Default Device Settings, Dmz | Juniper Networks SSG 20 instruction

Default Device Settings

This section describes the default settings and operation of an SSG 20 device.

Table 5 shows the default zone bindings for ports on the devices.

Table 5: Default Physical Interface to Zone Bindings

Port Label	Interface	Zone

10/100 Ethernet ports:

0/0	ethernet0/0	Untrust

0/1	ethernet0/1	DMZ

0/2	bgroup0 (ethernet0/2)	Trust

0/3	bgroup0 (ethernet0/3)	Trust

0/4	bgroup0 (ethernet0/4)	Trust

AUX	serial0/0	Null

WAN mini PIM ports (x = mini PIM slot 1 or 2):

ADSL2/2+ (Annex A)	adsl(x/0)	Untrust

ADSL2/2+ (Annex B)	adsl(x/0)	Untrust

T1	serial(x/0)	Untrust

E1	serial(x/0)	Untrust

ISDN	bri(x/0)	Untrust

V.92	serial(x/0)	Null

A bridge group (bgroup) is designed to allow network users to switch between wired and wireless traffic without having to reconfigure or reboot the device. By default, the ethernet0/2 — ethernet0/4 interfaces, labeled as ports 0/2 — 0/4 on the device, are grouped together as the bgroup0 interface, have the IP address 192.168.1.1/24, and are bound to the Trust security zone. You can configure up to four bgroups.

If you want to set an Ethernet or a wireless interface into a bgroup, you must first make sure that the Ethernet or wireless interface is in the Null security zone. Unsetting the Ethernet or wireless interface that is in a bgroup places the interface in the Null security zone. Once assigned to the Null security zone, the Ethernet interface can be bound to a security zone and assigned a different IP address.

Default Device Settings 31

Image 31

Juniper Networks SSG 20 manual Default Device Settings, Default Physical Interface to Zone Bindings Port Label, Dmz

Contents

SSG 20 Hardware Installation and Configuration Guide Copyright Notice Table of Contents Appendix B Initial Configuration Wizard About This Guide WebUI Conventions Organization CLI Conventions Navigational Path and Configuration Settings Obtaining Documentation and Technical Support Hardware Overview Port and Power Connectors System Status LEDs Front PanelStatus LED Descriptions Name Color Name Color Status Description TX/RX Port DescriptionsLAN Port LEDs Name Color Status Description Link Mini PIMs for the SSG Mini Physical Interface Module Port Descriptions Mini PIM LED States on the SSG Type Name Color Description Back Panel Power AdapterRadio Transceivers Grounding Lug USB Port Antennae Types Installing and Connecting the Device Before You Begin Installing Equipment SSG 20 Front-mount Connecting the Power Connecting Interface Cables to a Device Connecting a Device to an Untrusted Network Connecting a Device to a Network Serial AUX/Console Ports Connecting Mini PIMs to an Untrusted Network Microfilter and Splitter on Your Network Connection Connecting a Device to an Internal Network or a Workstation Wireless Antennae Configuring the Device Using a Console Connection Accessing a Device Using the WebUI WebUI Login Prompt Using Telnet Default Physical Interface to Zone Bindings Port Label Default Device SettingsDMZ Interface Zone Wireless and Logical Interface Bindings Root Admin Name and Password Basic Device Configuration Bridge Group Interfaces Date and Time Management Services Administrative Access Hostname and Domain Name Default RouteManagement Interface Address Basic Wireless Configuration Backup Untrust Interface Configuration Default SSG 20-WLAN Configuration WPA2-PSK Wireless Authentication and Encryption OptionsWPA-PSK WPA Activate wireless changes ADSL2/2+ Interface Mini PIM Configuration Virtual Circuits PPPoE or PPPoA Static IP Address and Netmask T1 Interface Isdn Interface E1 Interface Modem Interface Verifying External Connectivity Basic Firewall Protections Resetting a Device to Factory Defaults Page Required Tools and Parts Servicing the DeviceReplacing a Mini-Physical Interface Module Removing a Mini PIM Removing a Blank Faceplate Removing a Mini PIM Installing a Mini PIM Bottom of Device Upgrading Memory Unlocking the Memory Module 56 „ Upgrading Memory Specifications Electrical PhysicalEnvironmental Tolerance EMC Immunity SafetyCertifications EMC Emissions DSR ConnectorsRJ-45 Connector Pinouts Name Description GND RTS DB-9 Connector Pinouts Name DescriptionDCD DTRPage Initial Configuration Wizard Rapid Deployment Window Administrator Login Window Physical Interface Window Wlan Access Point Window ADSL2/2+ Interface Window Adsl Interface Configuration Window VPI/VCI Fields in Adsl Interface Configuration Window Description T1 Physical Layer Tab Window T1 Interface Windows Fields in T1 Physical Layer Tab Window Description 70 „ Page Cisco Hdlc Option with Cisco Hdlc Tab Window E1 Physical Layer Tab Window E1 Interface Windows Fields in E1 Physical Layer Tab Window Description Field Description Isdn Interface Windows SPID1 Fields in Isdn Physical Layer Tab Window DescriptionSPID2 Page Eth0/0 Interface Untrust Zone Window 92 Modem Interface Window Eth0/1 Interface DMZ Zone Window Bgroup0 Interface Window Bgroup0 Interface Trust Zone Window Fields in Bgroup0 Interface Window Description Wireless0/0 Interface Trust Zone Window Interface Summary Window Fields in Wireless0/0 Interface Window DescriptionSsid Physical Ethernet Dhcp Interface Window Wireless Dhcp Interface Window Confirmation Window Confirmation Window Adsl Index VPI/VCI