advertisement
About the Documentation
•
Documentation and Release Notes on page ix
•
Supported Platforms on page ix
•
Documentation Conventions on page ix
•
Documentation Feedback on page xi
•
Requesting Technical Support on page xii
Documentation and Release Notes
To obtain the most current version of all Juniper Networks
® technical documentation, see the product documentation page on the Juniper Networks website at http://www.juniper.net/techpubs/ .
If the information in the latest release notes differs from the information in the documentation, follow the product Release Notes.
Juniper Networks Books publishes books by Juniper Networks engineers and subject matter experts. These books go beyond the technical documentation to explore the nuances of network architecture, deployment, and administration. The current list can be viewed at http://www.juniper.net/books .
Supported Platforms
For the features described in this document, the following platforms are supported:
• vSRX
Documentation Conventions
defines notice icons used in this guide.
Copyright © 2017, Juniper Networks, Inc.
ix
vSRX Guide for AWS
Table 1: Notice Icons
Icon Meaning
Informational note
Caution
Warning
Laser warning
Tip
Best practice
Description
Indicates important features or instructions.
Indicates a situation that might result in loss of data or hardware damage.
Alerts you to the risk of personal injury or death.
Alerts you to the risk of personal injury from a laser.
Indicates helpful information.
Alerts you to a recommended use or implementation.
defines the text and syntax conventions used in this guide.
Table 2: Text and Syntax Conventions
Convention Description Examples
Bold text like this
Fixed-width text like this
Represents text that you type.
Represents output that appears on the terminal screen.
To enter configuration mode, type the configure command: user@host> configure user@host> show chassis alarms
No alarms currently active
Italic text like this
Italic text like this
•
•
•
Introduces or emphasizes important new terms.
Identifies guide names.
Identifies RFC and Internet draft titles.
•
•
•
A policy term is a named structure that defines match conditions and actions.
Junos OS CLI User Guide
RFC 1997, BGP Communities Attribute
Represents variables (options for which you substitute a value) in commands or configuration statements.
Configure the machine’s domain name:
[edit] root@# set system domain-name
domain-name
x Copyright © 2017, Juniper Networks, Inc.
About the Documentation
Table 2: Text and Syntax Conventions (continued)
Convention Description
Text like this
< > (angle brackets)
| (pipe symbol)
Examples
Represents names of configuration statements, commands, files, and directories; configuration hierarchy levels; or labels on routing platform components.
•
•
To configure a stub area, include the stub statement at the [edit protocols ospf area area-id] hierarchy level.
The console port is labeled CONSOLE .
Encloses optional keywords or variables.
stub <default-metric metric>;
Indicates a choice between the mutually exclusive keywords or variables on either side of the symbol. The set of choices is often enclosed in parentheses for clarity.
broadcast | multicast
(string1 | string2 | string3)
# (pound sign)
[ ] (square brackets)
Indention and braces ( { } )
; (semicolon)
Indicates a comment specified on the same line as the configuration statement to which it applies.
rsvp { # Required for dynamic MPLS only
Encloses a variable for which you can substitute one or more values.
Identifies a level in the configuration hierarchy.
Identifies a leaf statement at a configuration hierarchy level.
community name members [
community-ids ]
[edit] routing-options { static { route default { nexthop address; retain;
}
}
}
GUI Conventions
Bold text like this
> (bold right angle bracket)
Represents graphical user interface (GUI) items you click or select.
•
•
In the Logical Interfaces box, select
All Interfaces .
To cancel the configuration, click
Cancel
.
Separates levels in a hierarchy of menu selections.
In the configuration editor hierarchy, select Protocols>Ospf.
Documentation Feedback
We encourage you to provide feedback, comments, and suggestions so that we can improve the documentation. You can provide feedback by using either of the following methods:
• Online feedback rating system—On any page of the Juniper Networks TechLibrary site at http://www.juniper.net/techpubs/index.html
, simply click the stars to rate the content, and use the pop-up form to provide us with information about your experience.
Alternately, you can use the online feedback form at http://www.juniper.net/techpubs/feedback/ .
Copyright © 2017, Juniper Networks, Inc.
xi
vSRX Guide for AWS
•
E-mail—Send your comments to [email protected]. Include the document or topic name, URL or page number, and software version (if applicable).
Requesting Technical Support
Technical product support is available through the Juniper Networks Technical Assistance
Center (JTAC). If you are a customer with an active J-Care or Partner Support Service support contract, or are covered under warranty, and need post-sales technical support, you can access our tools and resources online or open a case with JTAC.
• JTAC policies—For a complete understanding of our JTAC procedures and policies, review the JTAC User Guide located at http://www.juniper.net/us/en/local/pdf/resource-guides/7100059-en.pdf
.
•
Product warranties—For product warranty information, visit http://www.juniper.net/support/warranty/ .
• JTAC hours of operation—The JTAC centers have resources available 24 hours a day,
7 days a week, 365 days a year.
Self-Help Online Tools and Resources
For quick and easy problem resolution, Juniper Networks has designed an online self-service portal called the Customer Support Center (CSC) that provides you with the following features:
•
Find CSC offerings: http://www.juniper.net/customers/support/
• Search for known bugs: https://prsearch.juniper.net/
• Find product documentation: http://www.juniper.net/documentation/
• Find solutions and answer questions using our Knowledge Base: http://kb.juniper.net/
• Download the latest versions of software and review release notes: http://www.juniper.net/customers/csc/software/
• Search technical bulletins for relevant hardware and software notifications: http://kb.juniper.net/InfoCenter/
•
Join and participate in the Juniper Networks Community Forum: http://www.juniper.net/company/communities/
•
Open a case online in the CSC Case Management tool: http://www.juniper.net/cm/
To verify service entitlement by product serial number, use our Serial Number Entitlement
(SNE) Tool: https://entitlementsearch.juniper.net/entitlementsearch/
Opening a Case with JTAC
You can open a case with JTAC on the Web or by telephone.
•
Use the Case Management tool in the CSC at http://www.juniper.net/cm/
.
•
Call 1-888-314-JTAC (1-888-314-5822 toll-free in the USA, Canada, and Mexico).
xii Copyright © 2017, Juniper Networks, Inc.
About the Documentation
For international or direct-dial options in countries without toll-free numbers, see http://www.juniper.net/support/requesting-support.html
.
Copyright © 2017, Juniper Networks, Inc.
xiii
vSRX Guide for AWS xiv Copyright © 2017, Juniper Networks, Inc.
advertisement
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Related manuals
advertisement
Table of contents
- 3 Table of Contents
- 5 List of Figures
- 7 List of Tables
- 9 About the Documentation
- 9 Documentation and Release Notes
- 9 Supported Platforms
- 9 Documentation Conventions
- 11 Documentation Feedback
- 12 Requesting Technical Support
- 12 Self-Help Online Tools and Resources
- 12 Opening a Case with JTAC
- 15 Chapter 1: Overview Information
- 15 Understanding vSRX with AWS
- 15 vSRX with AWS
- 16 vSRX Benefits and Use Cases
- 17 AWS Glossary
- 19 System Requirements for vSRX on AWS
- 19 System Requirements for AWS
- 19 Best Practices Recommendations
- 20 Interface Naming and Mapping
- 20 vSRX Factory Default Settings
- 23 Chapter 2: Installing vSRX in AWS
- 23 Configuring an AWS Virtual Private Cloud for vSRX
- 24 Step 1: Creating a VPC and Internet Gateway
- 26 Step 2: Adding Subnets for vSRX
- 27 Step 3: Adding Route Tables for vSRX
- 29 Step 4: Adding Security Groups for vSRX
- 31 Launching an Instance of vSRX
- 31 Step 1: Creating an SSH Key Pair
- 33 Step 2: Launching a vSRX Instance
- 35 Step 3: Viewing the AWS System Logs
- 35 Step 4: Adding Network Interfaces for vSRX
- 37 Step 5: Allocating Elastic IP Addresses
- 37 Step 6: Adding the vSRX Private Interfaces to the Route Tables
- 38 Step 7: Rebooting the vSRX Instance
- 38 Step 8: Logging in to a vSRX Instance
- 41 Chapter 3: Configuring and Managing vSRX Basics
- 41 Configuring vSRX Using the CLI
- 41 Understanding vSRX Preconfiguration and Factory Default
- 42 Adding a Basic vSRX Configuration
- 43 Adding DNS Servers
- 43 Configuring vSRX Using the J-Web Interface
- 43 Accessing the J-Web Interface and Configuring vSRX
- 45 Applying the Configuration
- 46 Managing Security Policies for Virtual Machines Using Junos Space Security Director
- 46 Removing a vSRX Instance on AWS
- 47 Chapter 4: vSRX in AWS Use Cases
- 47 Example: Configuring NAT for vSRX
- 47 Before You Begin
- 47 Overview
- 47 Configuration
- 47 Configuring NAT
- 48 Example: Configuring VPN on vSRX Between VPCs in AWS
- 48 Before You Begin
- 49 Overview
- 49 vSRX1 VPN Configuration
- 50 vSRX2 VPN Configuration
- 51 Verification
- 51 Verify Active VPN Tunnels
- 53 Chapter 5: vSRX Licensing
- 53 vSRX Feature Licenses Overview
- 53 vSRX License Procurement and Renewal
- 54 vSRX Evaluation License
- 55 Product Evaluation License
- 55 Advanced Security Features Evaluation License
- 56 License Types
- 57 Throughput
- 57 License Duration
- 58 Individual (á la carte) Feature Licenses
- 58 Bundled Licenses
- 58 Stacking Licenses
- 58 vSRX License Keys Components
- 59 License Management Fields Summary
- 61 Managing Licenses for vSRX
- 61 vSRX Evaluation License Installation Process
- 62 Adding a New License Key with J-Web
- 63 Adding a New License Key from the CLI
- 64 Updating vSRX Licenses
- 65 Deleting a License with J-Web
- 66 Deleting a License with the CLI
- 66 License Warning Messages
- 67 vSRX License Model Numbers for AWS
- 71 Chapter 6: Troubleshooting
- 71 Finding the Software Serial Number for vSRX