OSI:
7-app
6-present
5-session
4-transport
3-net
2-data-link
1-phy<\/p>\n\n\n\n
tcp\/ip
4-app
3-transport
2-internet\/network
1-link\/network access<\/p>\n\n\n\n
Please do
not throw
sausage pizza
away<\/p>\n\n\n\n
Armadilloes
take in
new ants<\/p>\n\n\n\n
MAC= Media Access Contor
LLC= Link Local Control<\/p>\n\n\n\n
L2 Header: preamble+sfd src mac, dst.mac, type data FCS<\/p>\n\n\n\n
L3 ipv4: Header 20B ipv6: header:<\/p>\n\n\n\n
L4: syn, sync-ack, ack<\/p>\n\n\n\n
hub=layer1 repeater<\/p>\n\n\n\n
qos: classification, marking, mgmt\/policy<\/p>\n\n\n\n
binary\/decimal\/hexadecimal<\/p>\n\n\n\n
MAC address (48bits): OUI (24) + Interface ID (24)<\/p>\n\n\n\n
ipv4: 32b (8×4)<\/p>\n\n\n\n
unicast, multicast, broadcast
01005E
224-239<\/p>\n\n\n\n
subnetting\/supernetting
ARP<\/p>\n\n\n\n
128bits – 8xquartet(16b)<\/p>\n\n\n\n
broadcast: none!!!!!!!!!
multicast: MAC: 33-33:.. \/\/ FF00::\/8
link-local: always assigned, no routable: FE80::\/10 or \/64
unique local: like priv ip, routable internally. FC00::\/7 or FD00::\/8
global unicast: pub ip, routable internet 2000::\/3<\/p>\n\n\n\n
2001:1234:5678::\/48
2001:1234:5678:9abc::\/64
2001:1234:5678:9abc:d:e:f:0\/127<\/p>\n\n\n\n
NDP = Neighbor Discovery Protocol -> ICMP + link-local + multicast.<\/p>\n\n\n\n
Router Discovery:
router solicitation: RS, request sent by host, dst.ip: FF02::2 (all routers) use link-local as src.ip
router advertisement: RA, reply sent by router, src.ip link-local, dst.ip = FF02::1 (all hosts in link-local). It contains global unicast range<\/p>\n\n\n\n
SLAAC: Stateless Address AutoConfiguration
1) obtain prefix through RA
2) host creates its own interface id.
2.1: use EUI-64: use MAC (48b) and filling -> 1st half MAC + FFFE + 2nd half MAC + flip the 7th bit of the MAC.<\/p>\n\n\n\n
OS fundamentals, user interface, configuration basics, operational monitoring and maintenance
routing fundamentasl, routing policy and firewall filters.<\/p>\n\n\n\n
lab: ex2200, vMX, vQFX, vSRX (kvm)<\/p>\n\n\n\n
juniper vlabs – are free!<\/p>\n\n\n\n
junos genius -> get voucher for jncia, and train for -s and -p.
-> day-one books!<\/p>\n\n\n\n
daemons
cp (routing-engine) vs dp (packet-fw-engine). fw-table is created by RE and then copied to the PFE<\/p>\n\n\n\n
exception traffic = non-transit traffic -> goes to RE
PFE can handle ICMP responses<\/p>\n\n\n\n
major.minor.X = security (srx)
F = feature
R = bug fixes<\/p>\n\n\n\n
request system zeroize
mgd = mgmt daemon
\/config -> junos config<\/p>\n\n\n\n
% -> freebsd cli<\/p>\n\n\n\n
\n-> operationa mode<\/p>\n\n\n\n
-> config mode<\/h1>\n<\/blockquote>\n\n\n\n
show interfaces terse<\/p>\n\n\n\n
ctr-a -> begining line
-e -> end line<\/p>\n\n\n\n\nhelp tip cli
help topic x
help apropos interfaces<\/p>\n<\/blockquote>\n\n\n\nshow x | save var\/tmp\/text.txt
file show var\/tmp\/text\/txt
delet
show conf | display x<\/p>\n\n\n\n8 Create Junos Base Config<\/h2>\n\n\n\n
operator: clear network reset trace view
read-only: view
super-user: all
unauthorized: none<\/p>\n\n\n\nsnmp: privacy -> priv+auth
auth -> authNopriv<\/p>\n\n\n\n[] -> list<\/p>\n\n\n\n
syslog: timestamp hostname facility:message
set sytesm syslog file x host y
server -> makes the device a syslog server !!!
0 emergency (kernel)
1 alert (user-space)
2 critical
3 error
4 warning
5 notice
6 info
7 any (debug)<\/p>\n\n\n\nset vlans NAME vlan-id x
set interfaces ge-0\/0\/0 unit 0 family ethernet-switching port-mode access vlan members NAME
trunk vlan members [NAME1 NAME2]
srx -> untrust \/ trust<\/p>\n\n\n\n9 Configure Junos Interfaces<\/h2>\n\n\n\n
set vlans NAME vlan-id 25
set interfaces vlan.25 family inet address IP\/24
set vlans NAME l3-interface vlan.25<\/p>\n\n\n\neui-64: use mac 48b
set address 2001:db8:dead:beef::\/65 eui-64<\/p>\n\n\n\n10 Junos config datastores<\/h2>\n\n\n\n
active config
configure -> candidate config global
configure private -> private candidate per user
configure exclusive -> lock candidate for other users. No commited changes are lost after exit
request system configuration rescue save
rollback rescue
edit archival configuration
set archive-sites http\/ftp\/scp:user:pass@url
set transfer-on commit<\/p>\n\n\n\nencrypt: aes\/des<\/p>\n\n\n\n
11 Routing<\/h2>\n\n\n\n
inet.0 ipv4 unicast
inet.1 ipv4 multicasts<\/p>\n\n\n\nRE: creates Routing table, then Forwarding table, then it is copied to the PFE<\/p>\n\n\n\n
1 – most specific
2 – lowest AD<\/p>\n\n\n\n0 directed connect<\/code><\/pre>\n\n\n\nAD: 5 static routes
10 ospf internal
15 isis
150 ospf ext
160 isis ext
170 bgp<\/p>\n\n\n\nset routing-options static route DST\/x next-hop NH1
qualified-next-hop NH2 preference 7<\/p>\n\n\n\nospf:
224.0.0.5: hello
.6: DR<\/p>\n\n\n\nedit protocols ospf
set area 0.0.0.0 interfaces X.0<\/p>\n\n\n\nedit routing instance
set NAME_INSTANCE interface x.0
routing-options static route
protocols ospf area 0.0.0.2 interface y.0<\/p>\n\n\n\nthere are several types of routing-instances: ie:
vrf: for mpls, RD, RT, import\/export
virtual-router: no import\/expot, no rd,rt<\/p>\n\n\n\nipv6 static route:
edit routing-options
set rib inet6.0 static route X\/Y next-hop Z<\/p>\n\n\n\nedit protocols ospf3
set area 0.0.0.0 iterface X.0<\/p>\n\n\n\n12 multi-vendor ospf<\/h2>\n\n\n\n
router id – hightest lo.IP or explicit
hello: router-id,
area-id,
timers (hello interval: 10 dead-interval: 40 (ethernet)),
area-types: stub, total-stub, nssa
mtu (stuck in ex-start)<\/p>\n\n\n\nLSA-types:<\/p>\n\n\n\n
set routing-options router-id IP-Lo;
edit protocols
set ospf area 0.0.0.0 interface lo0.0;<\/p>\n\n\n\nshow ospf database: ID = LSA ID !!!!<\/p>\n\n\n\n
ref bw \/ interface bw = metric<\/p>\n\n\n\n
ref bw = 100 mpbs Juniper<\/p>\n\n\n\n
set protocols ospf reference-banwidth (bits per second!!!!)<\/p>\n\n\n\n
13 Route policies<\/h2>\n\n\n\n
routing table modification: import\/export policies
route distribution: think of the perspective of the routing table<\/p>\n\n\n\nedit policy-options
set policy-statement ISIS2OSPF from protocol isis then accept
from prefix-list NAME then xxx
from route-filter IP\/x orlonger<\/p>\n\n\n\nset policy-statement TEST1 term T1 from protocol isis then accept
set policy-statement TEST1 term T2 from prefix-list NAME then tag 1
then accept<\/p>\n\n\n\nedit protocols ospf
export ISIS2OSPF<\/p>\n\n\n\nedit policy-options
set prefix-list PL IP\/x<\/p>\n\n\n\nbgp:
edit policy-options
set policy-statement BGP-TEST1 then you can change\/add many BGP attributes<\/p>\n\n\n\ndefault routing policies junos
bgp: default import: accept all
export: readvertise all (exception iBGP for split-horizon)<\/p>\n\n\n\nmpls: default import: accept all
export: readvertise all<\/p>\n\n\n\nisis: default import: accept all
export: reject everything<\/p>\n\n\n\nldp: default import: accept all
export: reject all<\/p>\n\n\n\nospf: default import: accept all (you can’t override this by ospf design)
export: reject all<\/p>\n\n\n\n14 Firewall Filter (ACLs) – no stateful !!! -> need input\/output !!!<\/h2>\n\n\n\n
data-plane modification -> accept, drop, QoS, change NH, RPF, logging, counting<\/p>\n\n\n\n
edit firewall
edit family inet
set filter NAME term T1 from source-addess IP\/32
from destination-port 80
then accept
term then discard (IMPLICIT!!!)<\/p>\n\n\n\nedit interfaces xe-0\/0\/0 unit 0 family inet
set filter input FILTER-NAME<\/p>\n\n\n\ndiscard -> drop + no logging (silently)
reject -> drop + sent ICMP<\/p>\n\n\n\nqos:
policer<\/p>\n\n\n\nedit firewall
set policer SSH-BE if-exceeding bandwithd-limit 100m then forwarding-class best-effort<\/p>\n\n\n\nedit firewall family inet filter NAME
set term T1 then forwarding-class assured-forward
then policer SSH-BE<\/p>\n\n\n\nRPF:
strict
loose
edit interfaces ge-0\/0\/0 unit 0 family inet
set rpf-check fail-filter NAME-FF<\/p>\n\n\n\n15- Operate and Maintain Junos<\/h2>\n\n\n\n
show system storage
alarms
commit
connections
statistics<\/p>\n\n\n\nshow chassis alarms
environment
hardware
routing-engine<\/p>\n\n\n\nshow virtual-chassis<\/p>\n\n\n\n
show chassis fpc<\/p>\n\n\n\n
show route table X.0 IP\/X extensive<\/p>\n\n\n\n
show interfaces ge-0\/0\/0.0 extensive
show interfaces ge-0\/0\/0 extensive -> MAC address, CoS<\/p>\n\n\n\nmonitor interface ge-0\/0\/0 -> statistics live
monitor interface traffic -> all interfaces stats
monitor traffic interface ge-0\/0\/0.0 extensive -> tcpdump<\/p>\n\n\n\nrequest system halt -> graceful shutdown<\/p>\n\n\n\n
request system storage cleanup dry-run<\/p>\n\n\n\n
request system software add \/var\/tmp\/xxxx.tgz reboot<\/p>\n\n\n\n
=================<\/p>\n\n\n\n
JNCIA – Official training<\/h1>\n\n\n\n
Note: The process of moving routes between a routing protocol and the routing table is described always from the point of view of the routing table. That is, routes are imported into a routing table from a routing protocol and
routes are exported from a routing table to a routing protocol.<\/p>\n\n\n\nIntro JunOS on-demand<\/h2>\n\n\n\n
l2mtu: 1514s (ethernet header) _> physical interface<\/p>\n\n\n\n
terse, brief, detail, extensive<\/p>\n\n\n\n
set cli screen-width 1000<\/p>\n\n\n\n
configure exclusive -> lock for one user, but other users can’t commit
configure private -> only commit from top, locks hierachy where you have made a change
commit at
clear system commit<\/p>\n\n\n\ndisable (put at the end) -> interfaces and protocols -> “delete \u2026. disable”
deactivate (put at the beginning) -> nearly anything, it is commenting out a piece of config -> use “activate”<\/p>\n\n\n\nrename: rename address 1.1.1.1\/31 to address 1.1.1.11\/31
replace patten: replace pattern xe-0\/1\/2 with xe-0\/1\/4 (hierarchy aware!)
copy \/ move
insert
annotate
save
load
wildcard delete<\/p>\n\n\n\nemacs short-cuts
ctr-w delete word
ctr-a – beginning
ctr-e – end
ctr-k – delete everything from cursor onwards
esc-b – backwards 1 word
esc-f – forwards 1 word<\/p>\n\n\n\nshow route -> Local (ip configured in interface)s<\/p>\n\n\n\n
\n
- = chosen active route between two or more protocols<\/li>\n<\/ul>\n\n\n\n
\n= best path between two paths from the same protocol<\/p>\n<\/blockquote>\n\n\n\n
set routing-options static route IP\/23 next-hop IP
rib inet6.0 static route \u2026<\/p>\n\n\n\n::\/0<\/p>\n\n\n\n
show route protocol static<\/p>\n\n\n\n
ospf => LSA
isis => LSPs<\/p>\n\n\n\nset protocols ospf[3] area 0 inteface xe0\/0\/0.0 [passive]<\/p>\n\n\n\n
hello: 224.0.0.5, area, hello, dead=4xhello<\/p>\n\n\n\n
ospf3 -> ipv6<\/p>\n\n\n\n
ex3400<\/p>\n\n\n\n
show configuration vlans
set vlans NAME vlan-id X<\/p>\n\n\n\nset interfaces ge-0\/0\/0 unit 0 family ethernet-swtiching interface-mode [access|trunk]
vlan members [NAME1 NAME2]<\/p>\n\n\n\nset interface ge-0\/0\/1 vlan-taggig !!!!
unit 10 vlan-id 10
family inet address IP1\/24<\/p>\n\n\n\nshow ethernet-switching table vlan NAME<\/p>\n\n\n\n
MistAI:
port securitu. loop preventio, poe, vc, macsec, evpn-vxlans<\/p>\n\n\n\nmissing vlans, wifi, port bounced, etc. onboaring, AI. Marvis (assistant)
wifi assurance, wired assurance, wan assurance<\/p>\n\n\n\nmgmt port: fxp0, em0,<\/p>\n\n\n\n
manual
set system time-zone UTC<\/p>\n\n\n\n\nset date yyyymmddhhmm<\/p>\n<\/blockquote>\n\n\n\n
ntp
set system ntp server IP
show system uptime
show ntp associations<\/p>\n\n\n\nset system name-server IP<\/p>\n\n\n\n
set system login user NAME class CLASS authentication encrypted-password xxxxx
$6$ -> SHA-512<\/p>\n\n\n\nsuper-user, unauthorized, operator (clear, view, reset, trace, network), read-only (view)
flags: all, clear, configure, network (ping, traceroute), view (no-config-show, system-wide, routing, protocol)<\/p>\n\n\n\nj-web SRX, a few mx.
configure, monitor, status, upgrade<\/p>\n\n\n\nset system service web-management https system-generated-certificate<\/p>\n\n\n\n
rs-232<\/p>\n\n\n\n
set system login messag “xxx” \/\/ before login
set system login annoucement (for after login) “xxxx”<\/p>\n\n\n\ndelete system commit factory-settings<\/p>\n\n\n\n
\nrequest system configuration rescue save<\/p>\n\n\n\n
rollbackc rescue<\/h1>\n\n\n\n
request system reboot\/halt [both-routing-engines]<\/p>\n<\/blockquote>\n\n\n\n
ztp
dhcp (DORA)
discover(broadcast)
offer
request: replies with the same ip info
acknowledge:<\/p>\n\n\n\ndhcp-options:<\/p>\n\n\n\n
routing-engine: CPU, monitoring, mgmt, system, chassis, protocol, routing, junos, ping\/traceroute
writw forwarding-table and send to data-plane (NH IP, MAC and out interface))<\/p>\n\n\n\nRIB, FIB<\/p>\n\n\n\n
PFE: muscle. ASIC (<> CPU) Express – PTX, Trio – MX
look-up, forward traffic, manipulate (ethernet headers, vlans, TTL)
cos: rate-limit, fw filters, priority<\/p>\n\n\n\nexception traffic: traffic to\/from RE (loopback), ssh, protocols, ping, ARP, SNMP. TTL, ICMP replies<\/p>\n\n\n\n
\n
- some PFE CPU can handle some exception traffic.<\/li>\n<\/ul>\n\n\n\n
start shell
daemos: routing (rpd), chassis, interfaces, mgmt (mgd), snmp, dcd (device control daemon), ppmd (periodic packet mgmt daemon)<\/p>\n\n\n\njunos EVO
basedon linux, whitebox, integrate with 3rd party
daemons are individual apps, independently of evo, data is stored in distributed database, apps can be restarted without losing state<\/p>\n\n\n\nsyslog:
facility:severity:destinatin
show log FILENAME
show log interactive-commands | match USER<\/p>\n\n\n\nmonitor start messages -> real time
monotor stop<\/p>\n\n\n\nhelp syslog CODE_MESSAGE<\/p>\n\n\n\n
set system syslog host IP any notice<\/p>\n\n\n\n
severity:
0 emergency
1 alert
2 critical
3 error
4 warning
5 notice
6 info
7 any<\/p>\n\n\n\nping IP size PAYLOAD!!! (it is not MTU, it doesn include icmp header = 8, ip header=20b) so for mtu=1500 you need payload 1472
output shows the size of payload+icmo header only !!!!<\/p>\n\n\n\ntraceroute doesnt show return path!!!<\/p>\n\n\n\n
show ipv6 neighbors (via NDP)<\/p>\n\n\n\n
monitor interfce traffic -> real time stats all interaces
monitor interface xe-0\/1\/5 -> real time stts interface with errors
monitor traffic interface xe-0\/1\/5 -> tcpdump<\/p>\n\n\n\n\nhelp apropos COMMAD (fnd command)
help topic ospf dead-interval (documentation)
help referece ospf aread (configuration syntax reminders)<\/p>\n<\/blockquote>\n\n\n\nstatefull ->hw fw — security policies
stateless -> check per packet, no idea about session, lighter load — firewall filters (ACL)<\/p>\n\n\n\nterm -> from: 0+ match conditions -> then: 1+ actions<\/p>\n\n\n\n
match -> nearlu any field in header ipv4,6 and ethernet<\/p>\n\n\n\n
\n
- same condition -> OR (match source IP1, match source IP2)<\/li>\n\n\n\n
- diff condition -> AND (match source IP, match dst port 343) discard -> drop silent
reject -> drop + icmp unreachable<\/li>\n<\/ul>\n\n\n\nenable count, sample, duplicate, policing (rate-limit), cos, redirect, load-balance<\/p>\n\n\n\n
default in fw filter: discard -> implicit term<\/p>\n\n\n\n
set firewall family inet filter NAME term TERM from CONDITIONS then AcTIONS<\/p>\n\n\n\n
show config firewall family inet filter XXX | display set relative<\/p>\n\n\n\n
\n
- count\/log has “accept” implicit<\/li>\n<\/ul>\n\n\n\n
trade-offs<\/p>\n\n\n\n
set interface xe-0\/1\/4 unit 0 famiy inet filter output NAME<\/p>\n\n\n\n
show fiewall counter COUNTER filter NAME<\/p>\n\n\n\n
insert firewall family inter filter NAME term TERMy before\/after term TERMx<\/p>\n\n\n\n
\n\n\n\nset firewall family inet filter NAME apply-flags omit -> doesnt show i
set protocols ospf apply-flags omit -> doesnt show (hidden command<\/p>\n\n\n\nshow omit -> display set or display omit<\/p>\n\n\n\n
\n\n\n\nprotect protocols lldp -> lock config, can’t delete
unprotect protocols lldp<\/p>\n\n\n\n—<\/p>\n\n\n\n
annonate system “comment”<\/p>\n\n\n\n
\n\n\n\nfile list \/var\/log
file show FILE
show commands | save LOG.txt
show config | compare FILE1
file compare files FILE1 FILE2<\/p>\n\n\n\n—<\/p>\n\n\n\n
load override terminal –> replace entirely config via CLI
load merge terminal [relative] -> add your config to the current config<\/p>\n\n\n\nload merge|override FILE.txt<\/p>\n\n\n\n
load set terminal<\/p>\n\n\n\n
—<\/p>\n\n\n\n
set system archival configuration transfer-on-commit<\/p>\n\n\n\n
\n\n\n\nset groups MTU_9192 interfaces mtu 9192
set interfaces apply-groups MTU_9192
set interfaces xxxx apply-groups-except MTU_9192<\/p>\n\n\n\nshow .. | display set | display inheritance [no-comments]<\/p>\n\n\n\n
edit interfaces interfaces-range RANGE
set member-range ge-0\/0\/10 to ge-0\/0\/12
set unit 0 family ethernet-switching vlan members VLAN<\/p>\n\n\n\nwildcard delete interface xe-0\/1\/*<\/p>\n\n\n\n
\n\n\n\nloopback:
set interfaces lo0 unit 0 family inet address ip\/32
set protocols ospa area 0 interface lo0.0<\/p>\n\n\n\nRE protection -> firewall filter in lo0<\/p>\n\n\n\n
router-id: lowest lo0 ip<\/p>\n\n\n\n
irb: integrated routing and bridging -> default fw for vlan<\/p>\n\n\n\n
set interfaces irb unit 10 family inet address ip1\/24
20 \u2026
set vlans NAME l3-interface irb.10
NAME2 20<\/p>\n\n\n\nshow vlans NAM detail ->shows irb<\/p>\n\n\n\n
\n\n\n\nSeveral IPs in interface:
Is-preferred: the source to devices in the same subnet (lowes IP in subnet)
Is-Primary: the source to devices on a different subnet. (lowest IP from all subnets)<\/p>\n\n\n\n
\n\n\n\necmp: equal-cost multipath<\/p>\n\n\n\n
LAG: link agg groups: LB per flow
set chassis aggregated-devices ethernet device-count X (>=1)<\/p>\n\n\n\nset interfces ae0 unit 0 family inet address x
aggregated-ether-options lacp active<\/p>\n\n\n\nset interfaces ge-0\/0\/0 gigether-options 802.3ad ae0<\/p>\n\n\n\n
\n\n\n\nautomation:
XPATH
netconf<\/p>\n\n\n\n
\n\n\n\nset policy-options prefix-list DIRECT apply-path “interfaces <> unit <<\/em>> family inet addres <*>”<\/p>\n\n\n\n
firewall filter: match-codition+(-except) -> protocol-except udp, destination-port-except 443, et<\/p>\n\n\n\n
log + count => implicit “accept” but you can use “next term”<\/p>\n\n\n\n
show firewall log<\/p>\n\n\n\n
show class-of-service forwarding-class<\/p>\n\n\n\n
show route forwarding-table destination IP\/x table default<\/p>\n\n\n\n
authentication order: if one fails\/unreachable, check with the following. If all unreachable, checks local<\/p>\n\n\n\n
custom login commands: (command1) | (command2)<\/p>\n\n\n\n
order: permissions -> deny-commands\/config -> allow-command\/config (allow override deny!!!)<\/p>\n\n\n\n
<\/p>\n","protected":false},"excerpt":{"rendered":"
1 OSI:7-app6-present5-session4-transport3-net2-data-link1-phy tcp\/ip4-app3-transport2-internet\/network1-link\/network access Please donot throwsausage pizzaaway Armadilloestake innew ants MAC= Media Access ContorLLC= Link Local Control L2 Header: preamble+sfd src mac, dst.mac, type data FCS L3 ipv4: Header 20B ipv6: header: L4: syn, sync-ack, ack hub=layer1 repeater qos: classification, marking, mgmt\/policy 2 Describe Ethernet and ipv4 binary\/decimal\/hexadecimal MAC address (48bits): OUI (24) + … Continue reading “JNCIA”<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-2011","post","type-post","status-publish","format-standard","hentry","category-networks"],"_links":{"self":[{"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/posts\/2011","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/comments?post=2011"}],"version-history":[{"count":1,"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/posts\/2011\/revisions"}],"predecessor-version":[{"id":2012,"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/posts\/2011\/revisions\/2012"}],"wp:attachment":[{"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/media?parent=2011"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/categories?post=2011"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.thomarite.uk\/index.php\/wp-json\/wp\/v2\/tags?post=2011"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}