yum install iperf apt-get install iperf
iperf -f M -s -p 1234
Output
root@perf-server:/home/pawel# iperf -f M -s -p 1234 ------------------------------------------------------------ Server listening on TCP port 1234 TCP window size: 0.08 MByte (default) ------------------------------------------------------------
Here is working set up.
In bellow scenario both sides – firewalls and servers are already configured, including:
Phase 1 authentication method: PSK Phase 1 exchange mode: Main Phase 1 PSK: OurSmallSecret Phase 1 authentication hash algorithm: SHA-1 Phase 1 encryption algorithm: 3DES Phase 1 DH group: 2 Phase 1 SA lifetime: 7,200 seconds Phase 2 IPsec mode: Tunnel Phase 2 authentication hash algorithm: SHA-1 Phase 2 encryption algorithm: 3DES Phase 2 SA lifetime: 3,600 seconds
Within this post I would like to show how you can easily move policies within Juniper SRX configuration.
Below list of policies that we have currently set up:
pawel@srx-firewall> edit Entering configuration mode
[edit] pawel@srx-firewall# edit security policies from-zone WAN to-zone INSIDE
[edit security policies from-zone WAN to-zone INSIDE] pawel@srx-firewall# show
There are many ways to achieve that, we will go for easiest one here.
Below script will do the job
#!/bin/sh # # day of month as variable D=$(date '+%d') # # logic if [ "$D" -ge 3 ] && [ "$D" -le 9 ] then echo "Previous Friday was first in month script-true.sh will be run" |logger \path\to\script-true.sh # else echo "Previous Friday wasn't first in month script-false will be run" |logger \path\to\script-false.sh # fi
Some basic but very useful commands
Two of many methods of time formatting of historical commands
short script below will do the job
We will forward port tcp/80 over to Web Server and port tcp/22 over to SFTP Server:
172.16.254.1:80 -> 10.254.254.2:80
172.16.254.1:22 -> 10.254.254.3:22
Below drawing shows network topology:
Do it the right way 