Table of Contents
- About This Guide
- Objectives
- E-series Routers
- Audience
- Documentation Conventions
- Related Juniper Networks Documentation
- Obtaining Documentation
- Documentation Feedback
- Requesting Support
- Planning Your Network
- Applications Overview
- Private Line Aggregation
- xDSL Session Termination
- Layered Approach
- Line Modules and I/O Modules
- Interfaces
- Subinterfaces
- interface Command
- General Configuration Tasks
- Configuring Virtual Routers
- Configuring IPSec
- Configuring Physical Layer Interfaces
- Line Module Features
- Configurable HDLC Parameters
- Configuring Channelized T3 Interfaces
- Configuring T3 and E3 Interfaces
- Configuring Channelized T1 and Channelized E1 Line Interfaces
- Configuring OCx/STMx and OC48 Interfaces
- Configuring Channelized OCx/STMx Line Interfaces
- Configuring Ethernet Interfaces
- Configuring HSSI Interfaces
- Configuring X.21/V.35 Interfaces
- Configuring IPSec Service Interfaces
- Configuring TSM Interfaces
- Configuring Data Link-Layer Interfaces
- Configuring IP/Frame Relay
- Configuring IP/ATM
- Configuring IP/PPP
- Configuring IP/HDLC
- Configuring IP over Ethernet
- Configuring IP Tunnels, Shared IP Interfaces, and Subscriber Interfaces
- Configuring IP Tunnels
- Configuring Shared Interfaces and Subscriber Interfaces
- Configuring Routing Protocols
- Configuring VRRP
- Configuring Routing Policy
- QoS
- Policy Management
- Configuring Remote Access
- Command-Line Interface
- Overview
- Command Modes
- Command-Line Prompts
- Keywords and Parameters
- Keywords
- Parameters
- Keywords and Parameters Together
- Using CLI Commands
- Abbreviated Commands
- The ? Key
- <Backspace> or <Delete>
- <Enter>
- <Tab>
- Arrow Keys
- The no Version
- run Command
- show Commands
- Regular Expressions
- The - - More - - Prompt
- Responding to Prompts
- CLI Status Indicators
- Levels of Access
- User Level
- Privileged Level
- Initialization Sequence
- Accessing the CLI
- Logging In
- Privileged-Level Access
- Defining CLI Levels of Privilege
- Accessing the Privileged Exec Level
- Moving from Privileged Exec to User Exec Mode
- Logging Out
- Changing CLI Command Privileges
- CLI Command Exceptions
- CLI Keyword Mapping
- Setting Privileges for Ambiguous Commands
- Setting Privilege Levels for no or default Versions
- Setting Privilege Levels for Multiple Commands
- Setting Privilege Levels for All Commands in a Mode
- Setting Privilege Levels for a Group of Commands
- Using the Order of Precedence
- Superseding Privilege Levels with the all Keyword
- Removing the all Keyword
- Setting Default Line Privilege
- Viewing CLI Privilege Information
- Viewing the Current User Privilege Level
- Viewing Privilege Levels for All Connected Users
- Viewing Privilege Levels for Changed CLI Commands
- Using Help
- ? (Question Mark Key)
- help Command
- Partial-keyword <Tab>
- Using Command-Line Editing
- Basic Editing
- Command-Line Editing Keys
- Command History Keys
- Pagination Keys
- Accessing Command Modes
- Exec Modes
- Password Protection
- Global Configuration Mode
- Executing a Script File
- AAA Profile Configuration Mode
- Address Family Configuration Mode
- Classifier Group Configuration Mode
- Controller Configuration Mode
- DHCP Local Pool Configuration Mode
- Domain Map Configuration Mode
- Domain Map Tunnel Configuration Mode
- Drop Profile Configuration Mode
- Explicit Path Configuration Mode
- Interface Configuration Mode
- IP NAT Pool Configuration Mode
- IPSec CA Identity Configuration Mode
- IPSec Identity Configuration Mode
- IPSec IKE Policy Configuration Mode
- IPSec Manual Key Configuration Mode
- IPSec Transport Profile Configuration Mode
- L2TP Destination Profile Configuration Mode
- L2TP Destination Profile Host Configuration Mode
- LDP Configuration Mode
- Line Configuration Mode
- Local IPSec Transport Profile Configuration
- Map Class Configuration Mode
- Map List Configuration Mode
- Policy List Configuration Mode
- PPPoE Service Name Table Configuration Mode
- Profile Configuration Mode
- QoS Profile Configuration Mode
- Queue Profile Configuration Mode
- RADIUS Configuration Mode
- RADIUS Relay Configuration Mode
- Rate Limit Profile Configuration Mode
- Remote Neighbor Configuration Mode
- Route Map Configuration Mode
- Router Configuration Mode
- RSVP Configuration Mode
- RTR Configuration Mode
- Scheduler Profile Configuration Mode
- SNMP Event Manager Configuration Mode
- Statistics Profile Configuration Mode
- Subinterface Configuration Mode
- Subscriber Policy Configuration Mode
- Traffic Class Configuration Mode
- Traffic Class Group Configuration Mode
- Tunnel Profile Configuration Mode
- Tunnel Server Configuration Mode
- VRF Configuration Mode
- Configuring SNMP
- Overview
- Terminology
- SNMP Features Supported
- SNMP Client
- SNMP Server
- SNMP MIBs
- Standard SNMP MIBs
- Juniper Networks E-series Enterprise MIBs
- Accessing Supported SNMP MIBs
- SNMP Versions
- Security Features
- Management Features
- Virtual Routers
- Creating SNMP Proxy
- Disabling and Reenabling SNMP Proxy
- Communicating with the SNMP Engine
- SNMP Attributes
- SNMP Operations
- SNMP PDU Types
- References
- Before You Configure SNMP
- SNMP Configuration Tasks
- Enabling SNMP
- Configuring SNMP v1/v2c Community
- Community Name
- Privilege Levels
- IP Access List
- Configuring SNMPv3 Users
- Setting Server Parameters
- Configuring SNMP Packet Size
- Configuring Memory Warning
- Configuring Encoding Method
- Managing Interface Sublayers
- Compressing Interfaces
- Controlling Interface Numbering
- Monitoring Interface Tables
- Configuring Traps
- IP Hosts
- Trap Categories
- Trap Severity Levels
- Specifying an Egress Point for SNMP Traps
- Configuring Trap Queues
- Configuring Trap Notification Logs
- Recovering Lost Traps
- Configuring the SNMP Server Event Manager
- Event MIB Purpose
- Event MIB Structure
- Trigger Table
- Objects Table
- Event Table
- Configuration Tasks
- Defining a Boolean Test
- Defining an Existence Test
- Defining a Threshold Test
- Monitoring Events
- Collecting Bulk Statistics
- Configuring Collectors and Receivers
- Deleting All Bulkstats Configurations
- Monitoring Collection Statistics
- Configuring Schemas
- igmp Objects
- if-stats Objects
- Monitoring Schema Statistics
- Configuring Interface Numbering Mode
- Using the Bulk Statistics Formatter
- Setting Remote Filenames
- Guidelines
- Specifying End of Line Format
- Managing Virtual Routers
- Monitoring SNMP
- Establishing a Baseline
- Viewing SNMP Status
- Output Filtering
- Managing the System
- Overview
- Naming the System
- Configuring Timing
- Monitoring Timing
- Using the CLI
- Managing vty Lines
- Configuring vty Lines
- Monitoring vty Lines
- Clearing lines
- Monitoring the Current Configuration
- Customizing the Configuration Output
- Configuring the System Automatically
- Saving the Current Configuration
- Customizing the User Interface
- Setting the Console Speed
- Configuring the Display Terminal
- Specifying the Character Set
- Configuring Login Conditions
- Setting Time Limits for User Login
- Setting Time Limits for User Input
- Configuring CLI Messages
- Monitoring the Console Settings
- Sending Messages
- Managing Memory
- Managing Files
- Managing the User Space from a Network Host
- File Commands and FTP Servers
- Renaming Files
- Deleting Files
- Monitoring Files
- Viewing Files
- Transferring Files
- Using the copy Command
- Configuring the FTP Server
- Features
- FTP Passive Mode
- Configuring Authentication
- Configuration Tasks
- Configuration Example
- Monitoring the FTP Server
- Copying Partial Releases
- Configuring the NFS Client
- References
- Prerequisites
- Configuration Tasks
- Monitoring the NFS Client
- Using a Loopback Interface
- Using the Telnet Client
- Configuring DNS
- References
- Assigning Name Servers
- Using One Name Resolver for Multiple Virtual Routers
- Monitoring DNS
- Troubleshooting
- Creating Core Dump Files
- Boot Mode
- Global Configuration Mode
- Managing Core Dump Files
- Enabling and Disabling the Core Dump Monitor
- Specifying the Core Dump Monitor Interval
- Viewing Core Dump Monitor Status
- Accessing the Core Dump File
- Understanding the Core Dump File
- Gathering Information for Customer Support
- Managing and Monitoring Resources
- Enabling and Disabling the Resource Threshold Monitor
- Viewing Resource Threshold Information
- Monitoring the System
- Managing Modules
- Overview
- Line Modules and I/O Modules
- SRP Modules
- Disabling and Reenabling Modules
- Removing an SRP Module
- Replacing Modules
- Replacing Line Modules
- Replacing SRP Modules
- Software Compatibility
- Line Modules
- I/O Modules
- Configuring Performance Rate of Line Modules
- Choosing a Combination of Line Modules
- Slot Groups
- SRP Modules Bandwidth
- Line Modules Bandwidth and Switch Usage
- Allowed Combinations for Line Rate Performance
- Specifying the Type of Performance
- Monitoring Bandwidth Oversubscription
- Troubleshooting
- Optimizing Bandwidth
- Line Module Redundancy
- Automatic Switchover
- Limitations of Automatic Switchover
- Reversion after Switchover
- Configuring Line Module Redundancy
- Managing Line Module Redundancy
- Monitoring Line Module Redundancy
- SRP Module Redundancy
- SRP Module Behavior
- Installing a Redundant SRP Module
- Managing SRP Module Redundancy
- Switching to the Redundant SRP Module
- Upgrading Software on a Redundant SRP Module
- Monitoring the Status LEDs
- Managing NVS Cards on SRP Modules
- NVS Features
- Installing and Removing NVS Cards
- Synchronizing NVS Cards
- Synchronizing NVS Cards of Different Capacities
- Disabling Autosynchronization
- Validating and Recovering Redundant SRP File Integrity
- Reformatting the Primary NVS Card
- Copying the Image on the Primary SRP Module
- Scanning NVS Cards
- Monitoring NVS Cards
- Managing the Ethernet Port on the SRP Module
- Monitoring Statistics
- Monitoring the Ethernet Configuration for the SRP Module
- Monitoring Modules
- Managing High Availability
- Understanding High Availability
- Redundancy Modes of Operation
- File System Synchronization Mode
- High Availability Mode
- Understanding SRP State Behavior
- Disabled State
- Initializing State
- Active State
- Pending State
- Supported Platforms
- Application Support
- Before Activating High Availability
- Activating High Availability
- Deactivating High Availability
- Upgrading Software
- Monitoring High Availability
- High Availability show Commands
- Clearing the Redundancy History
- Passwords and Security
- Overview
- Setting Basic Password Parameters
- Creating Encrypted Passwords
- Creating Secrets
- Encrypting Passwords in Configuration File
- Commands and Guidelines
- Setting and Erasing Passwords
- Privilege Levels
- Accessing Privilege Levels
- Setting Enable Passwords
- Erasing Enable Passwords
- Setting a Console Password
- Erasing the Console Password
- Monitoring Passwords
- Vty Line Authentication and Authorization
- Configuring Simple Authentication
- Configuring AAA Authentication and AAA Authorization
- Virtual Terminal Access Lists
- Secure System Administration with SSH
- Transport
- User Authentication
- Connection
- Key Management
- User Key Management
- Host Key Management
- Performance
- Security Concerns
- Before You Configure SSH
- SSH Configuration Tasks
- Configuring Encryption
- Configuring User Authentication
- Configuring Message Authentication
- Enabling and Disabling SSH
- Displaying SSH Status
- Terminating an SSH Session
- Restricting User Access
- Restricting Access to Commands with RADIUS
- Per-User Enable Authentication
- Restricting Access to Virtual Routers
- VSA Configuration Examples
- Commands Available to Users
- Lawful Intercept
- Overview
- Comparing CLI-Based IP Interface Mirroring and RADIUS-Based
- Configuration
- Security
- Application
- Terms
- References
- CLI-Based IP Interface Mirroring
- Configuring CLI-Based IP Interface Mirroring
- Commands and Guidelines
- Monitoring CLI-Based IP Interface Mirroring
- RADIUS-Based Mirroring
- RADIUS Attributes Used for Mirroring
- Mirroring MLPPP Sessions
- Prepended Header
- Format of the Intercept Header Attributes
- Secure Policies
- Resolving and Tracking the Mediation Device's Address
- Sequence of Events
- Configuring RADIUS-Based Mirroring
- Configuring the RADIUS Server
- Disabling RADIUS-Based Mirroring
- Configuring the Mediation Device
- Configuring the E-series Router: Start Mirroring When
- Configuring the E-series Router: Mirror User Who Is
- Example—Configuring RADIUS-Initiated Mirroring When a
- Commands
- Monitoring RADIUS-Based Mirroring
- Writing CLI Macros
- Writing Macros
- Environment Commands
- Variables
- Literals
- Operators
- Assignment
- Increment and Decrement
- String Operations
- Extraction Operations
- Arithmetic Operations
- Relational Operations
- Logical Operations
- Miscellaneous Operations
- Conditional Execution
- If Constructs
- While Constructs
- Generating Macro Output
- Invoking Other Macros
- Running Macros
- Practical Examples
- Configuring Frame Relay
- Configuring ATM Interfaces
- Booting the System
- Configuring Your System for Booting
- Rebooting Your System
- Rebooting When a Command Takes a Prolonged Time to Execute
- Configuration Caching
- Operations in Boot Mode
- Displaying Boot Information
- Output Filtering
- Configuring the System Clock
- Overview
- NTP
- System Operation as an NTP Client
- Synchronization
- System Operation as an NTP Server
- References
- Setting the System Clock Manually
- Before You Configure NTP
- Choosing NTP Servers
- NTP Configuration Tasks
- Enabling NTP Services
- NTP Client Configuration
- Directing Responses from NTP Servers
- Refusing Broadcasts from NTP Servers
- NTP Server Configuration
- Configuration Examples
- Monitoring NTP
- Configuring Virtual Routers
- Overview
- Default Virtual Router
- Virtual Router Instances
- Routing Protocols
- VPNs and VRFs
- VPNs
- VRFs
- References
- Configuring Virtual Routers
- Monitoring Virtual Routers
- Logging System Events
- Overview
- Log Severity
- Log Verbosity
- Persistent Logs
- Configuring Event Logging
- Configuring Log Severity for Individual and Systemwide Logs
- Configuring Log Verbosity for Individual Logs or All Logs
- Setting the Timestamp for Log Messages
- Configuring Log Filters
- Turning Off Filters
- Monitoring Logging System Events
- List of Event Categories
- aaaAtm1483Cfg
- aaaEngineGeneral
- aaaServerGeneral
- aaaUserAccess
- addressServerGeneral
- ar1AaaServerGeneral
- atm
- atm1483
- atmAal5
- auditIpsec
- bgpConnections
- bgpDampening
- bgpEvents
- bgpGeneral
- bgpGracefulRestart
- bgpIpv6NextHops
- bgpKeepAlives
- bgpMessages
- bgpNeighborChanges
- bgpNextHops
- bgpRoutes
- bridge
- bridgeEngine
- bridgedEthernet
- bridgingMgr
- bulkStats
- cacGeneral
- cacIntf
- cbf
- cliCommand
- cliGeneral
- connectionManager
- cops
- coreDump
- ctreeLog
- dcm
- dcmEngineGeneral
- dhcpEngine
- dhcpExternal
- dhcpExternalEngine
- dhcpGeneral
- dhcpLocalServerGeneral
- dhcpNvGeneral
- dhcpOfferLog
- dhcpPbeGeneral
- dhcpProxyGeneral
- dhcpRelayGeneral
- dhcpv6DemuxGeneral
- dhcpv6LsGeneral
- dismanEventMgr
- diagMboxCtrl
- dnsGeneralLog
- ds1
- ds3
- dvmrpGeneral
- dvmrpMcastTable
- dvmrpProbeRcv
- dvmrpProbeSent
- dvmrpRtTable
- ethernet
- fileSystem
- flowInspection
- flowInspectionEngine
- flowServicesFirewallAlert
- flowServicesFirewallAudit
- frameRelay
- fsAgent
- ft1
- ftpClient
- ftpServer
- gplaan
- ha
- hdlc
- httpServer
- icmpTraffic
- icmpv6Traffic
- igmpGeneral
- igmpGroupState
- ikeCertificateMgr
- ikeEnrollment
- ikepki
- ipAccessList
- ipEngine
- ipflowstats
- ipflowstatsEngine
- ipGeneral
- ipIfCreator
- ipInterface
- ipNhopTrackerGeneral
- ipProfileMgr
- ipRoutePolicy
- ipRouteTable
- ipTraffic
- ipTunnel
- ipv6AccessList
- ipv6General
- ipv6Interface
- ipv6ProfileMgr
- ipv6RouteTable
- ipv6Traffic
- ipv6Types
- isisAdjChange
- isisAdjPackets
- isisChecksumErr
- isisGeneral
- isisLocalUpdate
- isisMplsTeAdvertisements
- isisMplsTeEvents
- isisProtocolErr
- isisSnpPackets
- isisSpfEvents
- isisSpfStatistics
- isisSpfTriggers
- isisUpdatePackets
- isVoice
- itm
- l2tp
- l2tpDialoutGenerator
- l2tpDisconnectCause
- l2tpIpLowerBinding
- l2tpStateMachine
- ldpGeneral
- ldpHelloMessages
- ldpMessages
- ldpPeer
- localAddressServerGeneral
- localEnableAuthServer
- localLinePassword
- mgtmGeneral
- mgtmv6General
- mldGeneral
- mldGroupState
- mmcd
- mplsAppService
- mplsAsyncMgr
- mplsGeneral
- mplsMajorInterface
- mplsMinorInterface
- mplsShimInterface
- mrInfoLog
- mrInfoRcvdLog
- mrInfoSentLog
- mtraceLog
- mtracercvdLog
- mtraceSentLog
- multicastTraffic
- nameResolverLog
- nfsClient
- noneAaaAddrServer
- noneAaaServer
- ntpGeneral
- onlineDiag
- os
- ospfElectDr
- ospfGeneral
- ospfHelloPktsRcvd
- ospfHelloPktsSent
- ospfInterface
- ospfLsa
- ospfNeighbor
- ospfPktsRcvd
- ospfPktsSent
- ospfRoute
- ospfSpfExt
- ospfSpfInter
- ospfSpfIntra
- ospfTeDatabase
- ospfTeSPF
- ospfv3ElectDr
- ospfv3General
- ospfv3HelloPktsRcvd
- ospfv3HelloPktsSent
- ospfv3Interface
- ospfV3Lsa
- ospfv3Neighbor
- ospfv3PktsRcvd
- ospfv3PktsSent
- ospfv3Route
- ospfV3SpfExt
- ospfV3SpfInter
- ospfV3SpfIntra
- pimAutoRPRcvdLog
- pimAutoRPSentLog
- pimBsrRcvdLog
- pimBsrSentLog
- pimHelloRcvdLog
- pimHelloSentLog
- pimIpv6AutoRPRcvdLog
- pimIpv6AutoRPSentLog
- pimIpv6BsrRcvdLog
- pimIpv6BsrSentLog
- pimIpv6HelloRcvdLog
- pimIpv6HelloSentLog
- pimIpv6PktsRcvdLog
- pimIpv6PktsSentLog
- pimPktsRcvdLog
- pimPktsSentLog
- policyMgrAttachment
- policyMgrGeneral
- policyMgrPacketLog
- ppp
- pppoe
- pppoeControlPacket
- pppPacket
- pppStateMachine
- profileMgr
- qm
- qos
- radiusAttributes
- radiusClient
- radiusDisconnectGeneral
- radiusRelayGeneral
- radiusSendAttributes
- remOps
- resourceThresholdTrap
- ripGeneral
- ripRoute
- ripRtTable
- routerLog
- rsvpRefreshGeneral
- security
- serviceability
- slep
- snmp
- snmpPduAudit
- snmpSetPduAudit
- snmpTrap
- sonet
- sonetPath
- sonetVT
- srp1GbMinimumMessage
- ssccDetailPm
- ssccDetailSsc
- ssccGeneral
- stTunnel
- system
- tacacsPlusEngineering
- tacacsPlusServer
- tcpGeneral
- tcpTraffic
- telnet
- testExec
- tsm
- udpTraffic
- udpv6Traffic
- vrfVpnMgrGeneralLog
- vrrp
- Abbreviations and Acronyms
- References
- RFCs
- Draft RFCs
- Other Software Standards
- Hardware Standards
- Index