Friday 27 July 2012
JUNIPER 1 Days e-book
JUNIPER
root@juniper1# set class super-user >> set user dengan port dan level user
#set system >>>>> hierarcy as a reminder of basic settings that you can configure
#set system root-authentication plain-text-password >>>>> set password user
#set system services ssh root-login deny >>>>> Strengthen security by only allowing root access from the console port:
#set system host-name juniper1 >>>>> Set hostname
#set interfaces lo0 unit 0 family inet address 192.26.0.110/32 >>> set int looback
#set system backup-router 172.26.31.1 destination 172.16.0.0/12 >>> system backup
#set system name-server 172.26.27.2 >>> set name-server DNS
#set system domain-name enterprise.com >>> domain set
#set system domain-search [enterprise.com department.enterprise.com] >>> searching domain ip address
#show host 172.26.27.44 >>> used configured hostname resolution to the ip address
44.27.26.172.in-addr.arpa domain name pointer juniper1.enterprise.com.
#show host juniper1
juniper1.enterprise.com has address 172.26.27.44
#root@juniper1> set date 200901011200.00 >>> set time
The date is in the form (YYYYMMDDhhmm.ss)
#set system ntp boot-server 172.26.27.4 >>> time boot server cinchornyses
#set system ntp server 172.26.27.4 >>> keep ti device synchronize with priodic updates
#set system time-zone Europe/Amsterdam >>> zone time
#set date ntp 172.26.27.4
7 Apr 10:32:27 ntpdate[4544]: step time server 172.26.27.4 offset -0.000565 sec
#show system uptime >>>>
#show ntp associations
#show ntp status
#show chassis hardware
#show configuration interfaces ge-0/0/1
#show configuration interfaces ge-0/0/1 | display set
#set system login message “ Welcome \n to \n JUNOS Training\n “
$ ssh juniper1
Welcome
to
JUNOS Training
root@juniper1’s password:
#set system login message “WARNING: Unauthorized access is an offense”
#set system login announcement “Maintenance scheduled 11PM to 2AM tonight”
#edit system login
#edit user jadmin
[edit system login user jadmin]
#root@juniper1# set full-name "Juniper Network Administrator"
edit system login user jadmin]
#root@juniper1# set uid 1250
[edit system login user jadmin]
#root@juniper1# set authentication plain-text-password
New password: ####
Retype new password: ####
n super-user: all permissions
n operator: clear, network, reset, trace, and view permissions
n read-only: view permissions
n unauthorized: no permissions
[edit system login user jadmin]
#root@juniper1# set class super-user
#set system login class netops
#set system login class netops permissions all
How to start the configuration for authentication by a RADIUS server:
Use the following steps to start the set up of user authentication by a
RADIUS server. Complete the set up with steps 3 and 4 below
#set system radius-server 172.26.27.5
2. You can also include a shared secret in the command statement and,
if necessary, the port number:
#set system radius-server 172.26.27.5 port 1845
#set system radius-server 172.26.27.5 secret Jun1p3r
How to start the configuration for authentication by a TACACS+ server:
Use the following steps to start the set up of user authentication by a
TACACS+ server. Complete the set up with steps 3 and 4 below.
1. Enter the TACACS+ configuration statement:
#set system tacplus-server 172.26.27.6
#set system tacplus-server 172.26.27.6 port 49
#set system tacplus-server 172.26.27.6 secret Jun1p3r
#set system authentication-order [ radius tacplus password ]
#set system login user adminjlk class super-user
#set system login user remote class super-user
Corret userlogin
#root@juniper1> show log messages
Apr 22 13:38:58 juniper1 sshd[17859]: Accepted password for adminjlk from 172.30.48.10
port 61729 ssh2
no user login
Apr 22 13:40:57 juniper1 sshd[17873]: Failed password for username from 172.30.48.10
port 64844 ssh2
Subscribe to:
Post Comments (Atom)
MANTAAP SOBATKU, SALAM KENAL YAAH
ReplyDeletesama kang EKA.. salam kenal juga
ReplyDeletesama kang EKA.. salam kenal juga
ReplyDelete