Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [edit]
- root@GODNET# show | display set
- set version 11.2R4.3
- set system host-name GODNET
- set system domain-name minedu.karelia.pro
- set system time-zone GMT+4
- set system root-authentication encrypted-password "$1$BNFcOFfh$5wfkComleBwYFZKywvUK1."
- set system name-server 8.8.8.8
- set system name-server 8.8.4.4
- set system name-server 10.0.1.254
- set system name-server 10.0.10.254
- set system services ssh
- set system services telnet
- set system services xnm-clear-text
- set system services web-management http interface vlan.0
- set system services web-management http interface ge-0/0/0.0
- set system services web-management http interface ge-0/0/15.0
- set system services web-management https system-generated-certificate
- set system services web-management https interface vlan.0
- set system services web-management https interface ge-0/0/0.0
- set system services web-management https interface ge-0/0/15.0
- set system services dhcp router 192.168.1.1
- set system services dhcp pool 192.168.1.0/24 address-range low 192.168.1.2
- set system services dhcp pool 192.168.1.0/24 address-range high 192.168.1.254
- set system syslog archive size 100k
- set system syslog archive files 3
- set system syslog user * any emergency
- set system syslog file messages any critical
- set system syslog file messages authorization info
- set system syslog file interactive-commands interactive-commands error
- set system max-configurations-on-flash 5
- set system max-configuration-rollbacks 5
- set system license autoupdate url https://ae1.juniper.net/junos/key_retrieval
- set interfaces ge-0/0/0 vlan-tagging
- set interfaces ge-0/0/0 unit 0 vlan-id 10
- set interfaces ge-0/0/0 unit 0 family inet address 178.19.242.225/29
- set interfaces ge-0/0/0 unit 1 vlan-id 11
- set interfaces ge-0/0/0 unit 1 family inet
- set interfaces ge-0/0/0 unit 2 vlan-id 12
- set interfaces ge-0/0/0 unit 2 family inet
- set interfaces ge-0/0/0 unit 3 vlan-id 13
- set interfaces ge-0/0/0 unit 3 family inet
- set interfaces ge-0/0/1 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/3 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/4 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/5 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/6 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/7 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/8 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/9 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/10 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/11 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/12 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/13 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/14 unit 0 family ethernet-switching vlan members vlan-trust
- set interfaces ge-0/0/15 speed 1g
- set interfaces ge-0/0/15 link-mode full-duplex
- set interfaces ge-0/0/15 unit 0 family inet address 192.168.26.237/24
- set interfaces vlan unit 0 family inet address 192.168.1.1/24
- set interfaces vlan unit 1 family inet address 192.168.11.1/24
- set routing-options static route 0.0.0.0/0 next-hop 178.19.242.230
- set protocols stp
- set security screen ids-option untrust-screen icmp ping-death
- set security screen ids-option untrust-screen ip source-route-option
- set security screen ids-option untrust-screen ip tear-drop
- set security screen ids-option untrust-screen tcp syn-flood alarm-threshold 1024
- set security screen ids-option untrust-screen tcp syn-flood attack-threshold 200
- set security screen ids-option untrust-screen tcp syn-flood source-threshold 1024
- set security screen ids-option untrust-screen tcp syn-flood destination-threshold 2048
- set security screen ids-option untrust-screen tcp syn-flood timeout 20
- set security screen ids-option untrust-screen tcp land
- set security nat source rule-set trust-to-untrust from zone trust
- set security nat source rule-set trust-to-untrust to zone untrust
- set security nat source rule-set trust-to-untrust rule source-nat-rule match source-address 0.0.0.0/0
- set security nat source rule-set trust-to-untrust rule source-nat-rule then source-nat interface
- set security policies from-zone trust to-zone untrust policy trust-to-untrust match source-address any
- set security policies from-zone trust to-zone untrust policy trust-to-untrust match destination-address any
- set security policies from-zone trust to-zone untrust policy trust-to-untrust match application any
- set security policies from-zone trust to-zone untrust policy trust-to-untrust then permit
- set security zones security-zone trust host-inbound-traffic system-services all
- set security zones security-zone trust host-inbound-traffic protocols all
- set security zones security-zone trust interfaces vlan.0
- set security zones security-zone trust interfaces ge-0/0/15.0 host-inbound-traffic system-services all
- set security zones security-zone trust interfaces ge-0/0/15.0 host-inbound-traffic protocols all
- set security zones security-zone untrust screen untrust-screen
- set vlans vlan-slmork vlan-id 10
- set vlans vlan-slmork l3-interface vlan.1
- set vlans vlan-trust vlan-id 3
- set vlans vlan-trust l3-interface vlan.0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement