Cisco Configuration Elements Network Monitoring and Management Tutorial.

Slides:



Advertisements
Similar presentations
© 2003, Cisco Systems, Inc. All rights reserved..
Advertisements

Managing Cisco IOS Software. Overview The router boot sequence Locating IOS software The configuration register Recovering Passwords Backing Up the Cisco.
Cisco Device Hardening Disabling Unused Cisco Router Network Services and Interfaces.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
Securing the Router Chris Cunningham.
 WAN uses Serial ports  Ethernet Ports:  Straight through  Cross over.
CCNA2-1 Chapter 1 Introduction to Routing and Packet Forwarding CLI Configuration and Addressing.
CCNA2 Module 4. Discovering and Connecting to Neighbors Enable and disable CDP Use the show cdp neighbors command Determine which neighboring devices.
1 Semester 2 Module 4 Learning about Other Devices Yuda college of business James Chen
Managing Your Network Environment © 2004 Cisco Systems, Inc. All rights reserved. Managing Cisco IOS Devices INTRO v2.0—9-1.
Implementing a Highly Available Network
1 CCNA 2 v3.1 Module 4. 2 CCNA 2 Module 4 Learning about Devices.
Introduction to the Cisco IOS
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod5_L8 1 Implementing Secure Converged Wide Area Networks (ISCW)
Chapter 9 Managing a Cisco Internetwork Cisco Router Components Bootstrap - Brings up the router during initialization POST - Checks basic functionality;
© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING Mohamed Samir YouTube channel Double.
1 © 2013 Cisco Systems, Inc. All rights reserved. Cisco confidential.Cisco Networking Academy, U.S./Canada Equipping Today’s Instructors for Tomorrow’s.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Securing Network Services.
Network Security1 – Chapter 3 – Device Security (B) Security of major devices: How to protect the device against attacks aimed at compromising the device.
© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 2 – Securing Network Devices.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Initial Switch Configuration Internetworking Fundamentals Instructor: Abdirahman I. Abdi.
Sybex CCNA Chapter 7: Managing a Cisco Internetwork Instructor & Todd Lammle.
Router Hardening Nancy Grover, CISSP ISC2/ISSA Security Conference November 2004.
© Wiley Inc All Rights Reserved. CCNA: Cisco Certified Network Associate Study Guide CHAPTER 9: Managing a Cisco Internetwork.
1 © 2004, Cisco Systems, Inc. All rights reserved. Chapter 6 Configuring a Router/ Learning About Other Devices/ Managing Cisco IOS Software.
NMS Labs Mikko Suomi LAB1 Choose SNMP device managment software Features: –Gives Nice overview of network –Bandwith monitoring –Multible.
2010 Cisco Configuration Elements APRICOT 2010 Kuala Lumpur, Malaysia.
CLI modes Accessing the configuration Basic configuration (hostname and DNS) Authentication and authorization (AAA) Log collection Time Synchronization.
Ch.4 – Learning About Other Devices (CDP and Telnet) CCNA 1 version 3.0 Rick Graziani Cabrillo College.
CLI modes Accessing the configuration Basic configuration (hostname and DNS) Authentication and authorization (AAA) Log collection Time Synchronization.
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public TSHOOT v6 Chapter 1 1 Chapter 1: Planning Maintenance for Complex Networks CCNP TSHOOT:
© Wiley Inc All Rights Reserved. CHAPTER 4: Introduction to the Cisco IOS CCNA: Cisco Certified Network Associate Study Guide.
Chapter 2: Securing Network Devices
CCNA Journal Sample. Index Basic Ethernet Serial Router Rip.
CCNA Configuration Journal Sample. Index Basic Ethernet Serial Router Rip …
Instructor & Todd Lammle
1 © 2007 Cisco Systems, Inc. All rights reserved.Cisco Public Remote access typically involves allowing telnet, SSH connections to the router Remote requires.
Saeed Darvish Pazoki – MCSE, CCNA Abstracted From: Cisco Press – ICND 1 – Chapter 9 Ethernet Switch Configuration 1.
APRICOT 2008 Network Management Taipei, Taiwan February 20-24, 2008 Cisco configuration elelements.
User Access to Router Securing Access.
Slide 1 SNMPv3, SSH & Cisco Matthew G. Marsh Chief Scientist of the NEbraskaCERT.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod9_L8 1 Network Security 2 Module 7 – Secure Network Architecture and Management.
Cisco Discovery Protocol. CDP and Router Boot Up When a Cisco device boots up, CDP starts up automatically and allows the device to detect neighbor devices.
NetPro-ITI Ethernet LANs
These materials are licensed under the Creative Commons Attribution-Noncommercial 3.0 Unported license (
Chapter 5 Managing a Cisco Internetwork
Jose Luis Flores / Amel Walkinshaw
Configuring AAA requires four basic steps: 1.Enable AAA (new-model). 2.Configure security server network parameters. 3.Define one or more method lists.
Carlos Armas Roundtrip Networks Hervey Allen NSRC.
© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—2-1 Ethernet LANs Understanding Switch Security.
Configuration Modes and TFTP Honolulu Community College Cisco Academy Training Center Semester 2 Version 2.1.
© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—4-1 LAN Connections Understanding Cisco Router Security.
 Router Configurations part1 2 nd semester
DHCP CONFIGURATION Routing & Switching. DHCPV4 OPERATION CONFIGURING A DHCPV4 SERVER A Cisco router running the Cisco IOS software can be configured to.
Cisco LAN Switches.
CISCO CONFIGURATION ELEMENTS 1. Overview Basic things that we need to make sure are configured on a Cisco router (and switch) to do proper network management.
Managing a Cisco Devices Internetwork
Cisco configuration elelements
Switch Commands Exec Commands Switch#? exec Commands
Understanding Switch Security
CCNA Routing and Switching Routing and Switching Essentials v6.0
Chapter 10: Device Discovery, Management, and Maintenance
Cisco configuration elements
CCNA Routing and Switching Routing and Switching Essentials v6.0
IST 202 Chapter 4.
Basic switch and router configuration
Understanding Switch Security
Chapter 10: Device Discovery, Management, and Maintenance
Understanding Cisco Router Security
Chapter 8: Monitoring the Network
Presentation transcript:

Cisco Configuration Elements Network Monitoring and Management Tutorial

Overview Basic things that we need to make sure are configured on a Cisco router (and switch) to do proper network management These apply to other network equipment manufacturers of course, and to servers and workstations

Hostname:Hostname of the device SSH:Enable Secure SHell DNS:Domain Name Lookup NTP:Time synchronization (Network Time Protocol) Syslog:System log messages SNMP:SNMP configuration SNMP traps:Where to send traps CDP:Cisco Discovery Protocol Elements

Access the router 1.ssh in class) 2.You are in “user mode” rtr> 3.If you’re user has the privileges, go to “privileged mode” rtr>enable (might need pw) rtr#conf t rtr(config)# 4.Type in configuration commands. 5.Exit and save/build your new configuration rtr(config)#exit rtr#wr mem

Preferably we use the FQDN (Fully Qualified Domain Name). In config mode on the router rtr(config)#hostname bb-rtrN.mgmt.ws.afnog.org Hostname

In config mode on the router: ip domain-name mtg.ws.afnog.org ip name-server DNS configuration

In config mode: ntp server pool.ntp.org clock timezone XXXX 3 If needed: clock summer-time XXXX recurring \ last Sun Mar 2:00 last Sun Oct \ 3:00 Replace “XXXX” with the timezone abbreviation for the location of your router. Verify: rtr>show clock NTP + time configuration

Only crypto version of IOS/CatOS have support for SSH – there are export restrictions... In config mode: rtr# aa new-model rtr# crypto key generate rsa rtr# username USERID secret 0 \ PASSWORD …above is required to be allowed to enable SSH. Verify creation with: sh crypto key mypubkey rsa Use at least 768 bits - OpenSSH requires it SSH

Enforce ssh (disabling telnet) on vty lines rtr#conf t rtr(config)#line vty 0 4 rtr(config)#transport input ssh rtr(config)#^Z (“exit” completely) rtr#wr mem SSH is now enabled Telnet is not necessary disabled! - Use ACLs to be sure of this SSH continued

In config mode, enable logging to your classroom NOC machine rtr(config)#logging rtr(config)#logging facility local5 rtr(config)#logging trap debugging Syslog

In config mode: # snmp-server community xxxxxxxxx RW # snmp-server community public RO # snmp-server location XX # snmp-server enable traps config # snmp-server enable traps envmon # snmp-server enable traps config-copy # snmp-server enable traps syslog # snmp-server host XXX public – Replace xxxxxxxx with the class private community string – Replace “XX” with an abbreviation for your location. – Replace “XXX” with your network’s gateway address. SNMP

Cisco Discovery Protocol Enabled by default nowadays in current IOS versions. Otherwise, enable with ”cdp enable” or ”cdp run” in configure mode on your router. tcpdump and tools like cdpr will show you CDP announcements check neighbor announcement with: rtr>show cdp neighbors CDP

? Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.