EasyManua.ls Logo

Juniper ISG 2000 User Manual

Juniper ISG 2000
62 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #29 background imageLoading...
Page #29 background image
Summary of CLI Commands 19
Chapter 1: Configuring
Summary of CLI Commands
The following sets of commands include all the CLI commands used in the example
configuration featured in the previous sections in this chapter. The section in which
each type of command is described is also provided.
CLI Commands – Example Firewall Configuration
Commands Descriptions
set clock dd/mm/yyyy hh:mm:ss
set console timeout number
“System Clock and Console
Timeout” on page 5
set admin name name_str
set admin password pswd_str
Admin Name and Password
on page 5
set interface ethernet1/1 zone untrust
set interface ethernet1/2 zone dmz
set interface ethernet2/1 zone trust
set interface ethernet1/1 ip 1.1.1.1/30
set interface ethernet1/2 ip 1.2.2.1/29
set interface ethernet2/1 ip 10.1.1.1/24
set interface ethernet2/1 nat
set interface mgt ip 1.2.2.1/28
“Security Zones and
Interfaces” on page 6
set dns host dns1 2.2.2.5
set dns host dns1 2.2.2.6
set vrouter trust-vr route 0.0.0.0/0 interface
ethernet1/1 gateway 1.1.1.2
“DNS and Default Route” on
page 12
set address dmz web1 1.2.2.2/32
set address dmz mail-relay 1.2.2.3/32
set address trust mail1 10.1.1.4/32
Addresses” on page 13
set policy id 1 from trust to dmz mail1 mail-relay
mail permit log count
set policy id 2 from trust to dmz any web1 http
permit log count
set policy id 3 from trust to untrust any any any
permit log count
set policy id 4 from dmz to trust mail-relay mail1
mail permit log count
set policy id 5 from dmz to untrust mail-relay any
mail permit log count
save
“Policies” on page 13

Table of Contents

Question and Answer IconNeed help?

Do you have a question about the Juniper ISG 2000 and is the answer not in the manual?

Juniper ISG 2000 Specifications

General IconGeneral
BrandJuniper
ModelISG 2000
CategorySecurity System
LanguageEnglish

Summary

About This Guide

Content Summary

CLI Conventions

Terminology

IDP Requirements and Documentation

ISG 2000 Upgrade

Steps to upgrade the ISG 2000 to support Intrusion Detection and Prevention.

IDP Configuration through NetScreen-Security Manager

How to configure IDP using NetScreen-Security Manager.

NetScreen Product Documentation Guide

Technical Support

Configuring

Initial Setup Steps

Covers initial preparations, console connection, and basic configuration settings.

Security Zones and Interfaces

Understanding and configuring security zones and interfaces.

Policies

Creating policies to permit or deny traffic between zones.

Intrusion Detection and Protection

Overview of Intrusion Detection and Protection (IDP) functionality.

IPSec VPN Configuration

Configuring a route-based VPN tunnel between the ISG 2000 and a remote peer.

Factory Default Settings

Procedure to reset the ISG 2000 to its factory default settings.

Installing

Connecting the Device to a Network

Instructions for cabling the ISG 2000 to the network.

Equipment Rack Mounting

Guidelines and methods for mounting the ISG 2000 in an equipment rack.

Hardware and Servicing

Front Panel Components

Description of components and LEDs on the front panel of the ISG 2000.

Rear Panel Components

Description of components on the rear panel, including power supplies.

Replacing Interface Modules

Procedures for removing and inserting interface modules.

Replacing Fan Tray and Filter

Procedures for replacing the fan tray and its filter.

Replacing Power Supplies

Steps for replacing AC and DC power supplies in the ISG 2000.

Specifications

ISG 2000 Attributes

Physical dimensions and weight specifications for the ISG 2000.

Electrical and Environmental Specs

Electrical requirements, power ratings, environmental operating conditions.

Connectors and Media Types

Pinout for console/modem ports and interface media types.