R1A P345 Cli Log

=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2021.04.
27 16:23:57 =~=~=~=~=~=~=~=~=~=~=~=
% Please answer 'yes' or 'no'.

Would you like to enter the initial configuration dialog? [yes/no]:
Would you like to enter the initial configuration dialog? [yes/no]: no
Would you like to terminate autoinstall? [yes]: yes
Press RETURN to get started!
*Apr 27 12:34:45.057: %SMART_LIC-6-AGENT_READY: Smart Agent for Licensing is

initialized
*Apr 27 12:34:46.081: %IOS_LICENSE_IMAGE_APPLICATION-6-LICENSE_LEVEL: Module name =
esg Next reboot level = securityk9 and License = securityk9
esg Next reboot level = ipbasek9 and License = ipbasek9
*Apr 27 12:34:46.531: %ISR_THROUGHPUT-6-LEVEL: Throughput level has been set to
100000 kbps
*Apr 27 12:34:47.519: %IOSXE_RP_NV-3-NV_ACCESS_FAIL: Initial read of NVRAM contents
failed
*Apr 27 12:34:48.448: %IOSXE_RP_NV-3-BACKUP_NV_ACCESS_FAIL: Initial read of backup
NVRAM contents failed
*Apr 27 12:34:55.576: %SPANTREE-5-EXTENDED_SYSID: Extended SysId enabled for type
vlan
*Apr 27 12:34:55.923: in NSH init
*Apr 27 12:34:56.444: %LINK-3-UPDOWN: Interface Lsmpi0, changed state to up

*Apr 27 12:34:56.445: %LINK-3-UPDOWN: Interface EOBC0, changed state to up
*Apr 27 12:34:56.445: %LINK-3-UPDOWN: Interface GigabitEthernet0, changed state to
down
*Apr 27 12:34:56.467: %IOSXE_RP_ALARM-6-INFO: ASSERT CRITICAL GigabitEthernet0
Physical Port Link Down
*Apr 27 12:34:56.467: %LINK-3-UPDOWN: Interface LIIN0, changed state to up
*Apr 27 12:34:58.100: %IOSXE_MGMTVRF-6-CREATE_SUCCESS_INFO: Management vrf Mgmt-
intf created with ID 1, ipv4 table-id 0x1, ipv6 table-id 0x1E000001
*Apr 27 12:34:58.152: %LINEPROTO-5-UPDOWN: Line protocol on Interface Lsmpi0,
changed state to up
*Apr 27 12:34:58.153: %LINEPROTO-5-UPDOWN: Line protocol on Interface EOBC0,
changed state to up
*Apr 27 12:34:58.153: %LINEPROTO-5-UPDOWN: Line protocol on Interface
GigabitEthernet0, changed state to down
*Apr 27 12:34:58.153: %LINEPROTO-5-UPDOWN: Line protocol on Interface LIIN0,
changed state to up
*Apr 27 12:34:49.992: %CMLIB-6-THROUGHPUT_VALUE: SIP1: cmand: Throughput license
found, throughput set to 100000 kbps
*Apr 27 12:34:59.614: %IOSXE_OIR-6-REMSPA: SPA removed from subslot 0/0, interfaces
disabled
disabled
*Apr 27 12:34:59.624: %SPA_OIR-6-OFFLINECARD: SPA (ISR4331-3x1GE) offline in
subslot 0/0
*Apr 27 12:34:59.626: %SPA_OIR-6-OFFLINECARD: SPA (NIM-2T) offline in subslot 0/1
*Apr 27 12:34:59.630: %IOSXE_OIR-6-INSCARD: Card (fp) inserted in slot F0
*Apr 27 12:34:59.630: %IOSXE_OIR-6-ONLINECARD: Card (fp) online in slot F0
*Apr 27 12:34:59.692: %IOSXE_OIR-6-INSCARD: Card (cc) inserted in slot 0
*Apr 27 12:34:59.692: %IOSXE_OIR-6-ONLINECARD: Card (cc) online in slot 0
*Apr 27 12:34:59.755: %IOSXE_OIR-6-INSSPA: SPA inserted in subslot 0/0
*Apr 27 12:35:05.391: %SPA_OIR-6-ONLINECARD: SPA (ISR4331-3x1GE) online in subslot
0/0
*Apr 27 12:35:05.396: %IOSXE_RP_ALARM-6-INFO: ASSERT CRITICAL xcvr container 0/0/0
Transceiver Missing - Link Down
*Apr 27 12:35:07.322: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/0, changed state
to down
to down
*Apr 27 12:35:07.373: %IOSXE_RP_ALARM-6-INFO: ASSERT CRITICAL GigabitEthernet0/0/1
to down
to up
*Apr 27 12:35:13.796: %IOSXE_RP_ALARM-6-INFO: CLEAR CRITICAL GigabitEthernet0/0/1
GigabitEthernet0/0/1, changed state to up
*Apr 27 12:37:28.428: %SPA_OIR-6-ONLINECARD: SPA (NIM-2T) online in subslot 0/1
*Apr 27 12:37:30.420: %LINK-3-UPDOWN: Interface Serial0/1/0, changed state to down
*Apr 27 12:37:30.422: %LINK-3-UPDOWN: Interface Serial0/1/1,
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router> changed state to down
*Apr 27 12:37:42.240: %LINK-3-UPDOWN: Interface Serial0/1/1, changed state to up
*Apr 27 12:37:43.241: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1/1,
changed state to up
changed state to up
*Apr 27 15:23:16.359: %LINK-5-CHANGED: Interface GigabitEthernet0/0/0, changed
state to administratively down
*Apr 27 15:23:16.360: %IOSXE_RP_ALARM-6-INFO: CLEAR CRITICAL xcvr container 0/0/0
*Apr 27 15:23:16.365: %LINK-5-CHANGED: Interface Serial0/1/0, changed state to
administratively down
*Apr 27 15:23:16.365: %LINK-5-CHANGED: Interface Serial0/1/1, changed state to
*Apr 27 15:23:16.366: %LINK-5-CHANGED: Interface GigabitEthernet0, changed state to
*Apr 27 15:23:16.367: %IOSXE_RP_ALARM-6-INFO: CLEAR CRITICAL GigabitEthernet0
GigabitEthernet0/0/1, changed state to down
changed state to down
*Apr 27 15:23:21.610: %SYS-5-RESTART: System restarted --
Cisco IOS Software [Everest], ISR Software (X86_64_LINUX_IOSD-UNIVERSALK9-M),
Version 16.6.4, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2018 by Cisco Systems, Inc.
Compiled Sun 08-Jul-18 04:33 by mcpre
*Apr 27 15:23:21.816: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is OFF
*Apr 27 15:23:21.816: %CRYPTO-6-GDOI_ON_OFF: GDOI is OFF
*Apr 27 15:23:24.796: %SYS-6-BOOTTIME: Time taken to reboot after reload = 19787
seconds
*Apr 27 15:23:29.726: %AN-6-AN_ABORTED_BY_CONSOLE_INPUT: Autonomic disabled due to
User intervention on console. configure 'autonomic' to enable it.
CRYPTO_PKI: setting trustpoint policy for TP-self-signed-1098423924 to specify TP-
self-signed-1098423924 keypair usage% Generating 2048 bit RSA keys, keys will be
non-exportable...
[OK] (elapsed time was 2 seconds)
Failed to generate persistent self-signed certificate.
Secure server will use temporary self-signed certificate.
*Apr 27 15:23:44.107: %SSH-5-ENABLED: SSH 1.99 has been enabled

*Apr 27 15:23:45.337: %PNP-6-PNP_DISCOVERY_STOPPED: PnP Discovery stopped (Config
Wizard)
Router>
Router>
Router>
Router>
Router>hostname en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname R1
R1(config)#no ip domain-lookup
R1(config)#do show ip interface brief
Interface IP-Address OK? Method Status Protocol
GigabitEthernet0/0/0 unassigned YES unset administratively down down
Serial0/1/0 unassigned YES unset administratively down down
Serial0/1/1 unassigned YES unset administratively down down
GigabitEthernet0 unassigned YES unset administratively down down
R1(config)#int s0/1/0
R1(config-if)#ip add 10.1.1.1 255.255.255.252
R1(config-if)#clo lock rate 125000
R1(config-if)#no shut
R1(config-if)#int
*Apr 27 15:27:49.943: %LINK-3-UPDOWN: Interface Serial0/1/0, changed state to upg0
changed state to up
R1(config-if)#int g0/0/1
R1(config-if)#ip add 192.168.1.1 255.255.255.0
R1(config-if)#no shut
R1(config-if)#
to down
to up
R1(config-if)#exit
R1(config)#router ospf 101
R1(config-router)#netw
*Apr 27 15:30:49.121: %OSPF-6-DFT_OPT: Protocol timers for fast convergence are
Enabled.ork 192.168.1.0 0.0.0.0. 255 area 0
R1(config-router)#network 10.1.1.0 0.0.0.3 area 0
R1(config-router)#exit
R1(config)#line lon 0
^
% Invalid input detected at '^' marker.
R1(config)#line con 0
R1(config-line)#loggi
R1(config-line)#logging syn
R1(config-line)#logging synchronous
R1(config-line)#exit
R1(config)#line con 0
R1(config-line)#login local
R1(config-line)#exec-timeout 5 0
R1(config-line)#exit
R1(config)#security passwords min-length 10
R1(config)#username crypto key generate rsa general-keys md ody ulus 1024
% Please define a domain-name first.
R1(config)#ip domain-name ccnasecurity.com
R1(config)#ip domain-name ccnasecurity.comcrypto key generate rsa general-keys
modulus 1024
The name for the keys will be: R1.ccnasecurity.com
% The key modulus size is 1024 bits

% Generating 1024 bit RSA keys, keys will be non-exportable...
R1(config)#username admin01 alhot rithm-type scrypt secret cisco12345

^
R1(config)#
R1(config)#username admin01 alhorithm-type scrypt secret cisco12345lghorithm-type
scrypt secret cisco12345horithm-type scrypt secret cisco12345
R1(config)#ssh version 2
^
R1(config)#line vty 0 4
R1(config-line)#login local
R1(config-line)#transport
changed state to up
R1(config-line)#transport input ssh
R1(config-line)#exec-timeout 5 0
R1(config-line)#
*Apr 27 15:43:08.273: %OSPF-5-ADJCHG: Process 101, Nbr 10.2.2.2 on Serial0/1/0 from
LOADING to FULL, Loading Done
R1(config-line)#
R1 con0 is now available
Press RETURN to get started.

*Apr 27 15:45:41.181: %SYS-5-CONFIG_I: Configured from console by console
User Access Verification
Username: admin01
Password:
R1>en
R1#ping 192.168.33.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.33.1, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
R1#ping 192.168.33.1 .1
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 43/43/44 ms
R1#ping 192.168.3.1 10 10.2.2.21
.....
R1#ping 10.2.2.21 1
!!!!!
R1#conf t
R1(config)#do showw ospf neigh
R1(config)#do show ospf neighbor
R1(config)#end
R1#
*Apr 27 15:53:57.896: %SYS-5-CONFIG_I: Configured from console by admin01 on
console
R1#sh ospf neigh
R1#sh ospf neighbor s
^
R1#sh ospf neighbors

^
R1#show ip protocols
*** IP Routing is NSF aware ***
Routing Protocol is "application"

Sending updates every 0 seconds
Invalid after 0 seconds, hold down 0, flushed after 0
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Maximum path: 32
Routing for Networks:
Routing Information Sources:
Gateway Distance Last Update
Distance: (default is 4)
Routing Protocol is "ospf 101"

Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Router ID 192.168.1.1
Number of areas in this router is 1. 1 normal 0 stub 0 nssa
Maximum path: 4
Routing for Networks:
10.1.1.0 0.0.0.3 area 0
192.168.1.0 0.0.0.255 area 0
Routing Information Sources:
--More-- Gateway Distance Last Update
--More-- 10.2.2.2 110 00:11:46
--More-- 192.168.3.1 110 00:11:19
--More-- Distance: (default is 110)
--More--
R1#conf t
R1(config)#crypto isakmp enable
R1(config)#crypto isakmp policy 10
R1(config-isakmp)#?
ISAKMP commands:
authentication Set authentication method for protection suite
default Set a command to its defaults
encryption Set encryption algorithm for protection suite
exit Exit from ISAKMP protection suite configuration mode
group Set the Diffie-Hellman group
hash Set hash algorithm for protection suite
lifetime Set lifetime for ISAKMP security association
no Negate a command or set its defaults
R1(config-isakmp)#exit
R1(config)#crypto isakmp policy 10
R1(config-isakmp)#hash sha
R1(config-isakmp)#authen
R1(config-isakmp)#authentication pre-share
R1(config-isakmp)#group 14
R1(config-isakmp)#life ti time 3600
R1(config-isakmp)#encryption aes 256
R1(config-isakmp)#end
R1#
console
R1#show crypto isakmp policy
Global IKE policy

Protection suite of priority 10
encryption algorithm:AES - Advanced Encryption Standard (256 bit keys).
hash algorithm:Secure Hash Standard
authentication method:Pre-Shared Key
Diffie-Hellman group:#14 (2048 bit)
lifetime:3600 seconds, no volume limit
R1#conf t
R1(config)#crypto isakmp key cisco 123 123 address 10.2.2.1
R1(config)#crypto ipsec transform -set 50
% Incomplete command.
R1(config)#crypto ipsec transform-set 50?

WORD
R1(config)#crypto ipsec transform-set 50 ?

ah-md5-hmac AH-HMAC-MD5 transform
ah-sha-hmac AH-HMAC-SHA transform
ah-sha256-hmac AH-HMAC-SHA256 transform
comp-lzs IP Compression using the LZS compression algorithm
esp-3des ESP transform using 3DES(EDE) cipher (168 bits)
esp-aes ESP transform using AES cipher
esp-des ESP transform using DES cipher (56 bits)
esp-gcm ESP transform using GCM cipher
esp-gmac ESP transform using GMAC cipher
esp-md5-hmac ESP transform using HMAC-MD5 auth
esp-null ESP transform w/o cipher
esp-seal ESP transform using SEAL cipher (160 bits)
esp-sha-hmac ESP transform using HMAC-SHA auth
esp-sha256-hmac ESP transform using HMAC-SHA256 auth
R1(config)#crypto ipsec transform-set 50 sakmp key cisco123 address 10.2.2.1psec

transform-set 50 esp-aes 256 esp-sha-hmac
^
R1(config)#crypto ipsec transform-set 50esp-aes 256 esp-sha-hmac esp-aes 256 esp-

sha-hmac
R1(cfg-crypto-trans)#exit
R1(config)#crypto ipsec security-association lifetime seconds 1800
R1(config)#ssh veri ip ssh serive vice 2
^
R1(config)#ip ssh ser veri sion 2

R1(config)#access-list 101 permit ip 192.168.1.0 0.0.0.255 192.168.3.0 0.0.0.$ 101
permit ip 192.168.1.0 0.0.0.255 192.168.3.0 0.0.0.2 55
R1(config)#crypto map CMAP 10 ipsec-isakmp
% NOTE: This new crypto map will remain disabled until a peer
and a valid access list have been configured.
R1(config-crypto-map)#match address 101
R1(config-crypto-map)#set ?
identity Identity restriction.
ikev2-profile Specify ikev2 Profile
ip Interface Internet Protocol config commands
isakmp-profile Specify isakmp Profile
nat Set NAT translation
peer Allowed Encryption/Decryption peer.
pfs Specify pfs settings
reverse-route Reverse Route Injection.
security-association Security association parameters
transform-set Specify list of transform sets in priority order
R1(config-crypto-map)#set set peer 10.2.2.1

^
R1(config-crypto-map)#set peer 10.2.2.1

R1(config-crypto-map)#set pfs group14
R1(config-crypto-map)#set transform-set 50
R1(config-crypto-map)#set security-association lifetime secons ds 900
R1(config-crypto-map)#exit
R1(config)#interface s0/1/0
R1(config-if)#crypto map CMAP
R1(config-if)#end
R1#
*Apr 27 16:09:29.945: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON
R1#
console
R1#show crypto ipsec transofrm-set
^
R1#show crypto ipsec transofrm-setrm-set rm-set frm-setorm-set

Transform set default: { esp-aes esp-sha-hmac }
will negotiate = { Transport, },
Transform set 50: { esp-256-aes esp-sha-hmac }

will negotiate = { Tunnel, },
R1#show crypto map

Crypto Map IPv4 "CMAP" 10 ipsec-isakmp
Peer = 10.2.2.1
Extended IP access list 101
access-list 101 permit ip 192.168.1.0 0.0.0.255 192.168.3.0 0.0.0.255
Current peer: 10.2.2.1
Security association lifetime: 4608000 kilobytes/900 seconds
Responder-Only (Y/N): N
PFS (Y/N): Y
DH group: group14
Mixed-mode : Disabled
Transform sets={
50: { esp-256-aes esp-sha-hmac } ,
}
Interfaces using crypto map CMAP:
Serial0/1/0
R1#show crypto isakmp sa

IPv4 Crypto ISAKMP SA
dst src state conn-id status
R1#show crypto ipsec sa
interface: Serial0/1/0
Crypto map tag: CMAP, local addr 10.1.1.1
protected vrf: (none)

local ident (addr/mask/prot/port): (192.168.1.0/255.255.255.0/0/0)
remote ident (addr/mask/prot/port): (192.168.3.0/255.255.255.0/0/0)
current_peer 10.2.2.1 port 500
PERMIT, flags={origin_is_acl,}
#pkts encaps: 0, #pkts encrypt: 0, #pkts digest: 0
#pkts decaps: 0, #pkts decrypt: 0, #pkts verify: 0
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 0, #pkts compr. failed: 0
#pkts not decompressed: 0, #pkts decompress failed: 0
#send errors 0, #recv errors 0
local crypto endpt.: 10.1.1.1, remote crypto endpt.: 10.2.2.1

plaintext mtu 1500, path mtu 1500, ip mtu 1500, ip mtu idb Serial0/1/0
current outbound spi: 0x0(0)
PFS (Y/N): N, DH group: none
inbound esp sas:
--More-- inbound ah sas:

--More--
--More-- inbound pcp sas:
--More--
--More-- outbound esp sas:
--More--
--More-- outbound ah sas:
--More--
--More-- outbound pcp sas:
R1#
R1#
R1#
R1#
R1#ping 10.2.21 .1
!!!!!
R1#ping 192.168.3.1
!!!!!
R1#debug ip ospf hello

OSPF hello debugging is on
R1#
*Apr 27 16:14:36.028: OSPF-101 HELLO Se0/1/0: Send hello to 224.0.0.5 area 0 from
10.1.1.1
R1#
*Apr 27 16:14:42.553: OSPF-101 HELLO Gi0/0/1: Send hello to 224.0.0.5 area 0 from
192.168.1.1
R1#
*Apr 27 16:14:44.119: OSPF-101 HELLO Se0/1/0: Rcv hello from 10.2.2.2 area 0
10.1.1.2
R1#
10.1.1.1
R1#
192.168.1.1
R1#
10.1.1.2
R1#
10.1.1.1
R1#undebug a
192.168.1.1
R1#undebug all
All possible debugging has been turned off
R1#
10.1.1.2
R1#
R1#ping
Protocol [ip]: 192.168.3.1
% Unknown protocol - "192.168.3.1", type "ping ?" for help
R1#ping
Protocol [ip]: 192.168.3.1
% Unknown protocol - "192.168.3.1", type "ping ?" for help
R1#ping ?
WORD Ping destination address or hostname
ancp ANCP echo
clns CLNS echo
ethernet Ethernet echo
ip IP echo
ipv6 IPv6 echo
srb srb echo
tag Tag encapsulated IP echo
vrf Select VPN routing instance
<cr>
R1#ping
Protocol [ip]:
Target IP address: 192.168.3.1
Repeat count [5]:
Datagram size [100]:
Timeout in seconds [2]:
Extended commands [n]: y
Ingress ping [n]: 192.168.1.1
Source address or interface:
DSCP Value [0]:
Type of service [0]:
Set DF bit in IP header? [no]:
Validate reply data? [no]:
Data pattern [0x0000ABCD]:
Loose, Strict, Record, Timestamp, Verbose[none]:
Sweep range of sizes [n]:
!!!!!

R1#show crypto ipsec sa
interface: Serial0/1/0
Crypto map tag: CMAP, local addr 10.1.1.1
protected vrf: (none)

local ident (addr/mask/prot/port): (192.168.1.0/255.255.255.0/0/0)
remote ident (addr/mask/prot/port): (192.168.3.0/255.255.255.0/0/0)
current_peer 10.2.2.1 port 500
PERMIT, flags={origin_is_acl,}
#pkts encaps: 4, #pkts encrypt: 4, #pkts digest: 4
#pkts decaps: 4, #pkts decrypt: 4, #pkts verify: 4
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 0, #pkts compr. failed: 0
#pkts not decompressed: 0, #pkts decompress failed: 0
#send errors 0, #recv errors 0
local crypto endpt.: 10.1.1.1, remote crypto endpt.: 10.2.2.1

plaintext mtu 1438, path mtu 1500, ip mtu 1500, ip mtu idb Serial0/1/0
current outbound spi: 0x13443A4E(323238478)
PFS (Y/N): Y, DH group: group14
inbound esp sas:

spi: 0xB899A109(3097075977)
--More-- transform: esp-256-aes esp-sha-hmac ,
--More-- in use settings ={Tunnel, }
--More-- conn id: 2001, flow_id: ESG:1, sibling_flags
FFFFFFFF80000048, crypto map: CMAP
--More-- sa timing: remaining key lifetime (k/sec): (4607999/826)
--More-- IV size: 16 bytes
--More-- replay detection support: Y
--More-- Status: ACTIVE(ACTIVE)
--More--
--More-- inbound ah sas:
--More--
--More-- inbound pcp sas:
--More--
--More-- outbound esp sas:
--More-- spi: 0x13443A4E(323238478)
--More-- transform: esp-256-aes esp-sha-hmac ,
--More-- in use settings ={Tunnel, }
--More-- conn id: 2002, flow_id: ESG:2, sibling_flags
FFFFFFFF80000048, crypto map: CMAP
--More-- sa timing: remaining key lifetime (k/sec): (4607999/826)
--More-- IV size: 16 bytes
--More-- replay detection support: Y
--More-- Status: ACTIVE(ACTIVE)
--More--
--More-- outbound ah sas:
--More--
--More-- outbound pcp sas:
R1#
R1#show crypto ipsec sasakmp sa
10.1.1.1 10.2.2.1 QM_IDLE 1001 ACTIVE
R1#ping 192.168.3.3
!!!!!
R1#
R1 con0 is now available

Press RETURN to get started.
Username: admin01
Password:
R1>cisco12345
% Bad IP address or host name% Unknown command or computer name, or unable to find
computer address
R1>en
R1#wr er
Erasing the nvram filesystem will remove all configuration files! Continue?
[confirm]
[OK]
Erase of nvram: complete
R1#
*Apr 27 16:37:54.450: %SYS-7-NV_BLOCK_INIT: Initialized the geometry of nvram
R1#reload
System configuration has been modified. Save? [yes/no]: yes

Building configuration...
[OK]
Proceed with reload? [confirm]
*Apr 27 16:38:08.639: %SYS-2-PRIVCFG_ENCRYPT: Successfully encrypted private config
file
[confirm]
*Apr 27 16:38:21.436: %SYS-5-RELOAD: Reload requested by admin01 on console. Reload

Reason: Reload Command.Apr 27 16:38:42.145 RP
Initializing Hardware ...
Checking for PCIe device presence...done

System integrity status: 0x610
Rom image verified correctly
System Bootstrap, Version 16.7(3r), RELEASE SOFTWARE

Copyright (c) 1994-2017 by cisco Systems, Inc.
Current image running: Boot ROM0
Last reset cause: LocalSoft

ISR4331/K9 platform with 4194304 Kbytes of main memory
........
no valid BOOT image found

Final autoboot attempt from default boot device...
Located isr4300-universalk9.16.06.04.SPA.bin
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
#############################################################
Package header rev 1 structure detected

IsoSize = 550114467
Calculating SHA-1 hash...Validate package: SHA-1 hash:
calculated 444F4D02:44C58887:D9C8942B:C557D3CF:2A14247E
expected 444F4D02:44C58887:D9C8942B:C557D3CF:2A14247E
RSA Signed RELEASE Image Signature Verification Successful.

Image validated
Restricted Rights Legend
Use, duplication, or disclosure by the Government is

subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.

170 West Tasman Drive
San Jose, California 95134-1706

Cisco IOS-XE software, Copyright (c) 2005-2018 by cisco Systems, Inc.

All rights reserved. Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0. The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY. You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0. For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.
This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to

export@cisco.com.
cisco ISR4331/K9 (1RU) processor with 1795999K/6147K bytes of memory.

Processor board ID FDO2414M1BU
3 Gigabit Ethernet interfaces
2 Serial interfaces
32768K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
3125247K bytes of flash memory at bootflash:.
0K bytes of WebUI ODM Files at webui:.
%INIT: waited 0 seconds for NVRAM to be available

initialized
100000 kbps
vlan
*Apr 27 16:44:22.709: in NSH init

down
changed state to up
changed state to up
changed state to up
*Apr 27 16:44:34.474: %SYS-2-PRIVCFG_DECRYPT: Successfully apply the private config
file
Enabled.
*Apr 27 16:44:35.239: %SYS-5-CONFIG_I: Configured from memory by console
disabled
disabled
subslot 0/0
*Apr 27 16:44:38.155: %OSPF-4-NORTRID: OSPF process 101 failed to allocate unique
router-id and cannot start
*Apr 27 16:44:38.226: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON
seconds
0/0
self-signed-1098423924 keypair usageFailed to generate persistent self-signed
certificate.

to down
*Apr 27 16:44:43.801: %PNP-6-PNP_DISCOVERY_STOPPED: PnP Discovery stopped (Startup
Config Present)
to up
Username:
Username:
Username:
Username:
Username:
Username: admin01
Password:
R1>en
R1#write erase
Erasing the nvram filesystem will remove all configuration files! Continue?
[confirm]
[OK]
Erase of nvram: complete
R1#
*Apr 27 16:45:56.505: %SYS-7-NV_BLOCK_INIT: Initialized the geometry of nvram
R1#reload
Proceed with reload? [confirm]
*Apr 27 16:46:06.773: %SYS-5-RELOAD: Reload requested by admin01 on console. Reload

Reason: Reload Command.Apr 27 16:46:27.445 RP0
Initializing Hardware ...
Checking for PCIe device presence...done

System integrity status: 0x610
Rom image verified correctly
System Bootstrap, Version 16.7(3r), RELEASE SOFTWARE

Copyright (c) 1994-2017 by cisco Systems, Inc.
Current image running: Boot ROM0
Last reset cause: LocalSoft

ISR4331/K9 platform with 4194304 Kbytes of main memory
........
no valid BOOT image found

Final autoboot attempt from default boot device...
Located isr4300-universalk9.16.06.04.SPA.bin
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
###################################################################################
#############################################################
Package header rev 1 structure detected

IsoSize = 550114467
Calculating SHA-1 hash...Validate package: SHA-1 hash:
calculated 444F4D02:44C58887:D9C8942B:C557D3CF:2A14247E
expected 444F4D02:44C58887:D9C8942B:C557D3CF:2A14247E
RSA Signed RELEASE Image Signature Verification Successful.

Image validated
Restricted Rights Legend
Use, duplication, or disclosure by the Government is

subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.

170 West Tasman Drive
San Jose, California 95134-1706

Cisco IOS-XE software, Copyright (c) 2005-2018 by cisco Systems, Inc.

All rights reserved. Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0. The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY. You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0. For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.
% Failed to initialize nvram

% Failed to initialize backup nvram
This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to

export@cisco.com.
cisco ISR4331/K9 (1RU) processor with 1795999K/6147K bytes of memory.

Processor board ID FDO2414M1BU
3 Gigabit Ethernet interfaces
2 Serial interfaces
32768K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
3125247K bytes of flash memory at bootflash:.
0K bytes of WebUI ODM Files at webui:.
%INIT: waited 0 seconds for NVRAM to be available
--- System Configuration Dialog ---

Would you like to terminate autoinstall? [yes]:

initialized
100000 kbps
*Apr 27 16:52:00.228: %IOSXE_RP_NV-3-NV_ACCESS_FAIL: Initial read of NVRAM contents
failed
*Apr 27 16:52:01.157: %IOSXE_RP_NV-3-BACKUP_NV_ACCESS_FAIL: Initial read of backup
NVRAM contents failed
vlan
*Apr 27 16:52:08.485: in NSH init

down
changed state to up
changed state to up
changed state to up
disabled
disabled
subslot 0/0
0/0
to down
to down
*Apr 27 16:52:19.863: %IOSXE_RP_ALARM-6-INFO: ASSERT CRITICAL GigabitEthernet0/0/1
to down
to up
*Apr 27 16:52:26.284: %IOSXE_RP_ALARM-6-INFO: CLEAR CRITICAL GigabitEthernet0/0/1
Router>yes

GigabitEthernet0/0/1, changed state to down
seconds
*Apr 27 16:53:12.228: %AN-6-AN_ABORTED_BY_CONSOLE_INPUT: Autonomic disabled due to
User intervention on console. configure 'autonomic' to enable it.
self-signed-1098423924 keypair usage% Generating 2048 bit RSA keys, keys will be
non-exportable...
Failed to generate persistent self-signed certificate.

% Bad IP address or host name
*Apr 27 16:53:30.215: %PNP-6-PNP_DISCOVERY_STOPPED: PnP Discovery stopped (Config
Wizard)% Unknown command or computer name, or unable to find computer address
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
Router>
*Apr 27 16:54:40.969: %SPA_OIR-6-ONLINECARD: SPA (NIM-2T) online in subslot 0/1
changed state to up
changed state to up
Router>
Router>conf t
^
Router>en
Router#conf t
Router(config)#hostname R! 1-A
R1-A(config)#no ip domain-lookup
R1-A(config)#int s0/1/0
R1-A(config-if)#ip add 10.1.1.1 255.255.255.252
R1-A(config-if)#clock rate 125000
R1-A(config-if)#int g0/0/1
R1-A(config-if)#ip ad dd 18 72.16.1.1 255.255.255.0
R1-A(config-if)#no shut
R1-A(config-if)#int s
to down0/0 1/
to up
GigabitEthernet0/0/1, changed state to up0
R1-A(config-if)#no shut
R1-A(config-if)#end
R1-A#
*Apr 27 16:57:47.863: %SYS-5-CONFIG_I: Configured from console by consoleconf t
R1-A(config)#line con 0
R1-A(config-line)#loggi
R1-A(config-line)#logging syn
R1-A(config-line)#logging synchronous
R1-A(config-line)#exit
R1-A(config)#enable sec password cisco lass
R1-A(config)#serive
R1-A(config)#serive vice pass
R1-A(config)#service password-encryption
R1-A(config)#line con 0
R1-A(config-line)#password cisco
R1-A(config-line)#login
R1-A(config-line)#exit
R1-A(config)#line vty 0 4
R1-A(config-line)#password cisco cisco
R1-A(config-line)#login
R1-A(config-line)#end
R1-A#
R1-A#conf t
R1-A(config)#ip route 0.0.0.0 0.0.0.0 10.1.1.2
R1-A(config)#int tunnel 0
R1-A(config-if)#ip add
*Apr 27 17:01:55.166: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel0,
R1-A(config-if)#ip add 172.16.12.1 255.255.255.252
R1-A(config-if)#tunnel source s0/1/0
R1-A(config-if)#tunnel destination 10.2.2.1
R1-A(config-if)#
*Apr 27 17:02:26.427: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel0,
changed state to up
R1-A(config-if)#do show ip interface brief
Any interface listed with OK? value "NO" does not have a valid configuration
Interface IP-Address OK? Method Status Protocol

GigabitEthernet0/0/1 172.16.1.1 YES manual up up
Serial0/1/0 10.1.1.1 YES manual up up
Serial0/1/1 unassigned NO unset up up
GigabitEthernet0 unassigned YES unset administratively down down
Tunnel0 172.16.12.1 YES manual up up
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#do show interfaces tunnel 0
Tunnel0 is up, line protocol is up
Hardware is Tunnel
Internet address is 172.16.12.1/30
MTU 9976 bytes, BW 100 Kbit/sec, DLY 50000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation TUNNEL, loopback not set
Keepalive not set
Tunnel linestate evaluation up
Tunnel source 10.1.1.1 (Serial0/1/0), destination 10.2.2.1
Tunnel Subblocks:
src-track:
Tunnel0 source tracking subblock associated with Serial0/1/0
Set of tunnels with source Serial0/1/0, 1 member (includes iterators), on
interface <OK>
Tunnel protocol/transport GRE/IP
Key disabled, sequencing disabled
Checksumming of packets disabled
Tunnel TTL 255, Fast tunneling enabled
Tunnel transport MTU 1476 bytes
Tunnel transmit bandwidth 8000 (kbps)
Tunnel receive bandwidth 8000 (kbps)
Last input never, output never, output hang never
--More-- Last clearing of "show interface" counters 00:01:14
--More-- Input queue: 0/375/0/0 (size/max/drops/flushes); Total output
drops: 0
--More-- Queueing strategy: fifo
--More-- Output queue: 0/0 (size/max)
--More-- 5 minute input rate 0 bits/sec, 0 packets/sec
--More-- 5 minute output rate 0 bits/sec, 0 packets/sec
--More-- 0 packets input, 0 bytes, 0 no buffer
--More-- Received 0 broadcasts (0 IP multicasts)
--More-- 0 runts, 0 giants, 0 throttles
--More-- 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0
abort
--More-- 0 packets output, 0 bytes, 0 underruns
--More-- 0 output errors, 0 collisions, 0 interface resets
--More-- 0 unknown protocol drops
--More-- 0 output buffer failures, 0 output buffers swapped out
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#
R1-A(config-if)#ping 172.16.12.2
^
R1-A(config-if)#end
R1-A#ping
R1-A#ping 172.16.122 .2
!!!!!
R1-A#en
R1-A#conf t
R1-A(config)#router ospf 1
R1-A(config-router)#netwo
Enabled.
R1-A(config-router)#network 172.16.1.0 0.0.0.0.2 255 area 0
R1-A(config-router)#network 172.16.12.0 0.0.0.3 area 0
R1-A(config-router)#
*Apr 27 17:04:26.559: %OSPF-5-ADJCHG: Process 1, Nbr 172.16.12.2 on Tunnel0 from
LOADING to FULL, Loading Done
R1-A(config-router)#do show ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
a - application route
+ - replicated route, % - next hop override, p - overrides from PfR
Gateway of last resort is 10.1.1.2 to network 0.0.0.0
S* 0.0.0.0/0 [1/0] via 10.1.1.2

10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C 10.1.1.0/30 is directly connected, Serial0/1/0
L 10.1.1.1/32 is directly connected, Serial0/1/0
172.16.0.0/16 is variably subnetted, 5 subnets, 3 masks
C 172.16.1.0/24 is directly connected, GigabitEthernet0/0/1
L 172.16.1.1/32 is directly connected, GigabitEthernet0/0/1
O 172.16.2.0/24 [110/1001] via 172.16.12.2, 00:00:52, Tunnel0
C 172.16.12.0/30 is directly connected, Tunnel0
L 172.16.12.1/32 is directly connected, Tunnel0
R1-A(config-router)#end
R1-A#ping
R1-A#ping 172.16 6.3.3
U.U.U
R1-A#ping 17. sh run
Building configuration...
Current configuration : 1902 bytes

!
! Last configuration change at 17:05:55 UTC Tue Apr 27 2021
!
version 16.6
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
platform qfp utilization monitor load 80
no platform punt-keepalive disable-kernel-core
!
hostname R1-A
!
boot-start-marker
boot-end-marker
!
!
vrf definition Mgmt-intf
!
address-family ipv4
exit-address-family
!
--More-- address-family ipv6
--More-- exit-address-family
--More-- !
--More-- enable password 7 121A09160118
--More-- !
--More-- no aaa new-model
--More-- !
--More-- no ip domain lookup
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- subscriber templating
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- multilink bundle-name authenticated
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- license udi pid ISR4331/K9 sn FDO24130K0G
--More-- diagnostic bootup level minimal
--More-- spanning-tree extend system-id
--More-- !
--More-- !
--More-- !
--More-- !
--More-- redundancy
--More-- mode none
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- interface Tunnel0
--More-- ip address 172.16.12.1 255.255.255.252
--More-- tunnel source Serial0/1/0
--More-- tunnel destination 10.2.2.1
--More-- !
--More-- interface GigabitEthernet0/0/0
--More-- no ip address
--More-- shutdown
--More-- negotiation auto
--More-- !
--More-- ip address 172.16.1.1 255.255.255.0
--More-- !
--More-- shutdown
--More-- !
--More-- interface Serial0/1/0
--More-- ip address 10.1.1.1 255.255.255.252
--More-- clock rate 125000
--More-- !
--More-- interface Serial0/1/1
--More-- !
--More-- interface GigabitEthernet0
--More-- vrf forwarding Mgmt-intf
--More-- shutdown
--More-- !
--More-- router ospf 1
--More-- network 172.16.1.0 0.0.0.255 area 0
--More-- network 172.16.12.0 0.0.0.3 area 0
--More-- !
--More-- ip forward-protocol nd
--More-- ip http server
--More-- ip http authentication local
--More-- ip http secure-server
--More-- ip tftp source-interface GigabitEthernet0
--More-- ip route 0.0.0.0 0.0.0.0 10.1.1.2
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- !
--More-- control-plane
--More-- !
--More-- !
--More-- line con 0
--More-- password 7 01100F175804
--More-- logging synchronous
--More-- login
--More-- transport input none
--More-- stopbits 1
--More-- line aux 0
--More-- stopbits 1
--More-- line vty 0 4
--More-- password 7 070C285F4D06
--More-- login
--More-- !
--More-- wsma agent exec
--More-- !
--More-- wsma agent config
--More-- !
--More-- wsma agent filesys
--More-- !
--More-- wsma agent notify
--More-- !
--More-- !
--More-- end
--More--
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#
R1-A#

R1A P345 Cli Log

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

R1A P345 Cli Log

Uploaded by

Copyright:

Available Formats

=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2021.04.

% Please answer 'yes' or 'no'.

Would you like to terminate autoinstall? [yes]: yes

Press RETURN to get started!

*Apr 27 12:34:45.057: %SMART_LIC-6-AGENT_READY: Smart Agent for Licensing is

*Apr 27 12:34:56.444: %LINK-3-UPDOWN: Interface Lsmpi0, changed state to up

*Apr 27 15:23:44.107: %SSH-5-ENABLED: SSH 1.99 has been enabled

% The key modulus size is 1024 bits

R1(config)#username admin01 alhot rithm-type scrypt secret cisco12345

R1 con0 is now available

Press RETURN to get started.

User Access Verification

R1#sh ospf neighbors

Routing Protocol is "application"

Routing Protocol is "ospf 101"

Global IKE policy

R1(config)#crypto ipsec transform-set 50?

R1(config)#crypto ipsec transform-set 50 ?

R1(config)#crypto ipsec transform-set 50 sakmp key cisco123 address 10.2.2.1psec

R1(config)#crypto ipsec transform-set 50esp-aes 256 esp-sha-hmac esp-aes 256 esp-

R1(config)#ip ssh ser veri sion 2

R1(config-crypto-map)#set set peer 10.2.2.1

R1(config-crypto-map)#set peer 10.2.2.1

R1#show crypto ipsec transofrm-setrm-set rm-set frm-setorm-set

Transform set 50: { esp-256-aes esp-sha-hmac }

R1#show crypto map

R1#show crypto isakmp sa

IPv6 Crypto ISAKMP SA

R1#show crypto ipsec sa

protected vrf: (none)

local crypto endpt.: 10.1.1.1, remote crypto endpt.: 10.2.2.1

inbound esp sas:

--More-- inbound ah sas:

IPv6 Crypto ISAKMP SA

R1#debug ip ospf hello

IPv6 Crypto ISAKMP SA

IPv6 Crypto ISAKMP SA

R1#show crypto isakmp sa

IPv6 Crypto ISAKMP SA

R1#show crypto ipsec sa

protected vrf: (none)

local crypto endpt.: 10.1.1.1, remote crypto endpt.: 10.2.2.1

inbound esp sas:

IPv6 Crypto ISAKMP SA

R1 con0 is now available

User Access Verification

System configuration has been modified. Save? [yes/no]: yes

*Apr 27 16:38:21.436: %SYS-5-RELOAD: Reload requested by admin01 on console. Reload

Initializing Hardware ...

Checking for PCIe device presence...done

System Bootstrap, Version 16.7(3r), RELEASE SOFTWARE

Current image running: Boot ROM0

Last reset cause: LocalSoft

no valid BOOT image found

Package header rev 1 structure detected

RSA Signed RELEASE Image Signature Verification Successful.

Restricted Rights Legend

Use, duplication, or disclosure by the Government is

cisco Systems, Inc.

Cisco IOS Software [Everest], ISR Software (X86_64_LINUX_IOSD-UNIVERSALK9-M),

Cisco IOS-XE software, Copyright (c) 2005-2018 by cisco Systems, Inc.

This product contains cryptographic features and is subject to United

If you require further assistance please contact us by sending email to