You are here
Home > Firewall > How to start with Juniper Router

How to start with Juniper Router

  1. Management Port

  2. Auxiliary Port

  3. Console Port

Changing the Settings for the Console Port

In the Juniper Networks world, the root user is capable of accessing the UNIX kernel, as well as the core of JUNOS. Under normal conditions, root access should be permitted through the console. However , should a network engineer find it necessary, the console port can be blocked from allowing root access. The following example shows how to disable the root login on the console port.

[edit system ports console]

root@sysadmin # set insecure

The default speed for the console connection is 9,600 baud.

[edit system ports console]

root@sysadmin # set speed ?

Possible completions

115200 Standard terminal at 115200 baud

19200 Standard terminal at 19200 baud

38400 Standard terminal at 38400 baud

4800 Standard terminal at 4800 baud

57600 Standard terminal at 57600 baud

9600 Standard terminal at 9600 baud

[edit system ports console]

root@sysadmin # set speed 19200

[edit system ports console]

root@sysadmin # show

speed 19200;

[edit system ports console]

root@sysadmin # commit

Sysadmin (ttyd0)

login:

By default the terminal type is unknown and in the JUNOS world this setting is compatible with most vt100 emulators. Depending on the type of terminal being used to configure the router , it may be necessary to change the default terminal type.

The options for terminal type are ansi, vt100, and smallterm.

If one of these three is specified, the screen size is set at 80 columns by 24 rows. It is also possible to specify xterm, which will change the screen size to 80 columns by 65 rows. The configuration sample below shows the terminal type set to xterm

[edit system ports console]

root@sysadmin # set type ?

Possible completions:

ansi                        ANSI-compatible terminal

small-xterm            Small (24 line) xterm window

vt100                     VT100-compatible terminal

xterm                     Large (65 line) xterm window

root@sysadmin # commit

[edit system ports console]

root@sysadmin # set type xterm

[edit system ports console]

root@sysadmin # show

insecure;

speed 19200;

type xterm;

2 Configuring the Auxiliary Port

By default the auxiliary port on a Juniper Networks router is Disabled. Once enabled, it can be configured to serve the same purpose as the console port. However , in many implementations, the auxiliary port is used to connect to a modem to allow remote users to configure the router by dialing into it.

[edit system ports auxiliary]

root@sysadmin # set speed 19200

[edit system ports auxiliary]

root@sysadmin # set type xterm

[edit system ports auxiliary]

root@sysadmin # set insecure

[edit system ports auxiliary]

root@sysadmin # show

insecure;

speed 19200;

type xterm;

Terminal type is xterm

[edit system ports]

root@sysadmin # show

auxiliary {

           insecure;

          speed 19200;

          type xterm;

          }

Management Port

It is possible to disable the fxp0 interface physically without removing its configuration. You might want to disable it during various testing or troubleshooting situations to bring down the link temporarily. The following configuration sample shows how to disable the fxp0 interface without deleting its configuration by using the disable command at the [edit interfaces fxp0] hierarchy level.

[edit interfaces fxp0]

root@sysadmin # set disable

[edit interfaces fxp0]

root@sysadmin # show

disable;

To Enable the Interface

[edit interfaces fxp0]

root@sysadmin # delete disable

[edit interfaces fxp0]

root@sysadmin # show

To set the speed

[edit interfaces fxp0]

root@sysadmin # set speed 100m

[edit interfaces fxp0]

root@sysadmin # show

speed 100m;

To set the link mode

[edit interfaces fxp0]

root@sysadmin # set link-mode full-duplex

[edit interfaces fxp0]

root@sysadmin # show

speed 100m;

link-mode full-duplex;

To set up description

[edit interfaces fxp0]

root@sysadmin # set description "description "Link for India to US "

[edit interfaces fxp0]

root@sysadmin # show

speed 100m;

link-mode full-duplex;

description "Link for India to US ";

To set up MAC Address

[edit interfaces fxp0]

root@sysadmin # set mac 21:d4:11:5a:aa:99

[edit interfaces fxp0]

root@sysadmin # show

description "Link for India to US ";

speed 100m;

link-mode full-duplex;

mac 21:d4:11:5a:aa:99;

Logical Characteristics

[edit interfaces fxp0]

root@sysadmin # set unit 0 family inet address 10.10.10.40/8

[edit interfaces fxp0]

root@sysadmin # show

description "Management link to London";

speed 100m;

link-mode full-duplex;

mac 21:d4:11:5a:aa:99;

unit 0 {

family inet {

address 10.10.10.40/8;

}

}
 

Leave a Reply

Top