The JunOS archival feature

Since JunOS 7.4, there is an feature which enables your Juniper router to backup its current configuration to an remote server by SSH or FTP.
Cisco offers such a functionality too, but their engineers took a little bit longer
Its quite easy to configure…
Note: example is using “net_admin” with password “c”

# Juniper set statements:
—————————
set system archival [...]

BGP best path selection algorithm (Cisco specific)

(Most in this entry is taken directly from www.cisco.com. It’s just to have BGP decision process ready to hand…)
How the Best Path Algorithm Works
Just a BGP assigns the first valid path as the current best path. BGP then compares the best path with the next path in the list, until BGP reaches the end of the list [...]

JunOS routing table(s)

JunOS has a bulk of different tables for building the global routing table.
I was searching several times for informations what table holds which routes, because i can’t keep it in mind.
Therefore i decided to write it down in my blog…
Here comes the summary (taken from Juniper website)

Table
Purpose

bgp.isovpn.0
Border Gateway Protocol (BGP) reachability information for ISO virtual [...]

The Cisco IOS archive command

As i mentioned in another post, i use RANCID for fetching and diffing router/switch configurations.
But when you need an quick and easy solution without CVS backend, you could try the IOS archive command.
Certainly, it is not as comfortable as other tools and has the restriction to save only 14 archive files, but it’s still better than nothing.
It [...]

Deactivate wordpress plugins manually

Some days ago, when playing around with some plugins, i had the problem that i activated a plugin which messed up my complete wordpress installation.
Neither access to main blog nor access to wp-admin wasn’t possible. Browser always shows an error message.
After some googling, i found an short hint, where to deactivate the plugin in MySQL-DB.
Plugin [...]

Setting up a TACACS+ server for user authentication

When you have a bigger number of network devices and User-Groups with different permissions, it’s easier to use a central instance for authentication than to configure every user on each device manually.
TACACS+ (Terminal Access Controller Access Control System extended) provides such a functionality and is available for free.
I will explain the steps for setting up TACACS+ [...]

Network configuration with /etc/network/interfaces

When you use Debian Linux, you can administrate your network settings via /etc/network/interfaces.
Here’s a simple example to demonstrate syntax and parameters of the configuration file.

# loopback interface
auto lo
iface lo inet loopback
 
# Interface eth0 gets its IP via DHCP
auto eth0
iface eth0 inet dhcp
# Static IP for eth1
auto eth1
iface eth1 inet static
  address 192.168.222.140
  netmask 255.255.255.0
  network 192.168.222.0
  broadcast 192.168.222.255
  # Default gateway not [...]

Setting up a Cisco router for terminating Microsoft PPTP sessions

 
For this example i used a Cisco 1841 running c1841-advsecurityk9-mz.124-3i.bin
Explanation:

Remote User connects to gate’s puplic reachable IP with his Microsoft PPTP client (Windows 2000 or higher)
After successful authentication, the Client gets an IP address from local pool
MS PPTP-Client adds a default route over the new PPP interface (but you can deactivate it)

 Here’s the configuration template

aaa new-model
aaa authentication ppp [...]