Table 25: Mapping the Chassis Cluster Ports on a J-SRX100 ServicesGatewayManagement InterfaceFE Ports on J-SRX100 Services Gatewayfxp0 (management port)fe-0/0/6fxp1 (control port)fe-0/0/7Junos OS automatically creates the fxp0 and fxp1 interfaces on these ports when theJ-SRX100 Services Gateway is operating in chassis cluster mode.For more information, see the following guides:• Junos OS Interfaces and Routing Configuration Guide• Junos OS Security Configuration GuideUnderstanding Management AccessTelnet allows you to connect to the services gateway and access the CLI to executecommands from a remote system. The Telnet CLI connections are not encrypted andtherefore can be intercepted.NOTE: Telnet access to the root user is prohibited. You must use more securemethods, such as SSH, to log in as root.SSH provides the following features:• Allows you to connect to the device and access the CLI to execute commands from aremote system• Encrypts traffic so that it cannot be intercepted (unlike Telnet)• Can be configured so that connections are authenticated by a digital certificate• Uses public–private key technology for both connection and authenticationThe SSH client software must be installed on the machine where the client applicationruns. If the SSH private key is encrypted (for greater security), the SSH client must beable to access the passphrase used to decrypt the key.For information about obtaining SSH software, see http://www.ssh.com andhttp://www.openssh.com.If you are using a JUNOScript server to configure and monitor devices, you can activatecleartext access on the device to allow unencrypted text to be sent directly over aTransmission Line Protocol (TCP) connection without using any additional protocol(such as SSH, SSL, or Telnet). For more information about the JUNOScript applicationprogramming interface (API), see the Junos OS JUNOScript API Guide.73Chapter 13: Performing Initial Software Configuration on the J-SRX100 Services Gateway