Professional Documents
Culture Documents
Operating Juniper Networks Routers in The Enterprise: Chapter 3: JUNOS User Interfaces
Operating Juniper Networks Routers in The Enterprise: Chapter 3: JUNOS User Interfaces
Networks Routers in
the Enterprise
Chapter 3: JUNOS User Interfaces
4-1
Network
Copyright © 2007 Juniper Networks, Inc. Console Port Interfaces
Education Services 3-4
Agenda:
JUNOS User Interfaces
User Interface Options
User Authentication and Authorization
Active and Candidate Configurations
Using the J-Web Graphical User Interface
Using the JUNOS Software Command-Line Interface
Local database
• Name and password
• Individual accounts and home directories
RADIUS and TACACS+
• Centralized authentication of users
• Users mapped to locally defined template users for
authorization
• Extended regular expressions can be passed to alter
authorization
Example 2:
• authentication-order [radius tacplus]
9) RADIUS Server
, la b78
b
2 (la
Step Username = lab Password = lab123
T
JEC
3 RE
Step
Router
Local Authentication Database
Username = lab Password = lab789
Example 3:
• authentication-order [radius tacplus]
X
89) RADIUS Server
b, lab7
2 (la
Step Username = lab Password = lab123
Step 4
( lab, la
Router b789)
Step 5
ACCE
PT Local Authentication Database
Username = lab Password = lab789
Permissions
• Predefined sets of related commands
Allow and deny overrides
• Define exceptions for commands and configuration statements
that would otherwise be allowed or denied
• Specified using regular expressions
commit
0
rollback n
1 2 ... 49
Active configuration stored in
/config/juniper.conf.gz
Rollback files stored in
/config/juniper.conf.n.gz (n=1–3)
/var/db/config/juniper.conf.n.gz
(n=4–49)
Task
Bar Current
Locatio
n
Main
Pane
Left
Pane
OK to OK
commit returns to
and go to previous
previous page but
page does not
commit
Apply to
commit
and stay Use
on Commit!
current
page
Copyright © 2007 Juniper Networks, Inc. Education Services 3-33
Viewing Configuration History
Use the J-Web
Configuration > History
page to view the change
log and to compare
configuration files
Compare current
configuration to
previous (rollback 1)
Configuration mode:
• Configure the router, including interfaces, general routing
information, routing protocols, user access, and system
hardware properties
[edit]
user@host# The # character identifies
configuration mode
login: user
Password:
host (ttyd0)
Less Specific
clear configure file help monitor set show etc.
• Ctrl+a
user@host> show interfaces
Cursor position
• Ctrl+f
user@host> show interfaces
• Ctrl+e
user@host> show interfaces
user@host> show i
Use the Tab key to complete an assigned variable
[edit policy-options]
user@host# show policy-statement t<tab>his-is-my-policy
then accept;
[edit policy-options]
user@host# Use Tab to complete
assigned variables
commit
0
rollback n
1 2 ... 49
Less Specific
chassis interfaces protocols services system etc.
[edit system]
user@host#
[edit protocols]
user@host# top
[edit]
user@host# top
[edit]
user@host# edit protocols ospf area 51 stub
[edit protocols ospf area 0.0.0.51 stub]
user@host# up
[edit protocols ospf area 0.0.0.51]
user@host# up 2
[edit protocols]
user@host# top
[edit]
user@host# exit
The configuration has been changed but not committed
Exit with uncommitted changes? [yes,no] (yes)
[edit]
user@host# edit system services
[edit system]
user@host# delete services web-management
[edit system]
user@host# show services
ssh;