This is basic cisco configuration including hostname change, setting password, secret password and banner. Following are the commands to configure all of these.
Configuring Hostname on a Cisco Router
The default name for routers is Router and the default name for switches is Switch! Now lets rename our router to R1. The command we need is hostname followed by the desired hostname (in this case R1):
Router>enable
Router#conf terminal
Router(config)#hostname R1
R1(config)#exit
Passwords Setting
#Enable Password
Enable password is set on the router in order to go from user exec mode to the privileged exec mode. The CLI command to set enable password is:
Router>enable
Router#configure terminal
Router(config)#enable password Lbd@321
#Enable Secret Password
Enable secret password is also set to go from user exec mode to the privileged mode. However, it has higher precedence than the Enable password. Also, the Enable Secret password is encrypted by default with the MD5 Hash function. That means, Enable Secret password is more secure than Enable password.
Passwords are part of configuration files. Hence, the enable password can be seen as plain text, whereas the enable secret password is seen as the encrypted format.
Router>enable
Router#configure terminal
Router(config)#enable secret Lbd@321
#Line Console Password
Line console password is set to the router when it is accessed physically using the Console port. The command for configuring line console password is:
Router>enable
Router#configure terminal
Router(config)#line console 0
Router(config-line)#login
Router(config-line)#password Lbd@321
#Line Auxiliary Password
The auxiliary password is set on the router when it is required to be gained access from the remote location using the modem. The password for line aux is :
Router>enable
Router#configure terminal
Router(config)#line aux 0
Router(config-line)#login
Router(config-line)#password Lbd@321
#Telnet or VTY Password
VTY password is set on the router when it is accessed through remote login using telnet service. By default, the Cisco router supports 5 telnet sessions simultaneously. The same password can be set for all the telnet sessions. The command for VTY password are as:
Router>enable
Router#configure terminal
Router(config)#line vty 0 4
Router(config-line)#login
Router(config-line)#password Lbd@321
Banner Setting on Router and Switch
There are different types of banner messages, such as Message of the day (MOTD), Login banners, and Exec banners.
#Banner MOTD
The Message of the Day (MOTD) banner will be displayed before the user authenticates to our devices. It is typically used to display a temporary notice that may change regularly, such as system availability.
Router(config)#banner motd #Admin Access only!#
#Banner Login
The Login banner will also be displayed before the user authenticates to our devices. It will show up after the MOTD banner. Unlike the MOTD Banner, it is designed to commonly display legal notices, such as security warnings and more permanent messages to the users.
Router(config)# banner login ?
Warning!
Authorized personnel only.
?
#Banner Exec
We use Exec banner to display messages after the users, or network administrators are authenticated to our Cisco IOS devices and before the user enters UserExec Mode. Unlike MOTD, the Exec banner is designed to be more of a permanent message and would not change frequently.
Router(config)#banner motd #NO ACCESS#
or
Router(config)#banner motd q
#NO ACCESS# q
***
Posts
0 Comments