Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 6 Next »

1- create the functional zone and add interfaces

2- Enable system services:  shhs and web-management


Real Hardware: example SRX300

set system name-server 194.168.4.100
set system name-server 194.168.8.100
set system name-server 8.8.8.8
set system services ssh
set system services web-management http
set security zones functional-zone management interfaces ge-0/0/0.0
set security zones functional-zone management host-inbound-traffic system-services dhcp
set security zones functional-zone management host-inbound-traffic system-services dns
set security zones functional-zone management host-inbound-traffic system-services http
set security zones functional-zone management host-inbound-traffic system-services https
set security zones functional-zone management host-inbound-traffic system-services ntp
set security zones functional-zone management host-inbound-traffic system-services ping
set security zones functional-zone management host-inbound-traffic system-services netconf
set security zones functional-zone management host-inbound-traffic system-services ssh
set security zones functional-zone management host-inbound-traffic system-services snmp-trap
set security zones functional-zone management host-inbound-traffic system-services traceroute
set security zones functional-zone management host-inbound-traffic system-services webapi-clear-text
set interfaces ge-0/0/0 unit 0 family inet address 192.168.0.2/24
set routing-options static route 0.0.0.0/0 next-hop 192.168.0.1



root> show configuration security zones functional-zone management

interfaces {

   ge-0/0/2.0;

}

host-inbound-traffic {

   system-services {

       all;

   }

}


or



root> show configuration security zones functional-zone management | display set

set security zones functional-zone management interfaces ge-0/0/2.0

set security zones functional-zone management host-inbound-traffic system-services all




2- Enable system services:


[edit system services]
root# show
ssh;
web-management {
   http {
       interface ge-0/0/2.0;
   }
}









Ethernet adapter VMware Network Adapter VMnet1:


  Connection-specific DNS Suffix  . :

  Link-local IPv6 Address . . . . . : fe80::5549:5fbb:18f9:2ca%11

  IPv4 Address. . . . . . . . . . . : 192.168.70.1

  Subnet Mask . . . . . . . . . . . : 255.255.255.0

  Default Gateway . . . . . . . . . :


  • No labels