This part will start with the basic router configuration and guide you in-depth learning step by step. This part is more suitable for beginners, if you have a CCIE certificate, you can skip it.
Basic router configuration:
If you have never been exposed to Cisco's routers or our structure, the Education Lab will be a great place to start learning. We will start from the most basic part and guide you step by step to configure most of our structures.
Before studying, it is best to print out the diagram and layout diagram of the left edge. The diagram shows how the rack is connected and the relationship between the router parts you activated. The layout diagram shows the connection relationship between us using various devices in the lab. We are going to learn how to build what is told in these web charts.
Before studying, you can take a look at some basic content of Cisco, which describes the basic operations of CISCO routers and switches. In addition, the document to be looked at is how to use a rack. This section contains some basic content, such as how to access the control ports of routers, switches, and remote restart devices. All commands you type are executed via the Enter key. After entering all command words, if there is no special description, please press Enter to confirm. All commands are enclosed in double quotes. Cisco allows abbreviated command words to save input, which is a bit like UNIX. Some command characters may have been reduced to a few characters, but the functions they implement will require a long string of characters to express clearly. For example, a commonly used configuration command is implemented by simply typing f, which means "frame-relay" (frame relay). If someone asks you to type "f switching", you must be wondering what configuration to exchange this command. During our learning process, pay attention to the abbreviation of commands. After typing some characters, remember to press the tab key to make the router execute the command. first step:
Use any remote login software you like to log in to the Term_Srv server. Windows 95/98 is suitable for single use. Run "Remote Login" and get the login password and connect to the URL given to you. After logging in, you will see the command line of Term_Srv. Type R1 to enter the R1 console. As can be seen from the icon, R1 needs to configure two interfaces. Here are the connections of the four serial ports of the router and the token network port, we only use serial ports 1/2 and 1/1.
Step 2:
If there is a prompt on the initial installation interface of the router, press "Ctrl+C" to exit. After seeing the prompt for "Router>", type the "enable" command to enter privileged mode. Then type "config term" to enter the general configuration mode, type "hostname [name]", name is the name of the router you want to configure, such as R1, R2, etc. In order not to allow the router to spell check the command, use the "no ip domain-lookup" command. If you want to set a password, enter privileged mode. Type "enable password cisco" to enable or set the cisco privileged password. Finally, we need to set the remote login password, and use the command "line vty 0 4" (note that there is a space between 0 and 4), which will enter thread configuration mode. We set the lines to 0 to 4, so the configuration set here is suitable for all 5 login lines. Type "password cisco" to set the remote login password, type "exit" to return to configuration mode, and type "exit" again to return to enable mode. Type "write mune" to save the configuration file, look at the configuration file to make sure you have entered the command correctly, type "write menu" or "show run" to open the current configuration, the content should be similar to the following:
Current configuration:
!
version 11.2
no service password-encryption
no service udp-small-servers
no service tcp-small-servers
!
hostname R1
!
enable password cisco
!
no ip domain-lookup
!
!
interface Ethernet0
no ip address
shutdown
!
interface Serial0
no ip address
shutdown
no fair-queue
!
interface Serial1
no ip address
shutdown
!
interface BRI0
no ip address
shutdown
!
no ip classless
!
!
line con 0
line aux 0
line vty 0 4
password cisco
login
!
end
The bold text of the scribing is the command you just typed, so be sure of the correctness of your configuration, especially the password item. If it is incorrect, return to configuration mode and type "no" + command. If the remote login password is incorrect, you need to enter linear configuration mode first to modify the password. Type "line vty 0 4" to enter the linear configuration mode of the remote login port.
If you do not type "no" as the starting word for the command, type a command without "no" to clear it. There are some commands that cannot be removed from the configuration file by using the prefix "no". If you do not want these commands to appear in the configuration file, set these commands to default values. For example, the HDLC command for encapsulation is set to the default value on the serial interface. If you set the encapsulation form to PPP (end-to-end protocol), you can only use "encaps hdlc" and not "no encaps ppp". You can try to delete the commands you type, remember to enter them again before continuing to learn.
If your configuration file is messy, type "write erase" at the All-in prompt, press "y" after pressing Enter to determine your deletion operation (it depends on the version of the router software, and you may be prompted to press Enter to confirm directly). The next step is to key "reload". If the router asks whether to save the configuration file, press "n" to determine the reload operation. The router will return to its initial state and you can start again.
Step 3
After mastering the basic operations, we can start the configuration of serial port R1. It should be noted that R1 is a standard component of the router framework. The interface of R1 uses the <module number>/<port number> design. The 2500 series routers all use a single port number. This module number is available in the 3600, 4500/4700 and 2600 series.
Before making any interface changes, type "show interface serial 1/1" at the prompt of the enable mode of R1, and you can see that the IP address is not assigned to this interface.
Type "conf t" to enter general configuration mode, and type "interface serial 1/1" to enter the configuration mode interface. The default serial cable uses HDLC packaging format, which is more suitable for the interface here.
All IP addresses in the laboratory use a 24-byte subnet mask, 255.255.255.0. We want to assign ip to serial interface 1/1, so type "ip address 10.1.5.1 255.255.255.0".
Our serial cables can run at speeds of 300 to 64k bps (some can reach up to 2Mbps). Since we do not have DSU/CSU (data service unit/channel service unit) in this interface to see the running speed, we need to tell the router how fast it is to run. The clock speed can only be set by the data communication device of the circuit terminal. We use a cross-type serial cable, which allows one end to connect to the data terminal device and the other end to connect to the data communication device. All data communication devices for serial cables terminate at R1 or Term_Srv (except R3 and R5, but we do not use it). That is to say, we need to set the clock speed for the serial port. Type "clock rate 64000" to set the clock rate to 64kps
Type "show interface serial 1/1" again to see the changes. It can be seen that the interface has been volume-on and the IP has been allocated, but the thread protocol has not volume-on, because the other end of the line has not ended.
Step 4
We need to review the serial 1/0 interface in step 3. As can be seen from the layout diagram, we need to use the IP address 10.1.4.1 and repeat the third step using serial ports 1/0 and 10.1.4.1.
Step 5
We must allow routing protocols to be able to exchange information with the networks connected to them after all routers are configured. We use the RIP protocol. The RIP protocol has limitations, but is easy to configure. In general configuration mode, type "router rip", enter RIP configuration mode, and start RIP settings. The addresses we use are all subnet codes of Class A. Type "network10.0.0.0".
Step 6
Type "end" to return to enable mode. This is a good way, and some Cisco routers will act sometimes, especially after leaving configuration mode for a long time.
If you have created configuration files, you can see them via "write term" or "show run".
After you have looked at the configuration file, you will find that there are many commands you have not typed. The router gathers these commands for prompt instructions to enhance the readability of the configuration file, like the command interface you see.
Maybe you've noticed that there are some special commands in the interface we just configured. "no fair-queue" is to continue the old version to version 11.2. If you use end-to-end PPP multipoint connection, there is no weighted equal queue in 11.2 and older versions, new versions of IOS that support PPP multipoint connection are included. Unless you use a more advanced queueing method, equal queues will be used wherever you need it. From our perspective, it has nothing to do with the principle of equality, because it only works if the network is too saturated and loaded. However, it is a good habit to allow this protocol in any interface. Type "conf t" to return to configuration mode, enter the configuration mode of 1/2 of the serial line, type "fair-queue" command to enable equal queue enable, and type "end" to return to the enable prompt state. This command will not affect your configuration, you can skip it.
Type "write menu" to save the configuration. This completes the configuration of router R1.
Step 7
Now configure R4 for router. Press at the same time + + 6, press the "x" key and you will return to the prompt of Term_Srv. This is the operation part of R1 is still open, you can type the segment number to return its operation. Type "show session" to see all open segment numbers. Now you only have permission to have a segment number of 1. At the prompt of Term_srv, type "1" and press Enter to return to R1. It's cool. Return to Term_srv again, type R4 to open the R4 segment, repeat the second step, configure the router's username, enable password, remote login password, etc. without performing command error checks.
Step 8
In R4de general configuration mode, type "interface to0" to return to the token network configuration interface, type "ip addr 10.1.7.2 255.255.255.255.0" to assign an IP address.
Token Network can run at two completely different speeds, 16Mbps and 4Mbps, typing "ring-speed 16" to make the interface work at 16Mbps. Finally type "no shutdown" to roll up the interface. If you leave configuration mode, type "show interface to0" and you will find that the line protocol has been suspended, although other token network routers have not been configured yet.
This router has more configurations than R1. The loopback interface can be configured on any router and started when you send data to the router, regardless of whether its interface is closed or not. It is illusion that you have three routers, 1A, 2B, and 3C, and use different Ethernet connections to connect to a closed loop network in parallel. If the Ethernet between 1A and 2B is interrupted, 1A and 2B can still communicate via 3C. If you send important data files to A1 and the IP address of the Ethernet connected to the network is disconnected, the router will not accept traffic. If these important data are sent through 3C, the router cannot tell that it can reach 2B through 3C because it has not received routing information from 3C.
Type "interface loop 0" in general configuration mode to configure R4 loopback. Type "ip addr 10.1.9.2 255.255.255.0" to assign the address without typing "no shutdown". Any interface that does not actually exist is called a virtual interface. These interfaces, such as loopback interfaces, sub-interfaces, etc., only exist if you define them. Therefore, they do not exist in shutdown mode, and you do not want physical interfaces. If you do not use them, you can do not create it, and the physical interface must exist, whether you want to use it or not.
Re-execute the fifth step on R4 to enable the RIP routing protocol. After the operation is completed, save the settings.
Step 9
Next we need to configure R3. In addition to adding a serial interface, the configuration of R3 is similar to that of R4. Repeat steps 2, 5 and 8 to adjust the IP address to match the token network and loopback interface and layout diagram.
The list of commands you need to type is as follows:
en
conf term
!
int ser 0
ip addr 10.1.5.3 255.255.255.0
no shutdown
!
int to0
ip addr 10.1.7.3 255.255.255.0
ring 16
no shutdown
!
int lo0
ip addr 10.1.8.3 255.255.255.0
!
router rip
network 10.0.0.0
!
end
wr mem
Now that you have completed the R3 configuration, you should also have a locally completed network. Step 10
Now let's do some tests to see how these commands are output. Type "sh ip route" to see the router's routing table. This table contains the path information learned by the router from its neighbor network. Now you should see the information of 10.1.5.0, 10.1.7.0, 10.1.8.0 and 10.1.9.0. These are all subnets of Class A URL 10.0.0.0. In addition, 10.1.5.0, 10.1.7.0 and 10.1.8.0 should have been connected, and the left edge on the routing table is represented by a capital C. This is because these networks are physically connected to R3. 10.1.9.0 does not have direct connection to R3, but due to the RIP protocol, it knows how to connect to R3. RIP allows R4 to know how to connect from 10.1.9.0 to all its neighbors. As can be seen from the routing table, R3 has learned this information from R4. The full text of the network is as follows:
R 10.1.9.0 [120/2] via 10.1.7.2,, Ethernet0
10.1.7.2 is the IP address of R4 and R3 interfaces. If you want to send information from R3 to 10.1.9.0 network, you need to connect to 10.1.7.2 first, and then reach your destination from there.
The first number in brackets of the routing table entry is called the management distance. This figure shows priority for different protocols (RIP, OSPF, IGRP, etc.). OSPF is more powerful and reliable than RIP. If the same path is allowed to be learned through OSPF and RIP, the router will first choose the former. The concept of managing distance was born. The second number is the routing scale, which describes the distance between the network and the router. RIP uses a simple step-by-step scale. Here, the scale of the 10.1.9.0 network is 2 on R3 and 3 on R1, indicating that R1 is farther from 10.1.9.0 than the R3 router.
The list of commands to be typed is as follows:
en
conf term
!
hostname R2
enable pass cisco
no ip domain-look
line vty 0 4
pass cisco
!
int ser 0
ip addr 10.1.4.4 255.255.255.0
no shutdown
!
int eth0
ip addr 10.1.2.4 255.255.255.0
no shutdown
!
int lo0
ip addr 10.1.3.4 255.255.255.0
!
router rip
network 10.0.0.0
!
end
wr mem
Type "sh inter eth 0" from the enable prompt state to view the interface information. Similar to Token Network, although we have not configured other devices with Ethernet, the linear protocol has been enabled.
Take a look at some other useful commands. The key "show ip interface brief" can be used to view many interfaces that have IP permissions at the same time, and type "show controllers serial 0" to see the hidden information of the serial port controller. These are useful commands, so you can see whether the cable is more connected to the interface, whether it is DTE or DCE. The second line full text:
buffer size 1524 HD unit 0, V.35 DTE cable
This means that the router found a V.35 cable and used DTE.
The "show ?" command is the best way to see the cause of an error.
Cisco uses a proprietary protocol called Cisco discovery to check Cisco's connected devices. "show cdp neighbor" allows you to view connected devices to the currently working router. This will be very useful if you don't have a web listing map.
Type "sh cdp neighbor detail" will list the IP addresses of all neighbor networks. You can try it on multiple routers.
Step 12
Finally, we configure router R5. Now you should be able to configure Ethernet and loopback interfaces without much guidance. Using the IP address on the chart, remember to turn on the Ethernet interface and establish RIP routing.
Your network is now complete. But we still have to take some time to discuss the switch. Let's take a look at some Debug (debug) commands first. Debug can view traffic and other events. Assuming that there is a problem with your RIP routing, one of the routers cannot connect to RIP and cannot update the neighbor network. You can type "debug ip rip events" on the router that is in trouble to start RIP routing time debugging. Every 60 seconds or so, you can see the updates of RIP from and into neighboring networks. This way you can see the update message from the wrong IP address, or it is not updated at all. Any situation will narrow the scope of the problem to determine whether the problem lies with the router or the router on the neighbor network. There are hundreds of debug commands, you can try those that can be used, but don't allow too many debug commands at once. These commands will take up a lot of time on the processor and will paralyze the router when it is too heavy. Note that if you are remotely logging into the router, by default, you will not see debugging information, you need to type "terminal monitor" to see this information. Because the terminal is not in monitoring mode and you do not realize that your information is not displayed, it is easy to paralyze the router with debug commands. In our system, if you connect to a control port, you will be in a monitoring state by default. At any time if you want to view all allowed debug commands, type "show debug" and type "no debug all" to turn off all debug enables.
If you send Ping commands to all interfaces of the network, you are sure to respond. If the ping cannot access a certain URL, go to the nearest router to mark it. This problem is usually due to the first router not working, but remember that a router can ping its own network without protocol. For example, R4 can ping 10.1.7.3 because R4 knows how to connect to 10.1.7.0. Type the "no router rip" command in universal configuration mode on each router and RIP is removed from R4 and R3. Once all RIP routes fail from R4, the routing table will try pingR4's 10.1.7.3, which will also be available! But you can't ping 10.1.8.3 because R4 is not connected to the network and there is no routing protocol running.
Add R3 and R4's RIP protocols and then we start configuring the switch.
Step 13
Switch to Term_Srv mode and type "cat:" command to return to the switch console and type "enable" to enter the enable state. There is no password in the initial state, just press Enter when the system asks. Unlike Cisco routers, the switch has no configuration mode. All operations are completed by commands. You can look at the configuration file in the same way, and type "write term" in enable mode to see the default configuration.
First, set the IP address of the switch SC0 interface. Unlike routers, switches cannot specify IP addresses for their ports. Converters are not as intelligent as routers, so they cannot determine routing traffic based on IP addresses. The switch can only communicate with the correct port using the MAC address.
Although the switch has these restrictions, we still need to set an IP address so that we can log in to the switch for remote operation. The SC0 interface of the switch is similar to the loopback interface of the router. The difference is that the SC0 interface does not have an IP address. Use the command "set inter sc0 10.1.2.6 255.255.255.0" to set the interface address of SC0. In this way, the switch has a valid address on the Ethernet network. We also need to tell the switch how to connect to other networks. If you want to remotely log in from R4 to the switch, I'm sorry, you can't. Router R4 can obtain data from the switch, but the switch does not know how to connect to the 10.1.7.0 network and send communication data. We used a default gateway, just like a PC, so that it works. Type "set ip route 0.0.0.0 10.1.2.4", and the command sends all IP traffic to address 10.1.2.4 (this is the Ethernet address of R2, of course we can also use R5). Since R2 is an intelligent IP routing device, it can enable the switch's traffic to go anywhere you want.
Check whether the SC0 interface of the Ping switch on R4 is working properly.
The mission is done! You have completed the basic router configuration of the Education Lab and can set the basic IP address on the Cisco router by yourself. Take some time to review the issue and understand all the basic concepts. When encountering any puzzled things, check the router or Cisco website. If you really don’t understand, email us and we will give us a detailed explanation.
Router: The new unconfigured router will automatically run the installation script to guide you to configure the basic parameters of the router. If you wish, you can use this script to set the router's enable password, private password, host name (router name), interface parameters (input speed, address, etc.). You can also allow basic routing protocols. The installation script has limited functions, and you must configure some other parameters yourself. Press ctrl+c to exit the installation script. Converters Cisco's 2901, 2902, 5000 and 6000 series converters do not have configuration modes. They have set the commands themselves. You will also find that the command line help of these devices is much more useful than ISO-compatible products. The new ISO-compliant 1900, 2900XL and 3500 series converters look similar to routers. We don't have samples of new routers yet, but if you're familiar with ISO, you're familiar with these converters too.
How to enter the rack Generally, you should open your account 15 minutes before the start. Check in advance whether you can log in at this stage. If there is a problem, we can solve it before you start. If you do find any problem, please fill out the alpha page form and send it to us immediately and we will contact you as soon as possible.
Reverse remote login (enter other routers) You will log in to the Rack 2511 terminal server, which has been configured and can work normally. With it, you can log in to all other devices in the rack in reverse. Just type the device name and you can enter the console of that device. The routers are named "R1", "R2", "R3", "R4", "R5" and "R6" respectively, the converter is named "cat", and the remote power supply is "pwr". For your safety reasons, we do not open permissions to the 2511 router configuration. I have noticed that we will inadvertently change the configuration of the 2511 so that we can never get into the rack again. In the lab you will find that you often have to communicate with the router you cannot access, which is configured to achieve. This design is close to the actual test situation.
After entering other devices, press ctl+shift+6, and press x to return to the prompt state of term_srv. If a process is opened on other routers in the rack, press ctl+shift+6 to open the process. You can type "show session" in the prompt state of term_srv to view the process you have started. To return to the enabled process, type the process number on term_srv. If a fund opens a process on the router, you will not be able to open a new process. Type the name of the router that opens the process, and a connection failure prompt will appear. This is because you cannot connect two connections to the router at the same time. Type the enabled process number to return to the router's control platform. If there is no process, router or other device enabled and you cannot enter, type "clear line #"# represents the device that is enabled. The specific meaning is as follows: 1-R1 2-R2 3-R3 4-R4 5-R5 6-R6 7-Converter 8-Power Switch You can turn on up to 5 login processes connected to the rack at the same time. I don't like to turn on a different process on each router. You can connect to the control platform of term_srv in tests, but you cannot enable multiple processes to connect to term_srv at the same time.
Remote power supply (remote restart router) Type "Reboot #" to remotely restart the router through the power switch. # represents the port number, specifically refer to 1-R1 2-R2 3-R3 4-R4 5-R5 6-R6 7-ISDN emulator 8-Converter Chart Chart indicates the connection status of the rack and how SPID and LDN are used as ISDN emulators. Each connection of the rack is described on the chart. No environment will use all connections. The racks are connected with extra wires, and you can choose the wires you want to use by yourself. Don't configure interfaces you don't need. Note the serial cable connection between the data terminal device DTE and the data communication device DCE terminal. DCE must set the clock rate of the router port. (Since you cannot configure Term_srv, we have already set it up on Term_srv for you). This is illustrated on the diagram.
Frame Relay If you need to use frame relay configuration, R1 needs to be configured to have the function of frame relay conversion. The configuration can be copied from the diagram. Initialize the configuration script
After the Cisco router is started, the configuration file is empty, and the router enters the initial configuration, guiding you to set the basic parameter design step by step. The last thing to do is to delete the configuration and restart the router to prepare for the next user. This means that the initial script configuration will be executed when you first enter the router. You will see these when you install a new router. Press ctrl+c to exit the initial installation.
Router/Converter Diagram
The TFTP server is connected to the 2/2 port of the converter. The TFTP server includes the following files, and the address information is included in the schematic diagram. 2500 Series
c2500-js-fw-112-21 2500 Enterprise ver 11.2(21) with 56bit IPSec and Firewall IOS
c2500-js-fw-113-11 2500 Enterprise ver 11.3(11) with 56bit IPSec and Firewall IOS **
c2500-js-fw-120-9 2500 Enterprise ver 12.0(9) with 56bit IPSec
2610 Series
c2600-js-113-8 2600 Enterprise version 11.3(8) with 56bit IPSec **
c2600-js-120-2 2600 Enterprise version 12.0(2) with 56bit IPSec
c2600-fw-120-2 2600 IP plus version 12.0(2) with Firewall IOS
Please do not use 2620 to take pictures. We are planning to upgrade memory to handle other ISO images.
Catalyst 5000 Series
cat5000-4-4-1 Catalyst 5000 series image, version 4.4(1) **
You can copy these files to the converter, and the TFTP server only supports TFTP login method.
**There are default files on the router and converter.
Final tip
At the command line prompt, type ctrl+c to jump back to the starting line. If you want to cancel the command you just typed, press the up arrow key to return to the error place, type ctrl+c, and then type "no+command". On the Cisco router, you can cancel the operation by adding "no" before the command. Note that some commands do not support this operation. Enter "encapsulation ppp", you cannot cancel the command by this method, but need to return to the default interface state and use the "encapsulation hdlc" command.
Press ctrl + e at the command line prompt to return to the end of the command line.
Type "end" to return to configuration mode, regardless of which submenu you are in. This is several times faster than the key "exit".
Make full use of the cut and paste commands of the terminal emulation software you use. This is sometimes much more convenient than copying it to the notepad for editing and then pasting it back, which can save a lot of time. You must master it!
After setting the enable password and before saving the configuration file, exit the router and enter the enable mode. At this time, you can save the file. If you forget the password input error and have not saved the configuration, you can only restart the router and enter again. However, if you have saved the configuration, you can only enter through the password recovery (if you need to do this, there is
Basic router configuration:
If you have never been exposed to Cisco's routers or our structure, the Education Lab will be a great place to start learning. We will start from the most basic part and guide you step by step to configure most of our structures.
Before studying, it is best to print out the diagram and layout diagram of the left edge. The diagram shows how the rack is connected and the relationship between the router parts you activated. The layout diagram shows the connection relationship between us using various devices in the lab. We are going to learn how to build what is told in these web charts.
Before studying, you can take a look at some basic content of Cisco, which describes the basic operations of CISCO routers and switches. In addition, the document to be looked at is how to use a rack. This section contains some basic content, such as how to access the control ports of routers, switches, and remote restart devices. All commands you type are executed via the Enter key. After entering all command words, if there is no special description, please press Enter to confirm. All commands are enclosed in double quotes. Cisco allows abbreviated command words to save input, which is a bit like UNIX. Some command characters may have been reduced to a few characters, but the functions they implement will require a long string of characters to express clearly. For example, a commonly used configuration command is implemented by simply typing f, which means "frame-relay" (frame relay). If someone asks you to type "f switching", you must be wondering what configuration to exchange this command. During our learning process, pay attention to the abbreviation of commands. After typing some characters, remember to press the tab key to make the router execute the command. first step:
Use any remote login software you like to log in to the Term_Srv server. Windows 95/98 is suitable for single use. Run "Remote Login" and get the login password and connect to the URL given to you. After logging in, you will see the command line of Term_Srv. Type R1 to enter the R1 console. As can be seen from the icon, R1 needs to configure two interfaces. Here are the connections of the four serial ports of the router and the token network port, we only use serial ports 1/2 and 1/1.
Step 2:
If there is a prompt on the initial installation interface of the router, press "Ctrl+C" to exit. After seeing the prompt for "Router>", type the "enable" command to enter privileged mode. Then type "config term" to enter the general configuration mode, type "hostname [name]", name is the name of the router you want to configure, such as R1, R2, etc. In order not to allow the router to spell check the command, use the "no ip domain-lookup" command. If you want to set a password, enter privileged mode. Type "enable password cisco" to enable or set the cisco privileged password. Finally, we need to set the remote login password, and use the command "line vty 0 4" (note that there is a space between 0 and 4), which will enter thread configuration mode. We set the lines to 0 to 4, so the configuration set here is suitable for all 5 login lines. Type "password cisco" to set the remote login password, type "exit" to return to configuration mode, and type "exit" again to return to enable mode. Type "write mune" to save the configuration file, look at the configuration file to make sure you have entered the command correctly, type "write menu" or "show run" to open the current configuration, the content should be similar to the following:
Current configuration:
!
version 11.2
no service password-encryption
no service udp-small-servers
no service tcp-small-servers
!
hostname R1
!
enable password cisco
!
no ip domain-lookup
!
!
interface Ethernet0
no ip address
shutdown
!
interface Serial0
no ip address
shutdown
no fair-queue
!
interface Serial1
no ip address
shutdown
!
interface BRI0
no ip address
shutdown
!
no ip classless
!
!
line con 0
line aux 0
line vty 0 4
password cisco
login
!
end
The bold text of the scribing is the command you just typed, so be sure of the correctness of your configuration, especially the password item. If it is incorrect, return to configuration mode and type "no" + command. If the remote login password is incorrect, you need to enter linear configuration mode first to modify the password. Type "line vty 0 4" to enter the linear configuration mode of the remote login port.
If you do not type "no" as the starting word for the command, type a command without "no" to clear it. There are some commands that cannot be removed from the configuration file by using the prefix "no". If you do not want these commands to appear in the configuration file, set these commands to default values. For example, the HDLC command for encapsulation is set to the default value on the serial interface. If you set the encapsulation form to PPP (end-to-end protocol), you can only use "encaps hdlc" and not "no encaps ppp". You can try to delete the commands you type, remember to enter them again before continuing to learn.
If your configuration file is messy, type "write erase" at the All-in prompt, press "y" after pressing Enter to determine your deletion operation (it depends on the version of the router software, and you may be prompted to press Enter to confirm directly). The next step is to key "reload". If the router asks whether to save the configuration file, press "n" to determine the reload operation. The router will return to its initial state and you can start again.
Step 3
After mastering the basic operations, we can start the configuration of serial port R1. It should be noted that R1 is a standard component of the router framework. The interface of R1 uses the <module number>/<port number> design. The 2500 series routers all use a single port number. This module number is available in the 3600, 4500/4700 and 2600 series.
Before making any interface changes, type "show interface serial 1/1" at the prompt of the enable mode of R1, and you can see that the IP address is not assigned to this interface.
Type "conf t" to enter general configuration mode, and type "interface serial 1/1" to enter the configuration mode interface. The default serial cable uses HDLC packaging format, which is more suitable for the interface here.
All IP addresses in the laboratory use a 24-byte subnet mask, 255.255.255.0. We want to assign ip to serial interface 1/1, so type "ip address 10.1.5.1 255.255.255.0".
Our serial cables can run at speeds of 300 to 64k bps (some can reach up to 2Mbps). Since we do not have DSU/CSU (data service unit/channel service unit) in this interface to see the running speed, we need to tell the router how fast it is to run. The clock speed can only be set by the data communication device of the circuit terminal. We use a cross-type serial cable, which allows one end to connect to the data terminal device and the other end to connect to the data communication device. All data communication devices for serial cables terminate at R1 or Term_Srv (except R3 and R5, but we do not use it). That is to say, we need to set the clock speed for the serial port. Type "clock rate 64000" to set the clock rate to 64kps
[1][2] [3] [4] [5] Next page
Article entry: csh Editor in charge: cshCisco defaults to the left and right interfaces as pull-down management mode, which can prevent accidental operations. If not, type "no shutdown" to roll up the interface. Type "end" to exit configuration mode.
Type "show interface serial 1/1" again to see the changes. It can be seen that the interface has been volume-on and the IP has been allocated, but the thread protocol has not volume-on, because the other end of the line has not ended.
Step 4
We need to review the serial 1/0 interface in step 3. As can be seen from the layout diagram, we need to use the IP address 10.1.4.1 and repeat the third step using serial ports 1/0 and 10.1.4.1.
Step 5
We must allow routing protocols to be able to exchange information with the networks connected to them after all routers are configured. We use the RIP protocol. The RIP protocol has limitations, but is easy to configure. In general configuration mode, type "router rip", enter RIP configuration mode, and start RIP settings. The addresses we use are all subnet codes of Class A. Type "network10.0.0.0".
Step 6
Type "end" to return to enable mode. This is a good way, and some Cisco routers will act sometimes, especially after leaving configuration mode for a long time.
If you have created configuration files, you can see them via "write term" or "show run".
After you have looked at the configuration file, you will find that there are many commands you have not typed. The router gathers these commands for prompt instructions to enhance the readability of the configuration file, like the command interface you see.
Maybe you've noticed that there are some special commands in the interface we just configured. "no fair-queue" is to continue the old version to version 11.2. If you use end-to-end PPP multipoint connection, there is no weighted equal queue in 11.2 and older versions, new versions of IOS that support PPP multipoint connection are included. Unless you use a more advanced queueing method, equal queues will be used wherever you need it. From our perspective, it has nothing to do with the principle of equality, because it only works if the network is too saturated and loaded. However, it is a good habit to allow this protocol in any interface. Type "conf t" to return to configuration mode, enter the configuration mode of 1/2 of the serial line, type "fair-queue" command to enable equal queue enable, and type "end" to return to the enable prompt state. This command will not affect your configuration, you can skip it.
Type "write menu" to save the configuration. This completes the configuration of router R1.
Step 7
Now configure R4 for router. Press at the same time
Step 8
In R4de general configuration mode, type "interface to0" to return to the token network configuration interface, type "ip addr 10.1.7.2 255.255.255.255.0" to assign an IP address.
Token Network can run at two completely different speeds, 16Mbps and 4Mbps, typing "ring-speed 16" to make the interface work at 16Mbps. Finally type "no shutdown" to roll up the interface. If you leave configuration mode, type "show interface to0" and you will find that the line protocol has been suspended, although other token network routers have not been configured yet.
This router has more configurations than R1. The loopback interface can be configured on any router and started when you send data to the router, regardless of whether its interface is closed or not. It is illusion that you have three routers, 1A, 2B, and 3C, and use different Ethernet connections to connect to a closed loop network in parallel. If the Ethernet between 1A and 2B is interrupted, 1A and 2B can still communicate via 3C. If you send important data files to A1 and the IP address of the Ethernet connected to the network is disconnected, the router will not accept traffic. If these important data are sent through 3C, the router cannot tell that it can reach 2B through 3C because it has not received routing information from 3C.
Type "interface loop 0" in general configuration mode to configure R4 loopback. Type "ip addr 10.1.9.2 255.255.255.0" to assign the address without typing "no shutdown". Any interface that does not actually exist is called a virtual interface. These interfaces, such as loopback interfaces, sub-interfaces, etc., only exist if you define them. Therefore, they do not exist in shutdown mode, and you do not want physical interfaces. If you do not use them, you can do not create it, and the physical interface must exist, whether you want to use it or not.
Re-execute the fifth step on R4 to enable the RIP routing protocol. After the operation is completed, save the settings.
Step 9
Next we need to configure R3. In addition to adding a serial interface, the configuration of R3 is similar to that of R4. Repeat steps 2, 5 and 8 to adjust the IP address to match the token network and loopback interface and layout diagram.
The list of commands you need to type is as follows:
en
conf term
!
int ser 0
ip addr 10.1.5.3 255.255.255.0
no shutdown
!
int to0
ip addr 10.1.7.3 255.255.255.0
ring 16
no shutdown
!
int lo0
ip addr 10.1.8.3 255.255.255.0
!
router rip
network 10.0.0.0
!
end
wr mem
Now that you have completed the R3 configuration, you should also have a locally completed network. Step 10
Now let's do some tests to see how these commands are output. Type "sh ip route" to see the router's routing table. This table contains the path information learned by the router from its neighbor network. Now you should see the information of 10.1.5.0, 10.1.7.0, 10.1.8.0 and 10.1.9.0. These are all subnets of Class A URL 10.0.0.0. In addition, 10.1.5.0, 10.1.7.0 and 10.1.8.0 should have been connected, and the left edge on the routing table is represented by a capital C. This is because these networks are physically connected to R3. 10.1.9.0 does not have direct connection to R3, but due to the RIP protocol, it knows how to connect to R3. RIP allows R4 to know how to connect from 10.1.9.0 to all its neighbors. As can be seen from the routing table, R3 has learned this information from R4. The full text of the network is as follows:
R 10.1.9.0 [120/2] via 10.1.7.2,
10.1.7.2 is the IP address of R4 and R3 interfaces. If you want to send information from R3 to 10.1.9.0 network, you need to connect to 10.1.7.2 first, and then reach your destination from there.
Previous page [1][2][3] [4] [5] Next page
Article entry: csh Editor in charge: cshIf you convert to R1's routing table, we see the same result, but slightly different. The most different thing is that the network connection is different, because R1 does not have a direct connection to the 10.1.7.0 or 10.1.8.0 network. The same, the routing table of the 10.1.9.0 network is also different, and the second number in the brackets changes from 2 to 3.
The first number in brackets of the routing table entry is called the management distance. This figure shows priority for different protocols (RIP, OSPF, IGRP, etc.). OSPF is more powerful and reliable than RIP. If the same path is allowed to be learned through OSPF and RIP, the router will first choose the former. The concept of managing distance was born. The second number is the routing scale, which describes the distance between the network and the router. RIP uses a simple step-by-step scale. Here, the scale of the 10.1.9.0 network is 2 on R3 and 3 on R1, indicating that R1 is farther from 10.1.9.0 than the R3 router.
The list of commands to be typed is as follows:
en
conf term
!
hostname R2
enable pass cisco
no ip domain-look
line vty 0 4
pass cisco
!
int ser 0
ip addr 10.1.4.4 255.255.255.0
no shutdown
!
int eth0
ip addr 10.1.2.4 255.255.255.0
no shutdown
!
int lo0
ip addr 10.1.3.4 255.255.255.0
!
router rip
network 10.0.0.0
!
end
wr mem
Type "sh inter eth 0" from the enable prompt state to view the interface information. Similar to Token Network, although we have not configured other devices with Ethernet, the linear protocol has been enabled.
Take a look at some other useful commands. The key "show ip interface brief" can be used to view many interfaces that have IP permissions at the same time, and type "show controllers serial 0" to see the hidden information of the serial port controller. These are useful commands, so you can see whether the cable is more connected to the interface, whether it is DTE or DCE. The second line full text:
buffer size 1524 HD unit 0, V.35 DTE cable
This means that the router found a V.35 cable and used DTE.
The "show ?" command is the best way to see the cause of an error.
Cisco uses a proprietary protocol called Cisco discovery to check Cisco's connected devices. "show cdp neighbor" allows you to view connected devices to the currently working router. This will be very useful if you don't have a web listing map.
Type "sh cdp neighbor detail" will list the IP addresses of all neighbor networks. You can try it on multiple routers.
Step 12
Finally, we configure router R5. Now you should be able to configure Ethernet and loopback interfaces without much guidance. Using the IP address on the chart, remember to turn on the Ethernet interface and establish RIP routing.
Your network is now complete. But we still have to take some time to discuss the switch. Let's take a look at some Debug (debug) commands first. Debug can view traffic and other events. Assuming that there is a problem with your RIP routing, one of the routers cannot connect to RIP and cannot update the neighbor network. You can type "debug ip rip events" on the router that is in trouble to start RIP routing time debugging. Every 60 seconds or so, you can see the updates of RIP from and into neighboring networks. This way you can see the update message from the wrong IP address, or it is not updated at all. Any situation will narrow the scope of the problem to determine whether the problem lies with the router or the router on the neighbor network. There are hundreds of debug commands, you can try those that can be used, but don't allow too many debug commands at once. These commands will take up a lot of time on the processor and will paralyze the router when it is too heavy. Note that if you are remotely logging into the router, by default, you will not see debugging information, you need to type "terminal monitor" to see this information. Because the terminal is not in monitoring mode and you do not realize that your information is not displayed, it is easy to paralyze the router with debug commands. In our system, if you connect to a control port, you will be in a monitoring state by default. At any time if you want to view all allowed debug commands, type "show debug" and type "no debug all" to turn off all debug enables.
If you send Ping commands to all interfaces of the network, you are sure to respond. If the ping cannot access a certain URL, go to the nearest router to mark it. This problem is usually due to the first router not working, but remember that a router can ping its own network without protocol. For example, R4 can ping 10.1.7.3 because R4 knows how to connect to 10.1.7.0. Type the "no router rip" command in universal configuration mode on each router and RIP is removed from R4 and R3. Once all RIP routes fail from R4, the routing table will try pingR4's 10.1.7.3, which will also be available! But you can't ping 10.1.8.3 because R4 is not connected to the network and there is no routing protocol running.
Add R3 and R4's RIP protocols and then we start configuring the switch.
Step 13
Switch to Term_Srv mode and type "cat:" command to return to the switch console and type "enable" to enter the enable state. There is no password in the initial state, just press Enter when the system asks. Unlike Cisco routers, the switch has no configuration mode. All operations are completed by commands. You can look at the configuration file in the same way, and type "write term" in enable mode to see the default configuration.
First, set the IP address of the switch SC0 interface. Unlike routers, switches cannot specify IP addresses for their ports. Converters are not as intelligent as routers, so they cannot determine routing traffic based on IP addresses. The switch can only communicate with the correct port using the MAC address.
Although the switch has these restrictions, we still need to set an IP address so that we can log in to the switch for remote operation. The SC0 interface of the switch is similar to the loopback interface of the router. The difference is that the SC0 interface does not have an IP address. Use the command "set inter sc0 10.1.2.6 255.255.255.0" to set the interface address of SC0. In this way, the switch has a valid address on the Ethernet network. We also need to tell the switch how to connect to other networks. If you want to remotely log in from R4 to the switch, I'm sorry, you can't. Router R4 can obtain data from the switch, but the switch does not know how to connect to the 10.1.7.0 network and send communication data. We used a default gateway, just like a PC, so that it works. Type "set ip route 0.0.0.0 10.1.2.4", and the command sends all IP traffic to address 10.1.2.4 (this is the Ethernet address of R2, of course we can also use R5). Since R2 is an intelligent IP routing device, it can enable the switch's traffic to go anywhere you want.
Check whether the SC0 interface of the Ping switch on R4 is working properly.
The mission is done! You have completed the basic router configuration of the Education Lab and can set the basic IP address on the Cisco router by yourself. Take some time to review the issue and understand all the basic concepts. When encountering any puzzled things, check the router or Cisco website. If you really don’t understand, email us and we will give us a detailed explanation.
Previous page [1] [2][3][4] [5] Next page
Article entry: csh Editor in charge: cshAt this point, the IPX settings of the Education Lab have been completed.
Router: The new unconfigured router will automatically run the installation script to guide you to configure the basic parameters of the router. If you wish, you can use this script to set the router's enable password, private password, host name (router name), interface parameters (input speed, address, etc.). You can also allow basic routing protocols. The installation script has limited functions, and you must configure some other parameters yourself. Press ctrl+c to exit the installation script. Converters Cisco's 2901, 2902, 5000 and 6000 series converters do not have configuration modes. They have set the commands themselves. You will also find that the command line help of these devices is much more useful than ISO-compatible products. The new ISO-compliant 1900, 2900XL and 3500 series converters look similar to routers. We don't have samples of new routers yet, but if you're familiar with ISO, you're familiar with these converters too.
How to enter the rack Generally, you should open your account 15 minutes before the start. Check in advance whether you can log in at this stage. If there is a problem, we can solve it before you start. If you do find any problem, please fill out the alpha page form and send it to us immediately and we will contact you as soon as possible.
Reverse remote login (enter other routers) You will log in to the Rack 2511 terminal server, which has been configured and can work normally. With it, you can log in to all other devices in the rack in reverse. Just type the device name and you can enter the console of that device. The routers are named "R1", "R2", "R3", "R4", "R5" and "R6" respectively, the converter is named "cat", and the remote power supply is "pwr". For your safety reasons, we do not open permissions to the 2511 router configuration. I have noticed that we will inadvertently change the configuration of the 2511 so that we can never get into the rack again. In the lab you will find that you often have to communicate with the router you cannot access, which is configured to achieve. This design is close to the actual test situation.
After entering other devices, press ctl+shift+6, and press x to return to the prompt state of term_srv. If a process is opened on other routers in the rack, press ctl+shift+6 to open the process. You can type "show session" in the prompt state of term_srv to view the process you have started. To return to the enabled process, type the process number on term_srv. If a fund opens a process on the router, you will not be able to open a new process. Type the name of the router that opens the process, and a connection failure prompt will appear. This is because you cannot connect two connections to the router at the same time. Type the enabled process number to return to the router's control platform. If there is no process, router or other device enabled and you cannot enter, type "clear line #"# represents the device that is enabled. The specific meaning is as follows: 1-R1 2-R2 3-R3 4-R4 5-R5 6-R6 7-Converter 8-Power Switch You can turn on up to 5 login processes connected to the rack at the same time. I don't like to turn on a different process on each router. You can connect to the control platform of term_srv in tests, but you cannot enable multiple processes to connect to term_srv at the same time.
Remote power supply (remote restart router) Type "Reboot #" to remotely restart the router through the power switch. # represents the port number, specifically refer to 1-R1 2-R2 3-R3 4-R4 5-R5 6-R6 7-ISDN emulator 8-Converter Chart Chart indicates the connection status of the rack and how SPID and LDN are used as ISDN emulators. Each connection of the rack is described on the chart. No environment will use all connections. The racks are connected with extra wires, and you can choose the wires you want to use by yourself. Don't configure interfaces you don't need. Note the serial cable connection between the data terminal device DTE and the data communication device DCE terminal. DCE must set the clock rate of the router port. (Since you cannot configure Term_srv, we have already set it up on Term_srv for you). This is illustrated on the diagram.
Frame Relay If you need to use frame relay configuration, R1 needs to be configured to have the function of frame relay conversion. The configuration can be copied from the diagram. Initialize the configuration script
After the Cisco router is started, the configuration file is empty, and the router enters the initial configuration, guiding you to set the basic parameter design step by step. The last thing to do is to delete the configuration and restart the router to prepare for the next user. This means that the initial script configuration will be executed when you first enter the router. You will see these when you install a new router. Press ctrl+c to exit the initial installation.
Router/Converter Diagram
The TFTP server is connected to the 2/2 port of the converter. The TFTP server includes the following files, and the address information is included in the schematic diagram. 2500 Series
c2500-js-fw-112-21 2500 Enterprise ver 11.2(21) with 56bit IPSec and Firewall IOS
c2500-js-fw-113-11 2500 Enterprise ver 11.3(11) with 56bit IPSec and Firewall IOS **
c2500-js-fw-120-9 2500 Enterprise ver 12.0(9) with 56bit IPSec
2610 Series
c2600-js-113-8 2600 Enterprise version 11.3(8) with 56bit IPSec **
c2600-js-120-2 2600 Enterprise version 12.0(2) with 56bit IPSec
c2600-fw-120-2 2600 IP plus version 12.0(2) with Firewall IOS
Please do not use 2620 to take pictures. We are planning to upgrade memory to handle other ISO images.
Catalyst 5000 Series
cat5000-4-4-1 Catalyst 5000 series image, version 4.4(1) **
You can copy these files to the converter, and the TFTP server only supports TFTP login method.
**There are default files on the router and converter.
Final tip
At the command line prompt, type ctrl+c to jump back to the starting line. If you want to cancel the command you just typed, press the up arrow key to return to the error place, type ctrl+c, and then type "no+command". On the Cisco router, you can cancel the operation by adding "no" before the command. Note that some commands do not support this operation. Enter "encapsulation ppp", you cannot cancel the command by this method, but need to return to the default interface state and use the "encapsulation hdlc" command.
Press ctrl + e at the command line prompt to return to the end of the command line.
Type "end" to return to configuration mode, regardless of which submenu you are in. This is several times faster than the key "exit".
Make full use of the cut and paste commands of the terminal emulation software you use. This is sometimes much more convenient than copying it to the notepad for editing and then pasting it back, which can save a lot of time. You must master it!
After setting the enable password and before saving the configuration file, exit the router and enter the enable mode. At this time, you can save the file. If you forget the password input error and have not saved the configuration, you can only restart the router and enter again. However, if you have saved the configuration, you can only enter through the password recovery (if you need to do this, there is
Previous page [1] [2] [3][4][5] Next page
Article entry: csh Editor in charge: cshA laboratory can recover passwords)
Previous page [1] [2] [3] [4][5]
Article entry: csh Editor in charge: csh