[Contents] [Prev] [Next] [Index] [Report an Error]

J-Web Configuration

To configure the device for Web authentication using the J-Web configuration editor:

  1. Select Configuration>View and Edit>Edit Configuration.

    The Configuration page appears.

  2. Next to Interfaces, click Configure or Edit.
  3. Next to Interface, click Add new entry.
  4. In the Interface name box, type ge-0/0/1.
  5. Next to Unit, click Add new entry.
  6. In the interface unit number, type 0.
  7. Under Family, select Inet and click OK.
  8. Next to Address, click Add new entry.
  9. In the Address name box, type 20.20.20.1/24 and click OK.
  10. Next to Web authentication box, click Configure or Edit.
  11. Select the Http check box and click OK.
  12. Next to Address, click Add new entry.
  13. In the Address name box, type 20.20.20.2/24 and click OK.
  14. To configure another interface ge-5/0/0, repeat Step 2 through Step 9.
  15. To configure more addresses like 30.30.30.1/24 and 30.30.30.1/24, repeat Step 2 through Step 4 and click OK.

To create an access profile:

  1. Select Configuration>View and Edit>Edit Configuration.

    The Configuration page appears.

  2. Next to Access, click Configure or Edit.
  3. Next to Profile, click Add new entry.
  4. In the Profile name box, type WebAuth.
  5. Next to Client, click Add new entry.
  6. In the Name box, type FWClient1.
  7. Next to Firewall User, click Configure or Edit.
  8. In the Password box, type pwd and click OK.

To add the WebAuth profile for firewall web authentication:

  1. Select Configuration>View and Edit>Edit Configuration.

    The Configuration page appears.

  2. Next to Access, click Configure or Edit.
  3. Next to Firewall Authentication, click Configure or Edit.
  4. Next to Web authentication, click Configure or Edit.
  5. In the Default profile box, type FWAuth.

To define a succes banner for Telnet sessions:

  1. Next to Telnet box, click Configure or Edit.
  2. Next to Banner, click Configure or Edit.
  3. In the Success box, type “ WELCOME TO JUNIPER TELNET SESSION” and click OK.

To create security zones:

  1. Select Configuration > View and Edit > Edit Configuration.

    The Configuration page appears.

  2. Next to Security, click Configure or Edit.
  3. Next to Zones, click Configure or Edit.
  4. Next to Security zone, click Add new entry.
  5. In the Name box, type UT-ZONE.
  6. Next to Host inbound traffic, click Configure.
  7. Next to System services, click Add new entry.
  8. From the Service name list, select all and click OK.
  9. Next to Interfaces, click Add new entry.
  10. In the Interface unit box, type ge-0/0/1.0 and click OK.
  11. Next to Host inbound traffic, click Configure or Edit.
  12. Next to Protocols, click Add new entry.
  13. From the Protocol name list, select all and click OK.
  14. To specify another interface fe-5/0/0.0 for the zone, repeat Step 9 and Step 10, and click OK.
  15. To add another security zone T-ZONE, repeat Step 3 through Step 7 and click OK.

To assign a security policy to the zone:

  1. Select Configuration>View and Edit >Edit Configuration.

    The Configuration page appears.

  2. Next to Security, click Configure or Edit.
  3. Next to Policy, select the check box and click Configure.
  4. Next to Policy, click Add new entry.
  5. In the From zone name box, type UT-ZONE.
  6. In the To zone name box, type T-ZONE.
  7. Next to Policy, click Add new entry.
  8. In the Policy name box, type Policy-W.
  9. Select the Match check box.
  10. Select the Then check box.
  11. Next to Match, click Configure or Edit.
  12. From the Source address choice list, select Source address.
  13. Next to Source address, click Add new entry.
  14. From the Value keyword list, select any and click OK.
  15. From the Destination address choice list, select Destination address.
  16. Next to Destination address, click Add new entry.
  17. From the Value keyword list, select any and click OK.
  18. From the Application Choice list, select Application.
  19. Next to Application, click Add new entry.
  20. In the Value keyword list, type any and click OK.
  21. Next to Then, click Configure or Edit.
  22. From the Action list, select Permit and click OK.
  23. Next to Permit, click Configure or Edit.
  24. Next to Firewall Authentication, click Configure or Edit.
  25. From the Auth type list, select Web authentication.
  26. Next to Web authentication, click Configure or Edit.
  27. In the Client match box, type FW Client1 and click OK.

To activate the Http daemon on your device:

  1. Select Configuration > View and Edit > Edit Configuration.

    The Configuration page appears.

  2. Next to System, click Configure or Edit.
  3. Next to Services, select the check box and click Configure or Edit.
  4. Next to Web management, click Configure or Edit.
  5. Select the Http check box and click OK.
  6. To authenticate the firewall user authentication, point the browser to the Web Authentication IP (20.20.20.1).
  7. If you are finished configuring the device, commit the configuration.
  8. To check the configuration, see Verifying Firewall User Authentication
[Contents] [Prev] [Next] [Index] [Report an Error]

Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice.