Juniper [edit system] Hierarchy Level

mofdan · 发表于 2015-11-5 14:08:15

[edit system] Hierarchy Level
system {accounting {destination {radius {server {server-address {accounting-port port-number;max-outstanding-requestsport port-number;retry number;secret password;source-address address;timeout seconds;}}}tacplus {server {server-address {port port-number;secret password;single-connection;source-address address;timeout seconds;}}}}events [ change-loginteractive-commands login ];}allow-6pe-traceroute;allow-v4mapped-packets;archival {configuration {archive-sites {ftp://<username>:<password>@<host>:<port>/<url-path>;scp://<username>:<password>@<host>:<port>/<url-path>;}transfer-interval interval;transfer-on-commit;}}arp {aging-timer minutes;gratuitous-arp-delay;gratuitous-arp-on-ifup;interfaces {logical-interface-name {aging-timer minutes;}}passive-learning;purging;}authentication-order [ authentication-methods ];auto-configuration{traceoptions {file<filename> <files number> <match regular-expression> <size size> <world-readable |no-world-readable>;flag <all | auth | configuration |;interfaces | io | rtsock | ui>level level;no-remote-trace;}}backup-router address <destination [ destination-addresses ]>;commit{fast-synchronize;synchronize;server{commit-interval number;days-to-keep-error-logs number;maximum-aggregate-pool number;maximum-entries number;traceoptions{file <filename> <files number> <match regular-expression><size size> <world-readable | no-world-readable>;flag <all | auth | configuration |;interfaces | io | rtsock | ui>level level;no-remote-trace;}}}(compress-configuration-files |no-compress-configuration-files);ddos-protection {global {disable-fpc;disable-logging;disable-routing-engine;flow-detection;flow-report-rate;violation-report-rate;}protocols protocol-group (aggregate| packet-type) {bandwidth packets-per-second;burst size;disable-fpc;disable-logging;disable-routing-engine;fpc {bandwidth-scale percentage;burst-scale percentage;disable-fpc;}priority level;recover-time seconds;flow-detection {flow-detect-time detect-period;no-flow-logging;timeout-active-flows enable-period;flow-level-bandwidth;flow-level-control (all| keep-all | police);flow-detection-mode (always-on|automatic |disabled);physical-interface;flow-recover-time recover-period;flow-timeout-time timeout-period;subscriber;}}traceoptions{file filename <files number><match regular-expression > <size maximum-file-size> <world-readable | no-world-readable>;flag flag;level(all | error | info | notice | verbose | warning);no-remote-trace;}}default-address-selection;diag-port-authentication (encrypted-password"password" | plain-text-password);dynamic-profile-options {versioning;}domain-name domain-name;domain-search [ domain-list ];donot-disable-ip6op-ondad;extensions{providers {provider-id {license-type license deployment-scope[ deployments ];}}resource-limits {package package-name {resources {cpu{priority number;time seconds;}file{core-size bytes;open number;size bytes;}memory{data-size bytes;locked-in bytes;resident-set-size bytes;socket-buffers bytes;stack-size bytes;}}}process process-ui-name {resources {cpu{priority number;time seconds;}file{core-size bytes;open number;size bytes;}memory{data-size bytes;locked-in bytes;resident-set-size bytes;socket-buffers bytes;stack-size bytes;}}}}}fips{level level;}host-name hostname;inet6-backup-router ipv6-address <destination address>;internet-options {(gre-path-mtu-discovery |no-gre-path-mtu-discovery);icmpv4-rate-limit bucket-size number packet-rate rate;icmpv6-rate-limit bucket-size number packet-rate rate;(ipip-path-mtu-discovery |no-ipip-path-mtu-discovery);(ipv6-path-mtu-discovery |noipv6-path-mtu-discovery);ipv6-path-mtu-discovery-timeout;no-tcp-rfc1323-paws;no-tcp-rfc1323;(path-mtu-discovery |no-path-mtu-discovery);source-port upper-limit port-number;(source-quench |no-source-quench);tcp-drop-synfin-set;}kernel-replication;license{autoupdate {url URL;password password;}renewbefore-expiration number;interval numbertraceoptions {file<filename> <files number> <size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}}location {altitude feet;building name;country-code code;floor number;hcoord horizontal-coordinate;lata service-area;latitude degrees;longitude degrees;npa-nxx number;postal-code postal-code;rack number;vcoord vertical-coordinate;}login {announcement "text";class class-name {access-end "hh<:mm:<ss>>";access-start "hh<:mm:<ss>>";allow-commands "regular-expression";( allow-configuration | allow-configuration-regexps)“regular expression 1” “regular expression 2”;allowed-days [ sundaymonday tuesday wednesday thursday friday saturday ];configuration-breadcrumbs;deny-commands "regular-expression";( deny-configuration | deny-configuration-regexps ) “regular expression 1” “regular expression 2 ”;idle-timeout minutes;logical-system logical-system-name;login-alarms;login-script filename;login-tip;permissions [ permissions ];security-role[security-role ] ;}deny-sources(address address | apply-groups | apply-groups-except) ;message "text";password {change-type (character-sets |set-transitions);format (des |md5 | sha1);maximum-length length;minimum-changes number;minimum-length length;minimum-lower-cases number;minimum-numerics number;minimum-punctuations number;minimum-upper-cases number;}retry-options {backoff-factor number;backoff-threshold number;maximum-time number;minimum-time number;tries-before-disconnect number;}user username {authentication {(encrypted-password"password" | plain-text-password);load-key-file filename;ssh-dsa"public-key" <from hostname>;ssh-ecdsa "public-key"<from hostname>;ssh-rsa "public-key" <from hostname>;}class class-name;full-name "complete-name";uid uid-value;}}max-configurations-on-flash number;mirror-flash-on-disk;name-server {address;}nd-maxmcast-solicitnd-retransmit-timerno-multicast-echo;no-neighbor-learn;;no-ping-record-route;no-ping-time-stamp;no-redirects;no-redirects-ipv6;ntp {authentication-key key-number typemd5 value password;boot-server address;broadcast <address><key key-number> <ttl value> <version value>;broadcast-client;multicast-client <address>;peer address <key key-number><prefer> <version value>;server address <key key-number><prefer> <version value>;source-address source-address;trusted-key [ key-numbers ];}pic-console-authentication {(encrypted-password"encrypted-password" | plain-text-password);}ports {auxiliary {disable;insecure;type(ansi | small-xterm | vt100 | xterm);port-type (mini-usb| rj45) ;}}console {disable;insecure;log-out-on-disconnect;type(ansi | small-xterm | vt100 | xterm);}}processes {process-name (enable |disable) failover (alternate-media | other-routing-engine);command path;timeout seconds;}proxy{password password;port port-number;server(hostname | ip-address);username username;}radius-options {attributes{nas-ip-address address;}password-protocolmschap-v2;}radius-server {server-address {accounting-port port-number;max-outstanding-requests number;port port-number;retry number;secret password;source-address source-address;timeout seconds;}}root-authentication {(encrypted-password"password" | plain-text-password);load-key-file filename;ssh-dsa"public-key" <from hostname>;ssh-ecdsa "public-key"<from hostname>;ssh-rsa "public-key" <from hostname>;}(saved-core-context |no-saved-core-context);saved-core-files number;scripts {load-scripts-from-flash;commit {allow-transients;direct-access;file filename.xsl{checksum (md5 |sha-256 | sha1) hash;optional;refresh;refresh-from url;source url;}max-datasizerefresh;refresh-from url;traceoptions {file<filename> <files number> <size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}}op {file filename.xsl{arguments {argument-name {description descriptive-text;}}checksum (md5| sha-256 | sha1) hash;command filename-alias;description descriptive-text;refresh;refresh-from url;source url;}max-datasizeno-allow-urlrefresh;refresh-from url;traceoptions {file<filename> <files number> <size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}}}static-host-mapping {hostname {alias [ aliases ];inet [ addresses ];inet6 [ addresses ];sysid system-identifier;}}syslog {allow-duplicates;archive <binary-data| no-binary-data> <files number> <size size> <world-readable | no-world-readable>;console {any| authorization | change-log | conflict-log | daemon | dfc | external | firewall | ftp | interactive-commands | kernel | ntp | pfe | security | user) (alert | any | critical | emergency | error | info | none | notice | warning);}file filename {facility severity;allow-duplicates;any(alert | any | critical | emergency | error | info | none | notice | warning);archive <archive-sites {ftp-url <password password>}><files number> <size size> <start-time "YYYY-MM-DD.hh:mm"><transfer-interval minutes> <world-readable | no-world-readable>;authorization (alert | any| critical | emergency | error | info | none | notice | warning);change-log (alert | any | critical | emergency | error | info | none |notice | warning);conflict-log (alert | any | critical | emergency | error | info | none | notice | warning);daemon(alert | any | critical | emergency | error | info | none | notice | warning);dfc (alert | any | critical | emergency | error | info |none | notice | warning);explicit-priority;external(alert | any | critical | emergency | error | info | none | notice | warning);firewall (alert | any | critical | emergency | error | info| none | notice | warning);ftp (alert | any | critical | emergency | error | info | none | notice | warning);interactive-commands(alert | any | critical | emergency | error | info | none | notice | warning);kernel (alert | any | critical | emergency | error | info| none | notice | warning);match "regular-expression";ntp(alert | any | critical | emergency | error | info | none | notice | warning);pfe (alert | any | critical | emergency | error | info |none | notice | warning);security (alert | any | critical | emergency | error | info | none | notice | warning);structured-data {brief}host (hostname |other-routing-engine | scc-master) {facility severity;authorization(alert | any | critical | emergency | error | info | none | notice | warning);change-log (alert | any | critical | emergency | error |info | none | notice | warning);conflict-log (alert | any | critical | emergency | error | info | none | notice | warning);daemon(alert | any | critical | emergency | error | info | none | notice | warning);dfc (alert | any | critical | emergency | error | info |none | notice | warning);explicit-priority;external(alert | any | critical | emergency | error | info | none | notice | warning);facility-override facility;firewall(alert | any | critical | emergency | error | info | none | notice | warning);ftp (alert | any | critical | emergency | error | info |none | notice | warning);interactive-commands (alert | any | critical | emergency | error | info | none | notice | warning);kernel(alert | any | critical | emergency | error | info | none | notice | warning);log-prefix string;match "regular-expression";ntp(alert | any | critical | emergency | error | info | none | notice | warning);pfe (alert | any | critical | emergency | error | info |none | notice | warning);security (alert | any | critical | emergency | error | info | none | notice | warning);source-address source-address;structured-data {briefuser (username |*) {}log-rotate-frequency minutes;server;source-address address;time-format (year |millisecond | year millisecond);user (username |*) {facility severity;match "regular-expression";}}tacplus-options {(exclude-cmd-attribute |no-cmd-attribute-value);service-name service-name;}tacplus-server {server-address {port port-number;secret password;single-connection;source-address source-address;timeout seconds;}}time-zone (GMT |GMT+hour-offset | GMT-hour-offset | zone-name);tracing destination-overridesyslog host address;use-imported-time-zones;}}system {services{database-replication {traceoptions {file<filename> <files number> <match regular-expression> <size maximum-file-size><world-readable | no-world-readable>;flag flag;no-remote-trace;}}dhcp-local-server {authentication{password password;username-include {circuit-type;delimiter delimiter-character;domain-name domain-name;logical-system-name;mac-address;option-60;option-82 <circuit-id><remote-id>;routing-instance-name;user-prefix user-prefix;}}duplicate-clients-on-interface;dynamic-profile (profile-name |junos-default-profile) <aggregate-clients <merge | replace> | use-primary primary-profile-name>;forward-snooped-clients (all-interfaces |configured-interfaces | non-configured-interfaces);group group-name {dynamic-profile (profile-name |junos-default-profile) <aggregate-clients <merge | replace> | use-primary primary-profile-name>;interface interface-name {exclude;overrides {... samestatements as at the [edit system services dhcp-local-server overrides] hierarchy level ...}trace;upto upto-interface-name;}}overrides {client-discover-match <option60-and-option82>;interface-client-limit number;no-arp;process-inform {pool pool-name;}}pool-match-order {external-authority;ip-address-first;option-82;}reconfigure{attempts attempt-count;clear-on-abort;strict;timeout timeout-value;token token-value;trigger {radius-disconnect;}}traceoptions {file<filename> <files number> <match regular-expression> <size maximum-file-size><world-readable | no-world-readable>;flag flag;no-remote-trace;}}dhcpv4-profiles profile-name {bind-interface interface-name;dead-server-retry-interval interval-in-seconds;dead-server-successive-retry-attempt number-of-attempts;dhcp-server-selection-algorithm (highest-priority-server| round-robin);lease-time time-in-seconds;pool-name pool-name;retransmission-attempt number-of-attempts;retransmission-interval interval-in-seconds;servers ip-address {priority value;}}dhcpv6-profiles profile-name {bind-interface interface-name;lease-time time-in-seconds;pool-name pool-name;retransmission-attempt number-of-attempts;retransmission-interval interval-in-seconds;}traceoptions {file<filename> <files number> <match regular-expression> <size maximum-file-size><world-readable | no-world-readable>;flag flag;no-remote-trace;}}finger {connection-limit limit;rate-limit limit;}flow-tap-dtcp {ssh{connection-limit limit;rate-limit limit;}}ftp {connection-limit limit;rate-limit limit;}local-policy-decision-function{statistics {aacl-statistics-profile profile-name {aacl-fields{address;all-fields;application;application-group;input-bytes;input-interface;input-packets;ipv6-addressipv6-prefix-lengthmask;output-bytes;output-packets;subscriber-name;timestamp;vrf-name;}file filename;record-type(delta | interim);}file filename {archive-sites{url;}files number;size bytes;transfer-interval minutes;}record-type(data | interim);}traceoptions{file <filename> <files number> <match regular-expression><size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}}netconf {ssh {connection-limit limit;port port;rate-limit limit;}traceoptions {file<filename> <files number> <match regular-expression> <size size> <world-readable |no-world-readable>;flag flag;no-remote-trace;on-demand;}}outbound-ssh {client client-id {address {port port-number;retry number;timeout seconds;}device-id device-id;keep-alive{retry number;timeout seconds;}reconnect-strategy(in-order | sticky);secret secret;servicesnetconf;}traceoptions{file <filename> <files number> <match regular-expression><size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}}resource-monitor{resource-category jtree {resource-typefree-dwords {low-watermark number;high-watermark number;}resource-typefree-pages {low-watermark number;high-watermark number;}}no-throttle;no-logging;high-threshold number;traceoptions{file filename <files number> <match regular-expression><size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}}service-deployment {local-certificate certificate-name;servers {server-address {port port-number;security-options{(ssl3 | tls);}user username;}}source-address source-address;traceoptions{flag flag;}}ssh {ciphers [ cipher-1cipher-2 cipher-3 ...]client-alive-count-max seconds;client-alive-interval seconds;connection-limit limit;hostkey-algorithm limit;key-exchange limit;macs limit;max-sessions-per-connection number;no-tcp-forwarding;protocol-version [v1v2];rate-limit limit;root-login (allow| deny | deny-password);}subscriber-management {enforce-strict-scale-limit-license;gres-route-flush-delay;maintain-subscriber {interface-delete;}traceoptions {file filename <files number><match regular-expression > <size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}}traceoptions {file filename <files number><match regular-expression > <size maximum-file-size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}telnet {connection-limit limit;rate-limit limit;}tftp-server{connection-limit limit;rate-limit limit;}xnm-clear-text {connection-limit limit;rate-limit limit;}xnm-ssl {connection-limit limit;local-certificate certificate-name;rate-limit limit;}}

账号		自动登录	找回密码
密码			立即注册

VMware vcenter+vSphere 6.5 U2共享

【跟谁学】韩宇极简英语课-技术人员不得不

用Zabbix通过JMX方式监控weblogic

winhex数据恢复教程（非常巨大，内容丰富）

Symantec Backup Exec 2015 2016/2012 BE20

NetScaler VPX部署之：NetScaler Gateway调

zabbix3.4.1安装部署+微信推送信息+大屏显

[经验分享] Juniper [edit system] Hierarchy Level

扫码加入运维网微信交流群