Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                

CCNADocumentV7 ITN Module10 BasicRouterConfiguration

Download as docx, pdf, or txt
Download as docx, pdf, or txt
You are on page 1of 16

WELCOME TO INTRODUCTION TO NETWORK

MODULE 10: Basic Router Configuration


10.1. Introduction
10.1.1. Why should I take this module?
Welcome to Basic Router Configuration!
Have you ever run a relay? The first person runs the first leg of the race and hands off the
baton to the next runner, who continues forward in the second leg of the race and hands off
the baton to the third runner, and on it goes. Routing packets is very similar to a relay. But if
the first runner does not know where to find the second runner, or drops the baton in the first
leg, then that relay team will most certainly lose the race.
Routing packets is very similar to a relay. As you know, routing tables are created and used
by routers to forward packets from their local networks on to other networks. But a router
cannot create a routing table or forward any packets until it has been configured. If you plan
to become a network administrator you definitely must know how to do this. The good news?
It is easy! This module has Syntax Checker activities so that you can practice your
configuration commands and see the output. There are also some Packet Tracer activities to
get you started. Let’s go!
10.1.2. What will I learn in this module?
Module Title: Basic Router Configuration
Module Objective: Implement initial settings on a router and end devices.
Topic Title Topic Objective
Configure Initial Router Settings Configure initial settings on an IOS Cisco router.
Configure Interfaces Configure two active interfaces on a Cisco IOS router.
Configure the Default Gateway Configure devices to use the default gateway.

10.2. Configure Initial Router Settings


10.2.1. Basic Router Configuration Steps
The following tasks should be completed when configuring initial settings on a router.
1. Configure the device name.
Router(config)# hostname hostname

2. Secure privileged EXEC mode.


Router(config)# enable secret password

3. Secure user EXEC mode.


Router(config)# line console 0
Router(config-line)# password password
Router(config-line)# login

4. Secure remote Telnet / SSH access.


Router(config-line)# line vty 0 4
Router(config-line)# password password
Router(config-line)# login
Router(config-line)# transport input {ssh | telnet}

1
WELCOME TO INTRODUCTION TO NETWORK

5. Secure all passwords in the config file.


Router(config-line)# exit
Router(config)# service password-encryption

6. Provide legal notification.


Router(config)# banner motd delimiter message delimiter

7. Save the configuration.


Router(config)# end
Router# copy running-config startup-config

10.2.2. Basic Router Configuration Example


In this example, router R1 in the topology diagram will be configured with initial settings

To configure the device name for R1, use the following commands.
Router> enable
Router# configure terminal
Enter configuration commands, one per line.
End with CNTL/Z.
Router(config)# hostname R1
R1(config)#

Note: Notice how the router prompt now displays the router hostname.
All router access should be secured. Privileged EXEC mode provides the user with complete
access to the device and its configuration. Therefore, it is the most important mode to secure.
The following commands secure privileged EXEC mode and user EXEC mode, enable Telnet
and SSH remote access, and encrypt all plaintext (i.e., user EXEC and VTY line) passwords.
R1(config)# enable secret class
R1(config)#
R1(config)# line console 0
R1(config-line)# password cisco
R1(config-line)# login
R1(config-line)# exit
R1(config)#
R1(config)# line vty 0 4
R1(config-line)# password cisco
R1(config-line)# login
R1(config-line)# transport input ssh telnet
R1(config-line)# exit
R1(config)#
R1(config)# service password-encryption
R1(config)#

The legal notification warns users that the device should only be accessed by permitted users.
Legal notification is configured as follows.
2
WELCOME TO INTRODUCTION TO NETWORK

R1(config)# banner motd #


Enter TEXT message. End with a new line and the #
***********************************************
WARNING: Unauthorized access is prohibited!
***********************************************
#
R1(config)#

If the previous commands were configured and the router accidently lost power, all
configured commands would be lost. For this reason, it is important to save the configuration
when changes are implemented. The following command saves the configuration to NVRAM.
R1# copy running-config startup-config
Destination filename [startup-config]?
Building configuration...
[OK]
R1#

10.2.3. Syntax Checker - Configure Initial Router Settings


Use this syntax checker to practice configuring the initial settings on a router.
 Configure the device name.
 Secure the privileged EXEC mode.
 Secure and enable remote SSH and Telnet access.
 Secure all plaintext passwords.
 Provide legal notification.

Enter global configuration mode to configure the name of the router as


“R1”.
Router>enable
Router#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#hostname R1
Configure 'class' as the secret password.
R1(config)#enable secret class
Configure 'cisco' as the console line password, require users to login, and
return to global configuration mode.
R1(config)#line console 0
R1(config-line)#password cisco
R1(config-line)#login
R1(config-line)#exit
For vty lines 0 through 4, configure 'cisco' as the password, require users
to login, enable SSH and Telnet access, and return to global configuration
mode.
R1(config)#line vty 0 4
R1(config-line)#password cisco
R1(config-line)#login
R1(config-line)#transport input ssh telnet
R1(config-line)#exit
Encrypt all clear text passwords.
R1(config)#service password-encryption
Enter the banner 'Authorized Access Only!' and use # as the delimiting
character.
R1(config)#banner motd #Authorized Access Only!#
Exit global configuration mode.
R1(config)#exit
R1#
You have successfully configured the initial settings on router R1.

3
WELCOME TO INTRODUCTION TO NETWORK

10.2.4. Packet Tracer - Configure Initial Router Settings


In this activity, you will perform basic router configurations. You will secure access to the
CLI and console port using encrypted and plaintext passwords. You will also configure
messages for users logging into the router. These banners also warn unauthorized users that
access is prohibited. Finally, you will verify and save your running configuration.
Configure Initial Router Settings (pdf, pka)

10.3. Configure Interfaces


10.3.1. Configure Router Interfaces
At this point, your routers have their basic configurations. The next step is to configure their
interfaces. This is because routers are not reachable by end devices until the interfaces are
configured. There are many different types of interfaces available on Cisco routers. For
example, the Cisco ISR 4321 router is equipped with two Gigabit Ethernet interfaces:
 GigabitEthernet 0/0/0 (G0/0/0)
 GigabitEthernet 0/0/1 (G0/0/1)

The task to configure a router interface is very similar to a management SVI on a switch.
Specifically, it includes issuing the following commands:
Router(config)# interface type-and-number
Router(config-if)# description description-text
Router(config-if)# ip address ipv4-address subnet-mask
Router(config-if)# ipv6 address ipv6-address/prefix-length
Router(config-if)# no shutdown

Note: When a router interface is enabled, information messages should be displayed


confirming the enabled link.
Although the description command is not required to enable an interface, it is good practice
to use it. It can be helpful in troubleshooting on production networks by providing
information about the type of network connected. For example, if the interface connects to an
ISP or service carrier, the description command would be helpful to enter the third-party
connection and contact information.
Note: The description-text is limited to 240 characters.
Using the no shutdown command activates the interface and is similar to powering on the
interface. The interface must also be connected to another device, such as a switch or a router,
for the physical layer to be active.
Note: On inter-router connections where there is no Ethernet switch, both interconnecting
interfaces must be configured and enabled.
10.3.2. Configure Router Interfaces Example
In this example, the directly connected interfaces of R1 in the topology diagram will be
enabled.

4
WELCOME TO INTRODUCTION TO NETWORK

To configure the the interfaces on R1, use the following commands.


R1> enable
R1# configure terminal
Enter configuration commands, one per line.
End with CNTL/Z.
R1(config)# interface gigabitEthernet 0/0/0
R1(config-if)# description Link to LAN
R1(config-if)# ip address 192.168.10.1 255.255.255.0
R1(config-if)# ipv6 address 2001:db8:acad:10::1/64
R1(config-if)# no shutdown
R1(config-if)# exit
R1(config)#
*Aug 1 01:43:53.435: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/0,
changed state to down
*Aug 1 01:43:56.447: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/0,
changed state to up
*Aug 1 01:43:57.447: %LINEPROTO-5-UPDOWN: Line protocol on Interface
GigabitEthernet0/0/0, changed state to up
R1(config)#
R1(config)#
R1(config)# interface gigabitEthernet 0/0/1
R1(config-if)# description Link to R2
R1(config-if)# ip address 209.165.200.225 255.255.255.252
R1(config-if)# ipv6 address 2001:db8:feed:224::1/64
R1(config-if)# no shutdown
R1(config-if)# exit
R1(config)#
*Aug 1 01:46:29.170: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/1,
changed state to down
*Aug 1 01:46:32.171: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/1,
changed state to up
*Aug 1 01:46:33.171: %LINEPROTO-5-UPDOWN: Line protocol on Interface
GigabitEthernet0/0/1, changed state to up
R1(config)#

Note: Notice the informational messages informing us that G0/0/0 and G0/0/1 are enabled.
10.3.3. Verify Interface Configuration
There are several commands that can be used to verify interface configuration. The most
useful of these is the show ip interface brief and show ipv6 interface brief commands, as
shown in the example.
R1# show ip interface brief
Interface IP-Address OK? Method Status
Protocol
GigabitEthernet0/0/0 192.168.10.1 YES manual up up
GigabitEthernet0/0/1 209.165.200.225 YES manual up up
Vlan1 unassigned YES unset administratively down
down
5
WELCOME TO INTRODUCTION TO NETWORK

R1# show ipv6 interface brief


GigabitEthernet0/0/0 [up/up]
FE80::201:C9FF:FE89:4501
2001:DB8:ACAD:10::1
GigabitEthernet0/0/1 [up/up]
FE80::201:C9FF:FE89:4502
2001:DB8:FEED:224::1
Vlan1 [administratively down/down]
unassigned
R1#

10.3.4. Configuration Verification Commands


The table summarizes the more popular show commands used to verify interface
configuration.
Commands Description
The output displays all interfaces, their IP addresses, and their
show ip interface brief current status. The configured and connected interfaces should
show ipv6 interface display a Status of “up” and Protocol of “up”. Anything else
brief would indicate a problem with either the configuration or the
cabling.
show ip route
Displays the contents of the IP routing tables stored in RAM.
show ipv6 route
Displays statistics for all interfaces on the device. However, this
show interfaces
command will only display the IPv4 addressing information.
show ip interface Displays the IPv4 statistics for all interfaces on a router.
show ipv6 interface Displays the IPv6 statistics for all interfaces on a router.
show ip interface brief
R1# show ip interface brief
Interface IP-Address OK? Method Status
Protocol
GigabitEthernet0/0/0 192.168.10.1 YES manual up up
GigabitEthernet0/0/1 209.165.200.225 YES manual up up
Vlan1 unassigned YES unset administratively down
down
R1#

show ipv6 interface brief


R1# show ipv6 interface brief
GigabitEthernet0/0/0 [up/up]
FE80::201:C9FF:FE89:4501
2001:DB8:ACAD:10::1
GigabitEthernet0/0/1 [up/up]
FE80::201:C9FF:FE89:4502
2001:DB8:FEED:224::1
Vlan1 [administratively down/down]
unassigned
R1#

show ip route
R1# show ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
6
WELCOME TO INTRODUCTION TO NETWORK

i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-


2
ia - IS-IS inter area, * - candidate default, U - per-user static
route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
a - application route
+ - replicated route, % - next hop override, p - overrides from PfR
Gateway of last resort is not set
192.168.10.0/24 is variably subnetted, 2 subnets, 2 masks
C 192.168.10.0/24 is directly connected, GigabitEthernet0/0/0
L 192.168.10.1/32 is directly connected, GigabitEthernet0/0/0
209.165.200.0/24 is variably subnetted, 2 subnets, 2 masks
C 209.165.200.224/30 is directly connected, GigabitEthernet0/0/1
L 209.165.200.225/32 is directly connected, GigabitEthernet0/0/1
R1#

show ipv6 route


R1# show ipv6 route
IPv6 Routing Table - default - 5 entries
Codes: C - Connected, L - Local, S - Static, U - Per-user Static route
B - BGP, R - RIP, H - NHRP, I1 - ISIS L1
I2 - ISIS L2, IA - ISIS interarea, IS - ISIS summary, D - EIGRP
EX - EIGRP external, ND - ND Default, NDp - ND Prefix, DCE -
Destination
NDr - Redirect, RL - RPL, O - OSPF Intra, OI - OSPF Inter
OE1 - OSPF ext 1, OE2 - OSPF ext 2, ON1 - OSPF NSSA ext 1
ON2 - OSPF NSSA ext 2, a - Application
C 2001:DB8:ACAD:10::/64 [0/0]
via GigabitEthernet0/0/0, directly connected
L 2001:DB8:ACAD:10::1/128 [0/0]
via GigabitEthernet0/0/0, receive
C 2001:DB8:FEED:224::/64 [0/0]
via GigabitEthernet0/0/1, directly connected
L 2001:DB8:FEED:224::1/128 [0/0]
via GigabitEthernet0/0/1, receive
L FF00::/8 [0/0]
via Null0, receive
R1#

show interfaces
R1# show interfaces gig0/0/0
GigabitEthernet0/0/0 is up, line protocol is up
Hardware is ISR4321-2x1GE, address is a0e0.af0d.e140 (bia a0e0.af0d.e140)
Description: Link to LAN
Internet address is 192.168.10.1/24
MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive not supported
Full Duplex, 100Mbps, link type is auto, media type is RJ45
output flow-control is off, input flow-control is off
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:00:01, output 00:00:35, output hang never
Last clearing of "show interface" counters never
Input queue: 0/375/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
1180 packets input, 109486 bytes, 0 no buffer
Received 84 broadcasts (0 IP multicasts)
0 runts, 0 giants, 0 throttles
7
WELCOME TO INTRODUCTION TO NETWORK

0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored


0 watchdog, 1096 multicast, 0 pause input
65 packets output, 22292 bytes, 0 underruns
0 output errors, 0 collisions, 2 interface resets
11 unknown protocol drops
0 babbles, 0 late collision, 0 deferred
1 lost carrier, 0 no carrier, 0 pause output
0 output buffer failures, 0 output buffers swapped out
R1#

show ip interface
R1# show ip interface g0/0/0
GigabitEthernet0/0/0 is up, line protocol is up
Internet address is 192.168.10.1/24
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing Common access list is not set
Outgoing access list is not set
Inbound Common access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF switching turbo vector
IP Null turbo vector
Associated unicast routing topologies:
Topology "base", operation state is UP
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
Input features: MCI Check
IPv4 WCCP Redirect outbound is disabled
IPv4 WCCP Redirect inbound is disabled
IPv4 WCCP Redirect exclude is disabled
R1#

show ipv6 interface


R1# show ipv6 interface g0/0/0
GigabitEthernet0/0/0 is up, line protocol is up
IPv6 is enabled, link-local address is FE80::868A:8DFF:FE44:49B0
No Virtual link-local address(es):
Description: Link to LAN
Global unicast address(es):
8
WELCOME TO INTRODUCTION TO NETWORK

2001:DB8:ACAD:10::1, subnet is 2001:DB8:ACAD:10::/64


Joined group address(es):
FF02::1
FF02::1:FF00:1
FF02::1:FF44:49B0
MTU is 1500 bytes
ICMP error messages limited to one every 100 milliseconds
ICMP redirects are enabled
ICMP unreachables are sent
ND DAD is enabled, number of DAD attempts: 1
ND reachable time is 30000 milliseconds (using 30000)
ND NS retransmit interval is 1000 milliseconds
R1#

10.3.5. Syntax Checker - Configure Interfaces


Use this syntax checker to practice configuring the GigabitEthemet 0/0 interface on a router.
 Describe the link as 'Link to LAN'.
 Configure the IPv4 address as 192.168.10.1 with the subnet mask 255.255.255.0.
 Configure the IPv6 address as 2001:db8:acad:10::1 with the /64 prefix length.
 Activate the interface.
Enter global configuration mode.
R1#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Configure interface gigabitethernet 0/0/0.
R1(config)#interface gigabitethernet 0/0/0
Describe the link as “Link to LAN”.
R1(config-if)#description Link to LAN
Configure the interface with IPv4 address 192.168.10.1 and subnet mask
255.255.255.0.
R1(config-if)#ip address 192.168.10.1 255.255.255.0
Configure the interface with IPv6 address 2001:db8:acad:10::1 and the
prefix length /64.
R1(config-if)#ipv6 address 2001:db8:acad:10::1/64
Enable the interface and return to global configuration mode.
R1(config-if)#no shutdown
*Aug 1 01:43:53.435: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/0,
changed state to down
*Aug 1 01:43:56.447: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/0,
changed state to up
*Aug 1 01:43:57.447: %LINEPROTO-5-UPDOWN: Line protocol on Interface
GigabitEthernet0/0/0, changed state to up
R1(config-if)#exit
R1#
You have successfully configured the initial settings on router R1.

10.4. Configure the Default Gateway


10.4.1. Default Gateway on a Host
If your local network has only one router, it will be the gateway router and all hosts and
switches on your network must be configured with this information. If your local network has
multiple routers, you must select one of them to be the default gateway router. This topic
explains how to configure the default gateway on hosts and switches.
For an end device to communicate over the network, it must be configured with the correct IP
address information, including the default gateway address. The default gateway is only used
9
WELCOME TO INTRODUCTION TO NETWORK

when the host wants to send a packet to a device on another network. The default gateway
address is generally the router interface address attached to the local network of the host. The
IP address of the host device and the router interface address must be in the same network.
For example, assume an IPv4 network topology consisting of a router interconnecting two
separate LANs. G0/0/0 is connected to network 192.168.10.0, while G0/0/1 is connected to
network 192.168.11.0. Each host device is configured with the appropriate default gateway
address.
In this example, if PC1 sends a packet to PC2, then the default gateway is not used. Instead,
PC1 addresses the packet with the IPv4 address of PC2 and forwards the packet directly to
PC2 through the switch.

What if PC1 sent a packet to PC3? PC1 would address the packet with the IPv4 address of
PC3, but would forward the packet to its default gateway, which is the G0/0/0 interface of R1.
The router accepts the packet and accesses its routing table to determine that G0/0/1 is the
appropriate exit interface based on the destination address. R1 then forwards the packet out of
the appropriate interface to reach PC3.

10
WELCOME TO INTRODUCTION TO NETWORK

The same process would occur on an IPv6 network, although this is not shown in the
topology. Devices would use the IPv6 address of the local router as their default gateway.
10.4.2. Default Gateway on a Switch
A switch that interconnects client computers is typically a Layer 2 device. As such, a Layer 2
switch does not require an IP address to function properly. However, an IP configuration can
be configured on a switch to give an administrator remote access to the switch.
To connect to and manage a switch over a local IP network, it must have a switch virtual
interface (SVI) configured. The SVI is configured with an IPv4 address and subnet mask on
the local LAN. The switch must also have a default gateway address configured to remotely
manage the switch from another network.
The default gateway address is typically configured on all devices that will communicate
beyond their local network.

To configure an IPv4 default gateway on a switch, use the ip default-gateway ip-address


global configuration command. The ip-address that is configured is the IPv4 address of the
local router interface connected to the switch.

11
WELCOME TO INTRODUCTION TO NETWORK

The figure shows an administrator establishing a remote connection to switch S1 on another


network.
In this example, the administrator host would use its default gateway to send the packet to the
G0/0/1 interface of R1. R1 would forward the packet to S1 out of its G0/0/0 interface.
Because the packet source IPv4 address came from another network, S1 would require a
default gateway to forward the packet to the G0/0/0 interface of R1. Therefore, S1 must be
configured with a default gateway to be able to reply and establish an SSH connection with
the administrative host.
Note: Packets originating from host computers connected to the switch must already have the
default gateway address configured on their host computer operating systems.
A workgroup switch can also be configured with an IPv6 address on an SVI. However, the
switch does not require the IPv6 address of the default gateway to be configured manually.
The switch will automatically receive its default gateway from the ICMPv6 Router
Advertisement message from the router.
10.4.3. Syntax Checker - Configure the Default Gateway
Use this syntax checker to practice configuring the default gateway of a Layer 2 switch.
Enter global configuration mode.
S1#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.

Configure 192.168.10.1 as the default gateway for S1.

S1(config)#ip default-gateway 192.168.10.1


S1(config)#
You have successfully set the default gateway on switch S1.

10.4.4. Packet Tracer - Connect a Router to a LAN


In this activity, you will use various show commands to display the current state of the router.
You will then use the Addressing Table to configure router Ethernet interfaces. Finally, you
will use commands to verify and test your configurations.
Connect a Router to a LAN (pdf, pka)
10.4.5. Packet Tracer - Troubleshoot Default Gateway Issues
For a device to communicate across multiple networks, it must be configured with an IP
address, subnet mask, and a default gateway. The default gateway is used when the host wants
to send a packet to a device on another network. The default gateway address is generally the
router interface address attached to the local network to which the host is connected. In this
activity, you will finish documenting the network. You will then verify the network
documentation by testing end-to-end connectivity and troubleshooting issues. The
troubleshooting method you will use consists of the following steps:
 Verify the network documentation and use tests to isolate problems.
 Determine an appropriate solution for a given problem.

12
WELCOME TO INTRODUCTION TO NETWORK

 Implement the solution.


 Test to verify the problem is resolved.
 Document the solution.

Troubleshoot Default Gateway Issues (pdf, pka)

10.5. Module Practice and Quiz


10.5.1. Video - Network Device Differences: Part 1
Click here to view Part 1 of a video explaining the different router and switch devices you
may experience during your Packet Tracer and Lab practices.
10.5.2. Video - Network Device Differences: Part 2
Click here to view Part 2 of a video explaining the different router and switch devices you
may experience during your Packet Tracer and Lab practices.
10.5.3. Packet Tracer - Basic Device Configuration
Your network manager is impressed with your performance in your job as a LAN technician.
She would like you to now demonstrate your ability to configure a router connecting two
LANs. Your tasks include configuring basic settings on a router and a switch using the Cisco
IOS. You will then verify your configurations, as well as configurations on existing devices
by testing end-to-end connectivity.
Basic Device Configuration (pdf, pka)
10.5.4. Lab - Build a Switch and Router Network
Skills Practice Opportunity
You have the opportunity to practice the following skills:
 Part 1: Set Up the Topology
 Part 2: Configure Devices and Verify Connectivity
 Part 3: Display Device Information

You can practice these skills using the Packet Tracer or lab equipment, if available.
Packet Tracer - Physical Mode (PTPM) (pdf, pka)
Lab Equipment (pdf)
10.5.5. What did I learn in this module?
Configure Initial Router Settings
The following tasks should be completed when configuring initial settings on a router.
1. Configure the device name.
2. Secure privileged EXEC mode.
3. Secure user EXEC mode.
4. Secure remote Telnet / SSH access.
5. Secure all passwords in the config file.

13
WELCOME TO INTRODUCTION TO NETWORK

6. Provide legal notification.


7. Save the configuration.

Configure Interfaces
For routers to be reachable, the router interfaces must be configured. The Cisco ISR 4321
router is equipped with two Gigabit Ethernet interfaces: GigabitEthernet 0/0/0 (G0/0/0) and
GigabitEthernet 0/0/1 (G0/0/1). The tasks to configure a router interface are very similar to a
management SVI on a switch. Using the no shutdown command activates the interface. The
interface must also be connected to another device, such as a switch or a router, for the
physical layer to be active. There are several commands that can be used to verify interface
configuration including the show ip interface brief and show ipv6 interface brief, the show
ip route and show ipv6 route, as well as show interfaces, show ip interface and show ipv6
interface.
Configure the Default Gateway
For an end device to communicate over the network, it must be configured with the correct IP
address information, including the default gateway address. The default gateway address is
generally the router interface address for the router that is attached to the local network of the
host. The IP address of the host device and the router interface address must be in the same
network. To connect to and manage a switch over a local IP network, it must have a switch
virtual interface (SVI) configured. The SVI is configured with an IPv4 address and subnet
mask on the local LAN. The switch must also have a default gateway address configured to
remotely manage the switch from another network. To configure an IPv4 default gateway on a
switch, use the ip default-gateway ip-address global configuration command. Use the IPv4
address of the local router interface that is connected to the switch.
10.5.6. Module Quiz - Basic Router Configuration
What is the purpose of the banner motd command?
A. It configures a message that will identify printed documents to LAN users.
B. It is a way that routers communicate the status of their links with oneanother.
C. It provides an easy way of communicating with any user attached to a router’s LANs.
D. It provides a way to make announcements to those who log in to a router.
A technician is configuring a router to allow for all forms of management access. As part
of each different type of access, the technician is trying to type the
command login. Which configuration mode should be entered to do this task?
A. user executive mode
B. global configuration mode
C. any line configuration mode
D. privileged EXEC mode
What is stored in the NVRAM of a Cisco router?
A. the Cisco IOS
B. the running configuration
C. the bootup instructions
D. the startup configuration

14
WELCOME TO INTRODUCTION TO NETWORK

Which statement regarding the service password-encryption command is true?


A. It is configured in privileged EXEC mode.
B. It encrypts only line mode passwords.
C. As soon as the service password-encryption command is entered, all currently set
passwords formerly displayed in plain text are encrypted.
D. To see the passwords encrypted by the service password-encryption command in plain
text, issue the no service password-encryption command.
An administrator is configuring a new router to permit out-of-band management access.
Which set of commands will allow the required login using a password of cisco?
A. Router(config)# line vty 0 4
Router(config-line)# password manage
Router(config-line)# exit
Router(config)# enable password cisco
B. Router(config)# line vty 0 4
Router(config-line)# password cisco
Router(config-line)# login
C. Router(config)# line console 0
Router(config-line)# password cisco
Router(config-line)# login
D. Router(config)# line console 0
Router(config-line)# password cisco
Router(config-line)# exit
Router(config)# service password-encryption
Which command can be used on a Cisco router to display all interfaces, the IPv4
address assigned, and the current status?
A. show ip interface brief
B. ping
C. show ip route
D. show interface fa0/1
Which CLI mode allows users to access all device commands, such as those used for
configuration, management, and troubleshooting?
A. user EXEC mode
B. privileged EXEC mode
C. global configuration mode
D. interface configuration mode
What is the purpose of the startup configuration file on a Cisco router?
A. to facilitate the basic operation of the hardware components of a device
B. to contain the commands that are used to initially configure a router on startup
C. to contain the configuration commands that the router IOS is currently using
D. to provide a limited backup version of the IOS, in case the router cannot load the full
featured IOS
Which characteristic describes the default gateway of a host computer?
A. the logical address of the router interface on the same network as the host
computer
B. the physical address of the switch interface connected to the host computer
C. the physical address of the router interface on the same network as the host computer
D. the logical address assigned to the switch interface connected to the router
15
WELCOME TO INTRODUCTION TO NETWORK

A router boots and enters setup mode. What is the reason for this?
A. The IOS image is corrupt.
B. Cisco IOS is missing from flash memory.
C. The configuration file is missing from NVRAM.
D. The POST process has detected hardware failure.
Which command is used to encrypt all passwords in a router configuration file?
A. Router_A (config)# enable secret <password>
B. Router_A (config)# service password-encryption
C. Router_A (config)# enable password <password>
D. Router_A (config)# encrypt password
Company policy requires using the most secure method to safeguard access to the
privileged exec and configuration mode on the routers. The privileged exec password
is trustknow1. Which of the following router commands achieves the goal of providing
the highest level of security?
A. secret password trustknow1
B. enable password trustknow1
C. service password-encryption
D. enable secret trustknow1
What will be the response from the router after the command, “router(config)#
hostname portsmouth” is entered?
A. portsmouth#
B. portsmouth(config)#
C. invalid input detected
D. router(config-host)#
E. hostname = portsmouth portsmouth#
F. ? command not recognized router(config)#

16

You might also like