Configuration Routeur Juniper 4 (version simplifiée)
version 8.0R2.8;
system {
host-name juniper4;
domain-name AS3;
time-zone CET;
root-authentication {
encrypted-password "$1$X.TMNtLe$Zspsx4eP0uYaRBivOeW6R/"; ## SECRET-DATA
}
login {
user david {
full-name "David Oriol";
uid 777;
class super-user;
authentication {
encrypted-password "$1$.8PcWHv2$bkRqTznL3HntLKVEoBhNb."; ## SECRET-DATA
}
}
user fama {
full-name "Fama Diagne";
uid 555;
class super-user;
authentication {
encrypted-password "$1$BeOur4U/$JewtXGUhPE/8LXundDwP9/"; ## SECRET-DATA
}
}
user flok {
full-name "florent signorello";
uid 666;
class super-user;
authentication {
encrypted-password "$1$oIN5yQWW$dCdy3aN46uY19i7wMfnS.0"; ## SECRET-DATA
}
}
}
services {
ftp;
ssh {
connection-limit 4;
}
telnet;
web-management {
http {
interface [ ge-0/0/0.0 ge-0/0/1.0 ge-0/0/2.0 ge-0/0/3.0 ];
}
}
}
syslog {
user * {
any emergency;
}
file messages {
any any;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
}
ntp {
server 10.30.253.3;
}
}
interfaces {
ge-0/0/0 {
unit 0 {
description toAS2_ISS;
family inet {
address 10.20.6.2/30;
}
family inet6 {
address 2001:db8:8000:2::2/64;
}
}
}
ge-0/0/1 {
unit 0 {
description toR1;
family inet {
address 10.30.254.13/30;
}
family inet6 {
address 2001:db8:0:2003::1/64;
}
}
}
ge-0/0/2 {
unit 0 {
description toR3;
family inet {
address 10.30.254.10/30;
}
family inet6 {
address 2001:db8:0:2002::2/64;
}
}
}
ge-0/0/3 {
unit 0 {
description admin;
family inet {
address 10.30.253.40/24;
}
family inet6 {
address 2001:db8:0:3000::40/64;
}
}
}
lo0 {
unit 0 {
family inet {
address 192.168.0.4/32;
}
family inet6 {
address ::1/128;
}
}
}
}
snmp {
description Juniper4;
location "AS3 / salle 747 / LIP6";
contact "David / Florent";
community public {
authorization read-only;
}
}
routing-options {
router-id 192.168.0.4;
autonomous-system 65003;
}
protocols {
bgp {
group toAS2 {
type external;
import community-add;
export exp-ospf;
peer-as 65002;
neighbor 10.20.6.1;
}
group ibgp-AS3 {
type internal;
local-address 192.168.0.4;
neighbor 192.168.0.3;
neighbor 192.168.0.1;
neighbor 192.168.0.2;
}
}
ospf {
area 0.0.0.0 {
authentication-type md5;
interface ge-0/0/1.0 {
authentication {
md5 1 key "$9$r0llKM8X7-wYN-ikq.F3EcyrMLX7dbs4"; ## SECRET-DATA
}
}
interface ge-0/0/2.0 {
authentication {
md5 1 key "$9$LquX7-VwYgJG2g5QzFtpKM8L-bwY4aZj"; ## SECRET-DATA
}
}
interface lo0.0 {
passive;
}
}
area 4.4.4.4 {
interface ge-0/0/0.0 {
passive;
}
}
}
}
policy-options {
policy-statement community-add {
term match-route {
from {
protocol bgp;
as-path AS2-path;
}
}
then {
community add peer;
accept;
}
}
policy-statement exp-ospf {
term 1 {
from {
protocol ospf;
area 6.6.6.6;
}
then accept;
}
}
policy-statement next-hop-self {
term set-nh {
then {
next-hop self;
}
}
}
community peer members 65003:2222;
as-path AS2-path 65002.*;
}
class-of-service {
classifiers {
dscp pfres {
import default;
forwarding-class best-effort {
loss-priority medium-high code-points be;
}
forwarding-class assured-forwarding {
loss-priority low code-points af41;
}
forwarding-class expedited-forwarding {
loss-priority medium-low code-points ef;
}
}
}
forwarding-classes {
queue 0 expedited-forwarding;
queue 1 assured-forwarding;
queue 2 best-effort;
}
interfaces {
ge-0/0/0 {
unit 0 {
classifiers {
dscp pfres;
}
}
}
ge-0/0/1 {
unit 0 {
classifiers {
dscp pfres;
}
}
}
ge-0/0/2 {
unit 0 {
classifiers {
dscp pfres;
}
}
}
}
scheduler-maps {
pfres {
forwarding-class best-effort scheduler best-effort-scheduler;
forwarding-class assured-forwarding scheduler assured-forwarding-scheduler;
forwarding-class expedited-forwarding scheduler expedited-forwarding-scheduler;
}
}
schedulers {
best-effort-scheduler {
priority low;
}
assured-forwarding-scheduler {
priority high;
}
expedited-forwarding-scheduler {
priority medium-high;
}
}
}
