search

Juniper SRX100 Manuale Pagina 5

  • Scaricare
  • Aggiungi ai miei manuali
  • Stampa
  • Pagina
    / 11
  • Indice
  • SEGNALIBRI
    • Valutato. / 5. Basato su recensioni clienti
Vedere la pagina 4
Copyright © 2009, Juniper Networks, Inc. 3
APPLICATION NOTE - Quickstart Guide for Branch SRX Series Services Gateways
root> congure
Entering conguration mode
[edit]
root#
Next, the SRX Series device will be configured to allow secure management access and NAT will be applied to all
outbound traffic.
1. Create an administrative user to manage the SRX Series device.
set system login user johndoe class super-user
set system login user johndoe authentication plain-text-password (will prompt for password)
2. Enable SSH services from the untrust zone for remote management.
set system services ssh
set security zones security-zone untrust host-inbound-traic system-services ssh
3. Set the system hostname.
set system host-name mysrx
4. Set the DNS servers.
set system name-server 4.2.2.2
5. Assign interface fe-0/0/7 to the untrust zone (zone names are case sensitive).
set security zones security-zone untrust interfaces fe-0/0/7
6. Set fe-0/0/7 IP address and default route configuration.
a) To assign the IP address and gateway statically:
set interfaces fe-0/0/7 unit 0 family inet address 1.1.1.1/30
set routing-options static route 0.0.0.0/0 next-hop < ip address of the upstream router>
b) To configure interfaces fe-0/0/7 to obtain an IP address and default gateway from a DHCP server:
set interfaces fe-0/0/7 unit 0 family inet dhcp
set security zones security-zone untrust interfaces fe-0/0/7.0 host-inbound-traic
system-services dhcp
7. Create a NAT rule for source translation of all Internet-bound traffic.
set security nat source rule-set interface-nat from zone trust
set security nat source rule-set interface-nat to zone untrust
set security nat source rule-set interface-nat rule rule1 match source-address 0.0.0.0/0
destination-address 0.0.0.0/0
set security nat source rule-set interface-nat rule rule1 then source-nat interface
8. Use the “commit” command at the CLI prompt to activate the configuration.
commit
Vedere la pagina 4
1 2 3 4 5 6 7 8 9 10 11

Commenti su questo manuale

Nessun commento
Prodotti e manuali riguardandi Gateway/Controller Juniper SRX100
Gateway/Controller Juniper SSG-140-SH Specifiche   (60 pagine)
  • Winchester Ammunition Kennedy Leeson Yeoman Attic Ease
  • DoubleSight Display a LED Crucial Unità di memoria a stato solido Jabra no Tripp Lite Dispositivo di messa a terra Smeg Cassetti scaldavivande
  • LG CM2460 Acer V275HL Delta 36-841 Cisco 500 Series Miele CVA 3660
  • Sony TCM-200DV Manuale Utente Yamaha RX-N600D Manuale del Proprietario Samsung LE46A856S1M Manuale Utente Leica D-Lux 4 Manuale Utente Sony ICD-PX312 Manuale Utente