SDN/SDDC Retreat in Miami, Florida (November 4th-6th)
Separate SDN hype from real life!

Junosphere: the first impressions

Abner (@abnerg) Germanow and Dan (@jonahsfo) Backman are as good as their word: this week I got access to Junosphere, a great network-in-the-Clouds solution from Juniper. You might be familiar with Olive, the “non-existent” way of running Junos on an x86 machine (including a VM); Junosphere is the supported version of the same concept, including a real forwarding plane (it’s my understanding Olive lacks that, which makes certain protocols behave in unexpected ways).

Compared to other similar offerings (including our remote labs and Cisco’s IOS-in-a-Cloud), Junosphere has several significant advantages:

You can create your own topologies that include as many routers as you need, allowing you to recreate complex routing/migration scenarios. Although the topology file format is a bit arcane at the moment, I had no problems creating my own topologies (but you already know I’m more than a bit crazy). For saner people, there’s a tool that can take your OSPF or IS-IS database and turn it into a Junosphere topology.

The VJX1000 router (Junos-in-a-VM) supports Gigabit Ethernet interfaces and Junosphere allows you to connect them together with simple virtual bridges. Think of those bridges as cables/hubs; unlike Dynamips, Junosphere bridges have no explicit VLAN support or access/trunk links. Serial or POS interfaces are also not available.

Just keep adding topologies

You can access your virtual routers directly using Juniper’s SSL VPN solution. After starting the SSL VPN connection, you can use SSH to connect to the devices or SCP to copy files to/from them.

Obviously, once you have SSH up and running, you can test all sorts of Junos automation/SDK tricks (starting with NETCONF).

You can connect physical devices to Junosphere. A Junosphere connector (a VM running in VMware environment – be it VMware Player, Workstation or ESX) can establish a link between any Junosphere bridge and an interface (vNIC) in your workstation/hypervisor host. You can use it to connect Junosphere LAN to your physical interface or to anything else VMware player can use (including a tap interface of a Linux box ... you do know why that’s interesting, don’t you?).

Unfortunately, somehow the SSL VPN Java applet didn’t work on my Linux machine (Fedora 14 with Firefox 3.6.23) where I run all the other simulation stuff; I had to use Internet Explorer on my Windows laptop to connect to the labs.

You can load and save your topologies and configurations. This was one of the best features (from my perspective). The default configuration of the VJX routers includes an event trigger that transfers current configuration to a FTP server every time you execute a commit. Regardless of what you do, a copy of the configuration is always in a safe place and can be saved through the web-based UI and later copied (as a .tgz file) to your workstation.

You can choose the Junos release you want to run. At the moment, the set of releases you can choose from is fixed, but it does include a stable-and-supported release, an experimental release (11.4) and a few others.

You can run other VMs in the same sandbox, including Centos servers, Junos Space and a few test tools.

Do I like Junosphere? Absolutely. Are there any drawbacks? Sure, like every other system Junosphere has a few glitches, from UI that could use some improvements to minor configuration nuisances that can play havoc with the configuration saving feature ... but the major roadblock is the current pricing and go-to-market strategy.

The current list price for Junosphere is $5/router/day (Amazon’s small EC2 instance costs $2.04 per day and is charged by the minute), and you can only purchase it through regular Juniper’s sales channels (including partners). That makes perfect sense if you’re working on a customer demo, proof-of-concept or a migration scenario for a large enterprise network ... and you have direct contact with Juniper or got Junosphere access as a deal closing sweetener. But do you really think a Juniper partner would be interested in getting a $250 purchase order for a 10-day access to a 5-router Junosphere environment? How about a simple use-your-credit-card approach Cisco is using with its e-learning labs?

How many router-days did you say you want to buy?

The per-day charging model is another pain point. With proper preparation, planning and scheduling, the current model could work for me or someone who has to get fluent with Junos really fast to support the next project. Obviously I would be throwing away more than two thirds of the allotted time because I’m too old to work on the routers for more than 8-10 hours a day, but paying $50/day (10-router topology) for something that helps you earn real money shouldn’t be a showstopper.

However, I really like the ability to run a lab for an hour or so to test the next idea that hatched in the back of my brains while I was working on something else. Paying for the whole day just to be able to test a few things might not be too expensive in absolute terms, but definitely feels like a total waste of money.

Juniper’s marketing is doing a great job trying to persuade networking engineers to embrace Junos – from Day One books to Junos as a second language and FastTrack programs. It’s too bad they’re not making the final step and getting everyone interested in kicking some Junos tires (or working really hard on mastering another platform) a simple on-demand access to live Junos environment.

Disclosure: Juniper indirectly covered some of my travel expenses during the Networking Tech Field Day by participating in the event, and gave me free access to Junosphere, but nobody has ever asked me to write about their products or solutions. Read the full disclosure (or more precise ones by Tony Bourke or Matt Simmons).


  1. Welcome to the JUNOS world dear great Ivan. My opinion anyway is that switching from a technology (cisco) to another (Juniper, Huawei, ecc.) is easy if you have a deep knowledge of the protocols you want to work with. That's my experience, first theory, then practice. I don't know what you think about that.
    I still do not know Junosphere (we have a lab with real J-series routers). It looks like a nice stuff, but for the beginners I think Olive will be enough, even if some functionalities, more or less advanced are missing, (NAT, L2VPN, ecc.).
    By the way, if you download the "JUNOS Advanced_IPv6_Config", you will find at page 18 the section "Advertising IPv6 Routes Over IPv4 Sessions". Very clumsy configuration, but it seems to work !

  2. Theory first then practice - couldn't agree more:

    Olive, Junosphere, Dynamips: it helps a lot if your simulated gear works as closely as possible to the real one (modulo queuing and a few other QoS features). That's how Dynamips behaves (and that's people love it so much). Having a half-broken simulation that doesn't do features X, Y and Z always leave you wondering: is it me or the platform?

    IPv6-over-IPv4BGP: Got it up and running in 3 seconds. Cisco's implementation is way more complex as you can't configure ::ffff:a.b.c.d/128 on loopbacks.

  3. Spot on! I am interested to do SEC Track of Junos Certification but getting an affordable rack rental is impossible.Juniper must offer something similar to the lines of CLN.But i must say their Study guides are awesome.

  4. The part I don't get here (and the same with Cisco IOU labs) is what the two vendors don't get about mind-share and charging for this stuff. Why not provide this sort of thing as a free VM one can run at home -- the CPU and memory burden are probably benign compared to Dynamips. The more skills and familiarity people have with the C or J product line, the more likely they are to recommend them. Particularly with Cisco, if they can get people started on certification, people can stay quite busy with just Cisco certs (which would preclude acquiring Juniper skills). And vice versa.

  5. That's the part nobody outside of C&J gets. Might have something to do with lawyers and/or the obsession to run everything as a profit center :-P

  6. Juniper charging per virtual router in the Junosphere must be a joke. Imagine if Microsoft made us pay for each concurrent word document opened.

  7. For someone who is gonna poke around JunOS for the first time, I don't think this makes much sense. Being brand new to JUNOS you're going to be stumbling around in the dark and to know that you will pay $5 per router even if you have 2-3 hours after work for a quick session has gotta hurt.

    A Juniper SRX is about $500-600 brand new. Maybe it might make sense to do all your stumbling around on something like that and use JUNOSphere when you are simulating a deployment.

    Oh, BTW if Juniper insists on this why don't they take your payment/scheduling directly? I don't think my company account representative wants to talk to me about $100.

  8. Hi Ivan, Thanks for your posting those juniper. I'm new to a juniper and i heard this junosphere. I got a basic know how of juniper. I'd like to know how to setup a topoloogy on junos. Do you have a video or link how to setup a customize topology.



  9. Hi,

    Is it possible to customize the topology like copying the lab topology from JNCIE bootcamp?



  10. Abner and Dan,

    It's been a long time since you posted this analysis of Junosphere. I want to invite you to test-drive our latest R3.0 and give us your impressions.

    You will find out that its new UI facilitates the creation and launch of topologies simplifyng the processes of older releases.

    Visit us at so we enable your test drive.

    Pilar Somohano -- Junosphere


You don't have to log in to post a comment, but please do provide your real name/URL. Anonymous comments might get deleted.

Ivan Pepelnjak, CCIE#1354 Emeritus, is an independent network architect. He has been designing and implementing large-scale data communications networks as well as teaching and writing books about advanced technologies since 1990. See his full profile, contact him or follow @ioshints on Twitter.