Juniper Networks 200 Series manual Starting a Console Session Using Telnet

Page 31

Configuring the Device for Telnet and WebUI Sessions

Allowing Outbound Traffic

By default, the NetScreen-200 Series device does not allow inbound or outbound traffic, nor does it allow traffic to or from the DMZ. To permit (or deny) traffic, you must create access policies.

The following CLI command creates an access policy that permits all kinds of outbound traffic, from any host in your trusted LAN to any device on the untrusted network.

set policy from trust to untrust any any any permit

Save you access policy configuration with the following command:

save

Note: Your network might require a more restrictive policy than the one created in the example above. The example is NOT a requirement for initial configuration. For detailed information about access policies, see the NetScreen Concepts & Examples ScreenOS Reference Guide.

You can also use the Outgoing Policy Wizard in the WebUI management application to create access policies for outbound traffic. See “Establishing a GUI Management Session” on page 26 for information on accessing the WebUI application.

CONFIGURING THE DEVICE FOR TELNET AND WEBUI SESSIONS

In addition to terminal emulator programs, you can use Telnet (or dialup) to establish console sessions with the NetScreen-200 Series device. In addition, you can start management sessions using the NetScreen WebUI, a web-based GUI management application.

Starting a Console Session Using Telnet

To establish a Telnet session with the NetScreen-200 Series device:

1.Connect an RJ-45 cable from ethernet1 to the internal switch, router, or hub in your LAN (see “Connecting the Device as a Single Security Gateway” on page 18).

2.Open a Telnet session, specifying the current IP address for ethernet1. For example, in Windows, click Start >> Run, enter telnet ip_addr (where ip_addr is the address of the ethernet1 interface), then click OK.

For example, if the current address of the ethernet1 interface is 10.100.2.183, enter:

telnet 10.100.2.183

3.At the Username prompt, type your user name (default is netscreen).

4.At the Password prompt, type your password (default is netscreen).

Note: Use lowercase letters only. Both username and password are case-sensitive.

NetScreen-200 Series

25

Image 31
Contents NETSCREEN-200 Series Copyright Notice Contents IX-I Guide Organization PrefaceJuniper Networks Netscreen Publications Command Line Interface CLI ConventionsOverview1 NetScreen-208 Device NetScreen-204 DeviceNETSCREEN-200 Systems Front Panel System Status LED DisplayAlarm Asset Recovery PinholeCompact Flash Card Slot Console and Modem PortsEthernet Interfaces Power SuppliesRear Panel Power Fuse Overview User’s Guide Installing the Device General Installation Guidelines Equipment Rack Installation GuidelinesPerforming EQUIPMENT-RACK Installation Front Mount Connecting the PowerMid-Mount Wiring a DC Power Supply Connecting the NETSCREEN-200 Device to Other Devices Installing the Device User’s Guide Configuring the Device Route Mode Transparent ModeOperational Modes Ethernet1 through ethernet8 NETSCREEN-200 Series Device InterfacesConnectivity Examples Connecting the Device AS a Single Security GatewayPerforming Device Connection Device Establishing AN HA Connection Between DevicesDevice Establishing a Terminal Emulator Connection Performing Initial Connection and ConfigurationSetting Port and Interface IP Addresses Changing Your Admin Name and PasswordSetting the IP Address of the Management Interface Configuring the Device for Telnet and Webui Sessions Starting a Console Session Using TelnetEstablishing a GUI Management Session Starting a Console Session Using DialupNetScreen WebUI application window appears Asset Recovery Using CLI Commands to Reset the DeviceUsing the Asset Recovery Pinhole to Reset the Device Configuring the Device User’s Guide Specifications Environmental Electrical SpecificationSafety Certifications NETSCREEN-200 AttributesIndex IX-II