Boticas y Salud Sede Huaral 02 - Final

VERIFICACION DE LA CONFIGURACION
RUN SHOW CONFIGURATION | NO-MORE | DISPLAY SET (CONFIGURACIÓN ACTIVA)
NOC@rByS_Huaral_02# run show configuration
## Last commit: 2019-07-04 16:55:19 UTC by NOC
version 15.1X49-D70.3;
system {
host-name rByS_Huaral_02;
authentication-order [ tacplus password ];
root-authentication {
encrypted-password "$1$ZyBfvGJP$gR367ANz0575Lr8ENVplC1"; ## SECRET-DATA
tacplus-server {
172.19.216.47 {
secret "$9$hIjceM8LNYgJYgGiq.F3BIEcSebwg4JDKMDk.mF3p0BIEydVY"; ## SECRET-DATA
source-address 10.234.172.35;
tacplus-options {
service-name telmex-junos;
accounting {
events [ login change-log interactive-commands ];
destination {
tacplus {
server {
172.19.216.47 {
secret "$9$hIjceM8LNYgJYgGiq.F3BIEcSebwg4JDKMDk.mF3p0BIEydVY"; ## SECRET-DATA
single-connection;
source-address 10.234.172.35;
}
}
login {
user NOC {
uid 2000;
class super-user;
authentication {
encrypted-password "$1$bhL6/J96$Iktoss.3PSL7eToDANm34/"; ## SECRET-DATA
user remote {
uid 2001;
class super-user;
services {
ssh;
telnet;
web-management {
http {
interface all;
syslog {
archive size 100k files 3;
user * {
any emergency;
}
file messages {
any critical;
authorization info;
file interactive-commands {
interactive-commands error;
max-configurations-on-flash 5;
max-configuration-rollbacks 5;
license {
autoupdate {
url https://ae1.juniper.net/junos/key_retrieval;
ntp {
server 172.28.129.52;
security {
forwarding-options {
family {
mpls {
mode packet-based;
interfaces {
ge-0/0/0 {
per-unit-scheduler;
vlan-tagging;
speed 100m;
link-mode full-duplex;
gigether-options {
no-auto-negotiation;
unit 0 {
description WAN_RPVFM_CID_8586679_5Mbps_BOTICAS_SALUD_SAC_SEDE_HUARAL_02;
vlan-id 2002;
family inet {
filter {
output policing-wan-RPVFM;
address 10.116.55.14/30 {
primary;
ge-0/0/1 {
unit 0 {
family ethernet-switching {
vlan {
members LAN;
}
ge-0/0/2 {
unit 0 {
vlan {
members LAN;
ge-0/0/3 {
unit 0 {
vlan {
members LAN;
ge-0/0/4 {
unit 0 {
vlan {
members LAN;
ge-0/0/5 {
unit 0 {
vlan {
members LAN;
irb {
unit 10 {
description LAN_RPVFM_CID_8586679_5Mbps_BOTICAS_SALUD_SAC_SEDE_HUARAL_02;
family inet {
filter {
input setqosClass;
address 10.10.21.1/24 {
primary;
address 10.20.21.1/29;
address 10.20.21.9/29;
lo0 {
description Loopback-de-Administracion;
unit 0 {
family inet {
address 10.234.172.35/32 {
primary;
}
}
routing-options {
static {
route 0.0.0.0/0 next-hop 10.116.55.13;
class-of-service {
forwarding-classes {
queue 0 best-effort;
queue 1 qos1;
queue 2 qos2;
queue 3 qos5;
queue 7 network-control;
interfaces {
ge-0/0/0 {
unit 0 {
scheduler-map qos-map-sched;
shaping-rate 5216000;
rewrite-rules {
dscp SetDscpWan;
rewrite-rules {
dscp SetDscpWan {
forwarding-class qos1 {
loss-priority low code-point cs1;

}
forwarding-class best-effort {
loss-priority low code-point 000000;
forwarding-class network-control {
scheduler-maps {
qos-map-sched {
forwarding-class qos1 scheduler sched-qos1;
forwarding-class best-effort scheduler sched-default;
forwarding-class network-control scheduler sched-network-control;
schedulers {
sched-qos5 {
transmit-rate 2048000;
buffer-size percent 10;
priority strict-high;
}
sched-qos2 {
priority high;
sched-qos1 {
priority medium-high;
sched-network-control {
transmit-rate 64k;
priority high;
sched-default {
transmit-rate 128k;
buffer-size {
remainder;
priority low;
firewall {
family inet {
filter setqosClass {
term cos5 {
from {
source-address {
10.20.21.0/29;
10.20.21.8/29;
destination-address {
192.168.90.0/24;
then {
loss-priority low;
forwarding-class qos5;
accept;
term cos2 {
from {
source-address {
10.10.21.0/24;
192.168.10.0/24;
then {
loss-priority low;
accept;
term cos1 {
from {
source-address {
10.10.21.0/24;
0.0.0.0/0;
then {
loss-priority low;
accept;
term default {
then {
forwarding-class best-effort;
accept;
filter policing-wan-RPVFM {
term qos5 {
from {
source-address {
10.20.21.0/29;
10.20.21.8/29;
192.168.90.0/24;
}
}
then {
policer qos5-policer-RPVFM;
loss-priority low;
accept;
term qos2 {
from {
source-address {
10.10.21.0/24;
192.168.10.0/24;
then {
policer qos2-policer-RPVFM;
loss-priority low;
accept;
term qos1 {
from {
source-address {
10.10.21.0/24;
0.0.0.0/0;
}
}
then {
loss-priority low;
accept;
term default {
then {
loss-priority low;
accept;
policer qos5-policer-RPVFM {
if-exceeding {
bandwidth-limit 2048000;
burst-size-limit 768k;
then discard;
policer qos2-policer-RPVFM {
if-exceeding {
bandwidth-limit 1536000;
burst-size-limit 576k;
then forwarding-class qos1;
}
vlans {
LAN {
vlan-id 10;
l3-interface irb.10;
[edit]
NOC@rByS_Huaral_02#
RUN SHOW | NO-MORE | DISPLAY SET (CONFIGURACIÓN CANDIDATA)
NOC@rByS_Huaral_02# run show configuration | display set
set version 15.1X49-D70.3
set system host-name rByS_Huaral_02
set system authentication-order tacplus
set system authentication-order password
set system root-authentication encrypted-password "$1$ZyBfvGJP$gR367ANz0575Lr8ENVplC1"
set system tacplus-server 172.19.216.47 secret "$9$hIjceM8LNYgJYgGiq.F3BIEcSebwg4JDKMDk.mF3p0BIEydVY"
set system tacplus-server 172.19.216.47 source-address 10.234.172.35
set system tacplus-options service-name telmex-junos
set system accounting events login
set system accounting events change-log
set system accounting events interactive-commands
set system accounting destination tacplus server 172.19.216.47 secret

"$9$hIjceM8LNYgJYgGiq.F3BIEcSebwg4JDKMDk.mF3p0BIEydVY"
set system accounting destination tacplus server 172.19.216.47 single-connection
set system accounting destination tacplus server 172.19.216.47 source-address 10.234.172.35
set system login user NOC uid 2000
set system login user NOC class super-user
set system login user NOC authentication encrypted-password "$1$bhL6/J96$Iktoss.3PSL7eToDANm34/"
set system login user remote uid 2001

set system login user remote class super-user
set system services ssh
set system services telnet
set system services web-management http interface all
set system syslog archive size 100k
set system syslog archive files 3
set system syslog user * any emergency
set system syslog file messages any critical
set system syslog file messages authorization info
set system syslog file interactive-commands interactive-commands error
set system max-configurations-on-flash 5
set system max-configuration-rollbacks 5
set system license autoupdate url https://ae1.juniper.net/junos/key_retrieval
set system ntp server 172.28.129.52
set security forwarding-options family mpls mode packet-based
set interfaces ge-0/0/0 per-unit-scheduler
set interfaces ge-0/0/0 vlan-tagging
set interfaces ge-0/0/0 speed 100m
set interfaces ge-0/0/0 link-mode full-duplex
set interfaces ge-0/0/0 gigether-options no-auto-negotiation
set interfaces ge-0/0/0 unit 0 description

WAN_RPVFM_CID_8586679_5Mbps_BOTICAS_SALUD_SAC_SEDE_HUARAL_02
set interfaces ge-0/0/0 unit 0 vlan-id 2002
set interfaces ge-0/0/0 unit 0 family inet filter output policing-wan-RPVFM
set interfaces ge-0/0/0 unit 0 family inet address 10.116.55.14/30 primary
set interfaces ge-0/0/1 unit 0 family ethernet-switching vlan members LAN
set interfaces irb unit 10 description LAN_RPVFM_CID_8586679_5Mbps_BOTICAS_SALUD_SAC_SEDE_HUARAL_02

set interfaces irb unit 10 family inet filter input setqosClass
set interfaces irb unit 10 family inet address 10.10.21.1/24 primary
set interfaces irb unit 10 family inet address 10.20.21.1/29
set interfaces irb unit 10 family inet address 10.20.21.9/29
set interfaces lo0 description Loopback-de-Administracion
set interfaces lo0 unit 0 family inet address 10.234.172.35/32 primary
set routing-options static route 0.0.0.0/0 next-hop 10.116.55.13
set class-of-service forwarding-classes queue 0 best-effort
set class-of-service forwarding-classes queue 1 qos1
set class-of-service forwarding-classes queue 7 network-control
set class-of-service interfaces ge-0/0/0 unit 0 scheduler-map qos-map-sched
set class-of-service interfaces ge-0/0/0 unit 0 shaping-rate 5216000
set class-of-service interfaces ge-0/0/0 unit 0 rewrite-rules dscp SetDscpWan
set class-of-service rewrite-rules dscp SetDscpWan forwarding-class qos1 loss-priority low code-point cs1
set class-of-service rewrite-rules dscp SetDscpWan forwarding-class best-effort loss-priority low code-point 000000
set class-of-service rewrite-rules dscp SetDscpWan forwarding-class network-control loss-priority low code-point cs6
set class-of-service scheduler-maps qos-map-sched forwarding-class qos1 scheduler sched-qos1
set class-of-service scheduler-maps qos-map-sched forwarding-class best-effort scheduler sched-default
set class-of-service scheduler-maps qos-map-sched forwarding-class network-control scheduler sched-network-

control
set class-of-service schedulers sched-qos5 transmit-rate 2048000
set class-of-service schedulers sched-qos5 buffer-size percent 10
set class-of-service schedulers sched-qos5 priority strict-high

set class-of-service schedulers sched-qos2 priority high
set class-of-service schedulers sched-qos1 priority medium-high
set class-of-service schedulers sched-network-control transmit-rate 64k
set class-of-service schedulers sched-network-control buffer-size percent 5
set class-of-service schedulers sched-network-control priority high
set class-of-service schedulers sched-default transmit-rate 128k
set class-of-service schedulers sched-default buffer-size remainder
set class-of-service schedulers sched-default priority low
set firewall family inet filter setqosClass term cos5 from source-address 10.20.21.0/29
set firewall family inet filter setqosClass term cos5 from destination-address 192.168.90.0/24
set firewall family inet filter setqosClass term cos5 then loss-priority low
set firewall family inet filter setqosClass term cos5 then forwarding-class qos5
set firewall family inet filter setqosClass term cos5 then accept
set firewall family inet filter setqosClass term default then forwarding-class best-effort
set firewall family inet filter setqosClass term default then accept
set firewall family inet filter policing-wan-RPVFM term qos5 from source-address 10.20.21.0/29
set firewall family inet filter policing-wan-RPVFM term qos5 from destination-address 192.168.90.0/24
set firewall family inet filter policing-wan-RPVFM term qos5 then policer qos5-policer-RPVFM
set firewall family inet filter policing-wan-RPVFM term qos5 then loss-priority low
set firewall family inet filter policing-wan-RPVFM term qos5 then accept
set firewall family inet filter policing-wan-RPVFM term qos2 then policer qos2-policer-RPVFM
set firewall family inet filter policing-wan-RPVFM term qos1 then forwarding-class qos1
set firewall family inet filter policing-wan-RPVFM term default then loss-priority low
set firewall family inet filter policing-wan-RPVFM term default then accept
set firewall policer qos5-policer-RPVFM if-exceeding bandwidth-limit 2048000
set firewall policer qos5-policer-RPVFM if-exceeding burst-size-limit 768k
set firewall policer qos5-policer-RPVFM then discard
set firewall policer qos2-policer-RPVFM if-exceeding bandwidth-limit 1536000
set firewall policer qos2-policer-RPVFM if-exceeding burst-size-limit 576k
set firewall policer qos2-policer-RPVFM then forwarding-class qos1
set vlans LAN vlan-id 10
set vlans LAN l3-interface irb.10
[edit]
NOC@rByS_Huaral_02#
RUN SHOW VERSION

RUN SHOW CHASSIS FIRMWARE
RUN SHOW CHASSIS HARDWARE DETAIL
RUN SHOW SYSTEM STORAGE
RUN PING ROUTE

VERIFICACION DE CONECTIVIDAD
RUN PING WAN (PE - PING EXTENDIDO PESO 1500, EN CASO RPV EN COS1, COS2)
RUN PING LAN (EQUIPO LAN DEL CLIENTE)

RUN PING LAN TO LAN (PING EXTENDIDO PESO 1
500, EN CASO RPV EN COS1, COS2)
OBS: EN COS1, COS2 NO SE DEBEN PERDER PINES, EN CASO SOLO SEA COS3 PRESENTAR CAPTURAS.
PRUEBAS DE SATURACION
RUN SHOW INTERFACE QUEQUE fe-0/0/0 (INTERFACE RPVL, RPVN, VRF)
CoS3
CoS2
CoS1
RUN SHOW INTERFACE QUEQUE VLAN.2
RUN SHOW SECURITY FLOW SESSION
SHOW INTERFACES
RUN SHOW MONITOR INTERFACE fe0/0/0
RUN SHOW MONITOR INTERFACE VLAN.2

RUN SHOW INTERFACE fe0/0/0 STADISTIC
RUN SHOW INTERFACE VLAN.2 STADISTIC

RUN SHOW INTERFACE fe0/0/0 EXTENSIVE | MATCH ERROR (NO CRC’s, NO ERROR´s)
RUN SHOW INTERFACE VLAN.2 EXTENSIVE | MATCH ERROR (NO CRC’s, NO ERROR´s)
OTROS

Boticas y Salud Sede Huaral 02 - Final

Uploaded by

Copyright:

Available Formats

Boticas y Salud Sede Huaral 02 - Final

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Boticas y Salud Sede Huaral 02 - Final

Uploaded by

Copyright:

Available Formats

VERIFICACION DE LA CONFIGURACION

RUN SHOW CONFIGURATION | NO-MORE | DISPLAY SET (CONFIGURACIÓN ACTIVA)

NOC@rByS_Huaral_02# run show configuration

## Last commit: 2019-07-04 16:55:19 UTC by NOC

authentication-order [ tacplus password ];

encrypted-password "$1$ZyBfvGJP$gR367ANz0575Lr8ENVplC1"; ## SECRET-DATA

secret "$9$hIjceM8LNYgJYgGiq.F3BIEcSebwg4JDKMDk.mF3p0BIEydVY"; ## SECRET-DATA

events [ login change-log interactive-commands ];

secret "$9$hIjceM8LNYgJYgGiq.F3BIEcSebwg4JDKMDk.mF3p0BIEydVY"; ## SECRET-DATA

encrypted-password "$1$bhL6/J96$Iktoss.3PSL7eToDANm34/"; ## SECRET-DATA

archive size 100k files 3;

route 0.0.0.0/0 next-hop 10.116.55.13;

loss-priority low code-point cs1;

loss-priority low code-point cs2;

loss-priority low code-point cs5;

loss-priority low code-point 000000;

loss-priority low code-point cs6;

forwarding-class qos1 scheduler sched-qos1;

forwarding-class qos2 scheduler sched-qos2;

forwarding-class qos5 scheduler sched-qos5;

forwarding-class best-effort scheduler sched-default;

forwarding-class network-control scheduler sched-network-control;

buffer-size percent 10;

buffer-size percent 60;

buffer-size percent 20;

then forwarding-class qos1;

RUN SHOW | NO-MORE | DISPLAY SET (CONFIGURACIÓN CANDIDATA)

NOC@rByS_Huaral_02# run show configuration | display set

set version 15.1X49-D70.3

set system host-name rByS_Huaral_02

set system authentication-order tacplus

set system authentication-order password

set system root-authentication encrypted-password "$1$ZyBfvGJP$gR367ANz0575Lr8ENVplC1"

set system tacplus-server 172.19.216.47 secret "$9$hIjceM8LNYgJYgGiq.F3BIEcSebwg4JDKMDk.mF3p0BIEydVY"

set system tacplus-server 172.19.216.47 source-address 10.234.172.35

set system tacplus-options service-name telmex-junos

set system accounting events login

set system accounting events change-log

set system accounting events interactive-commands

set system accounting destination tacplus server 172.19.216.47 secret

set system accounting destination tacplus server 172.19.216.47 single-connection

set system accounting destination tacplus server 172.19.216.47 source-address 10.234.172.35

set system login user NOC uid 2000

set system login user NOC class super-user

set system login user NOC authentication encrypted-password "$1$bhL6/J96$Iktoss.3PSL7eToDANm34/"

set system login user remote uid 2001

set system services ssh

set system services telnet

set system services web-management http interface all

set system syslog archive size 100k

set system syslog archive files 3

set system syslog user * any emergency

set system syslog file messages any critical

set system syslog file messages authorization info

set system syslog file interactive-commands interactive-commands error

set system max-configurations-on-flash 5

set system max-configuration-rollbacks 5

set system license autoupdate url https://ae1.juniper.net/junos/key_retrieval

set system ntp server 172.28.129.52