11 Configuring and Testing Your Network Configuring Cisco devices IOS basics Cisco IOS o Cisco Internetwork Operating

ng System (IOS) is the OS used o IOS is stored in flash (non-volatile memory) o IOS copied to RAM when device is operating increases performance Access methods (establishing CLI session) o Console Terminal access Used to access a device when the networking services have not been started or failed Initial configuration configuration commands for setting up router can be entered on the connected computer Determine status of device device startup, debugging + error messages Password recovery o Telnet/SSH FastEthernet Ports Remotely access router Can access the vty sessions Require password SSH more secure encrypts all communication o AUX port Modem access Remote access via telephone dialup connection or local access Does not require any networking services

Configuration files Contain the IOS software commands used to customise functionality 2 config files o Startup config used during system startup to configure device Stored in NVRAM so when device is turned off file remains intact o Running config Startup config loaded into RAM running config Used to operate network device Changes saved here but must be saved to startup config so they are not lost Command Prompts Every prompt begins with the device name Remainder of the prompt indicates the mode Primary Modes User executive mode (user EXEC) o Limited capabilities useful for some basic operations o Not allowed to change config of device (view-only) o Defined by prompt that ends with > Router > Privileged EXEC mode o Detailed examination of router debugging and testing, file manipulation

o o o o

Execution of configuration and management commands Requires network administration Identified by # eg/ Router# Global config mode + all other specific config modes can only be reached from privileged EXEC mode

Moving between the User EXEC and Privileged EXEC Modes Access the Privileged EXEC mode using the enable command o Router>enable o Prompt will = Router# Disable command is used to return from privileged EXEC to user EXEC mode o Router#disable o Router>

Basic IOS command structure PromptCommand Keyword/argument

Using CLI help Context-Sensitive help o Help associated with mode o Enter ? at any prompt List of commands o Command followed by ? to match with keyword

Command Syntax Check error messages Ambiguous command Incomplete command Incorrect command IOS Examination Commands Show command Show ? Show interfaces displays statistics for all interfaces on the device o Show interfaces command followed by slot/port number to show statistcs for specific interface Show version o Info about currently loaded software version, along with hardware and device info

Global config Config changes are made from this mode that affect the operation of the device as a whole Router#configure terminal config t o Used to take device from privileged EXEC mode to global config mode o Router(config)# Specific Config modes From global config mode there are many different configuration modes that can be entered o Interface mode to configure one of the network interfaces (Fa0/0...)

o Line mode to configure one of the lines (console, VTY...) o Router mode configure the parameters for one of the routing protocols Router#copy running-config startup-config o Save running config to startup config file Hostname o Router (config)#hostname Evelyn Passwords o Console password limits device access using the console connection Router(config)#line console 0 Router(config-line)#password cisco Router(config-line)#login o Enable password limits access to the privileged EXEC mode Router(config)#enable password sydney o Enable secret password encrypted, limits access to the privileged EXEC mode Router(config)#enable secret password class o VTY password limits device access using Telnet Allows access to router using Telnet Cisco routers have 5 lines all must be set with password Router(config)#line vty 0 4 Router(config-line)#password eve Router(config-line)#login Managing Configuration Files o Make changed config the new startup config Router#show running-config verify devices operation Router#copy running-config startup-config o Removing all configurations Router#erase startup-config Configuring interfaces o All interfaces accessed by issuing the interface command at the global config prompt o Router configuring interfaces used as gateways for end devices on LAN directly connected to router Configure Ethernet interface Global config mode Interface config mode Specify address + subnet mask Description No shutdown no shutdown to enable interface Configuring router serial interfaces Global config mode Interface mode Interface + subnet mask Clockrate Description Turn on interface (no shutdown)

Verifying Connectivity Test the stack o Ping command Testing the protocol stack moves from layer 3 to 2 then layer 1

Uses ICMP protocol to check for connectivity Common IOS Ping indicators ! - indicates receipt of an ICMP echo reply . - indicates a timed out while waiting for a reply U - an ICMP unreachable message was received o Testing the loopback ping 127.0.0.1 Pinging the local host confirms that TCP/IP is installed and working on the local network adapter Testing the Interface Assignment o Verifies the interfaces of intermediary devices o Verifying router interfaces Show ip int brief Summary key information for all the interfaces Shows all interfaces attached to the router, the IP addresses (if any) assigned to each interface and the operational status of the interface o Testing router connectivity ping + traceroute o Testing the local network test hosts on the local LAN Successfully pinging remote hosts verifies that both the local host (the router in this case) and the remote host are configured correctly o Testing gateway and remote connectivity verify that a local host can connect with a gateway address Important since gateway is hosts entry + exit to networks o Testing route next hop show ip route o Testing remote hosts ping to interface router successful = connectivity to outside interface is verified then ping to router outside of network Tracing and interpreting trace results o traceroute hops as packet moves through network Combine with ping to diagnose a problem Testing sequence o 1. Loopback o 2. Ping local gateway o 3. Ping remote host o 4. Traceroute to remote host o 5. Examine host configuration for proper local gateway o

Monitoring and documenting of networks Learning about nodes on the network o Use arp to map physical addresses Summary of IOS features and commands: User EXEC Mode enable - Enter Privileged EXEC mode

Privileged EXEC Mode copy running-config startup-config - Copy the active configuration to NVRAM. copy startup-config running-config - Copy the configuration in NVRAM to RAM. erase startup-configuration - Erase the configuration located in NVRAM. ping ip_address - Ping to that address. traceroute ip_address - Trace each hop to that address. show interfaces - Display statistics for all interfaces on a device. show clock - Show the time set in the router. show version - Display currently loaded IOS version, hardware, and device information. show arp - Display the ARP table of the device. show startup-config - Display the saved configuration located in NVRAM. show running-config - Display the contents of the currently running configuration file. show ip interface - Display IP statistics for interface(s) on a router. configure terminal - Enter terminal configuration mode.

Terminal Configuration Mode hostname hostname - Assign a host name to device. enable password password - Set an unencrypted enable password. enable secret password - Set a strongly encrypted enable password. service password-encryption - Encrypt display of all passwords except secret. banner motd# message # - Sets a message-of-the-day banner. line console 0 - Enter console line configuration mode. line vty 0 4 - Enter virtual terminal (Telnet) line configuration mode. interface Interface_name - Enter interface configuration mode.

Line Configuration Mode login - Enable password checking at login. password password - Set line password.

Interface Configuration Mode ip address ip_address netmask - Set interface IP address and subnet mask. description description - Set interface description. clock rate value - Set clock rate for DCE device. no shutdown - Set interface to up. shutdown - Administratively set interface to down.