Configuring a Router



Similar documents
ENetwork Basic Configuration PT Practice SBA

3.1 Connecting to a Router and Basic Configuration

Applicazioni Telematiche

APNIC Members Training Course Security workshop. 2-4 July, Port Vila Vanuatu. In conjunction with PACNOG 4

Lab Introductory Lab 1 - Getting Started and Building Start.txt

- Basic Router Security -

Lab Introductory Lab 1 Getting Started and Building Start.txt

Cisco Router Configuration Basics. Scalable Infrastructure Workshop

Lab Review of Basic Router Configuration with RIP. Objective. Background / Preparation. General Configuration Tips

Lab 5.3.9b Managing Router Configuration Files Using TFTP

Lab Advanced Telnet Operations

ICND1 Lab Guide Interconnecting Cisco Networking Devices Part 1 Version 2.0. Labs powered by

Connect the Host to attach to Fast Ethernet switch port Fa0/2. Configure the host as shown in the topology diagram above.

LAB MANUAL for Computer Network

Lab: Basic Router Configuration

Chapter 8 Lab B: Configuring a Remote Access VPN Server and Client

Lab Load Balancing Across Multiple Paths

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

Angelos Stavrou. OF COURSE there is no Magic so lets see show things work in practice...

Objectives. Router as a Computer. Router components and their functions. Router components and their functions

Lab Configuring Basic Router Settings with the Cisco IOS CLI

Configuring a Cisco 2509-RJ Terminal Router

Skills Assessment Student Training Exam

Lab Load Balancing Across Multiple Paths Instructor Version 2500

Objectives. Background. Required Resources. CCNA Security

Lab 8.3.3b Configuring a Remote Router Using SSH

PT Activity: Configure Cisco Routers for Syslog, NTP, and SSH Operations

Telnet, Console and AUX Port Passwords on Cisco Routers Configuration Example

Lab Configure Basic AP Security through IOS CLI

LAB Configuring NAT. Objective. Background/Preparation

Experts in Networking. CCNA Cheat Sheet. This CCNA command cheat sheet covers both ICND parts 1 & 2 and covers the current CCNA exam ( ).

Lab Configuring Basic Router Settings with the Cisco IOS CLI

Cisco Router Configuration Tutorial

Lab 8.4.3a Managing Cisco IOS Images with TFTP

Introduction to Routing and Packet Forwarding. Routing Protocols and Concepts Chapter 1

Lab Configuring Syslog and NTP (Instructor Version)

Password Recovery Procedure for the Cisco 3600 and 3800 Series Routers

Lab Creating a Network Map using CDP Instructor Version 2500

Lab Diagramming External Traffic Flows

Device Interface IP Address Subnet Mask Default Gateway

Basic Software Configuration Using the Cisco IOS Command-Line Interface

Lab Configuring DHCP with SDM and the Cisco IOS CLI

Routing Protocols and Concepts Chapter 2 Conceitos de protocolos de Encaminhamento Cap 2

Lab Configuring PAT with SDM and Static NAT using Cisco IOS Commands

Lab 3 Routing Information Protocol (RIPv1) on a Cisco Router Network

Procedure: You can find the problem sheet on Drive D: of the lab PCs. Part 1: Router & Switch

Password Recovery Procedure for the Cisco 806, 826, 827, 828, 831, 836, 837 and 881 Series Routers

How to Configure Cisco 2600 Routers

Basic Configuration of the Cisco Series Internet Router

Lab 8.4.3b Managing Cisco IOS images with ROMMON and TFTP

HOW TO CONFIGURE CISCO FIREWALL PART I

AN ANALYTICAL STUDY OF INTERNET AND INTRANET CONNECTIONS AND CONFIGURATIONS IN ISP

RIPv2 with Variable Length Subnet Masks (VLSMs)

- The PIX OS Command-Line Interface -

Lab 3.5.1: Basic VLAN Configuration (Instructor Version)

Router Lab Reference Guide

LAB THREE STATIC ROUTING

1 Basic Configuration of Cisco 2600 Router. Basic Configuration Cisco 2600 Router

Configuring Basic Settings

Welcome to Todd Lammle s CCNA Bootcamp

Cisco CCNA Optional Semester 4 Labs Wide Area Networking LAB 1 T1 TSU WAN LINK OVERVIEW - Instructor Guide (Estimated time: 30 minutes)

Configuring Basic Settings

LAN-Cell to Cisco Tunneling

Configuring the MNLB Forwarding Agent

Lab Diagramming Intranet Traffic Flows

CISCO CATALYST 3550 Series Switches

Cisco Configuration Professional Quick Start Guide

Document ID: Introduction

Configuring a Leased Line

Password Recovery Procedure for the Cisco 2900 Series Integrated Services Router

Lab - Using IOS CLI with Switch MAC Address Tables

Lab 2 - Basic Router Configuration

CCNA Discovery Working at a Small to Medium Business or ISP Student Packet Tracer Lab Manual


Password Recovery Procedure for the Cisco Catalyst 2948G L3, 4840G, and 4908G L3 Switch Routers

Lab Creating a Logical Network Diagram

- Advanced IOS Functions -

CCNA2 Chapter 11 Practice

Lab Developing ACLs to Implement Firewall Rule Sets

How To Configure A Cisco Router With A Cio Router

Lab Configuring OSPF with Loopback Addresses

CCBOOTCAMP s Comprehensive ICND2 Study Guide With Sample Questions

IST 220 Honors Project. Subnets with Variable Length Subnet Masks

Comware versus Cisco IOS Command Guide

Lab Configure IOS Firewall IDS

Basic Router and Switch Instructions (Cisco Devices)

Introduction to Cisco router configuration

Connecting to the Firewall Services Module and Managing the Configuration

ICND1 Lab Guide Interconnecting Cisco Networking Devices Part 1 Version: Beta. Labs powered by

GLBP - Gateway Load Balancing Protocol

CCNA Exploration Routing Protocols and Concepts Student Lab Manual

CCNA Exploration 4.0: (II) Routing Protocols and Concepts. Chapter 1: Introduction to Routing and Packet Forwarding

Table of Contents. Configuring IP Access Lists

Savvius Insight Initial Configuration

VoIP Lab: Cisco CallManager Express, Temporary Work Instructions

Lab Use Network Inspector to Observe STP Behavior

Lab Organizing CCENT Objectives by OSI Layer

Chapter 7 Troubleshooting

LAB II: Securing The Data Path and Routing Infrastructure

Transcription:

CHAPTER 3 Configuring a Router This chapter provides information and commands concerning the following topics: Configuring a router, specifically: Names Passwords Interfaces MOTD banners IP host tables Saving and erasing your configurations show commands to verify the router configurations Router Modes PART II CCNA 2 Router> Router# Router(config)# Router(config-if)# Router(config-subif)# Router(config-line)# Router(config-router)# User Privileged Global configuration Interface Subinterface Line Router configuration TIP: There are other s than these. Not all commands work in all s. Be careful. If you type in a command that you know is correct show run, for example and you get an error, make sure that you are in the correct.

18 Configuring Passwords Global Configuration Mode Router> Router# Router#config t Router(config)# Can see config, but not change Can see config and move to make changes Moves to global config This prompt indicates that you can start making changes Configuring a Router Name This command works on both routers and switches. Router(config)#hostname Cisco Name can be any word you choose Cisco(config)# Configuring Passwords Works on both routers and switches. Router(config)#enable password cisco Sets enable password Router(config)#enable secret class Sets enable secret password Router(config)#line con 0 Router(config-line)#password console Router(config-line)#login Enters console-line Sets console-line password to console Enables password checking at login Router(config)#line vty 0 4 Router(config-line)#password telnet Router(config-line)#login Enters vty line for all 5 vty lines Sets vty password to telnet Enables password checking at login

show Commands 19 Router(config)#line aux 0 Router(config-line)#password backdoor Router(config-line)#login Enters auxiliary line Sets auxiliary line password to backdoor Enables password checking at login CAUTION: Enable secret password is encrypted by default. Enable password is not. For this reason, recommended practice is that you never use the enable password. Use only the enable secret password in a router configuration. CAUTION: You cannot set both enable secret and enable password to the same password. Doing so defeats the use of encryption. Password Encryption Router(config)#service passwordencryption Router(config)#enable password cisco Router(config)#line con 0 Router(config-line)#password Cisco Applies a weak encryption to passwords Sets enable password to cisco Continue setting passwords as above Router(config)#no service passwordencryption Turns off password encryption CAUTION: If you have turned on service password encryption, used it, and then turned it off, any passwords that you have encrypted will stay encrypted. New passwords will remain unencrypted show Commands Router#show? Router#show interfaces Router#show interface serial 0 Router#show ip interface brief Lists all show commands available Displays statistics for all interfaces Displays statistics for a specific interface, in this case Serial 0 Displays a summary of all interfaces, including status and IP address assigned

20 Interface Names Router#show controllers serial 0 Router#show clock Router#show hosts Router#show users Router#show history Router#show flash Router#show version Router#show arp Router#show protocols Router#show startup-config Router#show running-config Displays statistics for interface hardware. Statistics display if the clock rate is set and if the cable is DCE, DTE, or not attached Displays time set on device Displays local host-to-ip address cache. These are the names and addresses of hosts on the network to which you can connect Displays all users connected to device Displays history of commands used Displays info about Flash memory Displays info about loaded software version Displays the ARP table Displays status of configured Layer 3 protocols Displays configuration saved in NVRAM Displays configuration currently running in RAM Interface Names One of the biggest problems that new administrators face is the names of the interfaces on the different ls of routers. The following chart lists the names of the Ethernet, Fast Ethernet, and Serial interfaces on the 2500, 1700, and 2600 series of routers. Fixed Interfaces (2500 Series) Router(config)#int erface type port Router(config)#int serial0 (s0) Router(config)#int ethernet 0 (e0) Modular (Removable) Interfaces (1700 Series) Router(config)#interf ace type port Router(config)#interf ace serial 0 Router(config)#interf ace fastethernet 0 Modular (Removable) Interfaces (2600 Series) Router(config)#interface type slot/port Router(config)#int serial 0/0 (s0/0) Router(config)#int fastethernet 0/0 (fa0/0)

Configuring an Ethernet/Fast Ethernet Interface 21 Moving Between Interfaces What happens in Column 1 is the same thing as is occurring in Column 2. Router(config)#int s0 Router(config)#int s0 Moves to interface S0 Router(config-if)#exit Router(config-if)#int e0 In int S0, move to E0 Router(config)#int e0 Router(config-if)# In E0 now Router(config-if)# Prompt does not change; be careful Configuring a Serial Interface Router(config)#int s0/0 Moves to interface Serial 0/0 Router(config-if)#description Link to ISP Router(config-if)#ip address 192.168.10.1 255.255.255.0 Router(config-if)#clock rate 56000 Router(config-if)#no shut Optional descriptor of the link is locally significant Assigns address and subnet mask to interface Assigns a clock rate for the interface Turns interface on TIP: The clock rate command is used only on a serial interface that has a DCE cable plugged into it. There must be a clock rate set on every serial link between routers. It does not matter which router has the DCE cable plugged into it, or which interface the cable is plugged into. Serial 0 on one router can be plugged into Serial 1 on another router. Configuring an Ethernet/Fast Ethernet Interface Router(config)#int fa0/0 Moves to Fast Ethernet 0/0 interface Router(config-if)#description Accounting LAN Optional descriptor of the link is locally significant

22 Assigning a Local Host Name to an IP Address Router(config-if)#ip address 192.168.20.1 255.255.255.0 Router(config-if)#no shut Assigns address and subnet mask to interface Turns interface on Creating a MOTD Banner Router(config)#banner motd # This is a secure system. Authorized Personnel Only! # Router(config)# # is known as a delimiting character. The delimiting character must surround the banner message and can be any character so long as it is not a character used within the body of the message Setting the Clock Time Zone Router(config)#clock timezone EST 5 Sets the time zone for display purposes. Based on coordinated universal time (Eastern Standard Time is 5 hours behind UTC) Assigning a Local Host Name to an IP Address Router(config)#ip host london 172.16.1.3 Assigns a host name to the IP address. After this assignment, you can use the host name instead of an IP address when trying to Telnet or ping to that address Router#ping london = Router#ping 172.16.1.3 TIP: The default port number in the ip host command is 23, or Telnet. If you want to Telnet to a device, just enter the IP host name itself: Router#london = Router#telnet london = Router#telnet 172.16.1.3

exec-timeout Command 23 no ip domain-lookup Command Router(config)#no ip domain-lookup Router(config)# Turns off trying to automatically resolve an unrecognized command to a local host name TIP: Ever type in a command incorrectly and left having to wait for a minute or two as the router tries to translate your command to a domain server of 255.255.255.255? The router is set by default to try to resolve any word that is not a command to a DNS server at address 255.255.255.255. If you are not going to set up DNS, turn this feature off to save you time as you type, especially if you are a poor typist. logging synchronous Command Router(config)#line con 0 Router(config-line)#logging synchronous Turns on synchronous logging. Information items sent to console will not interrupt the command you are typing. The command will be moved to a new line TIP: Ever try to type in a command and an informational line appears in the middle of what you were typing? Lose your place? Do not know where you are in the command, so you just press and start all over? The logging synchronous command will tell the router that if any informational items get displayed on the screen, your prompt and command line should be moved to a new line, so as not to confuse you. The informational line does not get inserted into the middle of the command you are trying to type. If you were to continue typing, the command would execute properly, even though it looks wrong on the screen exec-timeout Command Router(config)#line con 0 Router(config-line)#exec-timeout 0 0 Sets time limit when console automatically logs off. Set to 0 0 (minutes seconds) means console never logs off Router(config-line)#

24 Configuration Example: Basic Router Configuration TIP: exec-timeout 0 0 is great for a lab because the console never logs out. This is very dangerous in the real world (bad security). Saving Configurations Router#copy run start Router#copy run tftp Saves the running-config to local NVRAM Saves the running-config remotely to TFTP server Erasing Configurations Router#erase start Deletes the startup-config file from NVRAM TIP: Running-config is still in dynamic memory. Reload the router to clear the running-config. Configuration Example: Basic Router Configuration Figure 3-1 shows the network topology for the configuration that follows, which shows a basic router configuration using the commands covered in this chapter. Figure 3-1 Network Topology for Basic Router Configuration 172.16.10.10 s0/0 172.16.30.30 172.16.10.1 172.16.20.1 172.16.30.1 fa0/0 s0/1 fa0/0 DCE Boston 172.16.20.2 Buffalo Network 172.16.10.0/24 Network 172.16.20.0/24 Network 172.16.30.0/24 Boston Router Router>en Router#clock set 18:30:00 15 Nov 2004 Router#config t Enters privileged Sets local time on router Enters global config

Configuration Example: Basic Router Configuration 25 Router(config)#hostname Boston Boston(config)#no ip domain-lookup Boston(config)#banner motd # This is the Boston Router. Authorized Access Only # Boston(config)#clock timezone EST 5 Boston(config)#enable secret cisco Boston(config)#service password-encryption Boston(config)#line con 0 Boston(config-line)#logging sync Boston(config-line)#password class Boston(config-line)#login Sets router name to Boston Turns off name resolution on unrecog-nized commands (spelling mistakes) Creates an MOTD banner Sets time zone to Eastern Standard Time ( 5 from UTC) Enable secret password set to cisco Passwords will be given weak encryption Enters line console Commands will not be interrupted by unsolicited messages Sets password to class Enables password checking at login Boston(config-line)#line vty 0 4 Moves to virtual Telnet lines 0 through 4 Boston(config-line)#password class Boston(config-line)#login Boston(config-line)#line aux 0 Boston(config-line)#password class Boston(config-line)#login Boston(config-line)#exit Sets password to class Enables password checking at login Moves to line auxiliary Sets password to class Enables password checking at login Moves back to global config

26 Configuration Example: Basic Router Configuration Boston(config)#no service passwordencryption Turns off password encryption Boston(config)#int fa 0/0 Moves to Fast Ethernet 0/0 Boston(config-if)#desc Engineering LAN Boston(config-if)#ip address 172.16.10.1 255.255.255.0 Boston(config-if)#no shut Sets locally significant description of the interface Assigns IP address and subnet mask to the interface Turns on the interface Boston(config-if)#int s0/0 Moves directly to Serial 0/0 Boston(config-if)#desc Link to Buffalo Router Boston(config-if)#ip address 172.16.20.1 255.255.255.0 Boston(config-if)#clock rate 56000 Boston(config-if)#no shut Boston(config-if)#exit Boston(config)#ip host buffalo 172.16.20.2 Boston(config)#exit Boston#copy run start Sets locally significant description of the interface Assigns IP address and subnet mask to the interface Sets a clock rate for serial transmission (DCE cable must be plugged into this interface) Turns on the interface Moves back to global config Sets a local host name resolution to IP address 172.16.20.2 Moves back to privileged Saves running-config to NVRAM

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information