
End view
0.08
The power source cables might be labeled (+) and (–) to indicate their polarity. There
is no standard color coding for DC power cables. The color coding used by the external
DC power source at your site determines the color coding for the leads on the power
cables that attach to the terminal studs on each power supply.
DC Power Cable Lug Specifications for the SRX5800 Services Gateway
The accessory box shipped with the services gateway includes the cable lugs that attach to the terminal
studs of each power supply (see Figure 21 on page 61).
Figure 21: DC Power Cable Lug
61
CAUTION: Before services gateway installation begins, a licensed electrician must
attach a cable lug to the grounding and power cables that you supply. A cable with an
incorrectly attached lug can damage the services gateway.
WARNING: The services gateway is a pluggable type A equipment installed in restricted
access location. It has a separate protective earthing terminal [Metric -M6 and English
- ¼-20 screw) ground lugs] provided on the chassis. This separate protective earth
terminal must be permanently connected to earth.
DC Power Circuit Breaker Requirements for the SRX5800 Services Gateway
If you plan to operate a maximally configured DC-powered services gateway with standard-capacity power
supplies, we recommend that you provision at least 116 A (58 A per feed) @ –48 VDC (nominal) for the
system. Use a customer site circuit breaker rated according to respective National Electrical Code and
customer site internal standards to maintain proper level of protection for the current specified above.
If you plan to operate a maximally configured DC-powered services gateway with high-capacity power
supplies, we recommend that you provision at least 208 A (104 A per supply) @ –48 VDC (nominal) for
the system. This is maximum current draw at –48 VDC when two power supplies are providing the power
to the system and the redundant power supplies are not supplying power or not present. Use a customer
site circuit breaker rated according to respective National Electrical Code and customer site internal
standards to maintain proper level of protection for the current specified above.
If you plan to operate a DC-powered services gateway at less than the maximum configuration, we
recommend that you provision a circuit breaker according to respective National Electrical Code and
customer site internal standards to maintain proper level of protection for the current specified above or
each DC power supply rated for at least 125% of the continuous current that the system draws at –48
VDC.
62
DC Power Source Cabling for the SRX5800 Services Gateway
Figure 22 on page 62 shows a typical DC source cabling arrangement.
Figure 22: Typical DC Source Cabling to the Services Gateway
The DC power supplies in slots PEM0 and PEM1 must be powered by dedicated power feeds derived
from feed A, and the DC power supplies in slots PEM2 and PEM3 must be powered by dedicated power
feeds derived from feed B. This configuration provides the commonly deployed A/B feed redundancy for
the system.
CAUTION: You must ensure that power connections maintain the proper polarity.
The power source cables might be labeled (+) and (–) to indicate their polarity. There
is no standard color coding for DC power cables. The color coding used by the external
DC power source at your site determines the color coding for the leads on the power
cables that attach to the terminal studs on each power supply.
WARNING: For field-wiring connections, use copper conductors only.
CAUTION: Power cords and cables must not block access to device components or
drape where people could trip on them.
63
SRX5800 Services Gateway Chassis Grounding Point Specifications
WARNING: To meet safety and electromagnetic interference (EMI) requirements and
to ensure proper operation, you must properly ground the services gateway chassis
before connecting power. See “Grounding the SRX5800 Services Gateway” on page 226
for instructions.
CAUTION: Before services gateway installation begins, a licensed electrician must
attach cable lugs to the grounding and power cables that you supply. A cable with an
incorrectly attached lug can damage the services gateway.
The services gateway chassis has two grounding points along the lower edge of the back panel. Each
grounding point consists of two threaded holes spaced 0.625-in. (15.86-mm) apart (see
Figure 23 on page 64). The left grounding point fits M6 screws (European), and the right grounding point
fits UNC 1/4–20 screws (American). The accessory box shipped with the services gateway includes the
cable lug that attaches to the grounding cable and two UNC 1/4–20 screws used to secure the grounding
g030295
1/4-20 Grounding Point
M6 (Metric)
Grounding Point
cable to the right-side grounding point on the services gateway.
Figure 23: SRX5800 Services Gateway Chassis Grounding Points
64
To ground the services gateway, you must connect a grounding cable to earth ground and then attach it
to the chassis grounding point using the two screws provided.
NOTE: Additional grounding is provided to an AC-powered services gateway when you plug its
power supplies into grounded AC power receptacles.
SRX5800 Services Gateway Grounding Cable Specifications
The grounding cable that you provide must meet the specifications in Table 26 on page 64.
Table 26: Grounding Cable Specifications
Quantity and SpecificationCable Type
One 6-AWG (13.3 mm2), minimum 60°C wire, or as required by the local codeGrounding
WARNING: To meet safety and electromagnetic interference (EMI) requirements and
Crimp area
6 AWG conductor
All measurements in inches
0.28
diameter
each hole
2.25
0.25 0.370.625
g001188
0.55
End view
0.08
to ensure proper operation, you must properly ground the services gateway chassis
before connecting power. See “Grounding the SRX5800 Services Gateway” on page 226
for instructions.
SRX5800 Services Gateway Grounding-Cable Lug Specification
The accessory box shipped with the services gateway includes the cable lug that attaches to the grounding
cable (see Figure 24 on page 65) and two UNC 1/4–20 screws used to secure the grounding cable to the
grounding points.
Figure 24: Grounding Cable Lug
65
CAUTION: Before services gateway installation begins, a licensed electrician must
attach a cable lug to the grounding and power cables that you supply. A cable with an
incorrectly attached lug can damage the services gateway.
NOTE: The same cable lug is used for the DC power cables.
SRX5800 Host Subsystem
IN THIS SECTION
SRX5800 Services Gateway Host Subsystem Description | 66
Switch Control Board SRX5K-SCB Overview | 67
Switch Control Board SRX5K-SCB Specifications | 69
Switch Control Board SRX5K-SCBE Overview | 72
Switch Control Board SRX5K-SCBE Specifications | 73
Switch Control Board SRX5K-SCB3 Overview | 75
Switch Control Board SRX5K-SCB3 Specifications | 76
Switch Control Board SRX5K-SCB4 Overview | 78
Switch Control Board SRX5K-SCB4 Specifications | 79
66
Routing Engine SRX5K-RE-13-20 Overview | 81
Routing Engine SRX5K-RE-13-20 Specifications | 82
Routing Engine SRX5K-RE-1800X4 Overview | 86
Routing Engine SRX5K-RE-1800X4 Specifications | 87
Routing Engine SRX5K-RE3-128G Specifications | 90
SRX5800 Services Gateway Host Subsystem Description
The host subsystem is composed of a Routing Engine installed in a Switch Control Board (SCB). The host
subsystem provides the routing and system management functions of the services gateway. You must
install one host subsystem on the device. The host subsystem components are as follows:
Switch Control Board
•
SRX5K-SCB–from Junos OS Release 9.2 to 12.3X48
•
SRX5K-SCBE–from Junos OS Release 12.1X47-D15 and later
•
SRX5K-SCB3–from Junos OS Release 15.1X49-D10 and later
•
SRX5K-SCB4–from Junos OS Release 19.3R1 and later
•
NOTE: SRX5K-SCB4 is not supported on SRX5400 Services Gateways.
Routing Engine
•
SRX5K-RE-13-20–from Junos OS Release 9.2 to 12.3X48
•
SRX5K-RE-1800X4–from Junos OS Release 12.1X47-D15 and later
•
SRX5K-RE3-128G–from Junos OS Release 19.3R1 and later
•
NOTE: You can only configure the following combination of Routing Engine and SCB within a
host subsystem:
SRX5K-RE-13-20 and SRX5K-SCB
•
SRX5K-RE-1800X4 and SRX5K-SCBE
•
SRX5K-RE-1800X4 and SRX5K-SCB3
•
67
SRX5K-RE-1800X4 and SRX5K-SCB4
•
SRX5K-RE3-128G and SRX5K-SCB3 or SRX5K-SCB4
•
The host subsystem has three LEDs that display its status. The host subsystem LEDs are located in the
middle of the craft interface.
Switch Control Board SRX5K-SCB Overview
The Switch Control Board (SCB) provides the following functions:
Powers on and powers off IOCs and SPCs
•
Controls clocking, system resets, and booting
•
Monitors and controls system functions, including fan speed, board power status, PDM status and
•
control, and the system front panel
Provides interconnections to all the IOCs within the chassis through the switch fabrics integrated into
•
the SCB
When the SCB is part of a host subsystem, the Routing Engine installs directly into a slot on the SCB (see
Figure 25 on page 68).
Figure 25: SRX5K-SCB
68
The SRX5800 Services Gateway has two SCBs installed and you can install a third SCB for switch fabric
redundancy.
NOTE: The SRX5800 Services Gateway supports a redundant SCB, provided the SCB is a
SRX5K-SCBE (SCB2) running Junos OS Release 12.1X47-D15 and later, SRX5K-SCB3 (SCB3)
running Junos OS Release 15.1X49-D10 and later, or a SRX5K-SCB4 (SCB4) running Junos OS
Release 19.3R1 and later.
The SRX5800 Services Gateway does not support a redundant SCB (third SCB) card if
SRX5K-SPC-4-15-320 (SPC2) is installed with SCB1 (SRX5K-SCB). If you have installed a SPC2
on a SRX5800 Services Gateway with a redundant SCB1 card, make sure to remove the redundant
SCB1 card.
SCBs install vertically into the front of the chassis. The SCB slots are located at the middle of the card cage
and are labeled 0, 1, and 2/6. If any slots are empty, you must install a blank panel.
SCBs installed in slots 0 and 1 provide nonredundant fabric connections. A SCB installed in slot 2/6, in
conjunction with SCBs in slots 0 and 1, provides redundant fabrics. If no SCB is installed in slot 2/6, you
must install a blank panel in the slot (see Table 27 on page 69).
Table 27: SCB Slot Mapping and Functionality
69
Slot 2/6Slot 1Slot 0Functionality
Full fabric
Routing Engine
Redundant fabric
Routing Engine
–SCBSCB
SCBSCBSCB
For detailed information about SCBs supported by the SR5800 Services Gateway, see the SRX5400,
SRX5600, and SRX5800 Services Gateway Card Guide at www.juniper.net/documentation/.
Switch Control Board SRX5K-SCB Specifications
The SRX5K-SCB Switch Control Board (SCB) (Figure 26 on page 70) performs the following functions:
Powers on and powers off I/O cards (IOCs) and Services Processing Cards (SPCs)
•
Controls clocking, system resets, and booting
•
Monitors and controls system functions, including fan speed, board power status, PDM status and
•
control, and the system front panel
Provides interconnections to all the IOCs within the chassis through the switch fabrics integrated into
•
the SCB
SRX5400 and SRX5600 Services Gateways have one SCB each installed and you can install a second SCB
for redundancy. The SRX5800 Services Gateway has two SCBs installed and you can install a third SCB
for switch fabric redundancy.
The host subsystem is composed of a Routing Engine installed directly into a slot on the faceplate of the
SCB. When there is no Routing Engine is a SCB, its slot must be covered with a blank panel.
Figure 26: Switch Control Board SRX5K-SCB
70
Each SCB consists of the following components:
Chassis management Ethernet switch.
•
I2C bus logic, used for low-level communication with each component.
•
Component redundancy circuitry.
•
Gigabit Ethernet switch that is connected to the embedded CPU complex on all components.
•
Switch fabric—Provides the switching functions for the IOCs.
•
Control FPGA—Provides the Peripheral Component Interconnect (PCI) interface to the Routing Engine.
•
1000Base-T Ethernet controller—Provides a 1-Gbps Ethernet link between the Routing Engines.
•
Ethernet switch—Provides 1-Gbps link speeds between the Routing Engine and the IOCs.
•
Circuits for chassis management and control.
•
Power circuits for the Routing Engine and SCB.
•
Description
SCB with slot for Routing Engine
•
Maximum throughput: 75 Gbps per slot
•
Junos OS Release 9.2 and laterSoftware release
•
Slot for Routing EngineCables and connectors
NoneControls
g004068
Serial number
ID label
71
Supported Slots
LEDs
SRX5400–Only bottom slots 0 and 1/0
•
SRX5600–Only bottom slots 0 and 1
•
SRX5800–Only center slots 0, 1, and 2/6
•
150 WPower Requirement
Approximately 10 lb (4.5 kg)Weight
OK/FAIL LED, one bicolor:
Green–The SCB is operating normally.
•
Red–The SCB has failed and is not operating normally.
•
Off–The SCB is powered down.
•
FABRIC ONLY LED:
Green–The SCB is operating in fabric-only mode.
•
Off–The SCB is operating in fabric/control board mode.
•
FABRIC ACTIVE LED:
Green–The fabric is in active mode.
•
Serial Number Location
The serial number label is located as shown in Figure 27 on page 71.
Figure 27: SCB Serial Number Label
Switch Control Board SRX5K-SCBE Overview
The SRX5000 line enhanced Switch Control Board (SRX5K-SCBE) caters to high-end security markets
requiring support for higher capacity traffic. The SRX5K-SCBE provides greater interface density (slot and
capacity scale) and improved services.
Some key attributes of the SRX5K-SCBE are:
A bandwidth of 120 Gbps per slot with redundant fabric support and improved fabric performance by
•
using the next-generation fabric (XF) chip.
A centralized clocking architecture that supports clock cleanup and distribution. The Stratum 3 clock
•
module performs clock monitoring, filtering, and holdover in a centralized chassis location.
Full performance with fabric redundancy for higher capacity line cards such as the SRX5K-MPC.
•
The Routing Engine installs directly into a slot on the SRX5K-SCBE as shown in Figure 28 on page 72.
Figure 28: SRX5K-SCBE
72
Switch Control Board SRX5K-SCBE Specifications
Each SRX5K-SCBE consists of the following components:
I2C bus logic for low-level communication with each component
•
Component redundancy circuitry
•
Control Board/Routing Engine primary-role mechanism
•
Gigabit Ethernet switch that is connected to the embedded CPU complex on all components
•
Switch fabric to provide the switching functions for the MPCs
•
1000BASE-T Ethernet controller to provide a 1-Gbps Ethernet link between the Routing Engines
•
Power circuits for the Routing Engine and the SRX5K-SCBE
•
LEDs—Provides status of the SRX5K-SCBE and clocking interface
•
73
Description
Software release
Cables and connectors
Controls
Supported slots
Power requirement
Weight
SRX5K-SCBE with slot for Routing Engine
•
Maximum throughput: 120 Gbps per slot
•
Junos OS Release 12.1X47-D15 and later
Slot for Routing Engine
None
SRX5400–Only bottom slots 0 and 1/0
•
SRX5600–Only bottom slots 0 and 1
•
SRX5800–Only center slots 0, 1, and 2/6
•
160 W at 131º F (55º C)
•
130 W at 104º F (40º C)
•
120 W at 77º F (25º C)
•
9.6 lb (4.4 kg) with Routing Engine
g004068
Serial number
ID label
74
Serial number location
The serial number label is located as shown in Figure 29 on page 74.
Figure 29: SRX5K-SCBE Serial Number Label
SRX5K-SCBE LEDs
Table 28 on page 74 describes the SRX5K-SCBE LEDs and their states.
Table 28: SRX5K-SCBE LEDs
ACTIVE
On steadilyGreenFABRIC
ONLY
OffNone
DescriptionStateColorLabel
Fabric is in active mode.On steadilyGreenFABRIC
SRX5K-SCBE operates in
fabric-only mode.
SRX5K-SCBE operates in
fabric/control board mode.
Table 28: SRX5K-SCBE LEDs (continued)
DescriptionStateColorLabel
SRX5K-SCBE is online.On steadilyGreenOK/FAIL
SRX5K-SCBE has failed.On steadilyRed
SRX5K-SCBE is offline.OffNone
Switch Control Board SRX5K-SCB3 Overview
The SRX5K-SCB3 (SCB3) caters to high-end security markets requiring support for higher capacity traffic,
greater interface density (slot and capacity scale), and improved services. The SCB3 is supported on
SRX5400, SRX5600, and SRX5800 Services Gateways.
75
The SCB3 supports the standard midplane and the enhanced midplane.
Some key attributes of the SCB3 are:
With the existing midplane and fabric link speed of 8.36 Gbps, supports a bandwidth of 205 Gbps per
•
slot with redundant fabric support and 308 Gbps per slot without redundancy.
With the enhanced midplane and fabric link speed of 10.2 Gbps, supports a bandwidth of 249 Gbps per
•
slot with redundant fabric support and 374 Gbps per slot without redundancy with the enhanced midplane
Improved fabric performance with the next-generation fabric (XF2) chip.
•
Full performance with fabric redundancy for higher-capacity line cards.
•
Support for MPC line cards such as SRX5K-MPC (IOC2) and IOC3 (SRX5K-MPC3-40G10G or
•
SRX5K-MPC3-100G10G) only.
Two 10-Gigabit Ethernet SFP+ ports (These ports are disabled and reserved for future use).
•
The Routing Engine installs directly into a slot on the SCB3, as shown in Figure 30 on page 75.
Figure 30: SRX5K-SCB3
Switch Control Board SRX5K-SCB3 Specifications
Each SRX5K-SCB3 (SCB3) consists of the following components:
I2C bus logic for low-level communication with each component
•
Component redundancy circuitry
•
Control Board/Routing Engine primary-role mechanism
•
Gigabit Ethernet switch that is connected to the embedded CPU complex on all components
•
Switch fabric to provide the switching functions for the MPCs
•
Control field-programmable gate array (FPGA) to provide the Peripheral Component Interconnect (PCI)
•
interface to the Routing Engine
Circuits for chassis management and control
•
Power circuits for the Routing Engine and SCB3
•
LEDs to provides status of the SCB3
•
76
Description
Software release
Cables and connectors
Controls
Supported slots
Power requirement
Weight
SCB3 with slot for Routing Engine
Junos OS Release 15.1X49-D10 and later
Slot for Routing Engine
None
SRX5400–Only bottom slots 0 and 1/0
•
SRX5600–Only bottom slots 0 and 1
•
SRX5800–Only center slots 0, 1, and 2/6
•
300 W
9.6 lb (4.4 kg) with Routing Engine
XGE
LINK
LINK
EXT
CLK
BITS
GPS
UTI
77
Serial number location
The serial number label is located as shown in Figure 31 on page 77.
Figure 31: SRX5K-SCB3 Serial Number Label
SRX5K-SCB3 LEDs
Table 29 on page 77 describes the SCB3 LEDs and their states.
Table 29: SRX5K-SCB3 LEDs
DescriptionStateColorLabel
Fabric is in active mode.On steadilyGreenFABRIC ACTIVE
SCB3 is online.On steadilyGreenOK/FAIL
SCB3 has failed.On steadilyRed
SCB3 is offline.Off–
Port is enabled and link is established.On steadilyGreenLINK
Port is disabled or no link is established.Off–
Switch Control Board SRX5K-SCB4 Overview
The SRX5K-SCB4 (SCB4) Enhanced Switch Control Board provides improved fabric performance and
bandwidth capabilities for high-capacity line cards using the ZF-based switch fabric. The SCB4 is supported
on SRX5600 and SRX5800 Services Gateways, but not supported on SRX5400 Services Gateways.
The SCB4 supports the standard and the enhanced midplane.
Some key attributes of the SCB4 are:
With the SRX5K-SCB4 Switch Control Board, Increased Fabric Bandwidth mode is the default mode on
•
the SRX5600 and SRX5800 Services Gateways and the services gateways will use six active planes
without any spare planes.
With the Redundant Fabric mode, the SRX5600 and SRX5800 Services Gateways will use four active
•
planes and will have two spare planes.
Full performance with fabric redundancy for higher-capacity line cards.
•
Two 10-Gigabit Ethernet SFP+ ports (These ports are disabled and reserved for future use).
•
78
Increased Fabric Bandwidth mode is the default fabric mode of SCB4. In this mode you must install two
SCB4s in SRX5600 and three SCB4s in SRX5800 Services Gateways/Chassis clusters.
You can change the fabric mode of SCB4 from Increased Fabric Bandwidth mode to Redundant Fabric
mode using the CLI. If you change the fabric mode of SCB4 to Redundant Fabric mode you must install
two SCB4s in SRX5600 and you can install either two or three SCB4s in SRX5800 Services Gateways.
If you are upgrading from SCB3 (Redundant Fabric mode is the default fabric mode in SCB2 and SCB3) to
SCB4 and installing only two SCB4s, you must have Junos OS 19.3R1 or later and change the default fabric
mode of SCB4s to Redundant Fabric mode by using the CLI.
NOTE: To achieve maximum throughput on an SRX5800 Services Gateway, you must install
only two SCB4s (configured in redundant fabric mode) in a fully loaded chassis (for example: 3x
IOC4 + 7x SPC3 + 2x RE3 + 2x SCB4). If you install three SCB4s into the fully loaded chassis
(for example: 3x IOC4 + 7x SPC3 + 2x RE3 + 3x SCB4) the chassis will hit chassis power limit
and one of the line cards will go offline due to power shortage.
You can change the fabric mode by following one of these two methods:
1. Use the CLI command request chassis fabric mode <increased-bandwidth|redundant-fabric>
2. Save the change in the Configuration file
set chassis fabric redundancy-mode increased-bandwidth
set chassis fabric redundancy-mode redundant
The Routing Engine installs directly into a slot on the SCB4, as shown in Figure 32 on page 79.
g100573
SRX5K-SCB4
Figure 32: SRX5K-SCB4
79
Switch Control Board SRX5K-SCB4 Specifications
SRX5K-SCB4 (SCB4) consists of the following components:
LEDs to provides status of the SCB4.
•
Circuits for chassis management and control.
•
Power circuits for the Routing Engine and SCB4.
•
Description
Software release
Cables and connectors
SCB4 with slot for SRX5K-RE-1800X4 and SRX5K-RE3-128G Routing
Engines
Junos OS Release 19.3R1 and later
Slot for Routing Engine
g100577
Serial number ID label
80
Controls
Supported slots
Power requirement
Cooling requirement
Weight and Dimensions
Serial number location
None
SRX5400–Not supported
•
SRX5600–Only bottom slots 0 and 1
•
SRX5800–Only center slots 0, 1, and 2/6
•
At different temperatures:
55° C: 425 W
•
40° C: 400 W
•
25° C: 385 W
•
For efficient and reliable power and cooling, you must install SRX Series
high-capacity power supplies and fan trays in the SRX Series chassis.
Weight: 13.6 lb (6.2 kg)
•
Width: 15.7 in (39.87 cm)
•
Depth: 21.2 in (53.85 cm)
•
Height: 1.2 in (3.05 cm)
•
The serial number label is located as shown in Figure 33 on page 80.
Figure 33: SRX5K-SCB4 Serial Number Label
SRX5K-SCB4 LEDs
Table 30 on page 81 describes the SCB4 LEDs and their states.
Table 30: SRX5K-SCB4 LEDs
DescriptionStateColorLabel
SCB4 is online.On steadilyGreenOK/FAIL
SCB4 has failed.On steadilyRed
SCB4 is offline.Off–
FABRIC
The switch fabric on this board is in Active mode.On steadilyGreenACTIVE
The switch is in Fabric-Only mode.On steadilyGreenONLY
81
SFP+ port is enabled and link is established.On steadilyGreenLINK (XGE
port)
SFP+ port is disabled or no link is established.Off–
On steadilyGreenGPS
Indicates the status of the GPS clocking interface,
and the link is OK.
Activity on the clocking interface.BlinkingYellow
Routing Engine SRX5K-RE-13-20 Overview
The Routing Engine is an Intel-based PC platform that runs Junos OS. Software processes that run on the
Routing Engine maintain the routing tables, manage the routing protocols used on the device, control the
device interfaces, control some chassis components, and provide the interface for system management
and user access to the device.
You must install at least one Routing Engine in the services gateway. You can install a second Routing
Engine if both Routing Engines are running Junos OS Release 10.0 or later.
A second Routing Engine is required if you are using the dual chassis cluster control link feature available
in Junos OS Release 10.0 and later. The second Routing Engine does not perform all the functions of a
Routing Engine and does not improve resiliency or redundancy. The second Routing Engine and the Switch
Control Board (SCB) in which it is installed do not constitute a host subsystem. The only function of the
second Routing Engine is to enable the hardware infrastructure that enables the Chassis Cluster Control
1 port on the Services Processing Card (SPC) used for chassis cluster control links.
If you install only one Routing Engine in the services gateway, you must install it in the slot in the front
panel of SCB0. If you install a second Routing Engine to use the dual chassis cluster control link feature,
you install it in the slot in the front panel of SCB1 (see Figure 34 on page 82).
A USB port on the Routing Engine accepts a USB memory card that allows you to load Junos OS.
Figure 34: SRX5K-RE-13-20 Routing Engine
82
For detailed information about the Routing Engines supported by the services gateway, see the SRX5400,
SRX5600, and SRX5800 Services Gateway Card Reference at www.juniper.net/documentation/.
Routing Engine SRX5K-RE-13-20 Specifications
The SRX5K-RE-13-20 Routing Engine (Figure 35 on page 83) is an Intel-based PC platform that runs the
Junos operating system (Junos OS). Software processes that run on the Routing Engine maintain the routing
tables, manage the routing protocols used on the device, control the device interfaces, control some chassis
components, and provide the interface for system management and user access to the device.
Figure 35: Routing Engine
You must install at least one Routing Engine in the services gateway. You can install a second Routing
Engine if both Routing Engines are running Junos OS Release 10.0 or later. A second Routing Engine is
required if you are using the dual chassis cluster control link feature available in Junos OS Release 10.0
and later. The second Routing Engine does not perform all the functions of a Routing Engine and does not
improve resiliency or redundancy. The second Routing Engine and the Switch Control Board (SCB) in which
it is installed do not constitute a host subsystem. The only function of the second Routing Engine is to
enable the hardware infrastructure that enables the chassis cluster control 1 port on the Services Processing
Card (SPC) used for chassis cluster control links. If you install only one Routing Engine in the services
gateway, you must install it in the slot in the front panel of SCB0. If you install a second Routing Engine
to use the dual chassis cluster control link feature, you install it in the slot in the front panel of SCB1.
83
The Routing Engine consists of the following components:
CPU—Runs Junos OS to maintain the services gateway's routing tables and routing protocols. It has a
•
Pentium-class processor.
DRAM—Provides storage for the routing and forwarding tables and for other Routing Engine processes.
•
USB port—Provides a removable media interface through which you can install Junos OS manually. Junos
•
supports USB version 1.0.
Internal flash disk—Provides primary storage for software images, configuration files, and microcode.
•
The disk is a fixed compact flash and is inaccessible from outside the services gateway.
Hard disk—Provides secondary storage for log files, memory dumps, and rebooting the system if the
•
internal compact flash disk fails.
HDD LED—Indicates disk activity for the hard disk drive.
•
Management ports—Each Routing Engine has one 10/100-Mbps Ethernet port for connecting to a
•
management network, and two asynchronous serial ports—one for connecting to a console and one for
connecting to a modem or other auxiliary device. The interface ports are labeled AUX, CONSOLE, and
ETHERNET.
EEPROM—Stores the serial number of the Routing Engine.
•
Extractor clips—Used for inserting and extracting the Routing Engine.
•
Captive screws—Secures the Routing Engine in place.
•
The Routing Engine boots from the storage media in this order: the USB device (if present), then the internal
flash disk, then the hard disk, then the LAN.
NOTE: For specific information about Routing Engine components (for example, the amount of
DRAM), issue the show chassis routing-engine command.
Routing Engine for SRX5400, SRX5600, and SRX5800 Services GatewaysDescription
84
Software release
Cables and connectors
Controls
Supported Slots
Junos OS Release 9.2 and later
•
Junos OS Release 10.0 and later required to install a second Routing Engine
•
AUX—Connects the Routing Engine to a laptop, a modem, or another auxiliary device through
a cable with an RJ-45 connector.
CONSOLE—Connects the Routing Engine to a system console through a cable with an RJ-45
connector.
ETHERNET—Connects the Routing Engine through an Ethernet connection to a management
LAN (or any other device that plugs into an Ethernet connection) for out-of-band management.
RESET button—Reboots the Routing Engine when pressed
•
ONLINE/OFFLINE Button—Not supported in the current release
•
Front panel slot in an SCB installed in:
SRX5400: Bottom slot 0
•
SRX5600: Bottom slots 0 or 1
•
SRX5800: Center slots 0 or 1
•
NOTE: The services gateway host subsystem Routing Engine must be installed in the SCB
in slot 0. A Routing Engine installed in an SCB in slot 1 only enables dual control links in
chassis cluster configurations.
90 WPower Requirement
Approximately 2.4 lb (1.1 kg)Weight
85
LEDs
Serial Number
Location
HDD LED:
Blinking green–The Routing Engine hard disk is functioning normally.
•
MASTER LED:
Blue–The Routing Engine is Primary.
•
NOTE: The SRX5400, SRX5600, and SRX5800 Services Gateways do not support a secondary
or backup Routing Engine, so the MASTER LED should always be lit.
OK/FAIL LED, one bicolor:
Off–The Routing Engine is operating normally.
•
Red–The Routing Engine has failed and is not operating normally.
•
ONLINE LED:
Blinking green–The Routing Engine is coming online.
•
Steady green–The Routing Engine is functioning normally.
•
The serial number label is located on the right side of the top of the Routing Engine as shown
in Figure 36 on page 85
Figure 36: SRX5K-RE-13-20 Serial Number Label
Routing Engine SRX5K-RE-1800X4 Overview
g006040
USB
port
Reset
button
Extractor
clip
Extractor
clip
Console
port
Auxiliary
port
Ethernet
port
SSD
slot 2
SSD
slot 1
The enhanced Routing Engine is an Intel-based PC platform that runs Junos OS. Software processes that
run on the Routing Engine maintain the routing tables, manage the routing protocols used on the device,
control the device interfaces, control some chassis components, and provide the interface for system
management and user access to the device.The Routing Engine must be installed directly into the
SRX5K-SCBE. A USB port on the Routing Engine accepts a USB memory device that allows you to load
Junos OS. Figure 37 on page 86 shows the Routing Engine.
Figure 37: SRX5K-RE-1800X4 Routing Engine
86
Three ports located on the Routing Engine connect to one or more external devices on which system
administrators can issue Junos OS CLI commands to manage the services gateway.
The ports function as follows:
AUX–Connects the Routing Engine to a laptop, modem, or other auxiliary device through a serial cable
•
with an RJ-45 connector.
CONSOLE–Connects the Routing Engine to a system console through a serial cable with an RJ-45
•
connector.
ETHERNET–Connects the Routing Engine through an Ethernet connection to a management LAN (or
•
any other device that plugs into an Ethernet connection) for out-of-band management. The port uses
an autosensing RJ-45 connector to support 10/100/1000 Mbps connections. Two small LEDs on the
bottom of the port indicate the connection in use: the LED flashes yellow or green for a 10/100/1000
Mbps connection, and the LED is light green when traffic is passing through the port.
The solid-state drive (SSD) slots located on the Routing Engine provide secondary storage for log files, for
generating core files, and for rebooting the system if the CompactFlash card fails. Currently,
SRX5K-RE-1800X4 only supports one 128-GB SSD.
SRX5K-RE-1800X4 Routing Engine Boot Sequence
The services gateway is shipped with three copies of the Junos OS preinstalled on the Routing Engine in
the following locations:
On the CompactFlash card in the Routing Engine
•
On the SSD in the Routing Engine
•
On a USB flash drive that can be inserted into the slot on the Routing Engine faceplate
•
The Routing Engine boots from the storage media in this order: the USB device (if present), the CompactFlash
card, the solid-state drive (SSD), and then the LAN. Normally, the services gateway boots from the copy
of the software on the CompactFlash card.
Routing Engine SRX5K-RE-1800X4 Specifications
87
Each Routing Engine consists of the following components:
CPU—Runs Junos OS to maintain the routing tables and routing protocols.
•
DRAM—Provides storage for the routing and forwarding tables and for other Routing Engine processes.
•
USB port—Provides a removable media interface through which you can install the Junos OS manually.
•
Junos OS supports USB version 1.0 and 2.0.
CompactFlash card—Provides primary storage for software images, configuration files, and microcode.
•
The CompactFlash card is fixed and is inaccessible from outside the device.
Solid-state drive (SSD)—Provides secondary storage for log files, for generating core files, and for rebooting
•
the system if the CompactFlash card fails.
Interface ports—The AUX, CONSOLE, and ETHERNET ports provide access to management devices.
•
Each Routing Engine has one 10/100/1000-Mbps Ethernet port for connecting to a management
network, and two asynchronous serial ports—one for connecting to a console and one for connecting
to a modem or other auxiliary device.
EEPROM—Stores the serial number of the Routing Engine.
•
Reset button—Reboots the Routing Engine when pressed.
•
Online/Offline button—Takes the Routing Engine online or offline when pressed.
•
Extractor clips—Inserts and extracts the Routing Engine.
•
Captive screws—Secures the Routing Engine in place.
•
Description
Routing Engine for SRX5400, SRX5600, and SRX5800 Services Gateways
88
Software release
Cables and connectors
Controls
Supported slots
Junos OS Release 12.1X47-D15 and later
Slot for Routing Engine
AUX–Connects the Routing Engine to a laptop, a modem, or another auxiliary
•
device through a cable with an RJ-45 connector.
CONSOLE–Connects the Routing Engine to a system console through a cable with
•
an RJ-45 connector.
ETHERNET–Connects the Routing Engine through an Ethernet connection to a
•
management LAN (or any other device that plugs into an Ethernet connection) for
out-of-band management.
RESET button–Reboots the Routing Engine when pressed.
Front panel slot in an SCB installed in:
SRX5400: Bottom slot 0
•
SRX5600: Bottom slots 0 or 1
•
SRX5800: Center slots 0 or 1
•
NOTE: The services gateway host subsystem Routing Engine must be installed in the
SCB in slot 0. A Routing Engine installed in an SCB in slot 1 only enables dual control
links in chassis cluster configurations.
Power requirement
Weight
90 W
2.4 lb (1.1 kg)
89
Serial number location
The serial number label is located as shown in Figure 38 on page 89.
Figure 38: SRX5K-RE-1800X4 Serial Number Label
SRX5K-RE-1800X4 LEDs
Each Routing Engine has four LEDs that indicate its status. The LEDs, labeled MASTER, STORAGE, ONLINE,
and OK/FAIL, are located directly on the faceplate of the Routing Engine. Table 31 on page 89 describes
the Routing Engine LEDs and their states.
Table 31: SRX5K-RE-1800X4 LEDs
DescriptionStateColorLabel
Routing Engine is the primary.On steadilyBlueMASTER
BlinkingGreenSTORAGE
BlinkingGreenONLINE
On steadilyNone
Indicates activity on the SSD or
CompactFlash card.
Routing Engine is transitioning
online.
Routing Engine is functioning
normally.
Routing Engine has failed.On steadilyRedOK/FAIL
Routing Engine SRX5K-RE3-128G Specifications
g100572
21 3 4
5 8
6 7 9 10
IN THIS SECTION
SRX5K-RE3-128G Routing Engine Components | 92
SRX5K-RE3-128G Routing Engine LEDs | 93
SRX5K-RE3-128G Routing Engine Boot Sequence | 94
The Routing Engine maintains the routing tables, manages the routing protocols used on the device, controls
the device interfaces, controls some chassis components, and provides the interfaces for system
management and user access to the device.
Figure 39 on page 90 shows the SRX5K-RE3-128G Routing Engine.
90
Figure 39: SRX5K-RE3-128G Routing Engine Front View
6—1— ONLINE/OFFLINE buttonExtractor clips
7—2— SSD LEDs—DISK1 and DISK2Auxiliary port (AUX)
8—3— USB ports—USB1 and USB2Console port (CONSOLE)
9—4— RESET buttonManagement port (MGMT)
10—5— SSD card slot coverRouting Engine status LEDs—ONLINE, OK/FAIL, and
MASTER
Description
Routing Engine for SRX5400, SRX5600, and SRX5800 Services Gateways, based on Intel’s
Haswell-EP CPU with 6 cores, and 128GB of DDR4 memory. It provides increased control
plane performance and scalability along with virtualization features in the SRX Series
5000 line of chassis.
Software release
Junos OS Release 19.3R1 and later
91
Cables and connectors
Controls
Supported slots
Slot for Routing Engine
AUX–Connects the Routing Engine to a laptop, a modem, or another auxiliary device
•
through a cable with an RJ-45 connector.
CONSOLE–Connects the Routing Engine to a system console through a cable with an
•
RJ-45 connector.
MGMT–Connects the Routing Engine through an Ethernet connection to a management
•
LAN (or any other device that plugs into an Ethernet connection) for out-of-band
management.
RESET button–Reboots the Routing Engine when pressed.
Front panel slot in an SCB installed in:
SRX5400: Bottom slot 0
•
SRX5600: Bottom slots 0 or 1
•
SRX5800: Center slots 0 or 1
•
NOTE: The services gateway host subsystem Routing Engine must be installed in the
SCB in slot 0. A Routing Engine installed in an SCB in slot 1 only enables dual control links
in chassis cluster configurations.
Power requirement
Weight
NOTE: In the SRX5600 or SRX5800 Services Gateways chassis cluster configurations,
dual control links functionality is not supported if you mix SRX5K-RE-1800X4 and
SRX5K-RE3-128G Routing Engines. To support dual control links you have to install two
SRX5K-RE3-128Gs.
110 W
2.69 lb (1.22 kg)
g100576
Serial number
ID label
92
Serial number location
The serial number label is located as shown in Figure 40 on page 92.
Figure 40: SRX5K-RE3-128G Serial Number Label
SRX5K-RE3-128G Routing Engine Components
Each Routing Engine consists of the following components:
CPU—Runs Junos OS to maintain the routing tables and routing protocols.
•
EEPROM—Stores the serial number of the Routing Engine.
•
DRAM—Provides storage for the routing and forwarding tables and for other Routing Engine processes.
•
One 10-Gigabit Ethernet interface between the Routing Engine and Switch Control Board.
•
Extractor clips—Control the locking system that secures the Routing Engine.
•
Interface ports—The AUX, CONSOLE, and MGMT ports provide access to management devices. Each
•
Routing Engine has one 10/100/1000-Mbps Ethernet port for connecting to a management network,
and two asynchronous serial ports—one for connecting to a console and one for connecting to a modem
or other auxiliary device.
NOTE:
The control interface names differ based on the routing engine:
For RE2, the control interfaces are displayed as em0 and em1.
•
For RE3, the control interfaces are displayed as ixlv0 and igb0.
•
For more information, see show chassis cluster interfaces.
Status LEDs—Table 32 on page 93 describes the functions of the ONLINE, OK/FAIL, MASTER, DISK1,
•
and DISK2 LEDs.
ONLINE/OFFLINE button—Takes the Routing Engine online or offline when pressed.
•
NOTE: The ONLINE/OFFLINE button must be pressed for a minimum of 4 seconds.
93
USB1 and USB2 ports—Provide a removable media interface through which you can install Junos OS
•
manually. Junos OS supports USB versions 3.0, 2.0, and 1.1.
RESET button—Reboots the Routing Engine when pressed.
•
SSD1 (primary) and SSD2 (secondary) Solid-state drives (SSD)—Two 200-GB each slim solid-state drives
•
that provide storage for software images, configuration files, microcode, log files, and memory dumps.
The Routing Engine reboots from SSD2 when boot from primary SSD1 fails.
Captive screws—Secures the Routing Engine.
•
SRX5K-RE3-128G Routing Engine LEDs
Each Routing Engine has four LEDs that indicate its status. The LEDs, labeled ONLINE, OK/FAIL, MASTER,
DISK1, and DISK2, are located directly on the faceplate of the Routing Engine. Table 32 on page 93
describes the Routing Engine LEDs and their states.
Table 32: SRX5K-RE3-128G Routing Engine LEDs
DescriptionStateColorLabel
Blinking slowlyGreenONLINE
Routing Engine is in the process of booting BIOS and the
host OS.
Routing Engine is in the process of booting Junos OS.Blinking rapidly
Routing Engine is not online or not functioning normally.Off-
Table 32: SRX5K-RE3-128G Routing Engine LEDs (continued)
DescriptionStateColorLabel
Routing Engine is powering up.On steadilyGreenOK/FAIL
94
On steadilyYellow
Routing Engine is not powering up, which indicates
failure.
This Routing Engine is the primary Routing Engine.On steadilyBlueMASTER
Indicates presence of disk activity.BlinkingGreenDISK1
There is no disk activity.Off-
Indicates presence of disk activity.BlinkingGreenDISK2
There is no disk activity.Off-
SRX5K-RE3-128G Routing Engine Boot Sequence
Booting in a SRX5K-RE3-128G Routing Engine follows this sequence—the USB device, SSD1, SSD2, and
LAN. SSD1 is the primary boot device. The boot sequence is tried twice for SSD1 and SSD2.
SRX5800 Line Cards and Modules
IN THIS SECTION
SRX5400, SRX5600, and SRX5800 Services Gateway Card Overview | 95
Cards Supported on SRX5400, SRX5600, and SRX5800 Services Gateways | 96
SRX5800 Services Gateway Card Cage and Slots | 100
SRX5800 Services Gateway SPC Description | 102
Services Processing Card SRX5K-SPC-2-10-40 Specifications | 102
Services Processing Card SRX5K-SPC-4-15-320 Specifications | 107
Services Processing Card SRX5K-SPC3 Specifications | 112
Modular Port Concentrator (SRX5K-MPC) Specifications | 116
MIC with 20x1GE SFP Interfaces (SRX-MIC-20GE-SFP) | 118
MIC with 10x10GE SFP+ Interfaces (SRX-MIC-10XG-SFPP) | 124
MIC with 1x100GE CFP Interface (SRX-MIC-1X100G-CFP) | 129
MIC with 2x40GE QSFP+ Interfaces (SRX-MIC-2X40G-QSFP) | 131
SRX5K-MPC3-40G10G Specifications | 132
SRX5K-MPC3-100G10G Specifications | 135
SRX5K-IOC4-10G Specifications | 138
SRX5K-IOC4-MRAT Specifications | 141
SRX5800 Services Gateway Interface Card Description | 145
I/O Card SRX5K-40GE-SFP Specifications | 147
I/O Card SRX5K-4XGE-XFP Specifications | 149
Flex I/O Card (SRX5K-FPC-IOC) Specifications | 151
Flex I/O Card Port Module SRX-IOC-16GE-SFP Specifications | 153
Flex I/O Card Port Module SRX-IOC-16GE-TX Specifications | 155
95
Flex I/O Card Port Module SRX-IOC-4XGE-XFP Specifications | 156
SRX5400, SRX5600, and SRX5800 Services Gateway Card Overview
The cards described in this guide let you upgrade and customize your SRX5400, SRX5600, or SRX5800
Services Gateway to suit the needs of your network. The following types of cards are available for the
SRX5400, SRX5600, and SRX5800 Services Gateways:
I/O cards (IOCs) provide additional physical network connections to the services gateway. Their primary
•
function is to deliver data packets arriving on the physical ports to the Services Processing Cards (SPCs)
and to forward data packets out the physical ports after services processing.
Flex IOCs have two slots for port modules that add additional physical network connections to the
•
services gateway. Like IOCs, their primary function is to deliver data packets arriving on the physical
ports to the SPCs and to forward data packets out the physical ports after services processing.
Modular Port Concentrators (MPCs) have slots on the front panel that accept smaller cards called Modular
•
Interface Cards (MICs). Each MIC has one or more physical interfaces on it. An MPC with MICs installed
functions in the same way as a regular I/O card (IOC), but allows greater flexibility in adding different
types of Ethernet ports to your services gateway. MPCs and MICs are similar in form and function to
Flex IOCs and port modules. However, the two use different form-factors, so you cannot install port
modules in an MPC, nor can you install MICs in a Flex IOC.
Services Processing Cards (SPCs) provide the processing power to run integrated services such as firewall,
•
IPsec and IDP. All traffic traversing the services gateway is passed to an SPC to have services processing
applied to it.
Switch Control Boards (SCBs) power on and power off IOCs and SPCs; control clocking and system
•
resets; and control booting, monitor, and system functions. Each SCB has a slot in the front panel for a
Routing Engine.
Although the following modules are not cards in the sense of having a form-factor that fits the card cage
of the SRX5400, SRX5600, and SRX5800 Services Gateway, this guide also addresses the following modules
that fit into certain SRX5400, SRX5600, and SRX5800 Services Gateway cards:
Routing Engines fit into slots in SCBs and maintain the routing tables, manage the routing protocols used
•
on the device, control the device interfaces and some chassis components, and provide the interface
for system management and user access to the device.
Port modules fit into slots in Flex IOCs and add additional physical network interface ports to the services
•
gateway.
Modular Interface Cards (MICs) fit into slots in MPCs and add additional physical network interface ports
•
to the services gateway. MPCs and MICs are similar in form and function to Flex IOCs and port modules.
However, the two use different form-factors, so you cannot install port modules in an MPC, nor can you
install MICs in a Flex IOC.
96
Cards Supported on SRX5400, SRX5600, and SRX5800 Services Gateways
Table 33 on page 96 describes the cards and other modules supported on the SRX5400, SRX5600, and
SRX5800 Services Gateways.
Table 33: Supported Cards for SRX5400, SRX5600, and SRX5800 Services Gateways
Last Supported Junos
Earliest Supported Junos OS Release
Card Name and Model
Number
SPCs
SRX5K-SPC-2-10-40
Specifications” on page 102
OS Release
SRX5400, SRX5600,
and SRX5800SRX5600 and SRX5800SRX5400
15.1X499.2Not supported“Services Processing Card
Table 33: Supported Cards for SRX5400, SRX5600, and SRX5800 Services Gateways (continued)
Last Supported Junos
Earliest Supported Junos OS Release
OS Release
97
Card Name and Model
Number
SRX5K-SPC-4-15-320
Specifications” on page 107
SRX5K-SPC3 Specifications”
on page 112
Interface Cards
Specifications” on page 147
Specifications” on page 149
(SRX5K-FPC-IOC)
Specifications” on page 151
SRX5400, SRX5600,
and SRX5800SRX5600 and SRX5800SRX5400
12.1X44-D1012.1X46-D10“Services Processing Card
18.2R1-S118.2R1-S1“Services Processing Card
15.1X499.2Not supported“I/O Card SRX5K-40GE-SFP
15.1X499.2Not supported“I/O Card SRX5K-4XGE-XFP
15.1X4910.2Not supported“Flex I/O Card
(SRX5K-MPC) Specifications”
on page 116
Specifications” on page 132
Specifications” on page 135
Specifications” on page 138
Specifications” on page 141
SCBs
12.1X46-D1012.1X46-D10“Modular Port Concentrator
15.1X49-D1015.1X49-D10“SRX5K-MPC3-40G10G
15.1X49-D1015.1X49-D10“SRX5K-MPC3-100G10G
19.3R119.3R1“SRX5K-IOC4-10G
19.3R119.3R1“SRX5K-IOC4-MRAT
Table 33: Supported Cards for SRX5400, SRX5600, and SRX5800 Services Gateways (continued)
Last Supported Junos
Earliest Supported Junos OS Release
OS Release
98
Card Name and Model
Number
SRX5K-SCB Specifications” on
page 69
SRX5K-SCBE Specifications”
on page 73
SRX5K-SCB3 Specifications”
on page 76
SRX5K-SCB4 Specifications”
on page 79
Other modules
SRX5400, SRX5600,
and SRX5800SRX5600 and SRX5800SRX5400
15.1X499.212.1X46-D10“Switch Control Board
12.1X47-D1512.1X47-D15“Switch Control Board
15.1X49-D1015.1X49-D10“Switch Control Board
19.3R1Not supported“Switch Control Board
SRX-IOC-16GE-SFP
Specifications” on page 153
SRX-IOC-16GE-TX
Specifications” on page 155
SRX-IOC-4XGE-XFP
Specifications” on page 156
Interface
(SRX-MIC-1X100G-CFP)” on
page 129
10.2Not supported“Flex I/O Card Port Module
10.2Not supported“Flex I/O Card Port Module
10.2Not supported“Flex I/O Card Port Module
12.1X46-D1012.1X46-D10“MIC with 1x100GE CFP
Table 33: Supported Cards for SRX5400, SRX5600, and SRX5800 Services Gateways (continued)
Last Supported Junos
Earliest Supported Junos OS Release
OS Release
99
Card Name and Model
Number
Interfaces
(SRX-MIC-2X40G-QSFP)” on
page 131
Interfaces
(SRX-MIC-10XG-SFPP)” on
page 124
Interfaces
(SRX-MIC-20GE-SFP)” on
page 118
SRX5K-RE-13-20
Specifications” on page 82
SRX5400, SRX5600,
and SRX5800SRX5600 and SRX5800SRX5400
12.1X46-D1012.1X46-D10“MIC with 2x40GE QSFP+
12.1X46-D1012.1X46-D10“MIC with 10x10GE SFP+
12.1X47-D1012.1X47-D10“MIC with 20x1GE SFP
12.3X489.212.1X46-D10“Routing Engine
12.1X47-D1512.1X47-D15“Routing Engine
SRX5K-RE-1800X4
Specifications” on page 87
19.3R119.3R1“Routing Engine
SRX5K-RE3-128G
Specifications” on page 90
Figure 41 on page 100 is an interoperability matrix that describes the compatibility between various interface
cards for the SRX5400, SRX5600, and SRX5800 Services Gateways.
Figure 41: Interoperability Matrix for SRX5400, SRX5600, and SRX5800 Services Gateways
g004198
SRX5400
SRX5K-SCB
SRX5K-RE-13-20
SRX5K-SPC-2-10-40
SRX5K-SPC-4-15-320
SRX5K-SPC3
SRX5K-IOC4-10G
SRX5K-IOC4-MRAT
SRX5K-SCB3
SRX5K-RE3-128G
SRX5600/SRX5800
SRX5K-SCB4
SRX5K-RE3-128G
SRX5600/SRX5800
SRX5K-SCB4
SRX5K-RE-1800X4
SRX5K-4XGE-XFP
SRX5K-40GE-SFP
SRX5K-FPC-IOC
SRX5K-MPC3-40G10G
SRX5K-MPC3-100G10G
SRX5K-SCB3
SRX5K-RE-1800X4
SRX5K-SCBE
SRX5K-RE-1800X4
SRX5600/SRX5800
SRX5K-SCB
SRX5K-RE-13-20
Model Numbers
SRX5K-RE-1800X4
SRX5K-SCBE
SRX5600/SRX5800
SRX5K-SCB
SRX5K-RE-13-20
SRX5400
SRX5K-SCB
SRX5K-RE-13-20
SRX5K-SCB3
SRX5K-RE-1800X4
SRX5K-SPC-2-10-40
SRX5K-SPC-4-15-320
SRX5K-SPC3
SRX5K-MPC3-40G10G
SRX5K-MPC3-100G10G
SRX5K-IOC4-10G
SRX5K-IOC4-MRAT
SRX5K-SCB3
SRX5K-RE3-128G
SRX5600/SRX5800
SRX5K-SCB4
SRX5K-RE3-128G
SRX5600/SRX5800
SRX5K-SCB4
SRX5K-RE-1800X4
SRX5K-4XGE-XFP
SRX5K-40GE-SFP
SRX5K-FPC-IOC
SRX5K-MPC
(SRX-MIC-20GE-SFP)
(SRX-MIC-10XG-SFPP)
(SRX-MIC-1X100G-CFP)
(SRX-MIC-2X40G-QSFP)
SRX5K-MPC
( SRX-MIC-20GE-SFP), (SRX-MIC-10XG-SFPP)
(SRX-MIC-1X100G-CFP), (SRX-MIC-2X40G-QSFP)
100
SRX5800 Services Gateway Card Cage and Slots
The card cage is the set of 14 vertical slots in the front of the chassis where you install cards. The slots
are numbered from left to right. Table 34 on page 101 describes the types of cards that you can install into
each slot.
Loading...