Using Foundry FastIron FLS-624 & FLS648 for a ring setup in the core. ! vlan 666 name peer-customer-01 by port tagged ethe 0/1/21 ethe 0/1/24 no spanning-tree metro-ring 2 ring-interfaces ethernet 0/1/24 ethernet 0/1/21 enable name Peering_Ring ! vlan 860 name mgmnt_VLAN by port tagged ethe 0/1/1 ethe 0/1/21 ethe 0/1/24 no spanning-tree metro-ring 1 [...]
- JUNOS 9.3 R2.8 – Juniper M7i – set system time-zone Europe/Berlin set date 200901301122 or if ntp servers are set set date ntp set system ntp server 192.168.23.1 prefer set system ntp server 192.20.1.22 set system ntp server 192.20.30.33 For time synchronize at boot : set system ntp boot-server 10.20.30.1 If you don´t set [...]
For a simple TACACS+ daemon config –> simple TACACS+ config ! aaa new-model ! ! aaa authentication fail-message ^C –> local authentication failed ! <– ^C ! ! Set the prompt that will show up if the TACACS+ service is unavailable aaa authentication password-prompt “Enter local password: ” aaa authentication username-prompt “Enter local username: ” [...]
tacacs.conf : #default authentication = file /etc/passwd #default authorization = permit accounting file = /var/log/tac-plus/account key = secretkey user = DEFAULT { default service = deny } user = username1 { login = des shc36DGgs73ab name = “Full Name” service = shell { } service = exec { priv-lvl = 15 } } user = [...]
- JUNOS 9.3 R2.8 – Juniper M7i – RE-850 – To protect the RE you only allow that sort of traffic that the router needs to function properly, by building a firewall filter that applies on the loopback interface.You should also limit the amount of traffic that’s reaching the routing engine. set policy-options prefix-list mgmnt-access [...]