API tools faq
paste
Advertisement
demoss

juniper-0-level

demoss
Mar 17th, 2013
171
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 5.39 KB | None | 0 0
raw download clone embed print report
  1. [edit]
  2. root@GODNET# show | display set
  3. set version 11.2R4.3
  4. set system host-name GODNET
  5. set system domain-name minedu.karelia.pro
  6. set system time-zone GMT+4
  7. set system root-authentication encrypted-password "$1$BNFcOFfh$5wfkComleBwYFZKywvUK1."
  8. set system name-server 8.8.8.8
  9. set system name-server 8.8.4.4
  10. set system name-server 10.0.1.254
  11. set system name-server 10.0.10.254
  12. set system services ssh
  13. set system services telnet
  14. set system services xnm-clear-text
  15. set system services web-management http interface vlan.0
  16. set system services web-management http interface ge-0/0/0.0
  17. set system services web-management http interface ge-0/0/15.0
  18. set system services web-management https system-generated-certificate
  19. set system services web-management https interface vlan.0
  20. set system services web-management https interface ge-0/0/0.0
  21. set system services web-management https interface ge-0/0/15.0
  22. set system services dhcp router 192.168.1.1
  23. set system services dhcp pool 192.168.1.0/24 address-range low 192.168.1.2
  24. set system services dhcp pool 192.168.1.0/24 address-range high 192.168.1.254
  25. set system syslog archive size 100k
  26. set system syslog archive files 3
  27. set system syslog user * any emergency
  28. set system syslog file messages any critical
  29. set system syslog file messages authorization info
  30. set system syslog file interactive-commands interactive-commands error
  31. set system max-configurations-on-flash 5
  32. set system max-configuration-rollbacks 5
  33. set system license autoupdate url https://ae1.juniper.net/junos/key_retrieval
  34. set interfaces ge-0/0/0 vlan-tagging
  35. set interfaces ge-0/0/0 unit 0 vlan-id 10
  36. set interfaces ge-0/0/0 unit 0 family inet address 178.19.242.225/29
  37. set interfaces ge-0/0/0 unit 1 vlan-id 11
  38. set interfaces ge-0/0/0 unit 1 family inet
  39. set interfaces ge-0/0/0 unit 2 vlan-id 12
  40. set interfaces ge-0/0/0 unit 2 family inet
  41. set interfaces ge-0/0/0 unit 3 vlan-id 13
  42. set interfaces ge-0/0/0 unit 3 family inet
  43. set interfaces ge-0/0/1 unit 0 family ethernet-switching vlan members vlan-trust
  44. set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members vlan-trust
  45. set interfaces ge-0/0/3 unit 0 family ethernet-switching vlan members vlan-trust
  46. set interfaces ge-0/0/4 unit 0 family ethernet-switching vlan members vlan-trust
  47. set interfaces ge-0/0/5 unit 0 family ethernet-switching vlan members vlan-trust
  48. set interfaces ge-0/0/6 unit 0 family ethernet-switching vlan members vlan-trust
  49. set interfaces ge-0/0/7 unit 0 family ethernet-switching vlan members vlan-trust
  50. set interfaces ge-0/0/8 unit 0 family ethernet-switching vlan members vlan-trust
  51. set interfaces ge-0/0/9 unit 0 family ethernet-switching vlan members vlan-trust
  52. set interfaces ge-0/0/10 unit 0 family ethernet-switching vlan members vlan-trust
  53. set interfaces ge-0/0/11 unit 0 family ethernet-switching vlan members vlan-trust
  54. set interfaces ge-0/0/12 unit 0 family ethernet-switching vlan members vlan-trust
  55. set interfaces ge-0/0/13 unit 0 family ethernet-switching vlan members vlan-trust
  56. set interfaces ge-0/0/14 unit 0 family ethernet-switching vlan members vlan-trust
  57. set interfaces ge-0/0/15 speed 1g
  58. set interfaces ge-0/0/15 link-mode full-duplex
  59. set interfaces ge-0/0/15 unit 0 family inet address 192.168.26.237/24
  60. set interfaces vlan unit 0 family inet address 192.168.1.1/24
  61. set interfaces vlan unit 1 family inet address 192.168.11.1/24
  62. set routing-options static route 0.0.0.0/0 next-hop 178.19.242.230
  63. set protocols stp
  64. set security screen ids-option untrust-screen icmp ping-death
  65. set security screen ids-option untrust-screen ip source-route-option
  66. set security screen ids-option untrust-screen ip tear-drop
  67. set security screen ids-option untrust-screen tcp syn-flood alarm-threshold 1024
  68. set security screen ids-option untrust-screen tcp syn-flood attack-threshold 200
  69. set security screen ids-option untrust-screen tcp syn-flood source-threshold 1024
  70. set security screen ids-option untrust-screen tcp syn-flood destination-threshold 2048
  71. set security screen ids-option untrust-screen tcp syn-flood timeout 20
  72. set security screen ids-option untrust-screen tcp land
  73. set security nat source rule-set trust-to-untrust from zone trust
  74. set security nat source rule-set trust-to-untrust to zone untrust
  75. set security nat source rule-set trust-to-untrust rule source-nat-rule match source-address 0.0.0.0/0
  76. set security nat source rule-set trust-to-untrust rule source-nat-rule then source-nat interface
  77. set security policies from-zone trust to-zone untrust policy trust-to-untrust match source-address any
  78. set security policies from-zone trust to-zone untrust policy trust-to-untrust match destination-address any
  79. set security policies from-zone trust to-zone untrust policy trust-to-untrust match application any
  80. set security policies from-zone trust to-zone untrust policy trust-to-untrust then permit
  81. set security zones security-zone trust host-inbound-traffic system-services all
  82. set security zones security-zone trust host-inbound-traffic protocols all
  83. set security zones security-zone trust interfaces vlan.0
  84. set security zones security-zone trust interfaces ge-0/0/15.0 host-inbound-traffic system-services all
  85. set security zones security-zone trust interfaces ge-0/0/15.0 host-inbound-traffic protocols all
  86. set security zones security-zone untrust screen untrust-screen
  87. set vlans vlan-slmork vlan-id 10
  88. set vlans vlan-slmork l3-interface vlan.1
  89. set vlans vlan-trust vlan-id 3
  90. set vlans vlan-trust l3-interface vlan.0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!