Professional Documents
Culture Documents
Jun 2 I
Jun 2 I
Jun 2 I
OCTEON CN7020-AAP pass 1.2, Core clock: 1200 MHz, IO clock: 600 MHz, DDR clock: 667
MHz (1334 Mhz DDR)
DRAM: 4 GiB
Clearing DRAM...... done
SF: Detected SF with page size 256 Bytes, erase size 64 KiB, total 8 MiB
SATA0: not available
SATA1: not available
PCIe: Port 0 link active, 1 lanes, speed gen2
PCIe: Link timeout on port 1, probably the slot is empty
PCIe: Port 2 not in PCIe mode, skipping
Net: octeth0
Node 0 Interface 0 has 1 ports (SGMII)
Boot Media: eUSB usb
Found TPM SLB9660 TT 1.2 by Infineon
TPM initialized
Type the command 'usb start' to scan for USB storage devices.
Hit any key to stop autoboot: 5 ### 4 ### 3 ### 2 ### 1 ### 0
SF: Detected SF with page size 256 Bytes, erase size 64 KiB, total 8 MiB
SF: 1048576 bytes Read: OK
## Starting application ...
Consoles: U-Boot console
Memory: 4096MB
SF: Detected SF with page size 256 Bytes, erase size 64 KiB, total 8 MiB
[0]Booting from eUSB slice 1
|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|
#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#/boot/init.4th loaded.
\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|
#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#Loading /boot/defaults/loader.conf
-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#/kernel data=0x125d400+0x1bfc30 -#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#syms=[0x4+0xb99c0\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-
#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#+0x4+0x11c42e/#-#\#|#/#-#\#|
#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|
#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#|#/#-#\#]
Amnesiac (ttyu0)
login: root
Password:
#[3g#[24;9H#H#[24;17H#H#[24;25H#H#[24;33H#H#[24;41H#H#[24;49H#H#[24;57H#H#[24;65H#H
#[24;73H#H
root@%
root@% clear
#[H#[Jroot@%
root@%
root@%
root@% cli
root>
root>
root>
root> show chassis hardware #### #### #### #### #### #### ####
#### #### ###firmware
Part Type Version
FPC O/S Version 20.1R1.11 by builder on 2020-03-20
20:32:57 UTC
FWDD O/S Version 20.1R1.11 by builder on 2020-03-20
20:32:57 UTC
root> show #?
Possible completions:
access-cac Show access cac under enhanced-broadband-edge
access-security Show access security information
accounting Show accounting profiles and records
agent Show SDN agent information
app-engine Show App-engine information
arp Show system Address Resolution Protocol table entries
as-path Show table of known autonomous system paths
authentication-whitelist Show 802.1X White List MAC addresses
auto-bandwidth Show auto-bandwidth information
backup-selection Show backup selection policies information
bfd Show Bidirectional Forwarding Detection information
bgp Show Border Gateway Protocol information
captive-portal Show captive portal information
chassis Show chassis information
class-of-service Show class of service information
cli Show command-line interface settings
configuration Show current configuration
connections Show circuit cross-connect connections
database-replication Show database replication information
dhcp Show Dynamic Host Configuration Protocol information
dhcp-security Show DHCP access security information
dhcpv6 Show Dynamic Host Configuration Protocol v6 information
---(more 21%)---
root>
root> show version ###detail
Model: srx300
Junos: 20.1R1.11
JUNOS Software Release [20.1R1.11]
KERNEL 20.1R1.11 #0 built by builder on 2020-03-20 20:36:18 UTC
MGD release 20200319.130545_builder.r1095278 built by builder on 2020-03-19
13:21:42 UTC
CLI release 20200319.130545_builder.r1095278 built by builder on 2020-03-19
13:19:31 UTC
JNUD release 20200319.130545_builder.r1095278 built by builder on 2020-03-19
13:21:42 UTC
RPD release 20.1R1.11 built by builder on 2020-03-20 20:39:14 UTC
CHASSISD release 20.1R1.11 built by builder on 2020-03-20 20:34:52 UTC
BFDD release 20.1R1.11 built by builder on 2020-03-20 20:34:49 UTC
IKED release 20.1R1.11 built by builder on 2020-03-20 20:38:47 UTC
GKSD release 20.1R1.11 built by builder on 2020-03-20 20:34:21 UTC
GKMD release 20.1R1.11 built by builder on 2020-03-20 20:34:21 UTC
PKID release 20.1R1.11 built by builder on 2020-03-20 20:34:34 UTC
SENDD release 20.1R1.11 built by builder on 2020-03-20 20:34:20 UTC
DFWD release 20.1R1.11 built by builder on 2020-03-20 20:34:53 UTC
DCD release 20.1R1.11 built by builder on 2020-03-20 20:34:11 UTC
SNMPD release 20.1R1.11 built by builder on 2020-03-20 20:38:36 UTC
MIB2D release 20.1R1.11 built by builder on 2020-03-20 20:36:23 UTC
VRRPD release 20.1R1.11 built by builder on 2020-03-20 20:38:41 UTC
---(more)---
ALARMD release 20.1R1.11 built by builder on 2020-03-20 20:34:46 UTC
PFED release 20.1R1.11 built by builder on 2020-03-20 20:37:07 UTC
CRAFTD release 20.1R1.11 built by builder on 2020-03-20 20:34:52 UTC
SAMPLED release 20.1R1.11 built by builder on 2020-03-20 20:38:09 UTC
SRRD release 20.1R1.11 built by builder on 2020-03-20 20:38:37 UTC
RMOPD release 20.1R1.11 built by builder on 2020-03-20 20:34:34 UTC
COSD release 20.1R1.11 built by builder on 2020-03-20 20:38:47 UTC
IRSD release 20.1R1.11 built by builder on 2020-03-20 20:35:01 UTC
FUD release 20.1R1.11 built by builder on 2020-03-20 20:34:52 UTC
KSYNCD release 20.1R1.11 built by builder on 2020-03-20 20:35:40 UTC
HTTPD-GK release 20.1R1.11 built by builder on 2020-03-20 20:38:47 UTC
DHCPD release 20.1R1.11 built by builder on 2020-03-20 20:34:53 UTC
PPPOED release 20.1R1.11 built by builder on 2020-03-20 20:37:08 UTC
PPPD release 20.1R1.11 built by builder on 2020-03-20 20:37:08 UTC
DFCD release 20.1R1.11 built by builder on 2020-03-20 20:34:52 UTC
LACPD release 20.1R1.11 built by builder on 2020-03-20 20:35:53 UTC
flowd_octeon_hm release 20.1R1.11 built by builder on 2020-03-20 20:32:57 UTC
USBD release 20.1R1.11 built by builder on 2020-03-20 20:31:35 UTC
LFMD release 20.1R1.11 built by builder on 2020-03-20 20:35:53 UTC
OAMD release 20.1R1.11 built by builder on 2020-03-20 20:37:06 UTC
TNETD release 20.1R1.11 built by builder on 2020-03-20 20:38:37 UTC
CFMD release 20.1R1.11 built by builder on 2020-03-20 20:34:52 UTC
JDHCPD release 20.1R1.11 built by builder on 2020-03-20 20:35:40 UTC
---(more)---
root>
root> show version detail #### #### #### #### #### #### ####
###brief
Model: srx300
Junos: 20.1R1.11
JUNOS Software Release [20.1R1.11]
root>
root>
root>
root>
root> show system memory ## #### #### #### #### #### #### ###?
Possible completions:
alarms Show system alarm status
audit Show file system MD5 hash and permissions
auto-snapshot Show auto-snapshot status when system booted from alternate
slice
autoinstallation Show autoinstallation information
autorecovery Show autorecovery information
boot-messages Show boot time messages
buffers Show buffer statistics
certificate Show installed X509 certificates
commit Show pending commit requests (if any) and commit history
configuration Show configuration information
connections Show system connection activity
core-dumps Show system core files
crypto Show system security crypto level
directory-usage Show local directory information
download Show status of downloads
firmware Show all firmware version information
health Show online diagnostic status
information Show system information
khms-stats Show Kernel Health monitor for memory statistics
license Show feature licenses information
log-vital Show log vital information
---(more 52%)---
Comment:
JUNOS Software Release [20.1R1.11]
root>
root> show system software #### #### #### #### #### #### #### ####
#### ###firmware ?
Possible completions:
<[Enter]> Execute this command
compatibility Show all firmware compatibility information
| Pipe through a command
Comment:
JUNOS Software Release [20.1R1.11]
Depends on:
Description:
JUNOS Software Release
Copyright (c) 1996-2020, Juniper Networks, Inc.
All rights reserved.
root>
root> show system software detail #### #### #### #### #### #### ####
#### #### #### #### #### #### #### #### ###napshot ?
Possible completions:
<[Enter]> Execute this command
media Media to show snapshot information from
slice Show snapshot information from specified partition
| Pipe through a command
ge-0/0/5 up down
ge-0/0/5.0 up down eth-switch
ge-0/0/6 up down
ge-0/0/6.0 up down eth-switch
ge-0/0/7 up down
ge-0/0/7.0 up down eth-switch
esi up up
fti0 up up
gre up up
ipip up up
irb up up
irb.0 up down inet 192.168.1.1/24
jsrv up up
jsrv.1 up up inet 128.0.0.127/2
lo0 up up
lo0.16384 up up inet 127.0.0.1 --> 0/0
lo0.16385 up up inet 10.0.0.1 --> 0/0
10.0.0.16 --> 0/0
128.0.0.1 --> 0/0
128.0.0.4 --> 0/0
128.0.1.16 --> 0/0
lo0.32768 up up
lsi up up
---(more 82%)---
mtun up up
pimd up up
pime up up
pp0 up up
ppd0 up up
ppe0 up up
rbeb up up
st0 up up
tap up up
vtep up up
root>
root> show system license detail #### #### #### #### #### #### ####
###installed
root>
root> show system license installed #### #### #### #### #### ####
#### #### #### #### ###usage
Licenses Licenses Licenses Expiry
Feature name used installed needed
dynamic-vpn 0 2 0 permanent
logical-system 1 3 0 permanent
remote-access-ipsec-vpn-client 0 2 0 permanent
root>
root> show system license usage #### #### #### #### #### ####
###brief
License usage:
Licenses Licenses Licenses Expiry
Feature name used installed needed
dynamic-vpn 0 2 0 permanent
logical-system 1 3 0 permanent
remote-access-ipsec-vpn-client 0 2 0 permanent
Licenses installed: none
root>
root> show system license brief #### #### #### #### #### ####
###key#
root> show system license key ########s
root>
root> show system license keys #### #### ###-content
^
missing argument.
root>
root> show system license key-content ###?
Possible completions:
<lic-filename> Filename
root> show system license key-content #### #### #### #### #### ####
#### #### #### #### #### #### #### #### #### #### #### ####
#### #### #### #### #### #### #### #### #### #### #### ####
#### #### #############################show system license
License usage:
Licenses Licenses Licenses Expiry
Feature name used installed needed
dynamic-vpn 0 2 0 permanent
logical-system 1 3 0 permanent
remote-access-ipsec-vpn-client 0 2 0 permanent
root> show system license ###### #### #### #### #### #### ####
#### #### #### #### #### #### #### #### #### #### #### ####
#### ################
}
}
name-server {
8.8.8.8;
8.8.4.4;
}
syslog {
archive size 100k files 3;
user * {
any emergency;
}
file messages {
any notice;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
max-configurations-on-flash 5;
max-configuration-rollbacks 5;
license {
autoupdate {
---(more 17%)---
url https://ae1.juniper.net/junos/key_retrieval;
}
}
}
security {
screen {
ids-option untrust-screen {
icmp {
ping-death;
}
ip {
source-route-option;
tear-drop;
}
tcp {
syn-flood {
alarm-threshold 1024;
attack-threshold 200;
source-threshold 1024;
destination-threshold 2048;
timeout 20;
}
land;
---(more 26%)---
}
}
}
nat {
source {
rule-set trust-to-untrust {
from zone trust;
to zone untrust;
rule source-nat-rule {
match {
source-address 0.0.0.0/0;
}
then {
source-nat {
interface;
}
}
}
}
}
}
policies {
from-zone trust to-zone trust {
---(more 35%)---
policy trust-to-trust {
match {
source-address any;
destination-address any;
application any;
}
then {
permit;
}
}
}
from-zone trust to-zone untrust {
policy trust-to-untrust {
match {
source-address any;
destination-address any;
application any;
}
then {
permit;
}
}
}
---(more 44%)---
}
zones {
security-zone trust {
host-inbound-traffic {
system-services {
all;
}
protocols {
all;
}
}
interfaces {
irb.0;
}
}
security-zone untrust {
screen untrust-screen;
interfaces {
ge-0/0/0.0 {
host-inbound-traffic {
system-services {
dhcp;
tftp;
---(more 53%)---
}
}
}
}
}
}
}
interfaces {
ge-0/0/0 {
unit 0 {
family inet {
address 10.10.10.30/24 {
primary;
}
}
}
}
ge-0/0/1 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
---(more 62%)---
}
}
}
ge-0/0/2 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
ge-0/0/3 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
ge-0/0/4 {
unit 0 {
---(more 71%)---
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
ge-0/0/5 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
ge-0/0/6 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
---(more 80%)---
}
}
ge-0/0/7 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
irb {
unit 0 {
family inet {
address 192.168.1.1/24;
}
}
}
}
access {
address-assignment {
pool junosDHCPPool {
family inet {
---(more 89%)---
network 192.168.1.0/24;
range junosRange {
low 192.168.1.2;
high 192.168.1.254;
}
dhcp-attributes {
router {
192.168.1.1;
}
propagate-settings ge-0/0/0.0;
}
}
}
}
}
vlans {
vlan-trust {
vlan-id 3;
l3-interface irb.0;
}
}
protocols {
l2-learning {
---(more 98%)---
global-mode switching;
}
}
[edit]
root# edit system ?
Possible completions:
<[Enter]> Execute this command
> accounting System accounting configuration
> archival System archival management
> arp ARP settings
> auto-configuration System Autoconfiguration
> autoinstallation Autoinstallation configuration
> backup-router IPv4 router to use while booting
> commit Configuration commit management
> configuration-database Configuration database parameters
> demux-options Tunable options for demux link local address generation
> diag-port-authentication Authentication for the diagnostic port
> dynamic-profile-options Dynamic profile options
> export-format Setting the properties related to exporting the data
> extensions Configuration for extensions to JUNOS
> fips FIPS configuration
> health-monitor Kernel health monitoring system
> inet6-backup-router IPv6 router to use while booting
> internet-options Tunable options for Internet operation
> kernel-replication Kernel replication
> license License information for the router
> location Location of the system, in various forms
> log-vital Log vital configuration
---(more 50%)---
root# ###set ?
Possible completions:
+ apply-groups Groups from which to inherit configuration data
+ apply-groups-except Don't inherit configuration data from these groups
> control Control of the web management process
> http Unencrypted HTTP connection settings
> https Encrypted HTTPS connections
management-url URL path for web management access
> session Session parameters
> traceoptions Web management trace options
[edit system services web-management]
root# set https interface #### #### #### #### #### #### #### ####
#### #### #### #### #### #### #### #### #### #### #### ####
#####################exit
[edit]
root# top# #### #### ###exit
Exiting configuration mode
root>
root>
root>
root>
root>
root> #get
^
unknown command.
root>
root> show system processes ###brief
last pid: 2769; load averages: 0.14, 1.71, 2.04 up 0+00:15:10 08:04:09
191 processes: 21 running, 157 sleeping, 13 waiting
Mem: 552M Active, 378M Inact, 1896M Wired, 528M Cache, 112M Buf, 608M Free
Swap: 792M Total, 792M Free
root> show ss# ###ystem heq# ###alth ?
Possible completions:
diagnostic Show diagnostic test cases status
root> show system health diagnostic #### #### #### #### #### ####
#### #### #### #### #### #### #### #### #### #### #### ####
#### ### processes ?
Possible completions:
<[Enter]> Execute this command
brief Display brief output
detail Display detailed output
extensive Display extensive output
health Show process health information
providers Display provider processes
resource-limits Show process resource limits
summary Display summary output
wide Display information even if wider than 80 columns
| Pipe through a command
root>
root> show system processes health #### #### #### #### #### ####
#### ###summary
last pid: 2791; load averages: 0.13, 1.51, 1.95 up 0+00:15:49 08:04:48
191 processes: 22 running, 156 sleeping, 13 waiting
Mem: 552M Active, 378M Inact, 1896M Wired, 528M Cache, 112M Buf, 608M Free
Swap: 792M Total, 792M Free
PID USERNAME PRI NICE SIZE RES STATE C TIME WCPU COMMAND
2239 root 123 0 1916M 1209M CPU1 1 11:46 93.95% flowd_octeon_hm
25 root 155 52 0K 16K RUN 0 5:05 77.44% idle: cpu0
2239 root 28 0 1916M 1209M RUN 0 11:46 10.50% flowd_octeon_hm
root>
root>
root>
root>
root>
root>
root>
root>
root>
root>
}
}
name-server {
8.8.8.8;
8.8.4.4;
}
syslog {
archive size 100k files 3;
user * {
any emergency;
}
file messages {
any notice;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
max-configurations-on-flash 5;
max-configuration-rollbacks 5;
license {
autoupdate {
---(more 17%)---
url https://ae1.juniper.net/junos/key_retrieval;
}
}
}
security {
screen {
ids-option untrust-screen {
icmp {
ping-death;
}
ip {
source-route-option;
tear-drop;
}
tcp {
syn-flood {
alarm-threshold 1024;
attack-threshold 200;
source-threshold 1024;
destination-threshold 2048;
timeout 20;
}
land;
---(more 26%)---
}
}
}
nat {
source {
rule-set trust-to-untrust {
from zone trust;
to zone untrust;
rule source-nat-rule {
match {
source-address 0.0.0.0/0;
}
then {
source-nat {
interface;
}
}
}
}
}
}
policies {
from-zone trust to-zone trust {
---(more 35%)---
policy trust-to-trust {
match {
source-address any;
destination-address any;
application any;
}
then {
permit;
}
}
}
from-zone trust to-zone untrust {
policy trust-to-untrust {
match {
source-address any;
destination-address any;
application any;
}
then {
permit;
}
}
}
---(more 44%)---
}
zones {
security-zone trust {
host-inbound-traffic {
system-services {
all;
}
protocols {
all;
}
}
interfaces {
irb.0;
}
}
security-zone untrust {
screen untrust-screen;
interfaces {
ge-0/0/0.0 {
host-inbound-traffic {
system-services {
dhcp;
tftp;
---(more 53%)---
}
}
}
}
}
}
}
interfaces {
ge-0/0/0 {
unit 0 {
family inet {
address 10.10.10.30/24 {
primary;
}
}
}
}
ge-0/0/1 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
---(more 62%)---
}
}
}
ge-0/0/2 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
ge-0/0/3 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
ge-0/0/4 {
unit 0 {
---(more 71%)---
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
ge-0/0/5 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
ge-0/0/6 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
---(more 80%)---
}
}
ge-0/0/7 {
unit 0 {
family ethernet-switching {
vlan {
members vlan-trust;
}
}
}
}
irb {
unit 0 {
family inet {
address 192.168.1.1/24;
}
}
}
}
access {
address-assignment {
pool junosDHCPPool {
family inet {
---(more 89%)---
network 192.168.1.0/24;
range junosRange {
low 192.168.1.2;
high 192.168.1.254;
}
dhcp-attributes {
router {
192.168.1.1;
}
propagate-settings ge-0/0/0.0;
}
}
}
}
}
vlans {
vlan-trust {
vlan-id 3;
l3-interface irb.0;
}
}
protocols {
l2-learning {
---(more 98%)---
global-mode switching;
}
}
root>
root> show configuration ###| display set
set version 20200319.130545_builder.r1095278
set system root-authentication encrypted-password
"$5$.dAprbfR$bPgNWLAMbIynL5/3wO9ILZikysIX6kOk.Nm3yLuNP50"
set system services ssh
set system services telnet
set system services xnm-clear-text
set system services netconf ssh
set system services dhcp-local-server group jdhcp-group interface irb.0
set system services web-management https system-generated-certificate
set system name-server 8.8.8.8
set system name-server 8.8.4.4
set system syslog archive size 100k
set system syslog archive files 3
set system syslog user * any emergency
set system syslog file messages any notice
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands any
set system max-configurations-on-flash 5
set system max-configuration-rollbacks 5
set system license autoupdate url https://ae1.juniper.net/junos/key_retrieval
set security screen ids-option untrust-screen icmp ping-death
set security screen ids-option untrust-screen ip source-route-option
set security screen ids-option untrust-screen ip tear-drop
---(more)---
set security policies from-zone trust to-zone untrust policy trust-to-untrust match
source-address any
set security policies from-zone trust to-zone untrust policy trust-to-untrust match
destination-address any
set security policies from-zone trust to-zone untrust policy trust-to-untrust match
application any
set security policies from-zone trust to-zone untrust policy trust-to-untrust then
permit
set security zones security-zone trust host-inbound-traffic system-services all
set security zones security-zone trust host-inbound-traffic protocols all
set security zones security-zone trust interfaces irb.0
set security zones security-zone untrust screen untrust-screen
set security zones security-zone untrust interfaces ge-0/0/0.0 host-inbound-traffic
system-services dhcp
set security zones security-zone untrust interfaces ge-0/0/0.0 host-inbound-traffic
system-services tftp
set interfaces ge-0/0/0 unit 0 family inet address 10.10.10.30/24 primary
set interfaces ge-0/0/1 unit 0 family ethernet-switching vlan members vlan-trust
set interfaces ge-0/0/2 unit 0 family ethernet-switching vlan members vlan-trust
set interfaces ge-0/0/3 unit 0 family ethernet-switching vlan members vlan-trust
set interfaces ge-0/0/4 unit 0 family ethernet-switching vlan members vlan-trust
set interfaces ge-0/0/5 unit 0 family ethernet-switching vlan members vlan-trust
set interfaces ge-0/0/6 unit 0 family ethernet-switching vlan members vlan-trust
---(more 84%)---
root> #re
^
're' is ambiguous.
Possible completions:
request Make system-level requests
restart Restart software process
Shutdown NOW!
[pid 2859]
root>