Juniper NetScreen 配置指引 (1)
作者: reistlin
来源: http://www.reistlin.com/blog/70
更新时间: 2010.11
版权声明: 原创文章.转载请保留作者信息和原文完整.谢绝任何方式的摘要
1,配置设备名:
set hostname REISTLIN
2,配置用户名,密码:
set admin name reistlin set admin password reistlin.com
3,配置时区,NTP:
set clock ntp set clock timezone 7 set ntp server 0.asia.pool.ntp.org
4,配置DNS:
set dns host dns1 8.8.8.8 set dns host dns2 8.8.4.4
5,配置启用https管理,登录超时时间,本地身份验证:
set admin http redirect set admin auth web timeout 10 set admin auth server local
6,配置ssh版本,启用ssh管理:
set ssh version v2 set ssh enable
7,配置Trust/Untrust Zone,配置Interface IP地址:
set interface ethernet0/0 zone Trust set interface ethernet0/2 zone Untrust set interface ethernet0/0 ip 192.168.0.254/24 set interface ethernet0/0 nat set interface ethernet0/2 ip 200.200.200.254/24 set interface ethernet0/2 route
8,配置Trust Interface管理功能,启用ping/ssh/snmp/ssl/web:
set interface ethernet0/2 ip manageable set interface ethernet0/2 manage ping set interface ethernet0/2 manage ssh set interface ethernet0/2 manage snmp set interface ethernet0/2 manage ssl set interface ethernet0/2 manage web
9,配置default gateway默认网关,路由:
set route 0.0.0.0/0 interface ethernet0/2 gateway 200.200.200.1 set route 192.168.0.0/16 interface ethernet0/0 gateway 192.168.0.1
10,保存配置:
save
