Configuration Routeur Juniper 3 (version complète)
version 8.0R2.8;
system {
host-name juniper3;
domain-name AS3;
time-zone CET;
root-authentication {
encrypted-password "$1$8zVrX1hi$MYfw.b0dQR9HeO8XLicEX."; ## SECRET-DATA
}
login {
user david {
full-name "David Oriol";
uid 777;
class super-user;
authentication {
encrypted-password "$1$PCXCqug6$bI3jRIjIZ8SlV/fUX8MuF0"; ## SECRET-DATA
}
}
user fama {
full-name "Fama Diagne";
uid 555;
class super-user;
authentication {
encrypted-password "$1$5QU3OeCO$yqsHL4R6VMSohEpl54NwO1"; ## SECRET-DATA
}
}
user flok {
full-name "Florent Signorello";
uid 666;
class super-user;
authentication {
encrypted-password "$1$8wE4yH5U$BNqGEc8TKNCDS7S0wI/q4/"; ## SECRET-DATA
}
}
}
services {
ftp;
ssh {
root-login deny;
connection-limit 4;
}
telnet;
web-management {
http {
interface ge-0/0/3.0;
}
}
}
syslog {
user * {
any emergency;
}
file messages {
any any;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
}
interfaces {
ge-0/0/0 {
unit 0 {
description toAS4;
family inet {
address 10.30.251.1/30;
}
family inet6 {
address 2001:db8:0:1002::1/64;
}
}
}
ge-0/0/1 {
unit 0 {
description toR2;
family inet {
address 10.30.254.6/30;
}
family inet6 {
address 2001:db8:0:2001::2/64;
}
family mpls;
}
}
ge-0/0/2 {
unit 0 {
description toR4;
family inet {
address 10.30.254.9/30;
}
family inet6 {
address 2001:db8:0:2002::1/64;
}
}
}
ge-0/0/3 {
unit 0 {
description toPSEUDOL;
family inet {
address 10.30.2.254/24;
}
family inet6 {
address 2001:db8:0:4002::ffff/64;
}
}
}
lo0 {
unit 0 {
family inet {
address 192.168.0.3/32;
address 127.0.0.1/32;
}
family inet6 {
address ::1/128;
}
}
}
}
snmp {
description Juniper3;
location "AS3 / salle 747 / LIP6";
contact "David / Florent";
community public {
authorization read-only;
}
}
routing-options {
rib inet6.0 {
aggregate {
route 2001:db8:0::/33;
}
}
static {
route 10.20.5.0/24 next-hop 10.30.254.10;
}
router-id 192.168.0.3;
autonomous-system 65003;
}
protocols {
igmp {
interface all {
version 3;
}
}
router-advertisement {
interface ge-0/0/3.0 {
max-advertisement-interval 6;
min-advertisement-interval 3;
no-managed-configuration;
prefix 2001:db8:0:4002::/64;
}
}
rsvp {
interface ge-0/0/1.0 {
bandwidth 50k;
}
interface fe-0/0/0.0 {
disable;
}
}
mpls {
label-switched-path R3-to-R1 {
to 192.168.0.1;
}
label-switched-path R3-to-R1-rsvp {
to 192.168.0.1;
}
interface fe-0/0/0.0 {
disable;
}
interface ge-0/0/1.0;
interface ge-0/0/2.0;
interface all;
}
bgp {
family inet {
unicast;
multicast;
}
local-as 65003;
group core2-ibgp {
type internal;
local-address 192.168.0.3;
export next-hop-self;
neighbor 10.30.254.5;
neighbor 10.30.254.10;
}
group ent2-ebgp {
type external;
import filter-AS4;
export [ next-hop-self exp-ospf ];
peer-as 65004;
neighbor 10.30.251.2;
}
group core2-ibgp-v6 {
type internal;
family inet6 {
unicast;
}
neighbor 2001:db8:0:2001::1;
neighbor 2001:db8:0:2002::2;
}
group ent2-ebgp-v6 {
type external;
family inet6 {
unicast;
}
peer-as 65004;
neighbor 2001:db8:0:1002::2;
}
}
ospf {
traffic-engineering;
area 8.8.8.8 {
stub;
interface ge-0/0/3.0 {
passive;
}
}
area 0.0.0.0 {
interface ge-0/0/1.0;
interface ge-0/0/2.0;
interface lo0.0 {
passive;
}
}
area 1.1.1.1 {
interface ge-0/0/0.0 {
passive;
}
}
}
ospf3 {
area 1.1.1.1 {
interface ge-0/0/0.0 {
passive;
}
}
area 8.8.8.8 {
stub;
interface ge-0/0/3.0 {
passive;
}
}
area 0.0.0.0 {
interface ge-0/0/1.0;
interface ge-0/0/2.0;
}
}
inactive: ldp {
interface ge-0/0/1.0;
}
pim {
interface ge-0/0/0.0 {
mode dense;
}
interface ge-0/0/1.0 {
mode dense;
}
interface ge-0/0/2.0 {
mode dense;
}
interface ge-0/0/3.0 {
mode dense;
}
}
}
policy-options {
policy-statement exp-ospf {
term 1 {
from protocol ospf;
then accept;
}
}
policy-statement expv6 {
term 1 {
from {
rib inet6.0;
route-filter 2001:db8::/33 exact accept;
}
}
term 2 {
then reject;
}
}
policy-statement filter-AS4 {
term 1 {
from {
route-filter 10.40.0.0/16 orlonger accept;
}
}
term 2 {
from {
route-filter 0.0.0.0/0 orlonger reject;
}
}
}
policy-statement next-hop-self {
term 1 {
from protocol bgp;
then {
next-hop self;
accept;
}
}
}
}
class-of-service {
classifiers {
dscp pfres {
import default;
forwarding-class best-effort {
loss-priority medium-high code-points be;
}
forwarding-class assured-forwarding {
loss-priority low code-points af41;
}
forwarding-class expedited-forwarding {
loss-priority medium-low code-points ef;
}
}
}
forwarding-classes {
queue 0 expedited-forwarding;
queue 1 assured-forwarding;
queue 2 best-effort;
}
interfaces {
ge-0/0/0 {
unit 0 {
classifiers {
dscp pfres;
}
}
}
ge-0/0/1 {
unit 0 {
classifiers {
dscp pfres;
}
}
}
ge-0/0/2 {
unit 0 {
classifiers {
dscp pfres;
}
}
}
ge-0/0/3 {
unit 0 {
classifiers {
dscp pfres;
}
}
}
}
scheduler-maps {
pfres {
forwarding-class best-effort scheduler best-effort-scheduler;
forwarding-class assured-forwarding scheduler assured-forwarding-scheduler;
forwarding-class expedited-forwarding scheduler expedited-forwarding-scheduler;
}
}
schedulers {
best-effort-scheduler {
priority low;
}
assured-forwarding-scheduler {
priority high;
}
expedited-forwarding-scheduler {
priority medium-high;
}
}
}
