Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright © 2005 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 4-1 Operating Juniper Networks Routers in the Enterprise Chapter 4:

Similar presentations


Presentation on theme: "Copyright © 2005 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 4-1 Operating Juniper Networks Routers in the Enterprise Chapter 4:"— Presentation transcript:

1 Copyright © 2005 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 4-1 Operating Juniper Networks Routers in the Enterprise Chapter 4: Installation and Initial Configuration

2 Copyright © 2007 Juniper Networks, Inc. 4-2 Education Services Chapter Objectives  After successfully completing this chapter, you will be able to: Install Juniper Networks routers Use autoinstallation to load a configuration file from a server Save and restore a rescue configuration Return to a factory-default configuration Perform initial configuration using J-Web Perform initial configuration using the CLI

3 Copyright © 2007 Juniper Networks, Inc. 4-3 Education Services Agenda: Installation and Initial Configuration  Installation Guidelines  Autoinstallation  Rescue and Factory-Default Configurations  Configuration Checklist  Initial Configuration Using J-Web  Initial Configuration Using the CLI  Overview of Interface Configuration  Configuring Interfaces Using J-Web

4 Copyright © 2007 Juniper Networks, Inc. 4-4 Education Services General Installation Guidelines  Follow safety guidelines  All enterprise platforms: Rack mountable only (center-mount is preferred) Size and weight vary with platform Place heavier devices at the bottom of the rack  Attach network and console cables  Attach power cables

5 Copyright © 2007 Juniper Networks, Inc. 4-5 Education Services This slide left intentionally blank!

6 Copyright © 2007 Juniper Networks, Inc. 4-6 Education Services Power On and Power Off  JUNOS software is a multitasking environment A graceful shutdown of the operating system ensures file system integrity Use the J-Web Manage > Reboot page or the request system halt CLI command to gracefully halt the operating system Power is maintained to the system; reboot with console activity  Power off from the front panel on the J-series router Briefly depress the power button for graceful operating system shutdown and operating system-triggered soft power off Push and hold the power button for 4–5 seconds to remove power; the operating system should be shut down first  Power up with momentary push of the power button Automatic power on after power is lost and restored Recessed POWER Button

7 Copyright © 2007 Juniper Networks, Inc. 4-7 Education Services This slide left intentionally blank!

8 Copyright © 2007 Juniper Networks, Inc. 4-8 Education Services Agenda: Installation and Initial Configuration  Installation Guidelines  Autoinstallation  Rescue and Factory-Default Configurations  Configuration Checklist  Initial Configuration Using J-Web  Initial Configuration Using the CLI  Overview of Interface Configuration  Configuring Interfaces Using J-Web

9 Copyright © 2007 Juniper Networks, Inc. 4-9 Education Services What Is Autoinstallation?  Autoinstallation is a process that automates initial router configuration in two distinct stages (J-series platforms only) Address acquisition (DHCP, RARP, SLARP) Configuration file retrieval (FTP, HTTP, TFTP)  Compatible with other vendor’s AutoInstall Reply DHCP, RARP, SLARP Server(s) FTP, HTTP, TFTP Server(s) DHCP, RARP, SLARP Req Intranet/ Internet File Req J-series Router Reply

10 Copyright © 2007 Juniper Networks, Inc Education Services This slide left intentionally blank!

11 Copyright © 2007 Juniper Networks, Inc Education Services When Is Autoinstallation Attempted?  Autoinstallation is active only under certain circumstances: Factory-default configuration Bootstrap configuration [edit] load factory-default warning: activating factory configuration [edit] show system autoinstallation { delete-upon-commit; ## Deletes [system autoinstallation] upon change/commit traceoptions { level verbose; flag { all; }...

12 Copyright © 2007 Juniper Networks, Inc Education Services Factory-Default Configuration  Autoinstallation is enabled in a factory-default configuration Uses the hidden command delete-upon-commit to deactivate autoinstallation upon a successful commit Configure tracing (hidden) to assist in fault analysis Results are written to /var/log/autod [edit] load factory-default warning: activating factory configuration [edit] show system autoinstallation delete-upon-commit; ## Deletes [system autoinstallation] upon change/commit traceoptions { level verbose; flag { all; }

13 Copyright © 2007 Juniper Networks, Inc Education Services Bootstrap Configuration  Bootstrap parameters override the default behavior Use the interfaces keyword to specify which interfaces can be used for autoinstallation Use the configuration-servers keyword to specify a list of URLs that are used to retrieve the configuration file [edit system autoinstallation] show interfaces { fe-0/0/0 { rarp; } configuration-servers { tftp://tftpserver.example.com/config.conf; } Limits autoinstallation to the specified interface(s) Enables autoinstallation URL list for configuration file retrieval Defines dynamic address acquisition protocol for a given interface

14 Copyright © 2007 Juniper Networks, Inc Education Services  CLI commands control and monitor the autoinstallation process: show system autoinstallation status request system autoinstallation stop (hidden) restart autoinstallation (hidden) root> show system autoinstallation status Autoinstallation status: Master state: Active Last committed file: None Configuration server of last committed file: None Interface: Name: fe-0/0/0 State: End Acquired: Address: Hostname: None Hostname source: None Configuration filename: None Configuration filename server: Address acquisition: Protocol: DHCP Client Acquired address: None Protocol: RARP Client Acquired address: None... No configuration file is committed Static IP address assignment prevents DHCP server mode on this interface Monitoring and Controlling Autoinstallation

15 Copyright © 2007 Juniper Networks, Inc Education Services Agenda: Installation and Initial Configuration  Installation Guidelines  Autoinstallation  Rescue and Factory-Default Configurations  Configuration Checklist  Initial Configuration Using J-Web  Initial Configuration Using the CLI  Overview of Interface Configuration  Configuring Interfaces Using J-Web

16 Copyright © 2007 Juniper Networks, Inc Education Services RESET CONFIG button The Rescue Configuration  A rescue configuration is designed to restore basic connectivity in the event of configuration problems Contents are defined by the user Include a root password! By default, there is no rescue configuration Save it using J-Web or the CLI Once saved, activate the rescue configuration with the CLI or, on the J-series routers, a momentary push of the recessed RESET CONFIG button

17 Copyright © 2007 Juniper Networks, Inc Education Services Saving a Rescue Configuration  Use the J-Web Configuration > Rescue page to view, save, or delete a rescue configuration  Or, use the request system configuration rescue [save | delete] CLI command View with the show system configuration rescue CLI command

18 Copyright © 2007 Juniper Networks, Inc Education Services Loading the Rescue Configuration  Briefly push recessed RESET CONFIG button Look for a flashing green light to indicate a successful load Do not hold the CONFIG button for > 15 seconds!  Or, use the CLI’s rollback rescue command in configuration mode Remember to activate the rescue configuration with a commit! [edit] rollback ? Possible completions: Execute this command :23:01 UTC by user via cli :58:12 UTC by user via cli :38:15 UTC by user via cli :49:29 UTC by root via autoinstall rescue :43:31 UTC by user via cli | Pipe through a command [edit] rollback rescue load complete [edit] commit commit complete Activates rescue configuration

19 Copyright © 2007 Juniper Networks, Inc Education Services [edit] show system { autoinstallation { delete-upon-commit; ## Deletes [system autoinstallation] upon change/commit traceoptions { level verbose; flag { all; } services { web-management { http; } syslog { user * { any emergency; } file messages { any any; authorization info; } file interactive-commands { interactive-commands any; } The Factory-Default Configuration A factory-default configuration supports root user logins only. By default, the root user has no password and can only log in using the console or J-Web.

20 Copyright © 2007 Juniper Networks, Inc Education Services [edit] load factory-default warning: activating factory configuration [edit] set system root-authentication plain-text-password New password: Retype new password: [edit] commit commit complete Returning to a Factory Configuration  There might be times when you want to return to a factory configuration Reactivating autoinstallation, etc.  Use the load factory-default CLI configuration-mode command and set a root password  Depress the RESET CONFIG button for >15 seconds This method deletes the active configuration, the rescue configuration, and all rollback configurations! Unit should be secured to prevent access to the RESET CONFIG button Activates the factory-default configuration

21 Copyright © 2007 Juniper Networks, Inc Education Services This slide left intentionally blank!

22 Copyright © 2007 Juniper Networks, Inc Education Services Agenda: Installation and Initial Configuration  Installation Guidelines  Autoinstallation  Rescue and Factory-Default Configurations  Configuration Checklist  Initial Configuration Using J-Web  Initial Configuration Using the CLI  Overview of Interface Configuration  Configuring Interfaces Using J-Web

23 Copyright © 2007 Juniper Networks, Inc Education Services Initial Configuration Checklist  Configure these initial items (as needed) using the J-Web Quick Configuration Setup wizard or the CLI: Root password Hostname System time Domain name and DNS server address Remote access protocols Management and loopback interface properties A default route

24 Copyright © 2007 Juniper Networks, Inc Education Services Secondary Configuration Checklist  After initial configuration, use the various quick configuration wizards to configure: User accounts and permissions SNMP network management Interface properties Routing protocols, firewall filters, NAT, etc.  All in due time… We cover the configurations of routing protocols, policy, and services in subsequent chapters

25 Copyright © 2007 Juniper Networks, Inc Education Services Agenda: Installation and Initial Configuration  Installation Guidelines  Autoinstallation  Rescue and Factory-Default Configurations  Configuration Checklist  Initial Configuration Using J-Web  Initial Configuration Using the CLI  Overview of Interface Configuration  Configuring Interfaces Using J-Web

26 Copyright © 2007 Juniper Networks, Inc Education Services Accessing J-Web with Factory Defaults  Preferred approach: 1.Attach a PC with 128-bit browser support directly to the fe-0/0/0 or ge-0/0/0 interface with an RJ-45 Ethernet cable PC can be configured for DHCP or static IP address in the form of x/24, where x is any value from 2 to 254, inclusive 2.Wait for DHCP server mode to activate after three unsuccessful attempts to obtain a dynamic IP address 3.Point your browser to 4.You are automatically logged in as root and presented with the Configuration > Quick Configuration > Setup wizard DHCP server mode on built-in Ethernet interfaces only

27 Copyright © 2007 Juniper Networks, Inc Education Services The J-Web Setup Wizard  Fill in desired fields Fields flagged with * are required

28 Copyright © 2007 Juniper Networks, Inc Education Services The Quick Configuration Summary  You are now presented with the Configuration > Quick Configuration > Summary page Use remaining wizards to perform secondary configuration tasks

29 Copyright © 2007 Juniper Networks, Inc Education Services This slide left intentionally blank!

30 Copyright © 2007 Juniper Networks, Inc Education Services Quick Configuration: Adding Users  Configure user accounts and authentication settings at the Configuration > Quick Configuration > Users page

31 Copyright © 2007 Juniper Networks, Inc Education Services Quick Configuration: Defining Users  Specify username, login class, and password Select a predefined login class from the pull-down list Configure login classes at Configuration > View and Edit > Edit Configuration > System > Login, or through the CLI Click OK to activate

32 Copyright © 2007 Juniper Networks, Inc Education Services Quick Configuration: SNMP (1 of 2)  Configure SNMP at the Configuration > Quick Configuration > SNMP page Click to define communities or trap groups Contact and description data Health monitoring configuration

33 Copyright © 2007 Juniper Networks, Inc Education Services  Define zero or more communities and the associated authorization level  Define zero or more trap groups Include a name for the trap group, one or more categories, and one or more targets Adding communities Adding traps Quick Configuration: SNMP (2 of 2)

34 Copyright © 2007 Juniper Networks, Inc Education Services Displaying Initial Configuration  Use the Configuration > View and Edit > View Configuration Text page to display your initial configuration

35 Copyright © 2007 Juniper Networks, Inc Education Services Agenda: Installation and Initial Configuration  Installation Guidelines  Autoinstallation  Rescue and Factory-Default Configurations  Configuration Checklist  Initial Configuration Using J-Web  Initial Configuration Using the CLI  Overview of Interface Configuration  Configuring Interfaces Using J-Web

36 Copyright © 2007 Juniper Networks, Inc Education Services  Log in as root... rc.i386 configuring syscons:. Local package initialization:. starting local daemons:. Mon July 23 21:14:50 UTC 2007 Amnesiac (ttyd0) login: root --- JUNOS 8.3R2.8 built :21:56 UTC  Start the CLI cli root> Initial Configuration Using the CLI (1 of 6) Amnesiac prompt indicates a factory-default configuration UNIX shell prompt CLI prompt

37 Copyright © 2007 Juniper Networks, Inc Education Services Initial Configuration Using the CLI (2 of 6)  Enter configuration mode root> configure [edit] root#  Issue CLI commands to configure desired functionality Remember to issue the commit command to activate your changes Hint: Use the CLI’s | display set functionality to reverse-engineer a configuration into the CLI commands used to create it

38 Copyright © 2007 Juniper Networks, Inc Education Services This slide left intentionally blank!

39 Copyright © 2007 Juniper Networks, Inc Education Services  Set the identification parameters Hostname Domain name Root password [edit] root# edit system [edit system] root# set host-name host [edit system] root# set domain-name example.com [edit system] root# set root-authentication plain-text-password New password: Retype new password: [edit system] root# Initial Configuration Using the CLI (3 of 6)

40 Copyright © 2007 Juniper Networks, Inc Education Services  Set the time parameters Time zone NTP server Current time [edit system] root# set time-zone America/Los_Angeles [edit system] root# set ntp boot-server [edit system] root# set ntp server [edit system] root# run set date Sat May 28 09:00:00 UTC 2005 Initial Configuration Using the CLI (4 of 6)

41 Copyright © 2007 Juniper Networks, Inc Education Services  Set the network parameters DNS name servers Domain search Default gateway Loopback address fe-0/0/0 or ge-0/0/0 address [edit system] root# set name-server [edit system] root# set domain-search example.com [edit system] root# top [edit] root# set routing-options static route /0 next-hop [edit] root# set interfaces lo0 unit 0 family inet address /32 [edit] root# set interfaces ge-0/0/0 unit 0 family inet address /24 Initial Configuration Using the CLI (5 of 6)

42 Copyright © 2007 Juniper Networks, Inc Education Services  Set the management access parameters Telnet SSH  Commit the changes! [edit] root# edit system [edit system] root# set services telnet [edit system] root# set services ssh [edit system] root# commit and-quit May 28 02:03:18 init: autoinstallation (PID 2460) exited with status=0 Normal Exit commit complete Exiting configuration mode Initial Configuration Using the CLI (6 of 6)

43 Copyright © 2007 Juniper Networks, Inc Education Services show configuration version 8.3R2.8; system { host-name host; domain-name example.com; domain-search example.com; time-zone America/Los_Angeles; root-authentication { encrypted-password "$1$VEHi2fQx$nosjW.0E9aH2mBZqFFJ7z/"; ## SECRET-DATA } name-server { ; } services { ssh; telnet; web-management { http; } syslog {... } ntp { boot-server ; server ; } Initial Configuration Results (1 of 2)

44 Copyright © 2007 Juniper Networks, Inc Education Services interfaces { ge-0/0/0 { unit 0 { family inet { address /24; } lo0 { unit 0 { family inet { address /32; } routing-options { static { route /0 next-hop ; } Initial Configuration Results (2 of 2)

45 Copyright © 2007 Juniper Networks, Inc Education Services Secondary Configuration  Configure local user accounts [edit system login user]  Configure SNMP communities and traps [edit snmp community community-name] [edit snmp trap-group trap-group-name] [edit] show snmp community juniper { authorization read-only; } trap-group Config_and_Auth { categories { authentication; configuration; } targets { ; }

46 Copyright © 2007 Juniper Networks, Inc Education Services Agenda: Installation and Initial Configuration  Installation Guidelines  Autoinstallation  Rescue and Factory-Default Configurations  Configuration Checklist  Initial Configuration using J-Web  Configuration Using the CLI  Overview of Interface Configuration  Configuring Interfaces Using J-Web

47 Copyright © 2007 Juniper Networks, Inc Education Services ge-0/0/0 se-1/0/1 ge-2/0/0 ge-3/0/3 J-series Interface Naming Review  J-series interfaces follow the same three-level naming convention used in M-series and T-series platforms Based on a MM-F/P/T model, where: MM = The media type (e1, fe, se, t1, t3, etc.) F = The PIM slot number; fixed interfaces use slot 0, expansion slots numbered from left to right, top to bottom P = The virtual PIM number, currently always set to 0 T = The port number Interface naming example: J2320 platform:

48 Copyright © 2007 Juniper Networks, Inc Education Services Logical Units  Logical units are like subinterfaces in other equipment In JUNOS software, a logical unit is always required Also used to support multipoint technologies like Frame Relay, ATM, or VLANs  Interface unit number is separate in meaning from the actual circuit identifier; can be any arbitrary value Suggested convention is to keep them the same  PPP and HDLC encapsulations support only one logical unit Must configure unit number as zero for these encapsulations  Multiple protocol addresses are supported on a single logical unit Typing in additional addresses does not override previous address Watch for multiple addresses when correcting addressing mistakes! t1-4/0/0.43

49 Copyright © 2007 Juniper Networks, Inc Education Services This slide left intentionally blank!

50 Copyright © 2007 Juniper Networks, Inc Education Services Interface Properties  Physical properties: Clocking Scrambling FCS MTU Data link layer protocol, keepalives Diagnostic characteristics Local, remote, and facility loopback BERT test  Logical properties: Protocol family ( inet, inet6, iso, mpls ) Family MTU Addresses (IPv4 or IPv6 address, ISO NET address) Virtual circuits (VLAN tag, DLCI, VPI/VCI) Etc.

51 Copyright © 2007 Juniper Networks, Inc Education Services This slide left intentionally blank!

52 Copyright © 2007 Juniper Networks, Inc Education Services Interface Configuration interfaces { interface-name { physical-properties; […] unit unit-number { logical-properties; […] } Physical and logical properties are configured at their respective levels [edit] show interfaces se-1/0/1 encapsulation cisco-hdlc; unit 0 { family inet { address /24; }  Generic interface configuration stanza: Interface configuration example:

53 Copyright © 2007 Juniper Networks, Inc Education Services Agenda: Installation and Initial Configuration  Installation Guidelines  Autoinstallation  Rescue and Factory-Default Configurations  Configuration Checklist  Initial Configuration Using J-Web  Configuration Using the CLI  Overview of Interface Configuration  Configuring Interfaces Using J-Web

54 Copyright © 2007 Juniper Networks, Inc Education Services The Interface Wizard  Access at Configuration > Quick Configuration > Interfaces The main page provides a summary of interface state and configuration status Wizard currently supports IPv4 only

55 Copyright © 2007 Juniper Networks, Inc Education Services Configuring Fast Ethernet (1 of 3)  Begin by adding a logical unit to the physical device Wizard currently supports Unit 0 applications only

56 Copyright © 2007 Juniper Networks, Inc Education Services Configuring Fast Ethernet (2 of 3)  Specify a logical interface description and click Add to define IPv4 address information for Unit 0

57 Copyright © 2007 Juniper Networks, Inc Education Services Configuring Fast Ethernet (3 of 3)  Specify IPv4 (family inet) addressing properties and click OK You can specify additional addresses on the same unit by repeating this process

58 Copyright © 2007 Juniper Networks, Inc Education Services Configuring Serial Interfaces (1 of 3)  Configure physical properties Encapsulation, MTU, clocking mode, clock rate, etc.  Add a logical interface

59 Copyright © 2007 Juniper Networks, Inc Education Services This slide left intentionally blank!

60 Copyright © 2007 Juniper Networks, Inc Education Services Configuring Serial Interfaces (2 of 3)  Click Add to specify IPv4 address information for Unit 0

61 Copyright © 2007 Juniper Networks, Inc Education Services Configuring Serial Interfaces (3 of 3)  Specify IPv4 (family inet) addressing properties and click OK You can specify additional addresses on the same unit by repeating this process

62 Copyright © 2007 Juniper Networks, Inc Education Services Review Questions 1.What interfaces support DHCP server mode when performing autoinstallation? 2.Describe how a rescue configuration is saved and later activated. 3.How can you return a unit to a factory-default state? 4.List and describe four parameters that are normally configured during initial installation. 5.Describe parameters that are configured at the logical unit level of an interface. 6.What is the default root password?

63 Copyright © 2007 Juniper Networks, Inc Education Services Lab 2: Initial Configuration  Perform tasks normally associated with initial installation and configuration.

64 Copyright © 2007 Juniper Networks, Inc Education Services


Download ppt "Copyright © 2005 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 4-1 Operating Juniper Networks Routers in the Enterprise Chapter 4:"

Similar presentations


Ads by Google