juniper (10)

Commit and roll back the configuration in 5 min in Juniper

This command is very helpful if you want to apply the configuration and test it quickly for 5 min. If there is any issue the previous configuration will automatically roll back in 5 min.

root@juniper# commit confirmed 5

if you are happy with the configuration, give confirm once again to make active.

It is actually very helpful command other wise if you made any trouble in the configuration or if you can’t connect to Juniper you will have to go down or get some one help to fix the issue.

Monitor real time traffic in Juniper

root@juniper> monitor traffic brief

Press Ctrl + C to end.

Create a new user account in Juniper

[edit]
root@juniper# set system login user bawin authentication plain-text-password
New password:
Retype new password:

root@juniper# set system login user bawin class ?
Possible completions:
<class> Login class
operator permissions [ clear network reset trace view ]
read-only permissions [ view ]
super-user permissions [ all ]
unauthorized permissions [ none ]

root@juniper# set system login user bawin class supper-user

Check the uptime of Juniper

root@juniper> show system uptime
Current time: 2012-08-19 08:07:04 UTC
System booted: 2012-08-19 07:59:19 UTC (00:07:45 ago)
Protocols started: 2012-08-19 08:00:10 UTC (00:06:54 ago)
Last configured: 2012-08-17 11:45:57 UTC (1d 20:21 ago) by root
8:07AM up 8 mins, 2 users, load averages: 0.02, 0.32, 0.27

Check the active user sessions in Juniper

root@juniper> show system users

8:07AM up 8 mins, 2 users, load averages: 0.01, 0.28, 0.26
USER         TTY         FROM           LOGIN@         IDLE             WHAT
root            v0 –                                  8:00AM         3                      cli
root            p0            Pc03              8:04AM           –                     cli

Kill the user session in Juniper

root@juniper>  request system logout user <USERNAME>

Configure NTP server in JunOS / Juniper

root@juniper% cli
root@juniper> edit
Entering configuration mode

[edit]
root@juniper# set system ntp server 0.au.pool.ntp.org

Check the default route in Juniper

router@juniper# show routing-options static
route 0.0.0.0/0 next-hop 172.16.30.1;

 

Setup the backup router for fault tolerance

root@juniper# set system backup-router 172.16.30.2

root@juniper# show system backup-router
172.16.30.2;

Roll back the configuration in Juniper

root@juniper# rolleback ?

it will list all possible list of configuration available for rolling back and juniper can have up to 50 last configurations.

You better check the changes before applying the previous configuration so following command is helpful.

root@juniper# run show configuration | compare rollback 5

Configure RADIUS server for authentication in juniper

Set the communication protocol Microsoft CHAP V2

root@juniper# set system radius-option password-protocol mschap-v2

Set the RADIUS server IP

root@juniper# set system radius-server 172.16.30.12 secret p@$$w0Rd

Set the TECACS server IP

root@juniper# set system tacplus-server 172.16.30.21 secret P@$$W0rd

RADIUS uses UDP while TACACS+ uses TCP. TCP offers several advantages over UDP. TCP offers a connection-oriented transport, while UDP offers best-effort delivery. RADIUS requires additional programmable variables such as re-transmit attempts and time-outs to compensate for best-effort transport, but it lacks the level of built-in support that a TCP transport offers.

you can set the order of authentication in juniper

root@juniper# set system authentication-order [ radius recplus password ]

 


To Learn More: http://www.youtube.com/watch?v=5sGpr7ufNTs&feature=bf_prev&list=PLF6F04B04AC1DE4AB

From : www.juniper.net 

http://www.juniper.net/techpubs/software/junos/junos94/swconfig-routing/swconfig-routing-IX.html