Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cisco configuration elements

Published byFrederica Ross Modified over 5 years ago

Similar presentations

Presentation on theme: "Cisco configuration elements"— Presentation transcript:

1 Cisco configuration elements
Network Management Workshop intERlab at AIT Thailand March 11-15, 2008

2 Overview Basic things that we need to make sure are configured on a Cisco router (and switch) to do proper network management These apply to other network equipment manufacturers of course, and to servers and workstations

3 Elements Hostname hostname of the device SSH enable secure shell
DNS domain name lookup NTP time synchronization Syslog syslog messages SNMP SNMP configuration SNMP traps and where to send traps CDP Cisco discovery protocol

4 Hostname Use the FQDN preferably.
In config mode: hostname net-gw.XYZ.domain.name or hostname net-sw-XYZ.domain.name

5 DNS configuration Config mode: ip domain-name mgmt.ait.ac.th ip name-server

6 NTP + time configuration
In config mode: ntp server pool.ntp.org clock timezone ICT 7 If needed: clock summer-time XXX recurring last Sun Mar 2:00 last Sun Oct 3:00 Verify: show clock

7 SSH Only crypto version of IOS/CatOS have support for SSH – there are export restrictions... In config mode: aaa new-model crypto key generate rsa username inst secret 0 xxxxxxxxx ... above is required to be allowed to enable SSH. Verify creation with: sh crypto key mypubkey rsa Use at least 768 bits

8 SSH (2) Enforce ssh (disabling telnet) on vty lines: host# conf t host(config)# line vty 0 4 host(config-line)# transport input ssh ^Z host# SSH is now enabled, and the telnet disabled

9 Syslog In config mode: logging noc.mgmt.ait.ac.th logging facility local5 logging trap debugging

10 SNMP In config mode: snmp-server community xxxxxxxxx RW snmp-server community 1nterl4b RO snmp-server location intERLab, AIT snmp-server enable traps config snmp-server enable traps envmon snmp-server enable traps config-copy snmp-server enable traps syslog snmp-server host nterl4b

11 CDP Cisco Discovery Protocol Normally enabled by default nowadays
Otherwise, enabled with ”cdp enable” or ”cdp run” tcpdump and tools like cdpr will show you CDP announcements check neighbor announcement with: show cdp neighbors

12 Questions ?

Download ppt "Cisco configuration elements"

Similar presentations

Managing Cisco IOS Software. Overview The router boot sequence Locating IOS software The configuration register Recovering Passwords Backing Up the Cisco.

Managing Cisco IOS Software. Overview The router boot sequence Locating IOS software The configuration register Recovering Passwords Backing Up the Cisco.
Cisco Device Hardening Disabling Unused Cisco Router Network Services and Interfaces.

Cisco Device Hardening Disabling Unused Cisco Router Network Services and Interfaces.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
1 Passwords and Banners Cisco Devices Packet Tracer.

1 Passwords and Banners Cisco Devices Packet Tracer.
CCNA2 Module 4. Discovering and Connecting to Neighbors Enable and disable CDP Use the show cdp neighbors command Determine which neighboring devices.

CCNA2 Module 4. Discovering and Connecting to Neighbors Enable and disable CDP Use the show cdp neighbors command Determine which neighboring devices.
1 CCNA 2 v3.1 Module 4. 2 CCNA 2 Module 4 Learning about Devices.

1 CCNA 2 v3.1 Module 4. 2 CCNA 2 Module 4 Learning about Devices.
Introduction to the Cisco IOS

Introduction to the Cisco IOS
Chapter 9 Managing a Cisco Internetwork Cisco Router Components Bootstrap - Brings up the router during initialization POST - Checks basic functionality;

Chapter 9 Managing a Cisco Internetwork Cisco Router Components Bootstrap - Brings up the router during initialization POST - Checks basic functionality;
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Securing Network Services.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Securing Network Services.
© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 2 – Securing Network Devices.

© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 2 – Securing Network Devices.
Sybex CCNA 640-802 Chapter 7: Managing a Cisco Internetwork Instructor & Todd Lammle.

Sybex CCNA Chapter 7: Managing a Cisco Internetwork Instructor & Todd Lammle.
1 © 2004, Cisco Systems, Inc. All rights reserved. Chapter 6 Configuring a Router/ Learning About Other Devices/ Managing Cisco IOS Software.

1 © 2004, Cisco Systems, Inc. All rights reserved. Chapter 6 Configuring a Router/ Learning About Other Devices/ Managing Cisco IOS Software.
NMS Labs Mikko Suomi LAB1 Choose SNMP device managment software Features: –Gives Nice overview of network –Bandwith monitoring –Multible.

NMS Labs Mikko Suomi LAB1 Choose SNMP device managment software Features: –Gives Nice overview of network –Bandwith monitoring –Multible.
2010 Cisco Configuration Elements APRICOT 2010 Kuala Lumpur, Malaysia.

2010 Cisco Configuration Elements APRICOT 2010 Kuala Lumpur, Malaysia.
CLI modes Accessing the configuration Basic configuration (hostname and DNS) Authentication and authorization (AAA) Log collection Time Synchronization.

CLI modes Accessing the configuration Basic configuration (hostname and DNS) Authentication and authorization (AAA) Log collection Time Synchronization.
CLI modes Accessing the configuration Basic configuration (hostname and DNS) Authentication and authorization (AAA) Log collection Time Synchronization.

CLI modes Accessing the configuration Basic configuration (hostname and DNS) Authentication and authorization (AAA) Log collection Time Synchronization.
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public TSHOOT v6 Chapter 1 1 Chapter 1: Planning Maintenance for Complex Networks CCNP TSHOOT:

© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public TSHOOT v6 Chapter 1 1 Chapter 1: Planning Maintenance for Complex Networks CCNP TSHOOT:
1 © 2007 Cisco Systems, Inc. All rights reserved.Cisco Public Remote access typically involves allowing telnet, SSH connections to the router Remote requires.

1 © 2007 Cisco Systems, Inc. All rights reserved.Cisco Public Remote access typically involves allowing telnet, SSH connections to the router Remote requires.
Saeed Darvish Pazoki – MCSE, CCNA Abstracted From: Cisco Press – ICND 1 – Chapter 9 Ethernet Switch Configuration 1.

Saeed Darvish Pazoki – MCSE, CCNA Abstracted From: Cisco Press – ICND 1 – Chapter 9 Ethernet Switch Configuration 1.
APRICOT 2008 Network Management Taipei, Taiwan February 20-24, 2008 Cisco configuration elelements.

APRICOT 2008 Network Management Taipei, Taiwan February 20-24, 2008 Cisco configuration elelements.

Similar presentations

Ads by Google