Presentation is loading. Please wait.

Presentation is loading. Please wait.

APRICOT 2008 Network Management Taipei, Taiwan February 20-24, 2008 Cisco configuration elelements.

Published byGiles Lawrence Modified over 9 years ago

Similar presentations

Presentation on theme: "APRICOT 2008 Network Management Taipei, Taiwan February 20-24, 2008 Cisco configuration elelements."— Presentation transcript:

1 APRICOT 2008 Network Management Taipei, Taiwan February 20-24, 2008 Cisco configuration elelements

2 Overview Basic things that we need to make sure are configured on a Cisco router (and switch) to do proper network management These apply to other network equipment manufacturers of course, and to servers and workstations

3 Elements Hostnamehostname of the device SSHenable secure shell DNSdomain name lookup NTPtime synchronization Syslogsyslog messages SNMPSNMP configuration SNMP trapsand where to send traps CDPCisco discovery protocol

4 Hostname Use the FQDN preferably. In config mode: hostname gw|sw-XYZ[.domain.name]

5 DNS configuration Config mode: ip domain-name mgmt.conference.apricot.net ip name-server 169.223.2.2

6 NTP + time configuration In config mode: ntp server pool.ntp.org clock timezone CWT 8 If needed: clock summer-time XXX recurring last Sun Mar 2:00 last Sun Oct 3:00 Verify: show clock

7 SSH Only crypto version of IOS/CatOS have support for SSH – there are export restrictions... In config mode: aaa new-model crypto key generate rsa username inst secret 0 xxxxxxxxx... above is required to be allowed to enable SSH. Verify creation with: sh crypto key mypubkey rsa Use at least 768 bits

8 SSH (2)‏ Enforce ssh (disabling telnet) on vty lines: host # conf t host(config)# line vty 0 4 host(config-line)# transport input ssh ^Z host# SSH is now enabled, and the telnet disabled

9 Syslog In config mode: logging noc.mgmt.conference.apricot.net logging facility local5 logging trap debugging

10 SNMP In config mode: snmp-server community xxxxxxxxx RW snmp-server community apric0t08 RO snmp-server location Taipei, room 403 snmp-server enable traps config snmp-server enable traps envmon snmp-server enable traps config snmp-server enable traps syslog snmp-server host xxx (see cisco doc)‏

11 CDP Cisco Discovery Protocol Normally enabled by default nowadays Otherwise, enabled with ”cdp enable” tcpdump and tools like cdpr will show you CDP announcements

Download ppt "APRICOT 2008 Network Management Taipei, Taiwan February 20-24, 2008 Cisco configuration elelements."

Similar presentations

© 2003, Cisco Systems, Inc. All rights reserved..

© 2003, Cisco Systems, Inc. All rights reserved..
Managing Cisco IOS Software. Overview The router boot sequence Locating IOS software The configuration register Recovering Passwords Backing Up the Cisco.

Managing Cisco IOS Software. Overview The router boot sequence Locating IOS software The configuration register Recovering Passwords Backing Up the Cisco.
Cisco Device Hardening Disabling Unused Cisco Router Network Services and Interfaces.

Cisco Device Hardening Disabling Unused Cisco Router Network Services and Interfaces.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
Securing the Router Chris Cunningham.

Securing the Router Chris Cunningham.
Virtual LANs.

Virtual LANs.
CCNA2 Module 4. Discovering and Connecting to Neighbors Enable and disable CDP Use the show cdp neighbors command Determine which neighboring devices.

CCNA2 Module 4. Discovering and Connecting to Neighbors Enable and disable CDP Use the show cdp neighbors command Determine which neighboring devices.
1 Semester 2 Module 4 Learning about Other Devices Yuda college of business James Chen

1 Semester 2 Module 4 Learning about Other Devices Yuda college of business James Chen
Managing Your Network Environment © 2004 Cisco Systems, Inc. All rights reserved. Managing Cisco IOS Devices INTRO v2.0—9-1.

Managing Your Network Environment © 2004 Cisco Systems, Inc. All rights reserved. Managing Cisco IOS Devices INTRO v2.0—9-1.
Implementing a Highly Available Network

Implementing a Highly Available Network
1 CCNA 2 v3.1 Module 4. 2 CCNA 2 Module 4 Learning about Devices.

1 CCNA 2 v3.1 Module 4. 2 CCNA 2 Module 4 Learning about Devices.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod5_L8 1 Implementing Secure Converged Wide Area Networks (ISCW)

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod5_L8 1 Implementing Secure Converged Wide Area Networks (ISCW)
Chapter 9 Managing a Cisco Internetwork Cisco Router Components Bootstrap - Brings up the router during initialization POST - Checks basic functionality;

Chapter 9 Managing a Cisco Internetwork Cisco Router Components Bootstrap - Brings up the router during initialization POST - Checks basic functionality;
© 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel Double.

© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING Mohamed Samir YouTube channel Double.
1 © 2013 Cisco Systems, Inc. All rights reserved. Cisco confidential.Cisco Networking Academy, U.S./Canada Equipping Today’s Instructors for Tomorrow’s.

1 © 2013 Cisco Systems, Inc. All rights reserved. Cisco confidential.Cisco Networking Academy, U.S./Canada Equipping Today’s Instructors for Tomorrow’s.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Securing Network Services.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Securing Network Services.
Network Security1 – Chapter 3 – Device Security (B) Security of major devices: How to protect the device against attacks aimed at compromising the device.

Network Security1 – Chapter 3 – Device Security (B) Security of major devices: How to protect the device against attacks aimed at compromising the device.
© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 2 – Securing Network Devices.

© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 2 – Securing Network Devices.
Sybex CCNA 640-802 Chapter 7: Managing a Cisco Internetwork Instructor & Todd Lammle.

Sybex CCNA Chapter 7: Managing a Cisco Internetwork Instructor & Todd Lammle.
Router Hardening Nancy Grover, CISSP ISC2/ISSA Security Conference November 2004.

Router Hardening Nancy Grover, CISSP ISC2/ISSA Security Conference November 2004.

Similar presentations

Ads by Google