[Entrasis] 패스워드 변경, 유저 생성, ssh 활성화, 인터페이스 설정
Entrasis Network
이 글은 단순히 시스템에 접속하여 간단한 명령어의 결과값을 좀 기록할 필요가 있어 기록하는 글이라. 개인적으로 보는 글이기 때문에 참조하는 글로는 적절하지 않을 수 있음.
환경 :
- Entrasis
- SSH Connection
- L2 Switch
1. Command - ?
command "?"을 입력했을 때 나타나는 화면이다. 대략 지원되는 명령어가 display된다. linux os에서 man이나 help정도로 생각하면 되겠다. 물음표로 거의 다 지원할 수 있는 명령어를 알 수 있다. Tab으로 자동완성도 지원한다.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
B3(su)->?
clear Reset configuration to factory defaults.
cls Clears the current screen
configure Execute a configuration file.
copy Upload or download an image or configuration file.
delete Delete a file
dir List the configuration and log files
disconnect Close an active session.
exit Exits the current CLI session.
history Displays the command history.
ping Send echo messages
reset Reset stack or a switch in the stack.
router Enter into user privilege mode.
save Save stack configuration
set Configure switch options and settings.
show Show switch options and settings.
telnet Start a Telnet connection to a remote host
traceroute Display hop-by-hop path to a specified host
|
cs |
2. 유저 생성
유저생성은 "set"으로 생성한다.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
|
B3(su)->show system login
Username Access State Aging Simul Local Login Access Allowed
Login Only? Start End Days
admin super-user enabled 0 0 no ***access always allowed***
ro read-only enabled 0 0 no ***access always allowed***
rw read-write enabled 0 0 no ***access always allowed***
enter01 super-user enabled 0 0 no 00:00 24:00 sun mon tue wed thu fri sat
newAccount super-user enabled 0 0 no 00:00 24:00 sun mon tue wed thu fri sat
B3(su)->set system login newAccount2 super-user enable
B3(su)->show system login
Username Access State Aging Simul Local Login Access Allowed
Login Only? Start End Days
admin super-user enabled 0 0 no ***access always allowed***
ro read-only enabled 0 0 no ***access always allowed***
rw read-write enabled 0 0 no ***access always allowed***
enter01 super-user enabled 0 0 no 00:00 24:00 sun mon tue wed thu fri sat
newAccount super-user enabled 0 0 no 00:00 24:00 sun mon tue wed thu fri sat
newAccount2 super-user enabled 0 0 no 00:00 24:00 sun mon tue wed thu fri sat
B3(su)->
|
cs |
3. 패스워드 설정
처음 접속한 터미널에서 conf terminal 진입없이 바로 적용가능하다. 명령어로는 "set password {id}"가 된다.
1
2
3
4
5
|
B3(su)->set password enter01
Please enter new password:
Please re-enter new password:
Password Changed.
B3(su)->
|
cs |
4. ssh 접속 권한 부여.
계정을 만들고 패스워드도 부여했다면, 원격 접속을 위한 ssh 권한을 부여해야 로그인 할 수 있는데, 명령어는 "set system login enter01 super-user enable"로 진행하면 된다.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
B3(su)->set password enter01
Please enter new password:
Please re-enter new password:
Password Changed.
B3(su)->set system login enter01 ?
read-only Sets the access privileges of read-only.
read-write Sets the access privileges of read-write.
super-user Sets the access privileges of super-user.
B3(su)->set system login enter01 super-user ?
disable Disable the login.
enable Enable the login.
B3(su)->set system login enter01 super-user enable
User already exists with identical parameters.
Set was unsuccessful.
B3(su)->
B3(su)->?
clear Reset configuration to factory defaults.
cls Clears the current screen
configure Execute a configuration file.
copy Upload or download an image or configuration file.
delete Delete a file
dir List the configuration and log files
disconnect Close an active session.
exit Exits the current CLI session.
history Displays the command history.
ping Send echo messages
reset Reset stack or a switch in the stack.
router Enter into user privilege mode.
save Save stack configuration
set Configure switch options and settings.
show Show switch options and settings.
telnet Start a Telnet connection to a remote host
traceroute Display hop-by-hop path to a specified host
|
cs |
5. vlan 생성 및 ip 할당
ip할당을 위해서는 인터페이스 설정을 진행해야 된다. 설정은 아래와 같고 확인하는 방법도 아래에 같이 정리.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
|
B3(su)->set vlan create 40
B3(su)->set vlan name 40 testVlan
B3(su)->set port vlan ge.1.24 40 ?
<cr>
modify-egress Add port(s) to VLAN's untagged egress list remove
from other untagged egress lists
no-modify-egress Do not prompt for or make egress list changes
B3(su)->set port vlan ?
<port-string> Port or range of ports
B3(su)->set port vlan ge.1.24 40 modify-egress
B3(su)->router
B3(su)->router>show running-config
!
B3(su)->interface vlan 40
B3(su)->ip address 192.168.3.123 255.255.252.0
B3(su)->no shutdown
!
B3(su)->router>
|
cs |
6. SSH enable
ssh 접속을 허용하려면 활성화를 직접 처리해야하는데 아래와 같이 수행하면 된다. "set ssh enabled"
1
2
3
4
5
6
7
8
9
10
|
B3(su)->set ssh ?
disabled Disables the Secure Shell Server.
enabled Enables the Secure Shell Server.
hostkey Secure Shell server configuration parameters.
reinitialize Reinitializes the Secure Shell Server.
B3(su)->set ssh enabled
B3(su)->
|
cs |