To configure the vSRX Virtual Firewall instance using the CLI:
- Verify that the instance is powered on.
- Log in using the username and password credentials for
your vSRX Virtual Firewall VM deployment.
- Start the CLI.
- Enter configuration mode.
- Set the root authentication password by entering a cleartext password, an encrypted password, or an
SSH public key string (DSA or RSA).
[edit]
root@# set system root-authentication plain-text-password
New password: password
Retype new password: password
- Configure the traffic interfaces.
[edit]
root@# set interfaces ge-0/0/0 unit 0 family inet address assigned_ip/netmask
root@# set interfaces ge-0/0/1 unit 0 family inet address assigned_ip/netmask
Note: Configuration of the management interface fxp0 for the
vSRX Virtual Firewall is not necessary, because it is configured during vSRX Virtual Firewall VM deployment. Do
not change the configuration for interface fxp0 and the default routing
table or you will lose connectivity.
- Configure routing interfaces to isolate management network
and traffic network.
[edit]
root@# set routing-instances vsrx-vr1 instance-type virtual-router
root@# set routing-instances vsrx-vr1 interface ge-0/0/0.0
root@# set routing-instances vsrx-vr1 interface ge-0/0/1.0
- Verify the configuration changes.
[edit]
root@# commit check
configuration check succeeds
- Commit the current configuration to make it permanent
and to avoid the possibility of losing connectivity to the vSRX Virtual Firewall instance.
[edit]
root@# commit confirmed
commit confirmed will be automatically rolled back in 10 minutes unless confirmed
commit complete
# commit confirmed will be rolled back in 10 minutes
- Commit the configuration to activate it on the instance.
[edit]
root@# commit
commit complete
- Optionally, use the
show
command to display
the configuration to verify that it is correct.