API tools faq
paste
Advertisement
demoss

realtime

demoss
Jul 15th, 2013
145
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 9.35 KB | None | 0 0
raw download clone embed print report
  1. set system name-server 10.0.10.254
  2. set system name-server 10.0.1.254
  3. set system name-server 8.8.8.8
  4. set system name-server 8.8.4.4
  5. set system services ssh
  6. set system services telnet
  7. set system services xnm-clear-text
  8. set system services web-management http interface vlan.1
  9. set system services web-management http interface vlan.2
  10. set system services web-management http interface vlan.3
  11. set system services web-management http interface fxp2.0
  12. set system services web-management http interface lo0.16384
  13. set system services web-management https system-generated-certificate
  14. set system services dhcp pool 192.168.11.0/24 address-range low 192.168.11.1
  15. set system services dhcp pool 192.168.11.0/24 address-range high 192.168.11.253
  16. set system services dhcp pool 192.168.11.0/24 maximum-lease-time 86400
  17. set system services dhcp pool 192.168.11.0/24 router 192.168.11.254
  18. set system services dhcp pool 192.168.11.0/24 propagate-settings vlan.1
  19. set system services dhcp pool 192.168.22.0/24 address-range low 192.168.22.1
  20. set system services dhcp pool 192.168.22.0/24 address-range high 192.168.22.253
  21. set system services dhcp pool 192.168.22.0/24 maximum-lease-time 86400
  22. set system services dhcp pool 192.168.22.0/24 router 192.168.22.254
  23. set system services dhcp pool 192.168.22.0/24 propagate-settings vlan.2
  24. set system services dhcp pool 192.168.33.0/24 address-range low 192.168.33.1
  25. set system services dhcp pool 192.168.33.0/24 address-range high 192.168.33.253
  26. set system services dhcp pool 192.168.33.0/24 maximum-lease-time 86400
  27. set system services dhcp pool 192.168.33.0/24 router 192.168.33.254
  28. set system services dhcp pool 192.168.33.0/24 propagate-settings vlan.3
  29. set system syslog archive size 100k
  30. set system syslog archive files 3
  31. set system syslog user * any emergency
  32. set system syslog file messages any critical
  33. set system syslog file messages authorization info
  34. set system syslog file interactive-commands interactive-commands error
  35. set system max-configurations-on-flash 5
  36. set system max-configuration-rollbacks 20
  37. set system license autoupdate url https://ae1.juniper.net/junos/key_retrieval
  38. set interfaces ge-0/0/0 unit 0 family inet address 178.19.246.155/29
  39. set interfaces ge-0/0/1 unit 0 family inet address 178.19.242.225/29
  40. set interfaces ge-0/0/2 unit 0 family inet address 178.19.242.226/29
  41. set interfaces ge-0/0/3 unit 0 family inet address 217.77.50.130/29
  42. set interfaces ge-0/0/4 unit 0 family ethernet-switching vlan members server
  43. set interfaces ge-0/0/5 unit 0 family ethernet-switching vlan members minedu
  44. set interfaces ge-0/0/6 unit 0 family ethernet-switching vlan members buhedu
  45. set interfaces ge-0/0/7 unit 0 family ethernet-switching vlan members unset
  46. set interfaces ge-0/0/8 unit 0 family ethernet-switching vlan members unset
  47. set interfaces ge-0/0/9 unit 0 family ethernet-switching vlan members unset
  48. set interfaces ge-0/0/10 unit 0 family ethernet-switching vlan members unset
  49. set interfaces ge-0/0/11 unit 0 family ethernet-switching vlan members unset
  50. set interfaces ge-0/0/12 unit 0 family ethernet-switching vlan members unset
  51. set interfaces ge-0/0/13 unit 0 family ethernet-switching vlan members unset
  52. set interfaces ge-0/0/14 unit 0 family ethernet-switching vlan members unset
  53. set interfaces ge-0/0/15 unit 0 family inet address 192.168.26.237/24
  54. set interfaces vlan unit 0 family inet address 192.168.1.254/24
  55. set interfaces vlan unit 1 family inet address 192.168.11.254/24
  56. set interfaces vlan unit 2 family inet address 192.168.22.254/24
  57. set interfaces vlan unit 3 family inet address 192.168.33.254/24
  58. set protocols stp
  59. set security certificates local remote "r-sys-adm\n "
  60. set security address-book global address srv-ad-11 192.168.11.11/32
  61. set security address-book global address srv-net 192.168.11.0/24
  62. set security address-book global address minedu-net 192.168.22.0/24
  63. set security address-book global address buhedu-net 192.168.33.0/24
  64. set security address-book global address old-net 192.168.26.0/24
  65. set security alg dns disable
  66. set security alg ike-esp-nat enable
  67. set security flow allow-dns-reply
  68. set security screen ids-option untrust-screen icmp ping-death
  69. set security screen ids-option untrust-screen ip source-route-option
  70. set security screen ids-option untrust-screen ip tear-drop
  71. set security screen ids-option untrust-screen tcp syn-flood alarm-threshold 1024
  72. set security screen ids-option untrust-screen tcp syn-flood attack-threshold 200
  73. set security screen ids-option untrust-screen tcp syn-flood source-threshold 1024
  74. set security screen ids-option untrust-screen tcp syn-flood destination-threshold 2048
  75. set security screen ids-option untrust-screen tcp syn-flood timeout 20
  76. set security screen ids-option untrust-screen tcp land
  77. set security nat source rule-set srv-trust from zone server
  78. set security nat source rule-set srv-trust to interface ge-0/0/15.0
  79. set security nat source rule-set srv-trust rule srv-trust match source-address 192.168.11.0/24
  80. set security nat source rule-set srv-trust rule srv-trust match destination-address 192.168.26.0/24
  81. set security nat source rule-set srv-trust rule srv-trust then source-nat interface
  82. set security nat source rule-set srv-to-isp1p1 from zone server
  83. set security nat source rule-set srv-to-isp1p1 to zone isp1p1
  84. set security nat source rule-set srv-to-isp1p1 rule rl-srv-to-isp1p1 match source-address-name srv-net
  85. set security nat source rule-set srv-to-isp1p1 rule rl-srv-to-isp1p1 match destination-address 0.0.0.0/0
  86. set security nat source rule-set srv-to-isp1p1 rule rl-srv-to-isp1p1 then source-nat interface
  87. set security policies from-zone server to-zone isp1p1 policy srv-to-isp1p1 match source-address srv-net
  88. set security policies from-zone server to-zone isp1p1 policy srv-to-isp1p1 match destination-address any
  89. set security policies from-zone server to-zone isp1p1 policy srv-to-isp1p1 match application any
  90. set security policies from-zone server to-zone isp1p1 policy srv-to-isp1p1 then permit
  91. set security policies from-zone server to-zone oldnet policy srv-to-oldnet match source-address srv-net
  92. set security policies from-zone server to-zone oldnet policy srv-to-oldnet match destination-address old-net
  93. set security policies from-zone server to-zone oldnet policy srv-to-oldnet match application any
  94. set security policies from-zone server to-zone oldnet policy srv-to-oldnet then permit
  95. set security policies from-zone oldnet to-zone server policy 111 match source-address any
  96. set security policies from-zone oldnet to-zone server policy 111 match destination-address srv-ad-11
  97. set security policies from-zone oldnet to-zone server policy 111 match application rdp
  98. set security policies from-zone oldnet to-zone server policy 111 then permit
  99. set security zones security-zone server host-inbound-traffic system-services all
  100. set security zones security-zone server host-inbound-traffic protocols all
  101. set security zones security-zone server interfaces vlan.1
  102. set security zones security-zone minedu host-inbound-traffic system-services all
  103. set security zones security-zone minedu host-inbound-traffic protocols all
  104. set security zones security-zone minedu interfaces vlan.2
  105. set security zones security-zone edubuh host-inbound-traffic system-services all
  106. set security zones security-zone edubuh host-inbound-traffic protocols all
  107. set security zones security-zone edubuh interfaces vlan.3
  108. set security zones security-zone isp1p1 host-inbound-traffic system-services all
  109. set security zones security-zone isp1p1 host-inbound-traffic protocols all
  110. set security zones security-zone isp1p1 interfaces ge-0/0/0.0 host-inbound-traffic system-services all
  111. set security zones security-zone isp1p1 interfaces ge-0/0/0.0 host-inbound-traffic protocols all
  112. set security zones security-zone oldnet host-inbound-traffic system-services all
  113. set security zones security-zone oldnet host-inbound-traffic protocols all
  114. set security zones security-zone oldnet interfaces ge-0/0/15.0 host-inbound-traffic system-services all
  115. set security zones security-zone oldnet interfaces ge-0/0/15.0 host-inbound-traffic system-services dhcp except
  116. set security zones security-zone oldnet interfaces ge-0/0/15.0 host-inbound-traffic system-services dns except
  117. set security zones security-zone oldnet interfaces ge-0/0/15.0 host-inbound-traffic protocols all
  118. set routing-instances isp1p1 instance-type virtual-router
  119. set routing-instances isp1p1 interface ge-0/0/0.0
  120. set routing-instances isp1p1 routing-options static route 0.0.0.0/0 next-hop 178.19.246.158
  121. set routing-instances isp1p2 instance-type virtual-router
  122. set routing-instances isp1p2 interface ge-0/0/1.0
  123. set routing-instances isp1p2 routing-options static route 0.0.0.0/0 next-hop 178.19.242.230
  124. set routing-instances isp1p3 instance-type virtual-router
  125. set routing-instances isp1p3 interface ge-0/0/2.0
  126. set routing-instances isp1p3 routing-options static route 0.0.0.0/0 next-hop 178.19.242.230
  127. set routing-instances isp2p4 instance-type virtual-router
  128. set routing-instances isp2p4 interface ge-0/0/3.0
  129. set routing-instances isp2p4 routing-options static route 0.0.0.0/0 next-hop 217.77.50.135
  130. set applications application rdp protocol tcp
  131. set applications application rdp destination-port 3389
  132. set vlans buhedu vlan-id 33
  133. set vlans buhedu l3-interface vlan.3
  134. set vlans minedu vlan-id 22
  135. set vlans minedu l3-interface vlan.2
  136. set vlans server vlan-id 11
  137. set vlans server l3-interface vlan.1
  138. set vlans unset vlan-id 5
  139. set vlans unset l3-interface vlan.0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!