Konfigurimet

The following message will display in the command prompt:
Switch S1 Configuration
Switch>
2. Enter Privileged EXEC Mode and Set a Hostname for the Switch
Type in the enable command to enter privileged EXEC mode (you don’t need a password at
this stage because you’re under the default configurations which don’t have one!):
Switch>enable
Enable
Next, enter Global Configuration Mode and enter the following command:
Switch# configure terminal

Switch(config)#
You can make the switch easier to locate in the network by assigning a hostname. Enter the
following command to assign a hostname:
Switch(config)# hostname S1
3. Assign a Password to the Switch

Once you’ve assigned a hostname you will want to create a password to control who has
access to the privileged EXEC mode (to prevent everyone from being able to log in). To
assign an administrator password to enter the following command:
S1(config)# enable secret cisco
4.Assign a Warning message to the switch
S1(config)# banner motd *Only authorised access*
5. Configure Console
S1(config)# line console 0

S1(config-line)# password cisco
S1(config-line)# login
S1(config-line)# exit
6. Create vty lines and activate ssh protocol for remote access
To enable secure access to your Cisco device, you can use SSH instead of Telnet. SSH
uses encryption to secure data from eavesdropping.
To enable SSH, the following steps are required:
a. set up a hostname and and a domain name.

b. configure local username and password (two local credentials with different privilege).
c. generate RSA public and private keys.
d. allow only SSH access.
The following example shows the configuration of the first three steps:
Switch(config)#hostname S1
S1(config)#ip domain-name cisco.com
S1(config)#username cisco privilege 15 password cisco
S1(config)#username cisco1 privilege o password cisco1
S1(config)#crypto key generate rsa
The name for the keys will be: S1.cisco.com
Choose the size of the key modulus in the range of 360 to 2048 for your
General Purpose Keys. Choosing a key modulus greater than 512 may take
a few minutes.
How many bits in the modulus [512]:2024

% Generating 512 bit RSA keys, keys will be non-exportable...[OK]
S1(config)#ip ssh v 2
*Jun 8 16:46:45.407: %SSH-5-ENABLED: SSH 1.99 has been enabled
S1(config)#
First, we have defined the device hostname by using the hostname S1 command. Next, we
have defined the domain name by using the ip domain-name cisco.com command. After
that, the local user is created by using the username cisco password cisco command. Next,
we need to enable only the SSH access to a device. This is done by using the transport
input ssh command:
S1(config)#line vty 0 15
S1(config-line)#login local
S1(config-line)#transport input ssh
S1(config-line)#exit
7. Create VLAN-s
S1(config)#vlan 30
S1(config-vlan)#name servers
S1(config-vlan)#vlan 100
S1(config-vlan)#name Management
S1(config-vlan)#name Native
S1(config-vlan)#exit
8. Configure IP management for switch
S1(config)#interface vlan 100

S1(config-if)#description Menaxhimi i switch S1
S1(config-if)ip address 192.168.100.4 255.255.255.0
S1(config-if)no shutdown
S1(config-if)exit
S1(config)#ip default-gateway 192.168.100.1
9. Create access ports on switch and assign to the corresponding vlan. On these ports also
specify port security as static and violation mode shtudown. The number of maximum mac
adresses registered in these ports is 2. Only two mac adresses can be connected to each
port.
S1(config)#int range f0/1-4

S1(config-if)#switchport mode access
S1(config-if)#switchport access vlan 30
S1(config-if)#switchport port-security
S1(config-if)#switchport port-security maximum 2
S1(config-if)#switchport port-security mac-adress sticky
S1(config-if)#switchport port-security violation shutdown
S1(config-if)#spanning-tree portfast
S1(config-if)#spanning-tree bpduguard enable
S1(config-if)#exit
10.Configure trunk interface on port fast ethernet f0/23 and f0/24. Also configure native vlan
on trunk interface. Ensure trunk is not negotiated but created manually for security reasons.
S1(config)#interface range f0/23-24

S1(config-if)#switchport mode trunk
S1(config-if)#switchport trunk allowed vlan 30,99,100
S1(config-if)#switchport trunk native vlan 99
S1(config-if)#switchport nonegotiate
S1(config-if)#exit
11. Encrypt all passwords
S1(config)#service password-encryption
12.Save Configuration
S1(config)#exit
S1#copy running-config startup-config
Press Enter
13.On privilege mode run the commands
S1#show startup-config - shows the configuration of switch saved on NVRAM memory

S1#show vlan brief – shows vlan , status and ports assigned to vlan-s
S1#show interface trunk – shows trunk configuration
S1#show interface (interface id) – shows the configurations of specific interface on switch
Switch>
Switch>enable
Enable
Switch>enable
Enable

Switch(config)#


b. configure local username and password. (two local credentials with different privilege)
S2(config)#username cisco password cisco
S2(config)#username cisco1 privilege o password cisco1
a few minutes.

S2(config)#
input ssh command:
7. Create VLAN-s
S2(config-vlan)#name servers

S2(config-if)exit
port.

S2(config-if)#switchport port-security mac-adress sticky
S2(config-if)#exit
10. Configure trunk interface on port f0/21 and f0/22 . Also configure native vlan on trunk
interface. Ensure trunk is not negotiated but created manually for security reasons.
S2(config)#interface range f0/21-22

S2(config-if)#switchport nonegotiate
S2(config-if)#exit
S2(config)#exit
Press Enter

_________________________________________________________________________
Switch>
Switch>enable

Switch(config)#



S3(config)#username cisco1 privilege 0 password cisco1
a few minutes.

S3(config)#
input ssh command:
7. Create VLAN-s
S3(config-vlan)#name Marketing

S3(config-if)exit
port.

S3(config-if)#switchport port-security mac-address sticky
S3(config-if)ip dhcp snooping limit rate 200
S3(config-if)#exit
S3(config-if)#exit
10.Configure trunk interface on port fastethernet 0/19 and 20. Also configure native vlan on
trunk interface. Ensure trunk is not negotiated but created manually for security
reasons. .Enable dhcp snoopong and ip arp inspection for vlan 10 globally. On port f0/19
and f0/20 specifty as trusted ports towards the DHCP server. Every DHCP request made my
PC will go through these ports because they are trusted and they show the right path
towards DHCP server.
S3(config)#ip dhcp snooping vlan 10

S3(config)#ip arp inspection vlan 10
S3(config-if-range)#ip dhcp snooping trust
S3(config-if-range)#ip arp inspection trust
S3(config-if)switchport nonegotiate
S3(config-if)#exit
S3(config)#exit
Press Enter

Switch>
Switch>enable

Switch(config)#



S4(config)#username cisco1 privilege 0 password cisco1
a few minutes.

S3(config)#
input ssh command:
7. Create VLAN-s
S4(config-vlan)#name Finance

S4(config-if)exit
port.
S4(config-if)#switchport port-security mac-address sticky
S4(config-if)ip dhcp snooping limit rate 200
S4(config-if)#exit
10.Configure trunk interface on port fastethernet 0/17 and 18. Also configure native vlan on
trunk interface. Ensure trunk is not negotiated but created manually for security
reasons. .Enable dhcp snoopong and ip arp inspection for vlan 20 globally. On port f0/17
and f0/18 specifty as trusted ports towards the DHCP server. Every DHCP request made my
PC will go through these ports because they are trusted and they show the right path
towards DHCP server.
S4(config)#ip dhcp snooping vlan 20

S4(config)#ip arp inspection vlan 20
S4(config-if-range)#ip dhcp snooping trust
S4(config-if-range)#ip arp inspection trust
S4(config-if)switchport nonegotiate
S4(config-if)#exit
S4(config)#exit
Press Enter

Switch L1 Configuration
Switch>
Switch>enable

Switch(config)#
Switch(config)# hostname L1

L1(config)# enable secret cisco
L1(config)# banner motd *Only authorised access*
L1(config)# line console 0

L1(config-line)# password cisco
L1(config-line)# login
L1(config-line)# exit

Switch(config)#hostname L1
L1(config)#ip domain-name cisco.com
L1(config)#username cisco privilege 15 password cisco
L1(config)#username cisco1 privilege 0 password cisco1
L1(config)#crypto key generate rsa
a few minutes.

L1(config)#ip ssh v 2
S3(config)#
First, we have defined the device hostname by using the hostname L1 command. Next, we
input ssh command:
L1(config)#line vty 0 15
L1(config-line)#login local
L1(config-line)#transport input ssh
L1(config-line)#exit
7. Create VLAN-s
L1(config-vlan)#vlan 10
L1(config-vlan)#name Marketing
L1(config-vlan)#name Finance
L1(config-vlan)#name servers
L1(config-vlan)#name Management
L1(config-vlan)#name Native
L1(config-vlan)#exit
8. Activate ip routing command on siwtch layer 3 to turn it on a router and configure inter-
vlan routing. Also conigure HSRP process on the switch layer 3. L1 switch will be the active
for vlans 10 and 100 and standby for vlans 20 and 30.
L1(config)ip routing
L1(config)#interface vlan 10
L1(config-if)#description default gateway per vlan 10
L1(config-if)ip address 192.168.10.2 255.255.255.0
L1(config-if)standby 10 ip 192.168.10.1
L1(config-if)standby 10 priority 110
L1(config-if)standby 10 preempt
L1(config-if)exit
L1(config-if)exit
L1(config-if)exit

L1(config-if)exit
9. Configure trunk interfaces on switch layer 3 and deactivate DTP. Include also native vlan
on trunk.
L1(config)#int range f0/21, f0/23

L1(config-if)#switchport trunk encapsulation dot1q
L1(config-if)#switchport mode trunk
L1(config-if)#switchport trunk allowed vlan 30,99,100
L1(config-if)#switchport trunk native vlan 99
L1(config-if)switchport nonegotiate
L1(config-if)exit
L1(config)#int f0/19
L1(config-if)exit
L1(config-if)exit
10. Configure ehterchannel (channel-group 2) using LACP on G0/1 and G0/2. Configure
trunk on port channel 2.
L1(config)#interface range G0/1-2

L1(config-if-range)#channel-group 2 mode active
L1(config-if-range)#exit
L1(config)#int port-channel 2
L1(config-if)#switchport trunk allowed vlan 10,20,30,99,100
L1(config-if)#switchport nonegotiate
L1(config-if)#exit
11. Configure DHCP for vlan 10 and vlan 20. Exclude the first 10 ip adresses.
L1(config)#ip dhcp excluded-address 192.168.10.1 192.168.10.10

L1(config)#ip dhcp pool VLAN-10
L1(dhcp-config)#network 192.168.10.0 255.255.255.0
L1(dhcp-config)#default-router 192.168.10.1
L1(dhcp-config)#dns-server 8.8.8.8
L1(dhcp-config)#exit
12. Configure f0/22 and f0/24 as routeed port on switch layer 3 using the command no
switchport. Assign an ip adress to these ports.
L1(config-if)#no switchport
L1(config-if)#ip address 10.10.10.1 255.255.255.252
L1(config-if)#description lidhja me router R1
L1(config-if)#exit
L1(config-if)#exit
13. Configure OSPF version 4 on area o, which will be the backbone area. Create OPSF
process which will be ospf 10. Specify router-id, networks that will be declared to the
neighbours, reference bandwidth 1000 and passive interface to the interface which is
connected to the LAN.
L1(config)#router ospf 10
L1(config-router)#router-id 1.1.1.1
L1(config-router)#network 192.168.10.0 0.0.0.255 area 0
L1(config-router)#passive-interface F0/17
L1(config-router)#passive-interface G0/1
L1(config-router)# auto-cost reference-bandwidth 1000
L1(config-router)#exit

L1(config)#service password-encryption
L1(config)#exit
L1#copy running-config startup-config
Press Enter
L1#show startup-config - shows the configuration of switch saved on NVRAM memory

L1#show vlan brief – shows vlan , status and ports assigned to vlan-s
L1#show interface trunk – shows trunk configuration
L1#show interface (interface id) – shows the configurations of specific interface on switch
L1#show ip interface brief – shows the status of all interfaces
L1#show etherchannel summary – shows etherchannel configuration
L1#show ip dhcp binding – shows dhcp client
L1#show standby – shows HSRP
L1#show ip route ospf – shows ospf routing
L1#show ip ospf neighbours – shows ospf neighbours
Switch L2 Configuration
Switch>
Switch>enable

Switch(config)#
Switch(config)# hostname L2

L2(config)# enable secret cisco
L1(config)# banner motd *Only authorised access*
L2(config)# line console 0

L2(config-line)# password cisco
L2(config-line)# login
L2(config-line)# exit

Switch(config)#hostname L2
L2(config)#ip domain-name cisco.com
L2(config)#username cisco privilege 15 password cisco
L2(config)#username cisco1 privilege 0 password cisco1
L2(config)#crypto key generate rsa
a few minutes.

L1(config)#ip ssh v 2
S3(config)#
First, we have defined the device hostname by using the hostname L2 command. Next, we
input ssh command:
L2(config)#line vty 0 15
L2(config-line)#login local
L2(config-line)#transport input ssh
L2(config-line)#exit
7. Create VLAN-s
L2(config-vlan)#name Marketing
L2(config-vlan)#name Finance
L2(config-vlan)#name servers
L2(config-vlan)#name Management
L2(config-vlan)#name Native
L2(config-vlan)#exit
8. Activate ip routing command on siwtch layer 3 to turn it on a router and configure inter-
vlan routing. Also conigure HSRP process on the switch layer 3. L2 switch will be the active
for vlans 20 and 30 and standby for vlans 10 and 100.
L2(config)ip routing
L2(config-if)exit
L2(config-if)exit
L2(config-if)exit
L2(config-if)exit

L2(config-if)exit
9. Configure trunk interfaces on switch layer 3 and deactivate DTP. Include also native vlan
on trunk.
L2(config)#int range f0/22, f0/24

L2(config-if)exit
L2(config-if)exit
L2(config-if)exit
10. Configure ehterchannel (channel-group 2) using LACP on G0/1 and G0/2. Configure
trunk on port channel 2.
L2(config)#interface range G0/1-2

L2(config-if-range)#channel-group 2 mode active
L2(config-if-range)#exit
L2(config)#int port-channel 2
L2(config-if)#switchport trunk allowed vlan 10,20,30,99,100
L2(config-if)#switchport nonegotiate
L2(config-if)#exit
11. Configure DHCP for vlan 10 and vlan 20. Exclude the first 10 ip adresses.

12. Configure f0/22 and f0/24 as routeed port on switch layer 3 using the command no
switchport. Assign an ip adress to these ports.
L2(config-if)#exit
L2(config-if)#exit
L2(config)#router ospf 10
L2(config-router)#router-id 2.2.2.2
L2(config-router)# auto-cost reference-bandwidth 1000
L2(config-router)#exit
L2(config)#service password-encryption
L2(config)#exit
L2#copy running-config startup-config
Press Enter
L2#show startup-config - shows the configuration of switch saved on NVRAM memory

L2#show vlan brief – shows vlan , status and ports assigned to vlan-s
L2#show interface trunk – shows trunk configuration
L2#show interface (interface id) – shows the configurations of specific interface on switch
L2#show ip interface brief – shows the status of all interfaces
L2#show etherchannel summary – shows etherchannel configuration
L2#show ip dhcp binding – shows dhcp client
L2#show standby – shows HSRP
L2#show ip route ospf – shows ospf routing
L2#show ip ospf neighbours – shows ospf neighbours
Router R1 Configuration
1.Router>enable
Enable
Router# configure terminal

Router(config)#
2.You can make the router easier to locate in the network by assigning a hostname. Enter
the following command to assign a hostname:
Router(config)# hostname R1
3. Assign a Password to the router

R1(config)# enable secret cisco
On R1 specify the miminum lengh of passwords 5 characters. For security reasong configure
that R1 will be blocked for 120 seconds if password is typed 3 times wrong during 60
seconds.
R1(config)# security password min-length 4

R1(config)#login block-for 120 attempts 3 within 60
4.Assign a Warning message to the router.
R1(config)# banner motd *Only authorised access*
R1(config)# line console 0

R1(config-line)# password cisco
R1(config-line)# login
R1(config-line)# exit

b. configure local username and password.
Router(config)#hostname R1
R1(config)#ip domain-name cisco.com
R1(config)#username cisco password cisco
R1(config)#crypto key generate rsa
The name for the keys will be: R1.cisco.com
a few minutes.

R1(config)#ip ssh v 2
R1(config)#
First, we have defined the device hostname by using the hostname R1 command. Next, we
have defined the domain name by using the ip domain-name cisco command. After that, the
local user is created by using the username cisco password cisco command. Next, we need
to enable only the SSH access to a device. This is done by using the transport input ssh
command:
R1(config)#line vty 0 15
R1(config-line)#login local
R1(config-line)#transport input ssh
R1(config-line)#exit
7. Configure Router interfaces with ip adrreses on the networks they are connected on.
Now, let’s configure the router:
R1(config)#int Gi0/0
R1(config-if)#no shutdown
R1(config-if)#
%LINK-5-CHANGED: Interface GigabitEthernet0/0, changed state to up
R1(config-if)#description lidhja me L1
R1(config-if)#ip address 10.10.10.2 255.255.255.252
R1(config-if)#exit
R1(config-if)#
R1(config-if)#exit
R1(config-if)#
R1(config-if)#description lidhja me router EDGE
R1(config-if)#exit
R1(config)#router ospf 10
R1(config-router)#router-id 3.3.3.3
R1(config-router)#network 10.10.10.0 0.0.0.3 area 0
R1(config-router)# auto-cost reference-bandwidth 1000
R1(config-router)#exit
R1(config)#service password-encryption
R1(config)#exit
R1#copy running-config startup-config
R1#show startup-config - shows the configuration of switch saved on NVRAM memory

R1#show ip interface brief – shows interface status and the ip configured on interfaces and
subinterfaces
R1#show interface (interface id) – shows the configurations of specific interface on router
R1#show ip route ospf – shows routing table for networks that are learned via OSPF
protocol
R1#show ip opsf neighbour – shows the opsf neighbours, other routers that are direcly
connected to the actual one
Router R2 Configuration
1.Router>enable
Enable

Router(config)#
Router(config)# hostname R2

R2(config)# enable secret cisco
On R2 specify the miminum lengh of passwords 5 characters. For security reasong configure
that R2 will be blocked for 120 seconds if password is typed 3 times wrong during 60
seconds.
R2(config)# security password min-length 4

R2(config)#login block-for 120 attempts 3 within 60
R2(config)# banner motd *Only authorised access*
R2(config)# line console 0

R2(config-line)# password cisco
R2(config-line)# login
R2(config-line)# exit

Router(config)#hostname R2
R2(config)#ip domain-name cisco.com
R2(config)#username cisco password cisco
R2(config)#crypto key generate rsa
The name for the keys will be: R2.cisco.com
a few minutes.
R2(config)#ip ssh v 2
R1(config)#
First, we have defined the device hostname by using the hostname R2 command. Next, we
have defined the domain name by using the ip domain-name cisco command. After that, the
local user is created by using the username cisco password cisco command. Next, we need
to enable only the SSH access to a device. This is done by using the transport input ssh
command:
R2(config)#line vty 0 15
R2(config-line)#login local
R2(config-line)#transport input ssh
R2(config-line)#exit
R1(config-if)#
R2(config-if)#exit
R2(config-if)#
R2(config-if)#exit
R2(config-if)#
R2(config-if)#description lidhja me router EDGE

R2(config-if)#exit
R2(config)#router ospf 10
R2(config-router)#router-id 4.4.4.4
R2(config-router)# auto-cost reference-bandwidth 1000
R2(config-router)#exit
R2(config)#service password-encryption
R2(config)#exit
R2#copy running-config startup-config
R2#show startup-config - shows the configuration of switch saved on NVRAM memory

R2#show ip interface brief – shows interface status and the ip configured on interfaces and
subinterfaces
R2#show interface (interface id) – shows the configurations of specific interface on router
R2#show ip route ospf – shows routing table for networks that are learned via OSPF
protocol
R2#show ip opsf neighbour – shows the opsf neighbours, other routers that are direcly
Router EDGE Configuration
1.Router>enable
Enable

Router(config)#
Router(config)# hostname EDGE

EDGE (config)# enable secret cisco
On EDGE specify the miminum lengh of passwords 5 characters. For security reasong
configure that R2 will be blocked for 120 seconds if password is typed 3 times wrong during
60 seconds.
EDGE (config)# security password min-length 4

EDGE (config)#login block-for 120 attempts 3 within 60
EDGE (config)# banner motd *Only authorised access*
EDGE (config)# line console 0

EDGE (config-line)# password cisco
EDGE (config-line)# login
EDGE (config-line)# exit

Router(config)#hostname EDGE
EDGE (config)#ip domain-name cisco.com
EDGE (config)#username cisco password cisco
EDGE (config)#crypto key generate rsa
The name for the keys will be: EDGE.cisco.com
a few minutes.

EDGE (config)#ip ssh v 2

EDGE (config)#
First, we have defined the device hostname by using the hostname EDGE command. Next,
we have defined the domain name by using the ip domain-name cisco command. After that,
the local user is created by using the username cisco password cisco command. Next, we
need to enable only the SSH access to a device. This is done by using the transport input
ssh command:
EDGE (config)#line vty 0 15

EDGE (config-line)#login local
EDGE (config-line)#transport input ssh
EDGE (config-line)#exit
EDGE (config)#int Gi0/2

EDGE (config-if)#no shutdown
EDGE (config-if)#
EDGE (config-if)#description lidhja me R1

EDGE (config-if)#ip address 20.20.10.2 255.255.255.252
EDGE (config-if)#exit
EDGE (config)#int Gi0/1

EDGE (config-if)#
EDGE (config-if)#description lidhja me R2

EDGE (config)#int Gi0/1/0

EDGE (config-if)#
%LINK-5-CHANGED: Interface GigabitEthernet0/1/0, changed state to up
EDGE (config-if)#description lidhja me router ISP

8. Configure a default route towards ISP.
EDGE (config) ip route 0.0.0.0 0.0.0.0.0 203.0.13.2

connected to the LAN. Inside the OSPF process include the advertisment of default route
towards isp to other routers connected with OSPF in order that other routers to leran and
add in their routing table the default route.
EDGE (config)#router ospf 10

EDGE (config-router)#router-id 5.5.5.5
EDGE (config-router)#network 20.20.10.0 0.0.0.3 area 0
EDGE (config-router)#network 20.20.20.0 0.0.0.3 area 0
EDGE (config-router)#default-information originate
EDGE (config-router)# auto-cost reference-bandwidth 1000
EDGE (config-router)#exit
10. Configure NAT (PAT) on EDGE router.
Port Address Translation PAT

1. Configure NAT on EDGE so that PCs in the vlan 10,20,30 subnet have
connectivity to external networks on a first come first served basis. Allow
multiple PCs to reuse the IP address on interface G0/1/0 on EDGE.
2. Configure the G0/1/0 interface facing the Internet as the NAT outside interface.
EDGE(config)#int f0/0
EDGE(config-if)#ip nat outside
3. Configure the G0/1 and G0/2 interfaces as a NAT inside interface.
EDGE(config)#int range G0/1-2

EDGE(config-if)#ip nat inside
4. Create an access list which references the internal IP addresses we want to

translate.
EDGE(config)#access-list 1 permit any
5. Associate the access list with the outside interface and enable PAT to complete
the configuration.
EDGE(config)#ip nat inside source list 1 interface G0/1/0 overload
EDGE#show startup-config - shows the configuration of switch saved on NVRAM memory

EDGE#show ip interface brief – shows interface status and the ip configured on interfaces
and subinterfaces
EDGE#show interface (interface id) – shows the configurations of specific interface on router
EDGE#show ip route ospf – shows routing table for networks that are learned via OSPF
protocol
EDGE#show ip opsf neighbour – shows the opsf neighbours, other routers that are direcly
EDGE#sh ip nat translation – show nat translations
EDGE#sh ip nat statistics – show nat statistics
ISP
.Router>enable
Enable

Router(config)#
Router(config)# hostname ISP
ISP (config)#int Gi0/0/0

ISP(config-if)#no shutdown
ISP (config-if)#
ISP (config-if)#description lidhja me EDGE

ISP (config-if)#ip address 203.0.13.2 255.255.255.240
ISP (config-if)#exit
3. Configure loopback ip adress to simulate the internet as vitual interface.
ISP (config)#int loopback0

ISP (config-if)#description lidhja me EDGE
ISP (config-if)#ip address 8.8.8.8 255.255.255.255
ISP (config-if)#exit

Konfigurimet

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Konfigurimet

Uploaded by

Copyright:

Available Formats

The following message will display in the command prompt:

Switch# configure terminal

3. Assign a Password to the Switch

S1(config)# enable secret cisco

4.Assign a Warning message to the switch

S1(config)# banner motd *Only authorised access*

S1(config)# line console 0

To enable SSH, the following steps are required:

a. set up a hostname and and a domain name.

How many bits in the modulus [512]:2024

8. Configure IP management for switch

S1(config)#interface vlan 100

S1(config)#int range f0/1-4

S1(config)#interface range f0/23-24

11. Encrypt all passwords

13.On privilege mode run the commands

S1#show startup-config - shows the configuration of switch saved on NVRAM memory

Switch# configure terminal

3. Assign a Password to the Switch

S2(config)# enable secret cisco

4.Assign a Warning message to the switch

S1(config)# banner motd *Only authorised access*

To enable SSH, the following steps are required:

a. set up a hostname and and a domain name.

How many bits in the modulus [512]:2024

8. Configure IP management for switch

S2(config)#interface vlan 100

S2(config)#int range f0/1-2

S2(config)#interface range f0/21-22

13.On privilege mode run the commands

S2#show startup-config - shows the configuration of switch saved on NVRAM memory

Switch# configure terminal

3. Assign a Password to the Switch

4.Assign a Warning message to the switch

S3(config)# banner motd *Only authorised access*

S3(config)# line console 0

To enable SSH, the following steps are required:

a. set up a hostname and and a domain name.

How many bits in the modulus [512]:2024

8. Configure IP management for switch

S3(config)#interface vlan 100

S3(config)#int range f0/1-2

S3(config)#ip dhcp snooping vlan 10

11. Encrypt all passwords

13.On privilege mode run the commands

S3#show startup-config - shows the configuration of switch saved on NVRAM memory

Switch# configure terminal

3. Assign a Password to the Switch

S4(config)# enable secret cisco

4.Assign a Warning message to the switch

S4(config)# banner motd *Only authorised access*

S4(config)# line console 0

To enable SSH, the following steps are required:

a. set up a hostname and and a domain name.

How many bits in the modulus [512]:2024

8. Configure IP management for switch

S4(config)#interface vlan 100

S4(config)#ip dhcp snooping vlan 20

11. Encrypt all passwords

13.On privilege mode run the commands

Switch# configure terminal

3. Assign a Password to the Switch

L1(config)# enable secret cisco

S1(config)# banner motd Only authorised access

S1(config)# banner motd Only authorised access

S3(config)# banner motd Only authorised access

S4(config)# banner motd Only authorised access

L1(config)# banner motd Only authorised access

L1(config)# banner motd Only authorised access

R1(config)# banner motd Only authorised access

R2(config)# banner motd Only authorised access

EDGE (config)# banner motd Only authorised access