Juniper Networks SSG 20 manual Administrative Access, Management Services

Page 35

CLI

unset interface bgroup0 port ethernet0/3 unset interface bgroup0 port ethernet0/4 set interface bgroup1 port ethernet0/3 set interface bgroup1 port ethernet0/4 set interface bgroup1 port wireless0/2 set interface bgroup1 zone DMZ

set interface bgroup1 ip 10.0.0.1/24 save

Administrative Access

By default, anyone in your network can manage a device if they know the login and password.

To configure the device to be managed only from a specific host on your network, use the WebUI or CLI as follows:

WebUI

Configuration > Admin > Permitted IPs: Enter the following, then click Add:

IP Address/Netmask: ip_addr/mask

CLI

set admin manager-ip ip_addr/mask save

Management Services

ScreenOS provides services for configuring and managing the device, such as

SNMP, SSL, and SSH, which you can enable on a per-interface basis.

To configure the management services on the device, use the WebUI or CLI as follows:

WebUI

Network > Interfaces > List > Edit (for ethernet0/0): Under Management Services, select or clear the management services you want to use on the interface, then click Apply.

CLI

set interface ethernet0/0 manage web unset interface ethernet0/0 manage snmp save

Basic Device Configuration „ 35

Page 34 Page 36
Image 35
Page 34 Page 36
Contents SSG 20 Hardware Installation and Configuration Guide Copyright Notice Table of Contents Appendix B Initial Configuration Wizard About This Guide WebUI Conventions OrganizationCLI Conventions Navigational Path and Configuration SettingsObtaining Documentation and Technical Support Hardware Overview Port and Power Connectors Status LED Descriptions Name Color Front PanelSystem Status LEDs Name Color Status Description TX/RX Port DescriptionsLAN Port LEDs Name Color Status Description LinkMini PIMs for the SSG Mini Physical Interface Module Port DescriptionsMini PIM LED States on the SSG Type Name Color Description Radio Transceivers Power AdapterBack Panel Grounding Lug USB Port Antennae TypesInstalling and Connecting the Device Before You Begin Installing EquipmentSSG 20 Front-mount Connecting the Power Connecting Interface Cables to a DeviceConnecting a Device to an Untrusted Network Connecting a Device to a NetworkSerial AUX/Console Ports Connecting Mini PIMs to an Untrusted NetworkMicrofilter and Splitter on Your Network Connection Connecting a Device to an Internal Network or a WorkstationWireless Antennae Configuring the Device Using a Console Connection Accessing a DeviceUsing the WebUI WebUI Login Prompt Using TelnetDMZ Default Device SettingsDefault Physical Interface to Zone Bindings Port Label Interface Zone Wireless and Logical Interface BindingsRoot Admin Name and Password Basic Device ConfigurationBridge Group Interfaces Date and TimeManagement Services Administrative AccessManagement Interface Address Default RouteHostname and Domain Name Basic Wireless Configuration Backup Untrust Interface ConfigurationDefault SSG 20-WLAN Configuration WPA2-PSK Wireless Authentication and Encryption OptionsWPA-PSK WPAActivate wireless changes ADSL2/2+ Interface Mini PIM ConfigurationVirtual Circuits PPPoE or PPPoA Static IP Address and Netmask T1 Interface Isdn InterfaceE1 Interface Modem Interface Verifying External Connectivity Basic Firewall ProtectionsResetting a Device to Factory Defaults Page Replacing a Mini-Physical Interface Module Servicing the DeviceRequired Tools and Parts Removing a Mini PIM Removing a Blank FaceplateRemoving a Mini PIM Installing a Mini PIMBottom of Device Upgrading MemoryUnlocking the Memory Module 56 „ Upgrading Memory Specifications Environmental Tolerance PhysicalElectrical EMC Immunity SafetyCertifications EMC EmissionsDSR ConnectorsRJ-45 Connector Pinouts Name Description GNDRTS DB-9 Connector Pinouts Name DescriptionDCD DTRPage Initial Configuration Wizard Rapid Deployment Window Administrator Login WindowPhysical Interface Window Wlan Access Point WindowADSL2/2+ Interface Window Adsl Interface Configuration WindowVPI/VCI Fields in Adsl Interface Configuration Window DescriptionT1 Physical Layer Tab Window T1 Interface WindowsFields in T1 Physical Layer Tab Window Description 70 „ Page Cisco Hdlc Option with Cisco Hdlc Tab Window E1 Physical Layer Tab Window E1 Interface WindowsFields in E1 Physical Layer Tab Window Description Field Description Isdn Interface WindowsSPID2 Fields in Isdn Physical Layer Tab Window DescriptionSPID1 Page Eth0/0 Interface Untrust Zone Window 92 Modem Interface WindowEth0/1 Interface DMZ Zone Window Bgroup0 Interface Window Bgroup0 Interface Trust Zone WindowFields in Bgroup0 Interface Window Description Wireless0/0 Interface Trust Zone WindowSsid Fields in Wireless0/0 Interface Window DescriptionInterface Summary Window Physical Ethernet Dhcp Interface Window Wireless Dhcp Interface WindowConfirmation Window Confirmation WindowAdsl IndexVPI/VCI
Top Page Image Contents