Context Navigation

Back to Realisations/2006-2007/Projet/Entreprise2/Gateway1

Gateway1: config_J2300_2007-05-21.cfg

File config_J2300_2007-05-21.cfg, 7.4 KB (added by alladoum, 18 years ago)

Line
1	version 8.2R1.7;
2	system {
3	host-name GATEWAY1;
4	domain-name ENT2;
5	domain-search [ p6 ent2.p6 ];
6	time-zone Europe/Paris;
7	authentication-order password;
8	root-authentication {
9	encrypted-password "$1$mpjpYTO7$AneeTD3Y53iMvBEF8DtXm0";
10	}
11	name-server {
12	10.40.0.9;
13	}
14	login {
15	user christophe {
16	full-name "Christophe Alladoum";
17	uid 2000;
18	class superuser;
19	authentication {
20	encrypted-password "$1$KtffD0YJ$V.GkM1Fb4yY6aXpEqfiwM1";
21	}
22	}
23	user geraldine {
24	full-name geraldine;
25	uid 2001;
26	class superuser;
27	authentication {
28	encrypted-password "$1$I0Qvv.Hh$yGobHKyj2rM/LAhIry6ts/";
29	}
30	}
31	user mpls {
32	full-name "AS 65002 - Projet Reseau MPLS";
33	uid 2002;
34	class superuser;
35	authentication {
36	encrypted-password "$1$4R9uqxkY$tGSIJ9DGyojlaMspx65lS/";
37	}
38	}
39	}
40	services {
41	telnet;
42	xnm-clear-text;
43	web-management {
44	http {
45	interface [ fe-0/0/0.0 fe-0/0/1.0 ];
46	}
47	}
48	}
49	syslog {
50	user * {
51	any emergency;
52	}
53	file messages {
54	any any;
55	authorization info;
56	}
57	file interactive-commands {
58	interactive-commands any;
59	}
60	}
61	ntp {
62	server 10.40.253.10;
63	}
64	}
65	interfaces {
66	fe-0/0/0 {
67	mtu 1500;
68	unit 0 {
69	family inet {
70	address 10.40.253.6/30;
71	}
72	family inet6 {
73	address 2001:db8:4::1/64;
74	}
75	}
76	}
77	fe-0/0/1 {
78	mtu 1500;
79	unit 0 {
80	family inet {
81	address 10.30.254.10/30;
82	}
83	family inet6 {
84	address 2001:db8:0:1002::2/64;
85	}
86	}
87	}
88	lo0 {
89	unit 0 {
90	family inet {
91	address 127.0.0.1/32;
92	}
93	}
94	}
95	}
96	snmp {
97	name GATEWAY1.ENT2;
98	description "Gateway#1 d'access a AS65004";
99	location "LIP6 / salle 747";
100	contact Geraldine,Christophe;
101	engine-id {
102	local GATEWAY1.ENT2;
103	}
104	view jweb-view-all {
105	oid .1 include;
106	}
107	community entreprise2 {
108	view jweb-view-all;
109	authorization read-write;
110	}
111	community public {
112	authorization read-only;
113	}
114	health-monitor {
115	interval 300;
116	}
117	}
118	routing-options {
119	rib inet6.0 {
120	aggregate {
121	route 2001:db8:4::/48;
122	}
123	}
124	static {
125	route 10.40.0.0/16 discard;
126	}
127	router-id 10.40.253.6;
128	autonomous-system 65004;
129	}
130	protocols {
131	router-advertisement {
132	interface fe-0/0/1.0 {
133	max-advertisement-interval 6;
134	min-advertisement-interval 3;
135	no-managed-configuration;
136	prefix 2001:db8:0:1002::/64;
137	}
138	interface fe-0/0/0.0 {
139	max-advertisement-interval 6;
140	min-advertisement-interval 3;
141	no-managed-configuration;
142	prefix 2001:db8:4::/64;
143	}
144	}
145	bgp {
146	group AS65003_ebgp {
147	type external;
148	description "AS65003 ipv4";
149	local-address 10.30.254.10;
150	export dist-static;
151	peer-as 65003;
152	neighbor 10.30.254.9;
153	}
154	group AS65003_ebpg_ipv6 {
155	type external;
156	description "AS65003 ipv6";
157	local-address 2001:db8:0:1002::2;
158	mtu-discovery;
159	import de_AS65003_V6;
160	family inet6 {
161	unicast;
162	}
163	export vers_AS65003_V6;
164	peer-as 65003;
165	multipath;
166	neighbor 2001:db8:0:1002::1;
167	}
168	group AS65004_ibgp {
169	type internal;
170	description "AS65004 ipv4";
171	local-address 10.40.253.6;
172	export dist-static;
173	neighbor 10.40.253.14;
174	}
175	group AS65004_ibpg_ipv6 {
176	type internal;
177	description "AS65004 ipv6";
178	local-address 2001:db8:4::1;
179	family inet6 {
180	unicast;
181	}
182	export vers_AS65003_V6;
183	neighbor 2001:db8:4:1::1;
184	}
185	}
186	rip {
187	send multicast;
188	receive both;
189	update-interval 60;
190	group jweb-rip {
191	export [ dist-rip dist-direct dist-bgp ];
192	neighbor fe-0/0/0.0;
193	}
194	}
195	ripng {
196	metric-in 2;
197	holddown 60;
198	route-timeout 360;
199	update-interval 10;
200	group ripv6 {
201	export [ dist-rip dist-bgp ];
202	neighbor fe-0/0/0.0;
203	}
204	}
205	}
206	policy-options {
207	policy-statement de_AS65003_V6 {
208	from neighbor 2001:db8:0:1002::1;
209	then {
210	local-preference add 250;
211	}
212	}
213	policy-statement dist-bgp {
214	from protocol bgp;
215	then accept;
216	}
217	policy-statement dist-direct {
218	from {
219	protocol direct;
220	interface fe-0/0/0.0;
221	}
222	then accept;
223	}
224	policy-statement dist-rip {
225	from protocol rip;
226	then accept;
227	}
228	policy-statement dist-static {
229	from protocol static;
230	then accept;
231	}
232	policy-statement regle-default-route {
233	from {
234	route-filter 0.0.0.0/0 exact;
235	}
236	then reject;
237	}
238	policy-statement vers_AS65003_V6 {
239	term accept {
240	from {
241	rib inet6.0;
242	route-filter 2001:db8:4::/48 exact accept;
243	}
244	}
245	term reject {
246	then reject;
247	}
248	}
249	}
250	class-of-service {
251	classifiers {
252	dscp testG1 {
253	import default;
254	forwarding-class best-effort {
255	loss-priority medium-high code-points be;
256	}
257	forwarding-class assured-forwarding2 {
258	loss-priority low code-points af41;
259	}
260	forwarding-class expedited-forwarding {
261	loss-priority medium-low code-points ef;
262	}
263	}
264	}
265	forwarding-classes {
266	queue 0 expedited-forwarding;
267	queue 1 assured-forwarding2;
268	queue 3 best-effort;
269	}
270	interfaces {
271	/* vers Serveur.ent2 */
272	fe-0/0/0 {
273	unit 0 {
274	classifiers {
275	dscp testG1;
276	}
277	}
278	}
279	/* vers Core2 */
280	fe-0/0/1 {
281	unit 0 {
282	classifiers {
283	dscp testG1;
284	}
285	}
286	}
287	}
288	scheduler-maps {
289	testG1 {
290	forwarding-class best-effort scheduler best-effort-scheduler;
291	forwarding-class expedited-forwarding scheduler expedited-forwarding-scheduler;
292	forwarding-class assured-forwarding2 scheduler assured-forwarding-scheduler;
293	}
294	}
295	schedulers {
296	best-effort-scheduler {
297	priority low;
298	}
299	assured-forwarding-scheduler {
300	priority medium-high;
301	}
302	expedited-forwarding-scheduler {
303	priority high;
304	}
305	}
306	}
307	services {
308	stateful-firewall {
309	rule jweb-sfw-from-wan {
310	match-direction input;
311	term jweb-discard-all {
312	then {
313	discard;
314	}
315	}
316	}
317	}
318	}

Download in other formats:

Original Format