CD Home
Report an Error

Short Contents

Entire manual as PDF [4753 KB]

About This Guide
[PDF 91 KB]
Objectives
Audience
Documentation Conventions
Related Juniper Networks Documentation
Obtaining Documentation
Documentation Feedback
Requesting Support
Chapter: Overview of Subscribers and Subscriptions on a C-series Controller
[PDF 73 KB]
Overview of Subscribers
Overview of Subscriptions
Enterprise Subscriber and Subscription Hierarchy
Enterprise Subscription Hierarchy
Overview of Managers
Read Privileges
Management Privileges
Managers That Control All Retailers
Chapter: Overview of Subscribers and Subscriptions on a Solaris Platform
[PDF 90 KB]
Overview of Subscribers
Overview of Subscriptions
Enterprise Subscriber and Subscription Hierarchy
Enterprise Subscription Hierarchy
Overview of Operators
Operator Read Privileges
Operator Management Privileges
Chapter: Subscriber Logins and Service Activation
[PDF 254 KB]
Overview of Login Events and Processes
Login Events
Summary of the Login Process
Residential Subscriber Login and Processes
PPP Subscriber Login and Service Activation
Web Login for PPP Subscribers
PPP Login Interactions
PPP Logout Interactions
DHCP Subscriber Login and Service Activation
Interface Startup
Initial Login
Initial DHCP Login Interactions
DHCP Login to Subscriber Account Interactions
Persistent DHCP Subscriber Login Interactions
DHCP Subscriber Logout Interactions
Static IP Subscribers
Single PC, IP Address Known
Subscriber IP Address Not Known
Enterprise Subscriber Login Process
Interface Startup
Subscriptions and Activations
Subscription Activation Interactions
Subscription Deactivation Interactions
Automatic Activation at Login
Enterprise-Specific Remote Session Activation
Chapter: Configuring Subscriber-Related Properties on the SAE with the SRC CLI
[PDF 86 KB]
Configuring the Length of Time MAC Addresses Remain in SAE Cache
Identifying a Profile for Unauthenticated Subscribers
Configuring Interim Accounting for Services and Subscribers
Avoiding Overcharges for Sessions That Time Out
Allowing Multiple Logins from the Same IP Address
Authenticating Registered Username/Password Pairs
Configuring Timers for Session Reactivation
Chapter: Configuring Subscriber-Related Properties on the SAE on a Solaris Platform
[PDF 97 KB]
Overview
Modifying the SAE Property File
Editing Properties with SDX Admin
Editing Properties with a Text Editor
Loading Subscriptions Based on RADIUS Authorization
Accepting Login Names with Different Formats
Default Login Parser Properties
Chapter: Classifying Interfaces and Subscribers with the SRC CLI
[PDF 268 KB]
Overview of Classification Scripts
How Classification Scripts Work
Interface Classification Scripts
Subscriber Classification Scripts
DHCP Classification Scripts
Overview of Configuring Classification Scripts
Subscriber Classifiers
DHCP Classifiers
Interface Classifiers
Classification Targets
Target Expressions
Classification Conditions
Glob Matching
Regular Expression Matching
Classifying Interfaces with the SRC CLI
Interface Classification Conditions
Example: Managing Interfaces for Premium and Basic PPP and DHCP Subscribers
Example: Managing Specific Interfaces
Example: Managing Interfaces by Using the Interface Description
Classifying Subscribers with the SRC CLI
Subscriber Classification Conditions
Sending DHCP Options to the JUNOSe Router
Subscriber Classification Targets
Example: Subscriber Classification Scripts for Static IP Subscriber
Example: Subscriber Classification Scripts Using a Subscriber Group
Example: Subscriber Classification Scripts for Enterprise Subscribers
Matching on the Interface Name
Matching on the Interface Alias
Example: Creating Router Interface Subscriber Session
Example: Activating Services for a Group of Subscriber Sessions
Classifying DHCP Subscribers with the SRC CLI
DHCP Classification Conditions
DHCP Classification Targets
Selecting DHCP Parameters
Setting DHCP Parameters with DHCP Options
Creating DHCP Profiles with the SRC CLI
Chapter: Classifying Interfaces and Subscribers on a Solaris Platform
[PDF 392 KB]
Overview of Classification Scripts
How Classification Scripts Work
Interface Classification Scripts
Subscriber Classification Scripts
DHCP Classification Scripts
Configuring Classification Scripts
Classification Targets
Target Expressions
Classification Criteria
Glob Matching
Regular Expression Matching
Configuring Targets in Structured View
Configuring Criteria in Structured View
Configuring Targets and Criteria in Raw View
Testing Subscriber and Interface Classification Scripts
Classifying Interfaces
Selecting Interface Classification Criteria
Configuring Interface Classification Targets
Example: Managing Interfaces for Premium and Basic PPP and DHCP Subscribers
Example: Managing Specific Interfaces
Example: Managing Interfaces by Using the Interface Description
Classifying Subscribers
Selecting Subscriber Classification Criteria
Sending DHCP Options to the JUNOSe Router
Configuring Subscriber Classification Targets
Example: Subscriber Classification Scripts for Static IP Subscriber
Example: Subscriber Classification Scripts Using a Subscriber Group
Example: Subscriber Classification Scripts for Enterprise Subscribers
Matching on the Interface Name
Matching on the Interface Alias
Example: Subscriber Classification Scripts For a Wholesaler/Retailer Scenario
Example: Creating Router Interface Subscriber Session
Example: Activating Services for a Group of Subscriber Sessions
Classifying DHCP Subscribers
Selecting DHCP Classification Criteria
Configuring DHCP Classification Targets
Selecting DHCP Parameters
Setting DHCP Parameters with DHCP Options
Creating DHCP Profiles
Chapter: Overview of Plug-Ins Included with the SAE
[PDF 89 KB]
How Internal Plug-Ins Work
Plug-In Pool
Event Publishers
Types of Internal Plug-Ins
Authorization Plug-Ins
Tracking Plug-Ins
Customizing RADIUS Packets with Plug-Ins
Assigning DHCP Addresses to Subscribers
Creating and Tracking Subscriber Sessions
Activating and Tracking Service Sessions
Chapter: Configuring Internal, External, and Synchronization Plug-Ins with the SRC CLI
[PDF 73 KB]
Configuring Internal Plug-Ins
Configuring the SAE for External Plug-Ins
Configuring the State Synchronization Plug-In Interface
Chapter: Overview of Configuring Plug-Ins for Solaris Platforms
[PDF 72 KB]
Configuring Plug-Ins with SDX Admin
Configuring External Plug-Ins
Configuring Internal and Hosted Plug-Ins
Defining RADIUS Packets
Setting Up the Plug-In Instance to Use a Template
Configuring Event Publishers
Example: LDAP Authentication Plug-In
Example: Basic RADIUS Accounting Plug-In
Chapter: Configuring Accounting and Authentication Plug-Ins with the SRC CLI
[PDF 293 KB]
Creating RADIUS Peers
Related Topics
Configuring Tracking Plug-Ins
Configuring Flat File Accounting Plug-Ins
Related Topics
Configuring Headers for Flat File Accounting Plug-Ins
Configuring Basic RADIUS Accounting Plug-Ins
Related Topics
Configuring Flexible RADIUS Accounting Plug-Ins
Related Topics
Configuring Custom RADIUS Accounting-Plug-Ins
Related Topics
Configuring Authentication Plug-Ins
Limiting Subscribers on Router Interfaces
Configuring Basic RADIUS Authentication Plug-Ins
Related Topics
Configuring Flexible RADIUS Authentication Plug-Ins
Related Topics
Configuring Custom RADIUS Authentication Plug-Ins
Related Topics
Configuring LDAP Authentication Plug-Ins
Related Topics
Configuring UDP Ports for RADIUS Plug-Ins
Configuring Global UDP Ports
Defining RADIUS Packets for Flexible RADIUS Plug-Ins with the SRC CLI
Using Default RADIUS Templates
Naming RADIUS Attribute Instances
Defining RADIUS Attributes
Standard RADIUS Attributes
Juniper Networks VSAs
Defining the Values of RADIUS Attributes
Configuring a RADIUS Packet Template
More About Using Flexible RADIUS Packet Definitions
Setting Values in Authentication Response Packets
Selecting IP Address Pools Using DHCP Response Packets
Configuring Event Publishers
Configuring Global and Default Retailer Event Publishers
Related Topics
Configuring Service-Specific Event Publishers
Configuring Retailer-Specific Event Publishers
Configuring Virtual Router-Specific Event Publishers
Chapter: Configuring Subscribers and Subscriptions with the SRC CLI
[PDF 177 KB]
Overview of Configuring Subscribers and Subscriptions
Specifying the Activation Order for Subscriptions
Inheritance of Properties and Subscriptions
Enabling the Subscriber and Subscription Configuration on the SRC CLI
Adding Subscribers with the SRC CLI
Adding Retailers with the SRC CLI
Configuring Administrative Information for Retailers with the SRC CLI
Adding Subscriber Folders with the SRC CLI
Adding Residential Subscribers with the SRC CLI
Configuring Administrative Information for Residential Subscribers with the SRC CLI
Adding Enterprises with the SRC CLI
Configuring Administrative Information for Enterprise Subscribers with the SRC CLI
Adding Sites with the SRC CLI
Adding Devices as Subscribers with the SRC CLI
Adding Managers with the SRC CLI
Configuring Subscriptions with the SRC CLI
Allowing Multiple Subscriptions per Subscriber
Configuring Accesses with the SRC CLI
Chapter: Configuring Subscribers and Subscriptions with SDX Admin
[PDF 766 KB]
Overview of Configuring Subscribers and Subscriptions
LDAP Model for Subscribers
Subscriptions
Specifying the Activation Order for Subscriptions
LDAP Model for Subscriptions
Operators
Read Privileges
Management Privileges
Operators That Control All Retailers
LDAP Model for Operators
Tools for Adding Subscribers and Subscriptions
Inheritance of Properties and Subscriptions
Encryption Methods for Passwords
Adding Subscribers
Adding Retailers
Retailer Fields
Assigning Service Scopes
Adding Subscriber Folders
Subscriber Folder Fields
Adding Residential Subscribers
Residential Subscriber Fields
Adding Enterprises
Enterprise Fields
Adding Sites
Site Fields
Adding Routers as Subscribers
Router Subscriber Fields
Adding Operators
Operator Fields
Configuring Subscriptions
Configuring Subscriptions to Value-Added Services
Value-Added Subscription Fields
Allowing Multiple Subscriptions per Subscriber
Configuring Subscriptions to Outsourced Services
Outsource Service Subscription Fields
Configuring Access Subscriptions
Access Subscription Fields
Configuring RADIUS Subscriptions
RADIUS Subscription Fields
Configuring Substitutions for Subscriptions
Adding Substitutions
Substitutions to a Transmission Rate for a Scheduled Action
Modifying Substitutions
Validating Substitutions
Deleting Substitutions
Modifying and Deleting Subscribers and Subscriptions
Chapter: Redirecting Subscriber Traffic
[PDF 61 KB]
Overview of Traffic Redirection
Proxy Request Management
HTTP Proxy and DNS
Redirect Server Redundancy
Before You Configure Redundancy for the Redirect Server
Protection Against Denial-of-Service Attacks
Chapter: Configuring Traffic Redirection with the SRC CLI
[PDF 130 KB]
Configuration Statements for the Redirect Server with the SRC CLI
Before You Configure the Redirect Server on a C-Series Controller
Configuring the Redirect Server with the SRC CLI
Configuring General Properties for the Redirect Server with the SRC CLI
Configuring a Connection Between the Redirect Server and the Directory with the SRC CLI
Defining Traffic to Transmit to the Redirect Server with the SRC CLI
Changing the Number of Requests That the Redirect Server Accepts with the SRC CLI
Specifying Extensions for Files That the Redirect Server Accepts with the SRC CLI
Verifying Configuration for the Redirect Server with the SRC CLI
Configuring the DNS Server for the Redirect Server with the SRC CLI
Configuring the Redirect Server to Support HTTP Proxies with the SRC CLI
Configuring a Redundant Redirect Server with the SRC CLI
Configuring Logging for the Redirect Server
Changing the Configuration for the Redirect Server
Assessing Load for Redirect Server with the SRC CLI
Chapter: Configuring Traffic Redirection on a Solaris Platform
[PDF 107 KB]
Installing the Redirect Server
Configuration Overview for Redirect Server
Configuring IP Filter
Example: Creating a Rule to Redirect Traffic to a Different Port Number
Example: Creating a Rule to Redirect Unauthorized Traffic
Configuring Redirect Server from the redir.properties File
Configuration Properties for the Redirect Server
Configuring Logging for Redirect Server
Changing the Configuration for Redirect Server
Chapter: Reviewing and Configuring Policies and Services for Enterprise Manager Portal
[PDF 207 KB]
Overview of Services for Enterprise Manager Portal
Directory Structure
Priorities for Subscriptions
Before You Configure Services for Enterprise Manager Portal
Configuring Firewall Policies and Services for Enterprise Manager Portal
Overview of Basic Firewall Services and Policies
Tasks to Configure Firewall Policies and Services
Configuring Basic Firewall Policies
Configuring Basic Firewall Services
Reviewing the fwrule Policy Group for Exceptions to Stateful Firewalls
Reviewing the Firewall Rule Service for Exceptions to Stateful Firewalls
Reviewing Services for Exceptions to Stateless Firewalls
Parameter Values Used by Services for Exceptions to Stateless Firewalls
Planning Services for Custom Firewall Exceptions
Configuring Policies for Custom Firewall Exceptions
Configuring Services for Custom Firewall Exceptions
Configuring Priorities for Stateless or Stateful Firewall Services
Configuring Priorities to Have Enterprise Services Work Together
Configuring Global Priority Ranges from Policy Editor
Configuring Global Priority Ranges from SDX Admin
Configuring Priorities for Individual Scopes by Defining Them in Services
Using Stateless Firewall and BoD Applications Together
Configuring NAT Policies and Services for Enterprise Manager Portal
Configuring the dynsrcnat Policy Group
Reviewing the DynSrcNat Service
Configuring the staticdstnat Policy Group
Configuring the StaticDstNat Service
Configuring the staticsrcnat Policy Group
Configuring the StaticSrcNat Service
Configuring Bandwidth Policies and Services for Enterprise Manager Portal
Parameter Values Used by BoD Services
Bandwidth Policies for Different Routing Platforms
Configuring Basic BoD Policies
Configuring Basic BoD Services
Configuring BoD Policies
Configuring BoD Services
Using BoD Services to Assign Traffic to Bandwidth Categories
Using BoD and Basic BoD Services Together to Supply Class of Service
Setting Up Forwarding Preferences—Example 1
Setting Up Forwarding Preferences—Example 2
Enabling Schedules for Subscriptions for Enterprise Manager Portal
Configuring VPNs for Enterprise Manager Portal
Before You Configure VPN Policies and Services
Configuring Policies for BoD Traffic Destined for VPNs
Configuring Services for BoD Traffic Destined for VPNs
Billing Subscribers Through SCU/DCU for JUNOS Routing Platforms
Chapter: Adding VPNs from JUNOS Routing Platforms with the SRC CLI
[PDF 75 KB]
Before You Add a JUNOS VPN to the SRC Configuration
Configuring VPNs to Integrate into an SRC Network
Configuration Statements for Adding VPNs and Extranet Clients
Adding VPNs for Retailers and Enterprises
Verifying and Updating Configuration of Extranets for VPNs
Chapter: Adding VPNs from JUNOS Routing Platforms
[PDF 121 KB]
Overview of VPNs in the SRC Network
Implementing a Routing Scheme for VPNs
Configuring VPNs to Integrate into an SRC Network
Adding VPNs with SDX Admin
VPN Fields
Modifying VPNs
Adding Extranet Clients to VPNs
Removing Extranet Clients
Locating and Removing Inactive Subscriptions to a VPN
Deleting VPNs from the Directory
Chapter: Overview of Enterprise Service Portals
[PDF 96 KB]
Function of Enterprise Service Portals
Consistency of Data in the Directory
Privileges of IT Managers
Developing and Customizing Enterprise Service Portals
Identifying the SAE
Enterprise Service Portals Provided with the SRC Software
Sample Enterprise Service Portal
Enterprise Manager Portal
NAT Address Management Portal
Enterprise Service Portal Audit Plug-In
Network Information Collector with Enterprise Service Portals
Service Parameters
Substitutions and the Parameter Acquisition Path
Power of Substitutions
Substituting Values for Policy Parameters
Managing Subscriptions to Aggregate Services
Configuring Your Web Browser to Use an Enterprise Service Portal
Accessing Enterprise Service Portals
Chapter: Planning Deployment for Enterprise Service Portals
[PDF 78 KB]
Architecture of Enterprise Service Portals
Elements for an Enterprise Service Portal
Communication Protocols
Deployment Scenario for an Enterprise Service Portal
Deciding Which Enterprise Service Portal to Use
Planning Number of Instances of an Enterprise Service Portal
Planning Namespace Hierarchy for an Enterprise Service Portal
Chapter: Installing and Configuring Enterprise Service Portals
[PDF 129 KB]
Before You Install an Enterprise Service Portal
Installing Enterprise Service Portals
Preparing the Web Applications for Customization
Configuring Connections to the Directory
Initialization Properties for Enterprise Service Portals
Configuring Deployment Settings for Enterprise Manager Portal
Deployment Properties for Enterprise Manager Portal
Deploying the Enterprise Service Portals
Configuring the URL for an Enterprise Service Portal
Writing an Application to Allow a Machine to Provide Public IP Addresses for NAT
Configuring an Enterprise Service Portal Audit Plug-In
Chapter: Managing Enterprise Service Portals
[PDF 92 KB]
Displaying Information About Your Control in the Enterprise
Updating Data That the Enterprise Service Portal Displays
Managing Operators
Creating Managers
Managers Fields
Modifying Managers
Deleting Managers
Chapter: Managing Services with Enterprise Manager Portal
[PDF 769 KB]
Overview of Enterprise Manager Portal
Getting Help on Enterprise Manager Portal
Setting the Configuration Level for Enterprise Manager Portal
Managing Schedules
Creating a Schedule
Applying a Schedule to a Service
Disabling a Schedule for a Service
Changing Schedules
Managing Subscriptions to Bandwidth-on-Demand Services
Planning Subscriptions to BoD Services
Creating a Subscription to BoD Services
Setting a Bandwidth Level
Adding Subscriptions to BoD Services
Modifying Rules for a Subscription to a BoD Service
Modifying the Bandwidth Level
Moving the Bandwidth Level
Deleting a Subscription for a BoD Service
Deleting the Bandwidth Level
Monitoring Use of Subscriptions to BoD Services
Integrating VPNs into an SRC Network
Modifying Subscriber VPN Configuration
Creating Extranets
Deleting Extranets
Sending Traffic to a VPN
Modifying the VPN to Which the Router Sends Traffic
Stopping the Router from Sending Traffic to VPNs
Classifying Traffic for Stateful Firewall Exceptions and NAT Rules
Classifying Traffic
Modifying Values for Traffic Classifications
Deleting Traffic Classifications
Subscribing to Firewall Services
Before You Configure Firewall Exception Rules
Creating Subscriptions to Firewall Services
Creating Firewall Exceptions for Stateless Firewalls
Creating Firewall Exceptions for Stateful Firewalls
Adding a Schedule to a Firewall Exception
Modifying Firewall Exceptions
Deleting Firewall Exceptions
Deleting Basic Firewalls
Monitoring the Use of Subscriptions to Firewall Services
Working with IP Addressing and NAT Services
Requesting Public IP Addresses for NAT Services
Canceling Requests for Public IP Addresses
Returning Public IP Addresses to Service Providers
Applying NAT Rules to Traffic
Configuring Public IP Addresses for Outgoing Traffic
Configuring Public IP Addresses for Incoming Traffic
Configuring Fixed Public Addresses for Outgoing Traffic
Modifying NAT Rules
Deleting NAT Rules
Monitoring the Status of Subscriptions
Troubleshooting Subscriptions That Are Not Functioning Correctly
Troubleshooting Subscriptions of Unknown Status
Chapter: Using NAT Address Management Portal
[PDF 66 KB]
Overview of NAT Address Management Portal
Assigning IP Addresses
Acknowledging the Release of IP Addresses
Chapter: Using the Sample Enterprise Service Portal
[PDF 154 KB]
Overview of the Sample Enterprise Service Portal
Starting the Sample Enterprise Service Portal
Subscribing to Services
Activating Subscriptions
Deactivating Subscriptions
Suspending Subscriptions
Canceling Suspensions of Subscriptions
Monitoring Use of Subscriptions
Specifying Values for Service Parameters in Subscriptions
Restoring Default Values for Service Parameters In Subscriptions
Deleting Subscriptions
Monitoring Service Sessions for a Subscription
Defining Networks for Departments in an Enterprise
Modifying Network Definitions for Departments in an Enterprise
Deleting Network Definitions for Departments in an Enterprise
Chapter: Developing an Enterprise Service Portal
[PDF 65 KB]
Developing a Portal Based on the Sample Enterprise Service Portal
Preparing to Develop a Sample-Based Enterprise Service Portal
Creating a Portal Project for a Sample-Based Enterprise Service Portal
Building a Sample-Based Enterprise Service Portal
Deploying a Sample-Based Enterprise Service Portal
Testing a Sample-Based Enterprise Service Portal
Using a Virtual Address for the Portal
Chapter: Index