Cisco router configuration AFNOG 2002 / track 2 # 1 Cisco Router Configuration Basics.

Slides:



Advertisements
Similar presentations
Basic IP Traffic Management with Access Lists
Advertisements

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Introducing ACLs.
Cisco Router. Overview Understanding and configuring the Cisco Internetwork Operating System (IOS) Connecting to a router Bringing up a router Logging.
1 CCNA 2 v3.1 Module 3. 2 CCNA 2 Module 3 Configuring a Router.
WXES2106 Network Technology Semester /2005 Chapter 10 Access Control Lists CCNA2: Module 11.
Introduction to the Cisco IOS
CCNA Guide to Cisco Networking Fundamentals Fourth Edition
CCNA 2 v3.1 Module 2.
Chapter 9 Managing a Cisco Internetwork Cisco Router Components Bootstrap - Brings up the router during initialization POST - Checks basic functionality;
Implementing Standard and Extended Access Control List (ACL) in Cisco Routers.
CCNA2 Routing Perrine modified by Brierley Page 18/6/2015 Module 11 Access Control Non e0e1 s server.
Cisco Devices CONFIGURING CISCO SWITCH AND ROUTER.
Cisco Router Configuration Basics Nishal Goburdhan.
1 Configuring Cisco Routers Relates to Lab 3.. Router Components Bootstrap – stored in ROM microcode – brings router up during initialization, boots router.
Cisco Router Configuration Basics Scalable Infrastructure Workshop.
Cisco router configuration NTW2000 / track 2 # 1 cisco router configuration basics.
Cisco Router Configuration AfNOG 2003 / Track 2 # 1 Cisco Router Configuration Basics Presented By Mark Tinka (Uganda)
Host-based Internetworking, Tuesday, 15 June ´99 INET ‘99 Network Training Workshop 1/11 IP Forwarding With Cisco Routers Lab Exercises.
IST 228\Ch4\Cisco IOS1 What we will be able to do?
Sybex CCNA Chapter 7: Managing a Cisco Internetwork Instructor & Todd Lammle.
Introduction to OSPF Campus Networking Workshop These materials are licensed under the Creative Commons Attribution-Noncommercial 3.0 Unported license.
Routers A router is a computer Computers have four basic components:
1 Semester 2 Module 3 Configuring a Router Yuda college of business James Chen
Cisco Router MODES Configuration Prompt Interface Router(config-if)#
© Wiley Inc All Rights Reserved. CCNA: Cisco Certified Network Associate Study Guide CHAPTER 9: Managing a Cisco Internetwork.
CISCO ROUTER.  The Cisco router IOS  Enhanced editing  Administrative functions  Hostnames  Banners  Passwords  Interface descriptions  Verifying.
Chapter 6 Router Configuration Sem 2V2. Configuration files can come from the console NVRAM TFTP server. The router has several modes:  privileged mode.
© 2002, Cisco Systems, Inc. All rights reserved..
Chapter 2: Basic Router Configuration
© Wiley Inc All Rights Reserved. CHAPTER 4: Introduction to the Cisco IOS CCNA: Cisco Certified Network Associate Study Guide.
Instructor & Todd Lammle
Instructor & Todd Lammle
1 Data Forwarding Basic Router Configuration. Overview In this session, we sill be looking at  Review : router backplane Ethernet, console and serial.
Access Control Lists (ACLs)
2002 Networking Operating Systems (CO32010) 1. Operating Systems 2. Processes and scheduling 3.
Basic Router Configuration 1.1 Global configuration Cisco allows us to configure the router to support various protocols and interfaces. The router stores.
Configuring a Router. Router user interface The Cisco IOS software uses a command-line interface (CLI) as the traditional console environment. This environment.
Access Control List ACL’s 5/26/ What Is an ACL? An ACL is a sequential collection of permit or deny statements that apply to addresses or upper-layer.
1 What Are Access Lists? –Standard –Checks Source address –Generally permits or denies entire protocol suite –Extended –Checks Source and Destination address.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Filtering Traffic Using Access Control Lists Introducing Routing and Switching.
Release 16/07/2009Jetking Infotrain Ltd. Basic Router Configuration Chapter 5.
Page 1 Chapter 11 CCNA2 Chapter 11 Access Control Lists : Creating ACLs, using Wildcard Mask Bits, Standard and Extended ACLs.
Module 3 Configuring a Router.
Static Routing Exercise
Router Fundamentals PJC CCNA Semester 2 Ver. 3.0 by William Kelly.
Sybex CCNA Chapter 6: Cisco’s IOS Instructor & Todd Lammle.
Routers and Routing Basics CCNA 2 Chapter 3 1.
Will learn to use router modes and configuration methods to update a router's configuration file with current and prior versions of Cisco Internetwork.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Filtering Traffic Using Access Control Lists Introducing Routing and Switching.
Configuration Modes and TFTP Honolulu Community College Cisco Academy Training Center Semester 2 Version 2.1.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Router Initialization steps.
CN2668 Routers and Switches Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+
Configuring a Router MM Clements. Copyright This Week Command line interface Router configuration Modes for configuration Interface.
Static Routing Exercise AFNOG 2002 / track 2 # 1 Static Routing Exercise u Unix network interface configuration u Cisco network interface configuration.
CCNA4 Perrine / Brierley Page 12/20/2016 Chapter 05 Access Control Non e0e1 s server.
2016/2/211 資訊網路專題 Router & Practice. 2016/2/212 Router Basics Computers have four basic components: a CPU, memory, interfaces, and a bus. –A router also.
Cisco router configuration basics. overview router configuration controls the operation of the router: interface address and netmask routing information.
Cisco S2 C6 Router Configuration 1. Router Boot Up Router uses following from config-startup when it boots –Cisco IOS software version –Router identification.
Cisco 2 - Routers Perrine. J Page 13/7/2016 Chapter 3 Cisco Router Modes ConfigurationPrompt InterfaceRouter(config-if)# LineRouter(config-line)# RouterRouter(config-router)#
Configuring a Router Module 3 Semester 2. Router Configuration Tasks Name a router Set passwords Examine show commands Configure a serial interface Configure.
1 21-Mar-16 Configuring and testing CCNA Exploration Semester 1 Chapter 11.
CHAPTER 3 Router CLI Command Line Interface. Router User Interface User and privileged modes User mode --Typical tasks include those that check the router.
Introduction to networking (Yarnfield) Configure a router.
Introduction to Cisco IOS -(Internetwork Operating System)
Instructor & Todd Lammle
Configuring a Router Module 3 Semester 2.
Introduction to Cisco IOS -(Internetwork Operating System)
Lecture9: Embedded Network Operating System: cisco IOS
Lecture9: Embedded Network Operating System: cisco IOS
Presentation transcript:

cisco router configuration AFNOG 2002 / track 2 # 1 Cisco Router Configuration Basics

cisco router configuration AFNOG 2002 / track 2 # 2 router components äLike a computer they are composed of –Operating System - IOS –Micro Processor to run the IOS –RAM main storage, dynamic configuration –NVRAM to store instruction for performing the self test of the device, backup of config –Flash memory: erasable ROM, contain copy of IOS

cisco router configuration AFNOG 2002 / track 2 # 3 system startup äPOST -> diagnostic on all ROM on all modules äconfiguration -> check and load IOS äload configuration files stored in NVRAM

cisco router configuration AFNOG 2002 / track 2 # 4 overview ärouter configuration controls the operation of the router: äinterface address and netmask ärouting information (static or dynamic) äbooting and startup information äsecurity (passwords)

cisco router configuration AFNOG 2002 / track 2 # 5 where is the configuration? ärouter always has two configurations: ärunning configuration äin RAM, determines how the router is currently operating  is changed by using the configuration command  to see it: show running ästartup confguration äin NVRAM, determines how the router will operate after next reload  is changed using the copy command  to see it: show startup

cisco router configuration AFNOG 2002 / track 2 # 6 where is the configuration? äcan also be stored in more permanent places: äexternal hosts, using TFTP to move it around äin flash memory in the router äcopy command is used to move it around copy run start copy run tftp copy start tftp copy tftp start copy flash start copy start flash

cisco router configuration AFNOG 2002 / track 2 # 7 external Configuration Sources äConsole/auxillary port ävirtual terminals - telnets äTFTP Server äNetwork Management Software

cisco router configuration AFNOG 2002 / track 2 # 8 changing the configuration äconfiguration statements can be entered interactively - changes are made (almost) immediately, to the running configuration äcan use direct serial connection to console port, or ätelnet to vty’s (“virtual terminals”), or ämodem connection to aux port

cisco router configuration AFNOG 2002 / track 2 # 9 changing configuration äor, edited in a text file and uploaded to the router at a later time via tftp; äsome configuration statements, especially access lists, are very difficult to work with interactively, so editing and uploading the file is the only practical way to work; äalso allows version control and auditing changes

cisco router configuration AFNOG 2002 / track 2 # 10 new router configuration process äload configuration parameters into RAM äpersonalize router identification äassign access passwords äconfigure interfaces äconfigure routing protocols äsave configuration parameters to NVRAM

cisco router configuration AFNOG 2002 / track 2 # 11 router modes äUser EXEC mode - limited examination of router –Router> äPrivileged EXEC mode - detailed examination of router, debugging, testing, file manipulation –Router# äROM Monitor - useful for password recovery äSetup Mode

cisco router configuration AFNOG 2002 / track 2 # 12 logging into the router äConnect router to console port or telnet to router –router> –router>enable –password –router# –router#? äConfiguring the router –Terminal (entering the commands directly) –router# configure terminal –router(config)# USER MODE PROMPT PRIVILEDGED MODE PROMPT

cisco router configuration AFNOG 2002 / track 2 # 13 configuring your router äSet the enable password: router(config)# enable password äIf you see in your config file, you will see that the enable password is displayed in clear text -- that is not safe, you have to encrypt it. router(config)# service password-encryption router(config)# enable secret "your pswd"(MD5 encryption) äTo configure interface you should go to interface config menu router(config) interface ethernet0 (or 0/x) router (config-if)# äSave your config uration router #copy running-config startup-config

cisco router configuration AFNOG 2002 / track 2 # 14 configuring your router äconfiguration statements have different contexts: äglobal: enable-password mysecret äinterface: interface ethernet0 ip address ärouter: router ospf 1 network area 0 äline: line vty 04

cisco router configuration AFNOG 2002 / track 2 # 15 global configuration äglobal configuration statements are independent of any particular interface or routing protocol, e.g.: hostname myrouter enable-password mysecret service password-encryption logging facility local0 logging

cisco router configuration AFNOG 2002 / track 2 # 16 global configuration äip-specific global configuration statements: ip classless ip name-server ästatic route creation: ip route

cisco router configuration AFNOG 2002 / track 2 # 17 interface configuration äinterfaces are named by type and position; e.g.: ethernet0, ethernet1,... ethernet5 serial0, serial1... serial3 äand can be abbreviated: ethernet0 or eth0 or e0 serial0 or ser0 or s0

cisco router configuration AFNOG 2002 / track 2 # 18 interface configuration äip address and netmask configuration, using interface commands (interactive configuration example, showing prompts): router#configure terminal router(config)#interface e0 router(config-if)#ip address router(config-if)#no shutdown router(config-if)#^Z router#

cisco router configuration AFNOG 2002 / track 2 # 19 interface configuration äadministratively enable/disable the interface router(config-if)#no shutdown router(config-if)#shutdown ädescription router(config-if)#description ethernet link to admin building router

cisco router configuration AFNOG 2002 / track 2 # 20 äCisco global config should always include: ip classless ip subnet-zero no ip domain-lookup äCisco interface config should usually include: no shutdown no ip proxy-arp no ip redirects

cisco router configuration AFNOG 2002 / track 2 # 21 looking at the configuration  use “show running-configuration” to see the current configuration  use “show startup-configuration” to see the configuration in NVRAM, that will be loaded the next time the router is rebooted or reloaded

cisco router configuration AFNOG 2002 / track 2 # 22 interactive configuration äenter configuration mode, using “configure term” äprompt gives a hint about where you are: router#configure term router(config)#ip classless router(config)#ip subnet-zero router(config)#int e3 router(config-if)#ip addr router(config-if)#no shut router(config-if)#^Z

cisco router configuration AFNOG 2002 / track 2 # 23 storing the configuration on a host  requires: `tftpd’ on a unix host; destination file must exist before the file is written and must be world writable... copy run tftp router#copy run tftp Remote host []? Name of configuration file to write [hostel-rtr-confg]? /usr/local/tftpd/hostel-rtr-confg Write file /usr/local/tftpd/hostel-rtr-confg on... host ? [confirm] Building configuration... Writing /usr/local/tftpd/hostel-rtr-confg !![OK]

cisco router configuration AFNOG 2002 / track 2 # 24 restoring the configuration from a host äuse ‘tftp’ to pull file from unix host, copying to running config or startup router#copy tftp start Address of remote host [ ]? Name of configuration file [hostel-rtr-confg]? Configure using hostel-rtr-confg from ? [confirm] Loading hostel-rtr-confg from (via Ethernet0): ! [OK / bytes] [OK] hostel-rtr# reload

cisco router configuration AFNOG 2002 / track 2 # 25 getting help äIOS has a built-in help facility; use “?” to get a list of possible configuration statements ä“?” after the prompt lists all possible commands: router#?  “ ?” lists all possible subcommands, e.g.: router#show ? router#show ip ?

cisco router configuration AFNOG 2002 / track 2 # 26 getting help ä“ ?” shows all possible command completions router#con? configure connect äthis is different: hostel-rtr#conf ? memory Configure from NV memory network Configure from a TFTP network host overwrite-network Overwrite NV memory from TFTP... network host terminal Configure from the terminal

cisco router configuration AFNOG 2002 / track 2 # 27 getting help äthis also works in configuration mode: router(config)#ip a? accounting-list accounting-threshold accounting-transits address-pool alias as-path router(config)#int e0 router(config-if)#ip a? access-group accounting address

cisco router configuration AFNOG 2002 / track 2 # 28 getting help äcan “explore” a command to figure out the syntax: router(config-if)#ip addr ? A.B.C.D IP address router(config-if)#ip addr ? A.B.C.D IP subnet mask router(config-if)#ip addr ? secondary Make this IP address a secondary address router(config-if)#ip addr router(config-if)#

cisco router configuration AFNOG 2002 / track 2 # 29 getting lazy help äTAB character will complete a partial word hostel-rtr(config)#int hostel-rtr(config)#interface et hostel-rtr(config)#interface ethernet 0 hostel-rtr(config-if)#ip add hostel-rtr(config-if)#ip address änot really necessary; partial commands can be used: router#conf t router(config)#int e0 router(config-if)#ip addr

cisco router configuration AFNOG 2002 / track 2 # 30 getting lazy äcommand history äIOS maintains short list of previously typed commands  up-arrow or ‘ ^p ’ recalls previous command  down-arrow or ‘^n’ recalls next command äline editing äleft-arrow, right-arrow moves cursor inside command  ‘^d’ or backspace will delete character in front of cursor

cisco router configuration AFNOG 2002 / track 2 # 31 Connecting your Freebsd machine to console äConnect your machine to the console port using the serial cable provide ägo to /etc/remote to see the device configured to be used with "tip”.you will see at the end, a line begin with cuaa0c… (you can change it to cisco) bash$ tip cuaa0c (or cisco) router> router>enable router#

cisco router configuration AFNOG 2002 / track 2 # 32 Exercise contd älook at your running configuration äConfigure an IP address for e0/0 depending on your table - use for table A etc älook at your running configuration and your startup configuration äwhat difference is there if any

cisco router configuration AFNOG 2002 / track 2 # 33 using access lists äAccess Control Lists used to implement security in routers –powerful tool for network control –filter packets flow in or out of router interfaces –restrict network use by certain users or devices –deny or permit traffic –operate in sequential, logical order - top down –goes down access list until match is found –inherent deny at the bottom of every list

cisco router configuration AFNOG 2002 / track 2 # 34 using access lists äStandard Access Lists (1 - 99) –simpler address specifications –generally permits or denies entire protocol suite äExtended Access Lists ( ) –more complex address specification –generally permits or denies specific protocols

cisco router configuration AFNOG 2002 / track 2 # 35 ACL format äStandard Access List Configuration format –access-list access-list-number {permit | deny} source {source-mask} –ip access-group access-list-number {in | out} äExtended Access List Configuration format –access-list access-list-number {permit | deny} protocol source {source-mask} destination {destination-mask} –ip access-group access-list-number {in | out}

cisco router configuration AFNOG 2002 / track 2 # 36 where to place IP access list äplace standard access list close to destination äplace extended access lists close to the source of the traffic you want to deny

cisco router configuration AFNOG 2002 / track 2 # 37 using access lists äRouter(config)#Access-list access-list-number {permit|deny}{test conditions} äRouter(config)#{protocol access-group access-list-number äe.g check for IP subnets to check 1111 ignore Address and Wilcard Mask:

cisco router configuration AFNOG 2002 / track 2 # 38 äwildcard bits indicate how to check corresponding address bit –0=check –1=ignore äMatching Any IP Address or abbreviate the expression using the keyword any äMatching a specific host or abbreviate the wildcard using the IP address preceded by the keyword host

cisco router configuration AFNOG 2002 / track 2 # 39 Permit telnet from my network only access-list 1 permit access-list 1 deny any line vty 0 4 access-class 1 in

cisco router configuration AFNOG 2002 / track 2 # 40 Standard Access Lists Example Permit my network only Non E0E1 S0 Access-list 1 permit Interface ethernet 0 ip access-group 1 out interface ethernet 1 ip access-group 1 out

cisco router configuration AFNOG 2002 / track 2 # 41 extended access lists example Deny FTP for E0 Non E0E1 S0 access-list 101 deny tcp eq 21 access-list 101 deny tcp eq 20 access-list 101 permit ip interface ethernet 0 ip access-group 101 out

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.