[Contents] [Prev] [Next] [Index] [Report an Error]

J-Web Configuration

To create IP addresses for the interfaces on the device using the J-Web configuration editor:

  1. Select Configuration>View and Edit>Edit Configuration.

    The Configuration page appears.

  2. Next to Interfaces, click Configure or Edit.
  3. Next to Interface, click Add new entry.
  4. In the Interface name box, type ge-0/0/1.
  5. Next to Unit, click Add new entry.
  6. In the interface unit number, type 0.
  7. Under Family, select Inet and click OK.
  8. Next to Address book, click Configure or Edit.
  9. Next to Address, click Add new entry.
  10. In the Address name box, type 20.20.20.1/24 and click OK.
  11. Next to Address, click Add new entry.
  12. In the Address name box, type 20.20.20.2/24 and click OK.
  13. To configure another interface ge-5/0/0 and more addresses like 30.30.30.1/24 and 30.30.30.1/24, repeat Step 2 through Step 9 and click OK.

To create an access profile:

  1. Select Configuration>View and Edit>Edit Configuration.

    The Configuration page appears.

  2. Next to Access, click Configure or Edit.
  3. Next to Profile, click Add new entry.
  4. In the Profile name box, type FWAuth.
  5. Next to Client, click Add new entry.
  6. In the Name box, type FWClient1.
  7. Next to Firewall User, click Configure or Edit.
  8. In the Password box, type pwd and click OK.

To add the FWAuth profile for pass-through firewall authentication:

  1. Next to Firewall Authentication, click Configure or Edit.
  2. Next to Pass through, click Configure or Edit.
  3. In the Default profile box, type FWAuth.

To define a success banner for Telnet sessions:

  1. Next to Telnet box, click Configure or Edit.
  2. Next to Banner, click Configure or Edit.
  3. In the Success box, type “ WELCOME TO JUNIPER TELNET SESSION” and click OK.

To create security zones:

  1. Select Configuration > View and Edit > Edit Configuration.

    The Configuration page appears.

  2. Next to Security, click Configure or Edit.
  3. Next to Zones, click Configure or Edit.
  4. Next to Security zone, click Add new entry.
  5. In the Name box, type UT-ZONE.
  6. Next to Host inbound traffic, click Configure or Edit.
  7. Next to System services, click Add new entry.
  8. From the Service name list, select all and click OK.
  9. To configure an interface for the created security zone, corresponding to the security zone, click Edit.
  10. Next to Interfaces, click Add new entry.
  11. In the Interface unit box, type ge-0/0/1.0 and click OK.
  12. Next to Protocols, click Add new entry.
  13. Next to the Protocol name box, type all and click OK.
  14. To specify another interface fe-5/0/0.0 for the zone, repeat Step 9 and Step 10 and click OK.
  15. To add another security zone T-ZONE, repeat Step 3 through Step 7 and click OK.

To assign a security policy to the zone:

  1. Select Configuration > View and Edit > Edit Configuration.

    The Configuration page appears.

  2. Next to Security, click Configure or Edit.
  3. Next to Policy, select the check box and click Configure.
  4. Next to Policy, click Add new entry.
  5. In the From zone name box, type UT-ZONE.
  6. In the To zone name box, type T-ZONE.
  7. Next to Policy, click Add new entry.
  8. In the Policy name box, type Policy-W.
  9. Select the Match check box.
  10. Select the Then check box.
  11. Next to Match, click Configure or Edit.
  12. From the Source address choice list, select Source address.
  13. Next to Source address, click Add new entry.
  14. From the Value keyword list, select any and click OK.
  15. From the Destination address choice list, select Destination address.
  16. Next to Destination address, click Add new entry.
  17. From the Value keyword list, select any and click OK.
  18. From the Application Choice list, select Application.
  19. Next to Application, click Add new entry.
  20. In the Value keyword list, type junos-telnet and click OK.
  21. Next to Then, click Configure or Edit.
  22. From the Action list, select Permit and click OK.
  23. Next to Permit, click Configure or Edit.
  24. Next to Firewall Authentication, click Configure or Edit.
  25. From the Auth type list, select Pass through.
  26. Next to Pass through, click Configure or Edit.
  27. In the Client match box, type FW Client1 and click OK.
  28. To authenticate the firewall user authentication, telnet FWClient1 to host2.
  29. If you are finished configuring the device, commit the configuration.
  30. To check the configuration, see Verifying Firewall User Authentication.
[Contents] [Prev] [Next] [Index] [Report an Error]

Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice.