Friday, 27 July 2012

JUNIPER 1 Days e-book


JUNIPER
root@juniper1# set class super-user   >> set user dengan port dan level user
#set system                                              >>>>> hierarcy as a reminder of basic settings that you can configure
#set system root-authentication plain-text-password      >>>>> set password user
#set system services ssh root-login deny                 >>>>> Strengthen security by only allowing root access from the console port:
#set system host-name juniper1                           >>>>> Set hostname
#set interfaces lo0 unit 0 family inet address 192.26.0.110/32         >>> set int looback
#set system backup-router 172.26.31.1 destination 172.16.0.0/12        >>> system backup
#set system name-server 172.26.27.2                 >>> set name-server DNS
#set system domain-name enterprise.com              >>> domain set
#set system domain-search [enterprise.com department.enterprise.com]     >>> searching domain ip address
#show host 172.26.27.44                                                  >>> used configured hostname resolution to the ip address
44.27.26.172.in-addr.arpa domain name pointer juniper1.enterprise.com.
#show host juniper1
juniper1.enterprise.com has address 172.26.27.44
#root@juniper1> set date 200901011200.00                                 >>> set time
The date is in the form (YYYYMMDDhhmm.ss)
#set system ntp boot-server 172.26.27.4                                  >>> time boot server cinchornyses
#set system ntp server 172.26.27.4                                       >>> keep ti device synchronize with priodic updates
#set system time-zone Europe/Amsterdam                                   >>> zone time
#set date ntp 172.26.27.4
7 Apr 10:32:27 ntpdate[4544]: step time server 172.26.27.4 offset -0.000565 sec
#show system uptime                                                      >>>>
#show ntp associations
#show ntp status
#show chassis hardware
#show configuration interfaces ge-0/0/1
#show configuration interfaces ge-0/0/1 | display set
#set system login message “ Welcome \n to \n JUNOS Training\n “
$ ssh juniper1
Welcome
to
JUNOS Training
root@juniper1’s password:
#set system login message “WARNING: Unauthorized access is an offense”
#set system login announcement “Maintenance scheduled 11PM to 2AM tonight”
#edit system login
#edit user jadmin
[edit system login user jadmin]
#root@juniper1# set full-name "Juniper Network Administrator"
edit system login user jadmin]
#root@juniper1# set uid 1250
[edit system login user jadmin]
#root@juniper1# set authentication plain-text-password
New password: ####
Retype new password: ####
n super-user: all permissions
n operator: clear, network, reset, trace, and view permissions
n read-only: view permissions
n unauthorized: no permissions
[edit system login user jadmin]
#root@juniper1# set class super-user
#set system login class netops
#set system login class netops permissions all

How to start the configuration for authentication by a RADIUS server:
Use the following steps to start the set up of user authentication by a
RADIUS server. Complete the set up with steps 3 and 4 below
#set system radius-server 172.26.27.5
2. You can also include a shared secret in the command statement and,
if necessary, the port number:
#set system radius-server 172.26.27.5 port 1845
#set system radius-server 172.26.27.5 secret Jun1p3r



How to start the configuration for authentication by a TACACS+ server:
Use the following steps to start the set up of user authentication by a
TACACS+ server. Complete the set up with steps 3 and 4 below.
1. Enter the TACACS+ configuration statement:
#set system tacplus-server 172.26.27.6
#set system tacplus-server 172.26.27.6 port 49
#set system tacplus-server 172.26.27.6 secret Jun1p3r
#set system authentication-order [ radius tacplus password ]
#set system login user adminjlk class super-user
#set system login user remote class super-user

Corret userlogin
#root@juniper1> show log messages
Apr 22 13:38:58 juniper1 sshd[17859]: Accepted password for adminjlk from 172.30.48.10
port 61729 ssh2

no user login
Apr 22 13:40:57 juniper1 sshd[17873]: Failed password for username from 172.30.48.10
port 64844 ssh2


3 komentar:

Post a Comment