Category: Cisco

A Few Easy Steps: Cisco Switch, Setup IP Device Tracking

In this session of A Few Easy Steps, we will be setting up IP Device Tracking on a Cisco IOS Switch. In General this will work on any Cisco IOS switch.  Session Prerequisites:

  • You have terminal or console access to your Cisco device.

Session Assumptions:

  • You have host devices connected to your switch

Our goals of this session are:

  • Globally enable IP Device Tracking
  • Setup all ports for IP Device Tracking
  • Show output of IP Device Tracking All Command

Read more

A Few Easy Steps: Cisco IOS, Setup for Automation

In this session of A Few Easy Steps, we will be doing the initial setup for automation on a Cisco IOS Device. In General this will work on any Cisco IOS Device.  Session Prerequisites:

  • You have a Cisco Console Cable
  • You have a serial port
  • You have a Terminal Program that you can access your Serial Port

Session Assumptions:

  • Hostname is already set
  • Domain name is:  SPC.DEV
  • RSA modulus is  1024 bits
  • Our Admin interface is:  FA0/0
  • The Interface has already had its IP Address assigned
  • Enable Password is: password
  • Username is : pytest
  • Password is:  pytest
  • We are using VTY ports 0-5

Our goals of this session are:

  • Setup IP Domain Name
  • Create RSA key for SSH
  • Set Enable Password
  • Setup Username
  • Setup Password
  • Turn interface FA0/0 on
  • Enable SSH on VTY 0-5
  • Set Login to Local Authentication

Read more

A Few Easy Steps: Cisco Switch, Setup Span Port (Port Monitoring for Packet Capture)

In this session of A Few Easy Steps, we will configure a Span Port on a Cisco Switch.  In General this will work on any Cisco Switch. In this session we will be including the setup and verification commands, following the full config sample we will also provide the commands to remove the Span/Monitoring Port. We are adding these steps because often old Span ports cause havoc with new span sessions and leaving Span sessions running is taxing on switchCPU and Memory and should not be done unless required.

Session Prerequisites:

  • You have terminal or console access to your Cisco device.

Session Assumptions:

  • Source Port is Interface FastEthernet 0/1
  • Destination Port is Interface FastEthernet 0/21
  • Monitor Session is 1
  • We will be monitoring both RX and TX traffic

Our goals of this session are:

  • Configure Source Interface
  • Configure Source Interface
  • Verify Span Settings
  • Disable Span Session

Configure Source Interface

!
conf t
!
monitor session 1 source interface fastEthernet 0/1 both
!
end
!
copy running-config startup-config

Configure Destination Interface Interface

!
conf t
!
monitor session 1 destination interface fastEthernet 0/21 
!
end
!
copy running-config startup-config

Verify Span Settings

sh monitor session 1

Entire Session:

!
conf t
!
monitor session 1 source interface fastEthernet 0/1 both
!
monitor session 1 destination interface fastEthernet 0/21 
!
end
!
copy running-config startup-config
!
sh monitor session 1

Disable Span Session

!
conf t
!
no monitor session 1
!
end
!
copy running-config startup-config

Find out more about Span Ports on a Cisco Switch here.

or

Check out this Search at NetworkSuperSearch.com.

A Few Easy Steps: Cisco Router, Disable NAT ALG for DNS

In this session of A Few Easy Steps, we will be Disabling NAT ALG for DNS on
a Cisco Router.

Session Prerequisites:

  • You have terminal or console access to your Cisco device.

Session Assumptions:

  • You have NAT Enabled
  • You do not need ALG to re-write DNS payloads to account for NAT

Our goals of this session are:

  • Disable NAT ALG for DNS

Disable NAT ALG for DNS

!
conf t
!
no ip nat service alg tcp dns
!
no ip nat service alg udp dns
!
end
!
copy running-config startup-config

 

Find out more about NAT ALG for DNS here.

or

Check out this Search at NetworkSuperSearch.com.

A Few Easy Steps: Cisco IOS, Adding a default route

In this session of A Few Easy Steps, we will be adding a static route to a Cisco Router.

In General this will work on any Layer3 Cisco IOS device.

Session Prerequisites:

  • You have a Cisco Console Cable
  • You have a serial port
  • You have a Terminal Program that you can access your Serial Port

Session Assumptions:

  • Your default route is for all unknown networks
  • The Default router IP is 192.168.0.1
  • You have at least one Routing Interface UP/UP
  • IP Routing is already enabled

Our goals of this session are:

  • Enable Default Route

Enable Default Route

ip route 0.0.0.0 0.0.0.0 192.168.0.1 1 permanent

A Few Easy Steps: Cisco Switch, Name a VLAN

In this session of A Few Easy Steps, we will naming a VLAN in a Cisco Switch.
In General this will work on any Cisco Switch.

Session Prerequisites:

  • You have terminal or console access to your Cisco device.

Session Assumptions:

  • We are naming VLAN 20
  • The Name for VLAN 20 is SessionTEST

Our goals of this session are:

  • Name VLAN

Name VLAN

!
conf t
!
vlan 20
!
name vlan SessionTest
!
end
!
copy running-config startup-config

A Few Easy Steps: Cisco Switch, Setup Trunk Port

In this session of A Few Easy Steps, we will Setup Trunk Port on a Cisco Switch.
In General this will work on any Cisco Switch.

Session Prerequisites:

  • You have terminal or console access to your Cisco device.

Session Assumptions:

  • We are using Interface Fastethernet 0/14
  • We are trunking All VLANs
  • Native VLAN is 200
  • We are building a dot1q trunk

Our goals of this session are:

  • Change port trunk encapsulation
  • Change Switchport mode
  • Allow all VLANs on Trunk
  • Set native VLAN

Read more

A Few Easy Steps: Cisco Switch, Setup Access Port

In this session of A Few Easy Steps, we will be setting up an Access Port on a Cisco Switch. In General this will work on any Cisco Switch.

Session Prerequisites:

  • You have terminal or console access to your Cisco device.

Session Assumptions:

  • VLAN 291 is our target VLAN
  • Interface FastEthernet 0/4 is our target port (This should be adjusted for your situation)

Our goals of this session are:

  • Setup VLAN 291
  • Setup Access Port

Setup VLAN 291

!
conf t
!
vlan 291
!
end
!

Setup Access Port

!
conf t
!
interface fastethernet 0/4
!
switchport mode access
!
switchport access vlan 291
!
end
!
copy running-config startup-config
!

Entire Session:

!
conf t
!
vlan 291
!
exit
!
interface fastethernet 0/4
!
switchport mode access
!
switchport access vlan 291
!
end
!
copy running-config startup-config
!

A Few Easy Steps: Cisco Switch, Disable VTP

In this session of A Few Easy Steps, we will be disabling VTP on a Cisco Switch. In General this will work on any Cisco Switch.

Session Prerequisites:

  • You have terminal or console access to your Cisco device.

Session Assumptions:

  • You do not use VTP in your Network
  • You want your Network to NOT implode

Our goals of this session are:

  • Set VTP to Transparent
  • Set VTP Domain to SwitchName

Set VTP to Transparent

!
conf t
!
vtp mode transparent
!
exit
!
copy running-config startup-config

Set VTP Domain to SwitchName

!
conf t
!
vtp domain SessionTestSW1
!
exit
!
copy running-config startup-config

Entire Session:

!
conf t
!
vtp mode transparent
!
vtp domain SessionTestSW1
!
exit
!
copy running-config startup-config

A Few Easy Steps: Cisco IOS, Setup Authentication on Console Port

In this session of A Few Easy Steps, we will be setting up Authentication on the console port on a Cisco Router. In General this will work on any Cisco Switch or Router that runs on IOS.

Session Prerequisites:

  • You have terminal or console access to your Cisco device.

Session Assumptions:

  • Console port is 0
  • Login Credentials will be Local

Our goals of this session are:

  • Setup local User Account
  • Setup authentication on console port

Setup local User Account

conf t
!
username sessiontest password session test
!
end
!
copy running-config startup-config

Setup authentication on console port

conf t
!
line con 0
!
login local
!
end
!
copy running-config startup-config
! 

Entire Session:

conf t
!
username sessiontest password session test
!
exit
!
line con 0
!
login local
!
end
!
copy running-config startup-config