Juniper EX S/W Factory Reset

[edit]
user@switch# load factory-default

[edit]
user@switch# run request system zeroize

[edit]
user@switch# delete system commit factory-settings
[edit]
user@switch# set system root-authentication plain-text-password
[edit]
user@switch# commit

Firmware Upgrade

root@SW2# run request system software add /var/tmp/jinstall-ex-4300-14.1X53-D45.3-domestic-signed.tgz reboot

root@SW2# run monitor traffic interface ge-0/2/0 size 1500

저작자표시

'업무이야기 > Network' 카테고리의 다른 글

Juniper request chassis cluster failover redundancy-group (0)	2021.03.16
Juniper EX4200 VLAN Configuration (0)	2021.01.25
Alteon-5208 Default Config (0)	2021.01.20
Aruba AP CLI (0)	2021.01.17
Juniper OSPF & LACP SW#6(EX2300) Configuration Sample (0)	2021.01.11

SRX 설정 방법 (CLI)

설정 확인(operation 모드)
show configuration | display set | match “찾을 문자 또는 숫자”

어드레스 추가(configure 모드)

set security zones security-zone untrust address-book address 222_231_7_233 222.231.7.233/32
set security zones security-zone trust address-book address 2_2_2_2 2.2.2.2/32

어드레스 그룹 추가(configure 모드)

set security zones security-zone untrust address-book address-set 222_231_7_233/222_231_7_234 address 222_231_7_233
set security zones security-zone untrust address-book address-set 222_231_7_233/222_231_7_234 address 218_50_1_87

어드레스 그룹 삭제(해당 그룹에서 특정 IP만 제거)

delete security zones security-zone untrust address-book address-set 1_1_1_1/2_2_2_2 address 1_1_1_1

스케줄 추가(configure 모드)

set schedulers scheduler 2014_07_31_23_59 start-date 2012-08-24.00:00 stop-date 2014-07-31.23:59

서비스 추가

#set applications application tcp_3659 term tcp_3659 protocol tcp
#set applications application tcp_3659 term tcp_3659 source-port 1024-65535
#set applications application tcp_3659 term tcp_3659 destination-port 3659-3659

서비스 그룹 추가

#set applications application-set ping_tcp_3659 application junos-ping
#set applications application-set ping_tcp_3659 application tcp_3659

정책 추가(configure 모드)

set security policies from-zone untrust to-zone trust policy 120824001 match source-address 61_110_18_122
set security policies from-zone untrust to-zone trust policy 120824001 match destination-address 121_254_132_198
set security policies from-zone untrust to-zone trust policy 120824001 match application http_8080
set security policies from-zone untrust to-zone trust policy 120824001 then permit
set security policies from-zone untrust to-zone trust policy 120824001 then log session-close
set security policies from-zone untrust to-zone trust policy 120824001 scheduler-name 2014_07_31_23_59

우선순위 변경(configure 모드)

insert security policies from-zone untrust to-zone trust policy 130115001 before policy 706 (인바운드))

정책 우선순위 확인(operation 모드)

show security policies from-zone untrust to-zone trust
show security policies from-zone trust to-zone untrust

정책 리스트 확인

op policy.xml

Source NAT 추가 (configure 모드)

set security nat source rule-set rs_1 to zone untrust --> 초기생성 시 적용
set security nat source rule-set rs_1 rule rule_14 match source-address 172.30.148.0/24
set security nat source rule-set rs_1 rule rule_14 then source-nat pool pool_14
set security nat source pool pool_14 address 117.52.15.148/32

Destination NAT 추가 (configure 모드)

set security nat destination rule-set dnat_1 from zone untrust
set security nat destination rule-set dnat_1 rule dnat_rule_1 match destination-address 123.123.123.123/32
set security nat destination rule-set dnat_1 rule dnat_rule_1 then destination-nat pool dpool_1
set security nat destination pool dpool_1 address 192.168.10.50/32

dnat port(포트 포워딩)

set security nat destination pool dpool_1 address 192.168.10.50/32
set security nat destination pool dpool_1 address port 80
set security nat destination rule-set dnat_1 from zone untrust
set security nat destination rule-set dnat_1 rule dnat_rule_1 match destination-address 123.123.123.123/32
set security nat destination rule-set dnat_1 rule dnat_rule_1 match destination-port 33890
set security nat destination rule-set dnat_1 rule dnat_rule_1 then destination-nat pool dpool_1

routing 추가 (configure 모드)

set routing-options static route 172.30.148.0/24 next-hop 172.16.20.113

session 확인

show security flow session source-prefix
show security flow session destination-prefix 출발지IP

show | compare 로 추가되는 설정 확인 후, commit check로 정상적으로 들어가는지 확인 후 commit 적용 필요~!!!!
#show | compare
#commit check
#commit
#exit

저작자표시

'업무이야기 > Security' 카테고리의 다른 글

Fortinet FortiSandbox Shell mode (0)	2021.01.20
Fortinet FortiSandbox Clustering Setting sample (0)	2021.01.20
Axgate [SSL VPN] Configuration (8)	2021.01.17
Juniper Firewall Transparent mode config (Example) (0)	2018.05.08
SRX Syslog config (0)	2018.05.08

EX2300 OSPF SW#6

root@SW6# run show configuration | display set
set version 18.2R3-S4.1
set groups phcd_user_script system scripts op allow-url-for-python
set groups phcd_user_script system scripts language python
set apply-groups phcd_user_script
set system root-authentication encrypted-password "$6$3j/9mf6Z$Q7PfdiLhdbyl8p2NMZHzaJav3dW6N6QQ4AvYwobvDAfZpSh/seAisGmpHrj7uieu/a3mNSk5BJwi3976.79GX0"
set system host-name SW6
set system auto-snapshot
set system services telnet
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set system syslog file interface daemon info
set system syslog file interface match "SNMP_TRAP_LINK_UP|SNMP_TRAP_LINK_DOWN"
set chassis alarm management-ethernet link-down ignore
set interfaces ge-0/0/0 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/1 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/2 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/3 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/4 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/5 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/6 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/7 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/8 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/9 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/10 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/11 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/12 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/13 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/14 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/15 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/16 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/17 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/18 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/19 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/20 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/21 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/22 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/23 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/24 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/25 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/26 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/27 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/28 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/29 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/30 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/31 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/32 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/33 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/34 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/35 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/36 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/37 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/38 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/39 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/40 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/41 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/42 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/43 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/44 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/45 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/46 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/47 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/1/0 hold-time up 0
set interfaces ge-0/1/0 hold-time down 500
set interfaces ge-0/1/0 unit 0 family inet address 46.46.46.2/24
set interfaces xe-0/1/0 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/1/1 hold-time up 0
set interfaces ge-0/1/1 hold-time down 500
set interfaces ge-0/1/1 unit 0 family inet address 56.56.56.2/24
set interfaces xe-0/1/1 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/1/2 unit 0 family ethernet-switching storm-control default
set interfaces xe-0/1/2 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/1/3 unit 0 family ethernet-switching storm-control default
set interfaces xe-0/1/3 unit 0 family ethernet-switching storm-control default
set interfaces irb unit 0 family inet address 7.7.6.1/24
set interfaces lo0 unit 0 family inet address 6.6.6.6/32
set forwarding-options storm-control-profiles default all
set forwarding-options analyzer gm-monitor input ingress interface ge-0/1/0.0
set forwarding-options analyzer gm-monitor input ingress interface ge-0/1/1.0
set forwarding-options analyzer gm-monitor output interface ge-0/0/47.0
## set routing-options forwarding-table export ecmp
## set routing-options forwarding-table ecmp-fast-reroute
set protocols ospf area 0.0.0.0 interface ge-0/1/0.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface ge-0/1/1.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface irb.0 passive
set protocols ospf3 area 0.0.0.0 interface ge-0/1/0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/1/1.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface lo0.0 passive
set protocols ospf3 area 0.0.0.0 interface irb.0 passive
set protocols lldp interface all
set protocols lldp-med interface all
set protocols igmp-snooping vlan default
set policy-options policy-statement ecmp then load-balance per-packet
set vlans default vlan-id 1
set vlans default l3-interface irb.0

저작자표시

'업무이야기 > Network' 카테고리의 다른 글

Alteon-5208 Default Config (0)	2021.01.20
Aruba AP CLI (0)	2021.01.17
Juniper OSPF & LACP SW#5(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#4(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#3(EX4200) Configuration Sample (0)	2021.01.11

EX4200 OSPF & LACP SW#5

root@SW5# run show configuration | display set
set version 12.3R9.4
set system host-name SW5
set system root-authentication encrypted-password "$1$Qp95b1m6$tJ8VgCXGWXsD6sAZdt9HV1"
set system login user isd uid 1001
set system login user isd class super-user
set system login user isd authentication encrypted-password "$1$IF2vLXTr$w48niAOWvFxZ5xT/93Tg2/"
set system services telnet
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set system syslog file interface daemon info
set system syslog file interface match "SNMP_TRAP_LINK_UP|SNMP_TRAP_LINK_DOWN"
set chassis aggregated-devices ethernet device-count 4
set chassis alarm management-ethernet link-down ignore
set chassis auto-image-upgrade
set interfaces ge-0/0/0 hold-time up 0
set interfaces ge-0/0/0 hold-time down 500
set interfaces ge-0/0/0 unit 0 family inet address 56.56.56.1/24
set interfaces ge-0/0/1 unit 0 family ethernet-switching
set interfaces ge-0/0/2 hold-time up 0
set interfaces ge-0/0/2 hold-time down 500
set interfaces ge-0/0/2 ether-options 802.3ad ae0
set interfaces ge-0/0/3 hold-time up 0
set interfaces ge-0/0/3 hold-time down 500
set interfaces ge-0/0/3 ether-options 802.3ad ae0
set interfaces ge-0/0/4 unit 0 family ethernet-switching
set interfaces ge-0/0/5 unit 0 family ethernet-switching
set interfaces ge-0/0/6 unit 0 family ethernet-switching
set interfaces ge-0/0/7 unit 0 family ethernet-switching
set interfaces ge-0/0/8 unit 0 family ethernet-switching
set interfaces ge-0/0/9 unit 0 family ethernet-switching
set interfaces ge-0/0/10 unit 0 family ethernet-switching
set interfaces ge-0/0/11 unit 0 family ethernet-switching
set interfaces ge-0/0/12 unit 0 family ethernet-switching
set interfaces ge-0/0/13 unit 0 family ethernet-switching
set interfaces ge-0/0/14 unit 0 family ethernet-switching
set interfaces ge-0/0/15 unit 0 family ethernet-switching
set interfaces ge-0/0/16 unit 0 family ethernet-switching
set interfaces ge-0/0/17 unit 0 family ethernet-switching
set interfaces ge-0/0/18 hold-time up 0
set interfaces ge-0/0/18 hold-time down 500
set interfaces ge-0/0/18 unit 0 family inet address 45.45.45.2/24
set interfaces ge-0/0/19 unit 0 family ethernet-switching
set interfaces ge-0/0/20 unit 0 family ethernet-switching
set interfaces ge-0/0/21 unit 0 family ethernet-switching
set interfaces ge-0/0/22 unit 0 family ethernet-switching
set interfaces ge-0/0/23 unit 0 family ethernet-switching
set interfaces ge-0/1/0 unit 0 family ethernet-switching
set interfaces xe-0/1/0 unit 0 family ethernet-switching
set interfaces ge-0/1/1 unit 0 family ethernet-switching
set interfaces xe-0/1/1 unit 0 family ethernet-switching
set interfaces ge-0/1/2 unit 0 family ethernet-switching
set interfaces xe-0/1/2 unit 0 family ethernet-switching
set interfaces ge-0/1/3 unit 0 family ethernet-switching
set interfaces ae0 aggregated-ether-options lacp active
set interfaces ae0 unit 0 family inet address 35.35.35.2/24
set interfaces lo0 unit 0 family inet address 5.5.5.5/32
set routing-options forwarding-table export ecmp
set routing-options forwarding-table ecmp-fast-reroute
set protocols ospf area 0.0.0.0 interface ge-0/0/0.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface ge-0/0/18.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface ae0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/0/18.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/0/0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface lo0.0 passive
set protocols ospf3 area 0.0.0.0 interface ae0.0 interface-type p2p
set protocols igmp-snooping vlan all
set protocols igmp-snooping vlan default
set protocols lldp interface all
set protocols lldp-med interface all
set policy-options policy-statement ecmp then load-balance per-packet
set ethernet-switching-options storm-control interface all
set poe interface all

저작자표시

'업무이야기 > Network' 카테고리의 다른 글

Aruba AP CLI (0)	2021.01.17
Juniper OSPF & LACP SW#6(EX2300) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#4(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#3(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#2(EX4200) Configuration Sample (0)	2021.01.11

EX4200 OSPF & LACP SW#4

root@SW4# run show configuration | display set
set version 12.3R9.4
set system host-name SW4
set system root-authentication encrypted-password "$1$yQEBAZvn$SM4sjpM10uofVrAQOXHWg0"
set system login user isd uid 1001
set system login user isd class super-user
set system login user isd authentication encrypted-password "$1$q9p/yZQ1$3AFSsQ1YZNxqAPtF2R3dy."
set system services telnet
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set system syslog file interface daemon info
set system syslog file interface match "SNMP_TRAP_LINK_UP|SNMP_TRAP_LINK_DOWN"
set chassis aggregated-devices ethernet device-count 4
set chassis alarm management-ethernet link-down ignore
set chassis auto-image-upgrade
set interfaces ge-0/0/0 hold-time up 0
set interfaces ge-0/0/0 hold-time down 500
set interfaces ge-0/0/0 unit 0 family inet address 46.46.46.1/24
set interfaces ge-0/0/1 unit 0 family ethernet-switching
set interfaces ge-0/0/2 hold-time up 0
set interfaces ge-0/0/2 hold-time down 500
set interfaces ge-0/0/2 ether-options 802.3ad ae0
set interfaces ge-0/0/3 hold-time up 0
set interfaces ge-0/0/3 hold-time down 500
set interfaces ge-0/0/3 ether-options 802.3ad ae0
set interfaces ge-0/0/4 unit 0 family ethernet-switching
set interfaces ge-0/0/5 unit 0 family ethernet-switching
set interfaces ge-0/0/6 unit 0 family ethernet-switching
set interfaces ge-0/0/7 unit 0 family ethernet-switching
set interfaces ge-0/0/8 unit 0 family ethernet-switching
set interfaces ge-0/0/9 unit 0 family ethernet-switching
set interfaces ge-0/0/10 unit 0 family ethernet-switching
set interfaces ge-0/0/11 unit 0 family ethernet-switching
set interfaces ge-0/0/12 unit 0 family ethernet-switching
set interfaces ge-0/0/13 unit 0 family ethernet-switching
set interfaces ge-0/0/14 unit 0 family ethernet-switching
set interfaces ge-0/0/15 unit 0 family ethernet-switching
set interfaces ge-0/0/16 unit 0 family ethernet-switching
set interfaces ge-0/0/17 unit 0 family ethernet-switching
set interfaces ge-0/0/18 hold-time up 0
set interfaces ge-0/0/18 hold-time down 500
set interfaces ge-0/0/18 unit 0 family inet address 45.45.45.1/24
set interfaces ge-0/0/19 unit 0 family ethernet-switching
set interfaces ge-0/0/20 unit 0 family ethernet-switching
set interfaces ge-0/0/21 unit 0 family ethernet-switching
set interfaces ge-0/0/22 unit 0 family ethernet-switching
set interfaces ge-0/0/23 unit 0 family ethernet-switching
set interfaces ge-0/1/0 unit 0 family ethernet-switching
set interfaces xe-0/1/0 unit 0 family ethernet-switching
set interfaces ge-0/1/1 unit 0 family ethernet-switching
set interfaces xe-0/1/1 unit 0 family ethernet-switching
set interfaces ge-0/1/2 unit 0 family ethernet-switching
set interfaces xe-0/1/2 unit 0 family ethernet-switching
set interfaces ge-0/1/3 unit 0 family ethernet-switching
set interfaces ae0 aggregated-ether-options lacp active
set interfaces ae0 unit 0 family inet address 24.24.24.2/24
set interfaces lo0 unit 0 family inet address 4.4.4.4/32
set routing-options forwarding-table export ecmp
set routing-options forwarding-table ecmp-fast-reroute
set protocols ospf area 0.0.0.0 interface ge-0/0/0.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface ge-0/0/18.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface ae0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/0/0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/0/18.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface lo0.0 passive
set protocols ospf3 area 0.0.0.0 interface ae0.0 interface-type p2p
set protocols igmp-snooping vlan all
set protocols igmp-snooping vlan default
set protocols lldp interface all
set protocols lldp-med interface all
set policy-options policy-statement ecmp then load-balance per-packet
set ethernet-switching-options storm-control interface all
set poe interface all

저작자표시

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#6(EX2300) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#5(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#3(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#2(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#1(EX2300) Configuration Sample (0)	2021.01.11

EX4200 OSPF & LACP SW#3

root@SW3# run show configuration | display set
set version 12.3R9.4
set system host-name SW3
set system root-authentication encrypted-password "$1$BnuMHZY/$aBijYYixSLmMp10AgebVH/"
set system login user isd uid 1001
set system login user isd class super-user
set system login user isd authentication encrypted-password "$1$D9Ehoc0n$1X9.3nHgjxy2ldjOkaTDU1"
set system services telnet
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set system syslog file interface daemon info
set system syslog file interface match "SNMP_TRAP_LINK_UP|SNMP_TRAP_LINK_DOWN"
set chassis aggregated-devices ethernet device-count 4
set chassis alarm management-ethernet link-down ignore
set chassis auto-image-upgrade
set interfaces ge-0/0/0 hold-time up 0
set interfaces ge-0/0/0 hold-time down 500
set interfaces ge-0/0/0 unit 0 family inet address 13.13.13.2/24
set interfaces ge-0/0/1 unit 0 family ethernet-switching
set interfaces ge-0/0/2 hold-time up 0
set interfaces ge-0/0/2 hold-time down 500
set interfaces ge-0/0/2 ether-options 802.3ad ae0
set interfaces ge-0/0/3 hold-time up 0
set interfaces ge-0/0/3 hold-time down 500
set interfaces ge-0/0/3 ether-options 802.3ad ae0
set interfaces ge-0/0/4 unit 0 family ethernet-switching
set interfaces ge-0/0/5 unit 0 family ethernet-switching
set interfaces ge-0/0/6 unit 0 family ethernet-switching
set interfaces ge-0/0/7 unit 0 family ethernet-switching
set interfaces ge-0/0/8 unit 0 family ethernet-switching
set interfaces ge-0/0/9 unit 0 family ethernet-switching
set interfaces ge-0/0/10 unit 0 family ethernet-switching
set interfaces ge-0/0/11 unit 0 family ethernet-switching
set interfaces ge-0/0/12 unit 0 family ethernet-switching
set interfaces ge-0/0/13 unit 0 family ethernet-switching
set interfaces ge-0/0/14 unit 0 family ethernet-switching
set interfaces ge-0/0/15 unit 0 family ethernet-switching
set interfaces ge-0/0/16 unit 0 family ethernet-switching
set interfaces ge-0/0/17 unit 0 family ethernet-switching
set interfaces ge-0/0/18 hold-time up 0
set interfaces ge-0/0/18 hold-time down 500
set interfaces ge-0/0/18 unit 0 family inet address 23.23.23.2/24
set interfaces ge-0/0/19 unit 0 family ethernet-switching
set interfaces ge-0/0/20 unit 0 family ethernet-switching
set interfaces ge-0/0/21 unit 0 family ethernet-switching
set interfaces ge-0/0/22 unit 0 family ethernet-switching
set interfaces ge-0/0/23 unit 0 family ethernet-switching
set interfaces ge-0/1/0 unit 0 family ethernet-switching
set interfaces xe-0/1/0 unit 0 family ethernet-switching
set interfaces ge-0/1/1 unit 0 family ethernet-switching
set interfaces xe-0/1/1 unit 0 family ethernet-switching
set interfaces ge-0/1/2 unit 0 family ethernet-switching
set interfaces xe-0/1/2 unit 0 family ethernet-switching
set interfaces ge-0/1/3 unit 0 family ethernet-switching
set interfaces ae0 aggregated-ether-options lacp active
set interfaces ae0 unit 0 family inet address 35.35.35.1/24
set interfaces lo0 unit 0 family inet address 3.3.3.3/32
set routing-options forwarding-table export ecmp
set routing-options forwarding-table ecmp-fast-reroute
set protocols ospf area 0.0.0.0 interface ge-0/0/0.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface ge-0/0/18.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface ae0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/0/0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/0/18.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface lo0.0 passive
set protocols ospf3 area 0.0.0.0 interface ae0.0 interface-type p2p
set protocols igmp-snooping vlan all
set protocols igmp-snooping vlan default
set protocols lldp interface all
set protocols lldp-med interface all
set policy-options policy-statement ecmp then load-balance per-packet
set ethernet-switching-options storm-control interface all
set poe interface all

저작자표시

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#5(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#4(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#2(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#1(EX2300) Configuration Sample (0)	2021.01.11
Aruba Controller CLI (0)	2018.05.08

EX4200 OSPF & LACP SW#2

root@SW2# run show configuration | display set
set version 12.3R9.4
set system host-name SW2
set system root-authentication encrypted-password "$1$vcM9OeNk$kg8GieApqxCPRRoYsSEBE/"
set system login user isd uid 1001
set system login user isd class super-user
set system login user isd authentication encrypted-password "$1$q6DRrUnW$6Z8kjfmMnvCL5JCRESE9r."
set system services telnet
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set system syslog file interface daemon info
set system syslog file interface match "SNMP_TRAP_LINK_UP|SNMP_TRAP_LINK_DOWN"
set chassis aggregated-devices ethernet device-count 4
set chassis alarm management-ethernet link-down ignore
set chassis auto-image-upgrade
set interfaces ge-0/0/0 hold-time up 0
set interfaces ge-0/0/0 hold-time down 500
set interfaces ge-0/0/0 unit 0 family inet address 12.12.12.2/24
set interfaces ge-0/0/1 unit 0 family ethernet-switching
set interfaces ge-0/0/2 hold-time up 0
set interfaces ge-0/0/2 hold-time down 500
set interfaces ge-0/0/2 ether-options 802.3ad ae0
set interfaces ge-0/0/3 hold-time up 0
set interfaces ge-0/0/3 hold-time down 500
set interfaces ge-0/0/3 ether-options 802.3ad ae0
set interfaces ge-0/0/4 unit 0 family ethernet-switching
set interfaces ge-0/0/5 unit 0 family ethernet-switching
set interfaces ge-0/0/6 unit 0 family ethernet-switching
set interfaces ge-0/0/7 unit 0 family ethernet-switching
set interfaces ge-0/0/8 unit 0 family ethernet-switching
set interfaces ge-0/0/9 unit 0 family ethernet-switching
set interfaces ge-0/0/10 unit 0 family ethernet-switching
set interfaces ge-0/0/11 unit 0 family ethernet-switching
set interfaces ge-0/0/12 unit 0 family ethernet-switching
set interfaces ge-0/0/13 unit 0 family ethernet-switching
set interfaces ge-0/0/14 unit 0 family ethernet-switching
set interfaces ge-0/0/15 unit 0 family ethernet-switching
set interfaces ge-0/0/16 unit 0 family ethernet-switching
set interfaces ge-0/0/17 unit 0 family ethernet-switching
set interfaces ge-0/0/18 hold-time up 0
set interfaces ge-0/0/18 hold-time down 500
set interfaces ge-0/0/18 unit 0 family inet address 23.23.23.1/24
set interfaces ge-0/0/19 unit 0 family ethernet-switching
set interfaces ge-0/0/20 unit 0 family ethernet-switching
set interfaces ge-0/0/21 unit 0 family ethernet-switching
set interfaces ge-0/0/22 unit 0 family ethernet-switching
set interfaces ge-0/0/23 unit 0 family ethernet-switching
set interfaces ge-0/1/0 unit 0 family ethernet-switching
set interfaces xe-0/1/0 unit 0 family ethernet-switching
set interfaces ge-0/1/1 unit 0 family ethernet-switching
set interfaces xe-0/1/1 unit 0 family ethernet-switching
set interfaces ge-0/1/2 unit 0 family ethernet-switching
set interfaces xe-0/1/2 unit 0 family ethernet-switching
set interfaces ge-0/1/3 unit 0 family ethernet-switching
set interfaces ae0 aggregated-ether-options lacp active
set interfaces ae0 unit 0 family inet address 24.24.24.1/24
set interfaces lo0 unit 0 family inet address 2.2.2.2/32
set routing-options forwarding-table export ecmp
set protocols ospf area 0.0.0.0 interface ge-0/0/0.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface ge-0/0/18.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface ae0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/0/0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/0/18.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface lo0.0 passive
set protocols ospf3 area 0.0.0.0 interface ae0.0 interface-type p2p
set protocols igmp-snooping vlan default
set protocols lldp interface all
set protocols lldp-med interface all
set policy-options policy-statement ecmp then load-balance per-packet
set ethernet-switching-options storm-control interface all
set poe interface all

저작자표시

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#4(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#3(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#1(EX2300) Configuration Sample (0)	2021.01.11
Aruba Controller CLI (0)	2018.05.08
Aruba Controller 초기 설정 (0)	2018.05.08

EX2300 OSPF SW#1

root# run show configuration | display set
set version 18.1R3.3
set system host-name SW1
set system auto-snapshot
set system root-authentication encrypted-password "$6$FK6HaYna$XQSYA7w2uEinKCHLLhzBlvYfkbl.PPMzpSLf0N6QumR7o5JPOXEHl2.i7pNV6eYpVwk1oJzpIG6Awk/cBswS9/"
set system login user isd uid 1001
set system login user isd class super-user
set system login user isd authentication encrypted-password "$6$3HkcK3hW$EFdDbLKU0l96FZjjx/w2/iC/eYADMC7Kr4GVRIxQikLb.fGgI8mn92nLYaf9SttFEV1Luy.8NjoJrmWswnxlX/"
set system services telnet
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set system syslog file interface daemon info
set system syslog file interface match "SNMP_TRAP_LINK_UP|SNMP_TRAP_LINK_DOWN"
set chassis redundancy graceful-switchover
set chassis alarm management-ethernet link-down ignore
set interfaces ge-0/0/0 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/1 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/2 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/3 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/4 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/5 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/6 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/7 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/8 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/9 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/10 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/11 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/12 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/13 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/14 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/15 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/16 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/17 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/18 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/19 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/20 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/21 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/22 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/23 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/24 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/25 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/26 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/27 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/28 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/29 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/30 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/31 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/32 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/33 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/34 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/35 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/36 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/37 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/38 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/39 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/40 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/41 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/42 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/43 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/44 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/45 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/46 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/0/47 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/1/0 hold-time up 0
set interfaces ge-0/1/0 hold-time down 500
set interfaces ge-0/1/0 unit 0 family inet address 12.12.12.1/24
set interfaces xe-0/1/0 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/1/1 hold-time up 0
set interfaces ge-0/1/1 hold-time down 500
set interfaces ge-0/1/1 unit 0 family inet address 13.13.13.1/24
set interfaces xe-0/1/1 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/1/2 unit 0 family ethernet-switching storm-control default
set interfaces xe-0/1/2 unit 0 family ethernet-switching storm-control default
set interfaces ge-0/1/3 unit 0 family ethernet-switching storm-control default
set interfaces xe-0/1/3 unit 0 family ethernet-switching storm-control default
set interfaces irb unit 0 family inet address 7.7.5.254/24
set interfaces lo0 unit 0 family inet address 1.1.1.1/32
set forwarding-options storm-control-profiles default all
set forwarding-options analyzer gm-monitor input ingress interface ge-0/1/0.0
set forwarding-options analyzer gm-monitor input ingress interface ge-0/1/1.0
set forwarding-options analyzer gm-monitor output interface ge-0/0/47.0
set routing-options static route 0.0.0.0/0 next-hop 7.7.5.1
## set routing-options forwarding-table export ecmp
## set routing-options forwarding-table ecmp-fast-reroute
set protocols ospf export redi2ospf
set protocols ospf area 0.0.0.0 interface ge-0/1/0.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface ge-0/1/1.0 interface-type p2p
set protocols ospf area 0.0.0.0 interface lo0.0 passive
set protocols ospf area 0.0.0.0 interface irb.0 passive
set protocols ospf3 export redi2ospf
set protocols ospf3 area 0.0.0.0 interface ge-0/1/0.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface ge-0/1/1.0 interface-type p2p
set protocols ospf3 area 0.0.0.0 interface lo0.0 passive
set protocols ospf3 area 0.0.0.0 interface irb.0 passive
set protocols lldp interface all
set protocols lldp-med interface all
set protocols igmp-snooping vlan default
set policy-options policy-statement ecmp then load-balance per-packet
set policy-options policy-statement redi2ospf from protocol static
set policy-options policy-statement redi2ospf from protocol direct
set policy-options policy-statement redi2ospf then accept
set vlans default vlan-id 1
set vlans default l3-interface irb.0

저작자표시

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#3(EX4200) Configuration Sample (0)	2021.01.11
Juniper OSPF & LACP SW#2(EX4200) Configuration Sample (0)	2021.01.11
Aruba Controller CLI (0)	2018.05.08
Aruba Controller 초기 설정 (0)	2018.05.08
pumpkin 스위치보드 firmware update (0)	2012.10.31

쫑콩아빠의 지금 이 순간...

Juniper

Juniper EX S/W Factory Reset

Firmware Upgrade

'업무이야기 > Network' 카테고리의 다른 글

Juniper SRX 설정 방법 (CLI)

어드레스 추가(configure 모드)

어드레스 그룹 추가(configure 모드)

어드레스 그룹 삭제(해당 그룹에서 특정 IP만 제거)

스케줄 추가(configure 모드)

서비스 추가

서비스 그룹 추가

정책 추가(configure 모드)

우선순위 변경(configure 모드)

정책 우선순위 확인(operation 모드)

정책 리스트 확인

Source NAT 추가 (configure 모드)

Destination NAT 추가 (configure 모드)

dnat port(포트 포워딩)

routing 추가 (configure 모드)

session 확인

'업무이야기 > Security' 카테고리의 다른 글

Juniper OSPF & LACP SW#6(EX2300) Configuration Sample

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#5(EX4200) Configuration Sample

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#4(EX4200) Configuration Sample

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#3(EX4200) Configuration Sample

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#2(EX4200) Configuration Sample

'업무이야기 > Network' 카테고리의 다른 글

Juniper OSPF & LACP SW#1(EX2300) Configuration Sample

'업무이야기 > Network' 카테고리의 다른 글

+ Recent posts

티스토리툴바