Understanding the factory-default configuration – Juniper Networks SRX 210 User Manual

•

Time information for services gateway location

•

Local time zone

•

Name or IP address of a Network Time Protocol (NTP) server, if NTP is used to set
the time on the services gateway

•

Local date and time if an NTP server is not used to set the time

Understanding the Factory-Default Configuration

Your services gateway comes configured with a factory-default configuration. This
configuration sets up the following network topology:

•

Interface

ge-0/0/0

(port 0/0) is configured for Internet access. A DHCP client running

on the interface enables the interface to receive its network settings—IP address,
default gateway, and DNS servers—from an Internet service provider (ISP).

•

Interfaces

ge-0/0/1

and

fe-0/0/2

through

fe-0/0/7

(port 0/1 through port 0/7) are

configured as switched interfaces in a common VLAN on which the IP address

192.168.1.1/24

is configured.

•

A DHCP server is active on interfaces

ge-0/0/1

and

fe-0/0/2

through

fe-0/0/7

. The

DHCP server assigns IP addresses in the

192.168.1.0/24

network to connected devices.

The default configuration also includes the following security configuration:

•

Two security zones are created: trust and untrust.

•

Interface

ge-0/0/0

is in the untrust zone, while interfaces

ge-0/0/1

and

fe-0/0/2

through

fe-0/0/7

are in the trust zone.

•

A security policy is created that permits outbound traffic from the trust zone to the
untrust zone. Inbound traffic originating in the untrust zone is blocked.

•

Source Network Address Translation (NAT) is configured on the trust zone.

Understanding Built-In Ethernet Ports and Initial Configuration

During the initial configuration of the services gateway, how you use the built-in Ethernet
ports (ports 0/0 through 0/7) depends on the initial configuration you are performing:

•

Configuration using autoinstallation—Use built-in Ethernet port 0/0 to connect to the
DHCP server. A DHCP client is configured on this interface, allowing the services gateway
to receive its IP address from the DHCP server.

•

Configuration using the setup wizard—Use the following built-in Ethernet ports:

•

Port 0/1—Connect your management device to this port. A DHCP server running on
this interface automatically assigns your management device an IP address in the
same subnetwork as the interface, allowing your management device to
communicate with the services gateway through this interface.

•

Port 0/0—Connect your services gateway to the Internet on this port if you plan to
download purchased software licenses through the setup wizard. A DHCP client
running on this interface allows it to receive its network settings from the ISP.

Copyright © 2013, Juniper Networks, Inc.

86

SRX210 Services Gateway Hardware Guide