Introduction to the Cisco IOS

• In this chapter, you’ll learn how to configure a Cisco IOS router using both the initial setup mode and the Cisco IOS command-line interface (CLI). Through the IOS interface, you can configure passwords, banners, and more. You’ll also learn the basics of router configurations in this chapter
© 2006 Glcat,Zyuanli,. All rights reserved.


Cisco Router IOS
• Carrying network protocols and functions • Connecting high-speed traffic between devices • Adding security to control access and stop unauthorized network use • Providing scalability for ease of network growth and redundancy • Supplying network reliability for connecting to network resources
© 2006 Glcat,Zyuanli,. All rights reserved.


Connecting to a Cisco Router

© 2006 Glcat,Zyuanli,. All rights reserved.


© 2006 Glcat,Zyuanli,. All rights reserved.


5 . All rights reserved.Zyuanli..© 2006 Glcat.

6 .Zyuanli. or NVRAM) © 2006 Glcat. All rights reserved..Bringing Up a Routers • • • • power-on self-test (POST) load the Cisco IOS from flash memory IOS loads and looks for a valid configuration(stored by default in nonvolatile RAM.

just say ―yes‖ or ―y‖ to the following question: © 2006 Glcat. All rights reserved. but Extended Setup gives you the power to configure some global parameters as well as interface configuration parameters. 7 . To enter setup mode. • Basic Management only gives you enough configurations to allow connectivity to the router..Setup Mode • You have two options when using setup mode: • Basic Management and Extended Setup.Zyuanli.

All rights reserved.Zyuanli.System Configuration Dialog --• Would you like to enter the initial configuration dialog? • [yes/no]:y • At any point you may enter a question mark '?' for help.Use ctrl-c to abort configuration dialog at any prompt.• --.. • Default settings are in square brackets '[]'. 8 . © 2006 Glcat.

Zyuanli. 9 .Command-Line Interface • the command-line interface (CLI) truly is the best way to configure a router.. then you’ll get the cash! © 2006 Glcat. All rights reserved. I sometimes refer to the CLI as ―Cash Line Interface‖ because if you can create advanced configurations on Cisco routers and switches using the CLI.

.Logging into the Router • After the interface status messages appear and you press Enter.Zyuanli. All rights reserved. © 2006 Glcat. the Router> prompt will appear. but it’s also a stepping-stone to logging into privileged mode. This is called user exec mode (user mode) and it’s mostly used to view statistics. You can only view and change the configuration of a Cisco router in privileged exec mode (privileged mode). 10 . which you get into with the enable command.

11 . All rights reserved..• Router> • Router>enable • Router# © 2006 Glcat.Zyuanli.

12 .Zyuanli.CLI Prompts Router> User mode disenable config t decompressed Flash(IOS) RAM Router(config)# enable Router# Privileged mode exit end or ctrl+z Global configuration mode Interfice exit copy decompressed NVRAM Interface configuration mode Router(config-if)# Router(config-subif)# © 2006 Glcat. All rights reserved..

13 ..Router and Switch Administrative Functions • • • • Hostnames Banners Password Interface descriptions © 2006 Glcat. All rights reserved.Zyuanli.

• Router(config)#hostname Todd • Todd(config)#hostname Atlanta • Atlanta(config)# • See here: © 2006 Glcat.Zyuanli. one per line.Hostnames • Router#config t • Enter configuration commands. 14 . All rights reserved.. End with • CNTL/Z.

All rights reserved.. 15 .Zyuanli. © 2006 Glcat.Banners • A banner is more than just a little cool— one very good reason for having a banner is to give any and all who dare attempt to telnet or dial into your internetwork a little security notice.

four available banner types • • • • exec process creation banner incoming terminal line banner login banner message of the day banner © 2006 Glcat.Zyuanli.. 16 . All rights reserved.

Zyuanli.• Message of the day (MOTD) is the most extensively used banner. It gives a message to every person dialing into or connecting to the router via Telnet or auxiliary port. 17 .. or even through a console port • See here: © 2006 Glcat. All rights reserved.

© 2006 Glcat. All rights reserved. 18 .Zyuanli..Setting Passwords • There are five passwords used to secure your Cisco routers: – console – Auxiliary – telnet (VTY) – enable password – enable secret.

All rights reserved.Enable Passwords • Console and Auxiliary used to set your enable password that’s used to secure privileged mode. 19 . This will prompt a user for a password when the enable command is used. © 2006 Glcat..Zyuanli.

• See here: © 2006 Glcat. This is not recommended. All rights reserved.example of setting the enable passwords: • Router(config)#enable secret todd • Router(config)#enable password todd • The enable password you have chosen is the same as your enable secret..Zyuanli. 20 . Re-enter the enable password.

User-mode passwords • • • • • • • Router(config)#line ? <0-70> First Line number aux Auxiliary line console Primary terminal line tty Terminal controller vty Virtual terminal x/y Slot/Port for Modems © 2006 Glcat. All rights reserved. 21 .Zyuanli..

Zyuanli. © 2006 Glcat.. • console Sets a console user-mode password. • vty Sets a Telnet password on the router. All rights reserved. 22 .• aux Sets the user-mode password for the auxiliary port.

Telnet Password • • • • • • • Router(config-line)#line vty 0 ? <1-4> Last Line Number <cr> Router(config-line)#line vty 0 4 Router(config-line)# password todd2 Router(config-line)# login See here: © 2006 Glcat. 23 .. All rights reserved.Zyuanli.

© 2006 Glcat.Zyuanli.. All rights reserved. 24 . you’ll need to manually configure the user-mode and enable passwords for encryption.Encrypting Your Passwords • Because only the enable secret password is encrypted by default.

use the service password-encryption command. • Router(config)#service passwordencryption © 2006 Glcat. 25 .• To manually encrypt your passwords. one per line.. • Router#config t • Enter configuration commands. End with CNTL/Z. All rights reserved.Zyuanli.

All rights reserved. like the hostname.Descriptions • Setting descriptions on an interface is helpful to the administrator and.Zyuanli. 26 . only locally significant.. © 2006 Glcat.

All rights reserved. 27 .Zyuanli..• • • • Atlanta(config)#int e0 Atlanta(config-if)#description Sales Lan Atlanta(config-if)#int s0 Atlanta(config-if)#desc Wan to Miami circuit:6fdda4321 • See here: © 2006 Glcat.

Router Interfaces • The 2500 router is a fixed configuration router. which means that when you buy that model.. 28 .Zyuanli. All rights reserved. interface type slot/port • See here: © 2006 Glcat. you’re stuck with that physical configuration. • 2600 router.

All rights reserved.. 29 . and turn it on with the no shutdown command. © 2006 Glcat.Zyuanli.Bringing Up an Interface • You can turn an interface off with the interface command shutdown.

End with CNTL/Z. changed state to up 00:57:09: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0. one per line. All rights reserved.Zyuanli. line protocol is up © 2006 Glcat.• • • • • • • • • • • • Router#config t Enter configuration commands. Router(config)#int ethernet0 Router(config-if)#no shutdown Router(config-if)#^Z 00:57:08: %LINK-3-UPDOWN: Interface Ethernet0.. 30 . changed state to up Router#sh int ethernet0 Ethernet0 is up.

31 ..Zyuanli. All rights reserved.• See here: © 2006 Glcat.

Configuring an IP Address on an Interface • Router(config)#int e0 • Router(config-if)#ip address 172.255.0 • Router(config-if)#no shut © 2006 Glcat.Zyuanli.10. 32 . All rights reserved..255.16.2 255.

Zyuanli. you have to use the secondary parameter © 2006 Glcat. 33 . All rights reserved..• If you want to add a second subnet address to an interface.

255.255.Zyuanli. 34 ..16.0 secondary • Router(config-if)#^Z © 2006 Glcat.20. All rights reserved.• Router(config-if)#ip address 172.2 255.

First. one end—the data communication equipment (DCE) end of the cable—must provide clocking. All rights reserved. © 2006 you must tell an interface to provide clocking if you need it to act like a DCE device. But if you have a back-to-back configuration (for example.. 35 .Zyuanli. one that’s used in a lab environment). Cisco routers are all data terminal equipment (DTE) devices. By default. the interface will usually be attached to a CSU/DSU type of device that provides clocking for the line to the router.Serial Interface Commands • there are a couple of things you need to know.

36 . All rights reserved. End with CNTL/Z.• Router#config t • Enter configuration commands.. • Router(config)#int s0 • Router(config-if)#clock rate ? • Speed (bits per second) • 1200 • 2400 © 2006 Glcat. one per line.Zyuanli.

All rights reserved.Zyuanli.• Router(config-if)#clock rate 64000 • %Error: This command applies only to DCE interfaces • Router(config-if)#int s1 • Router(config-if)#clock rate 64000 • See here: © 2006 Glcat. 37 ..

All rights reserved. Saving.Viewing..Zyuanli. and Erasing Configurations © 2006 Glcat. 38 .

• show running-config • show startup-config © 2006 Glcat..Zyuanli. All rights reserved. 39 .

Zyuanli. All rights running-config RAM (running-config) copy running-config startup-config Bringing Up and decompressed NVRAM (startup-config) show startup-config erase startup-config © 2006 Glcat.. 40 .

All rights reserved..Zyuanli.Verifying Your Configuration • P166~172 © 2006 Glcat. 41 .

Sign up to vote on this title
UsefulNot useful