Instructions on how to configure Cisco switch using Ubuntu:
Order:
Install minicom
Security
Banner
Host Name
Vlan IP
Default Gateway
Interface Setup
-------
Install & Configure Mini-Com to connect to switch.
Install mimicom
apt-get install minicom
identify serial com
dmesg | grep tty
start minicom configuration
sudo minicom -s
Default Setup:
serial port setup
change serial device ttyS0
change port speed to "C" 9600
Hardware flow control "no"
ESC to exit minicom
save setup as dfl
exit
---------------------------------------------------
https://www.youtube.com/watch?v=r88HmwQGd0s
To reset/ recover pwd:
power cycle switch while holding down mode button
this will bring up >
switch:
then
apply "flash init" command
switch:flash_init
then
load_helper
type dir at prompt
type "dir flash:" at prompt with the colon
type rename flash:config.text flash:config.old
#if the above fails do
switch: delete config.text
to confirm changes
type dir flash:
you will see config extension has changed to config.old
reboot switcht
type boot
select "no" on entering config dialog
type "enable" at prompt
the system will show
switch#
type "configure terminal"
system will return request for configuration commands.
Done!
------------------------------------------------------
Now to configure the switch:
http://www.youtube.com/watch?v=n_3CHv9bXdc
Secure the switch and console port:
Note:
After typing "configure terminal" the prompt
will be:
Switch(config)#
To change pwd type following at prompt:
"enable secret" (pwd goes here no brackets)
--------------------------------------------------------
To secure console port:
"line console 0"
The prompt will change to - Switch(config-line)
ie. Switch(config-line)#
Now we set pwd for console
password (pwd)
then type "login"
nothing will show at prompt
in case commands get broken up during input this will paste
them into next prompt
type "logging synchronous"
exect time out to 30 min 0 secs
type exec-timeout 30 0
do a ctrl-Z
the prompt will now be: Switch#
Now we configure vty ports:
type "configure terminal"
configure ports zero-four
type "line vty 0 4"
set synchronous logging and pwd (as done previously) @ prmpt
type:
password (pwd)
then
synchronous logging
type logging synchronous
this will return session to previous mode.
type exit
do ctrl Z if not at Switch# prmpt
to see what's written to RAM
type show-running config
observer enable secret is md5 hashed pwd
but there is a message stating no service password-encryption
enable srvc pwd encryption:
@prompt type:
"configure terminal"
then
"service password-encryption"
ctrl Z
show running-config
service-password encryption will be enabled now.
**Security for device is now enabled
Save progress by typing at prompt:
"copy running-config startup-config"
-----------------------------------------------------------
Banner & Host Name:
enter global config mode:
Switch# "configure-terminal"
Switch# "banner motd" [ (message of the day)
then
*************************************
UNAUTHORIZED ACCESS IS PROHIBITED!!!
**************************************[
- the bracket "[" is necessary to initiate and terminate the
message entry. (it will not show in the msg)
change hostname
Switch(config)#HOSTname sw1
prmpt changes to
sw1(config)
do ctrl Z
type "copy running-config startup-config"
[OK] will be shown
DONE!
-------------------------------------------------------------
- VLAN CONFIG:
this will show port configuration
sw1#show ip interface brief
enter config mode
"configure terminal"
tell which interface to config
type "interface vlan1"
config interface ip and subnet
type #ip address 192.168.1.X 255.255.255.0
turn on interface
type "no shutdown"
ctlZ
confirm status UP
"show ip interface brief"
-------------
-Default GW
sw1#configure terminal
sw1#(config)
so
sw1(config)#ip default-gateway 192.168.1.1
ctl Z
type "copy running-config startup-config"
-------------
Interface setup - configure fast ethernet ports:
sw1>configure terminal
for a single port:
sw1#>interface fastEthernet 0/1
for the entire range:
interface range fastEthernet 0/1 -24
-------------
Save changes:
copy running-config startup-config
Done!
No comments:
Post a Comment