Module 10 - Cisco CCNA Router Configurations PDF

Summary

This document is a transcript of a lecture on basic Cisco router configurations for a CCNA course. It covers initial router settings, securing access, encrypting passwords, and configuring interfaces. The document includes commands for changing hostnames, securing access, and ensuring security for remote access.

Full Transcript

Welcome back. This is the module 10 of the Cisco introduction to network
CCNA one lecture series. We will be looking at the basic router
configurations today. And just to give you a heads up, this particular
module is very practical, heavy lab, heavy module. However, in this
lecture, I will be going through the lecture part of it, and I will post
the labs and lab configurations as well as the demonstrations related to
it later on my YouTube channel. The main objective of this module is to
implement initial settings on a router and end devices. We will look at
the configure how you can configure the initial router settings, like
the basic Cisco commands configure interfaces with the Cisco commands
associated with those configuring interfaces and configure default
gateway. Again, the Cisco commands associated with configuring default
gateways. Again, I\'m going to emphasize this earlier on. I will post a
separate videos on all these lab modules associated with this particular
lecture module. And this lecture module is very lab heavy. However, in
this video, we will be just going over all of those information so that
you have the background when it comes to working on those labs.

Configure initial router settings, the basic router configuration steps
include configuring the device name, securing privilege, executive mode,
securing executive mode, securing remote telnet and SSH access,
encrypting plain text passwords and providing legal notification on the
Save configuration. So if you\'re in a lab and you log into your Cisco
router, either using a console cable or using some other method, you
will be greeted with, you know, these kind of command mode command
screens. And if you want to change the host name, what we\'re going to
do is we\'re going to go host name and then name, you know, name, the
whatever the name you want to call it. So in this case, if you go host
name, host name, what\'s going to happen is this router name gonna
change to host name so we can put whatever we like here, and then enable
secret password will allow you to secure the privilege executive mode,
and the line Council zero will allow to secure the X, you Know,
executive mode, lines with the password with the associated password,
the line vty will allow you to secure the Telnet and SSH access and
service password encryption is a command that can be used to encrypt all
Your pen plain text passwords on your Cisco device, and then the banner
MOTD will allow you to enter a message that will allow you to input a
notification of the country for the person who is trying to access your
device with either a warning message or like an introductory welcome
message, the command copy running config, startup config will allow you
to save all, all of these changes that you have made previously on this
device onto its memory. Because when you are configuring these devices,
all of these commands goes into kind of like a random access memory that
will get erased if you turn off the your router or if you reboot your
router. But however, running the copy running config, startup config
will allow you to copy the running configurations, which are the one
that you just doing up here, into your startup config, which is your non
volatile memory, so that when the router get rebooted or power get lost
to the router, all these commands that you have entered is saved again.
Going through these slides probably not going to make any sense to you
right now, but when I go through this, these lab processes in a lab
demonstration, you will exactly understand what I\'m talking about. So
I\'m going to go through this slide little bit faster today, as I
mentioned before, this play module, this lecture is a little bit theory.
Sorry, a lab heavy. So we\'ll go to the next slide and see what we you
know what kind of commands that we\'re going. To introduce to you, so
commands for basic router configuration, in this case, r1

is shown on the right hand side.

So remember when, when you boot up a brand new Cisco router, all of the
routers in Cisco will be named as router. So in here, what we are doing
is we going to change that host name from router to r1 by using the host
name command and giving the host name of r1 hence see it has changed
right here, and by entering enable secret class, what we have done is we
have encrypting the password class, and then line console zero, which
will give you the line console password configurations. And we will in
here we they have done it as Cisco as the line console password, and by
entering login, that password get registered on the device, and then the
line vty 14 or zero to four, whatever you know the all the line VTY
lines can be secured using passwords command and then again, by logging
in, it gonna get registered there and the transport input, SSH, Telnet,
allow that the SSH and the Telnet to be configured on your device, and
then service password encryption, gonna encrypt all The passwords that
you have entered just above here. And finally, by entering the banner
MOTD, whatever the text message you entered here will be displayed every
single time somebody tried to log into this device. In this case, the
warning would be basically warning unauthorized access is prohibited.
And these tasks and everything we are going to get displayed exactly
like this on the console screen with the banner, MOTD command.

And then finally, when you exit out

of the configuration, you can run the copy running config, startup
config, which will save all the configuration changes you have done
about however, you can actually do this even without exiting the
configuration mode. You just had to put do at the front so you do, do
copy, running config, startup config that will also save all these
commands above. As we move through this course, I will also show you
some shortcuts, and I will be using those shortcuts when I\'m
demonstrating some of the labs. Like, for example, you don\'t need to
type host name. You can just go H, O, r1, and that will actually change
the host name. You don\'t need to say copy, running config, startup
config. You can say copy. You know, then we shorten these things up, and
then it will actually do the exactly the same thing. But I will go
through them as we move through this course, just for now. Just know
these items. And if you have a lab manual or a lab journal that you will
be using, I would recommend write some of these commands down, because
these are the ones I\'ll be showing you in the lab demonstration video.
There\'s a Packet Tracer file available to you on your Cisco NetAcad
website. If you have access to that, please download it and go through
them, and that will give you all of those commands. And again, I will go
through them and post a video on my YouTube channel in next few weeks
that will be showing the commands that we just went over on previous
slides.

Configure interfaces

configuring a router interface includes issuing the following commands.
By issuing the command interface, you can give the command interface
number that will allow you to access the configuration mode associated
with that interface. You can give a description for that interface. For
example, if you want to say something like, this is internal LAN and or
this is for, you know, internal LAN one, LAN two, for example, you can
give that description and this description going to be a text based
description, and doesn\'t have any what what I call the routing or
switching value to it is just a description for humans. So that we can
unders, we can figure out which interface you are working on. Then by
issuing the command IP address, you can issue the IP v4 address as space
with a subnet mask. So for example. 192, 168,

10.1, and then space, we can go to 552552550,

that will give you that. And then IPv six address would be the IPv you
can use IPv six address, but instead of giving the entire subnet mask in
here, remember IPv six addresses have prefix length. So you go, IP v6
address here, slash the prefix length, and that will be that will allow
you to give you the ability to enter an IPv six address to that
interface. And by issuing the command, no shutdown, what we are doing
here is a we\'re going to turn that interface, whatever the interface
number up here from being shut down to turn back on. Hence that now
interface will be online as a result of this command. It is a good
practice to use the description command to add information to the
network connected to the interface. However, it is not needed for
routing and switching operations. The no shutdown command activates the
interface, as I mentioned before, without this no shutdown command, this
interface will be administratively down because you have not turned the
interface on in the console. We will look into these as we move through
this course again and again. I\'m going to mention that, you know, I
will go through them on a real, live lab environment as well.

The commands to configure interface, G, 000,

on r1 shown here. So what we\'re going to do, I\'m going to show you the
in here. In this slide, we\'re going to show a look at a example
configuration of r1 router using those commands that we just talked
about. So we have the r1 router, so you\'re accessing this router, and
you are in the terminal, and you are in r1 configuration mode, which is
basically config T, will allow you to access that configuration mode. So
if you just log into your r1 router, you\'re gonna go config T, and
it\'ll get you to the configuration mode and then interface and in here,
Gigabit Ethernet, 0000, again, there are shortcuts for says this. You
can go in T, GE, 0000, for example, that will get you the same place.
And in here, they have named the description as link to LAN because G
00, is on the left hand side, and this is the LAN side, so they decided
to name it as link to LAN. But remember this text, this description has
no value, no play in the switching or routing of any packets or any
network configurations. This is just for humans like you and I to
understand what this particular port is doing. In case you come back any
year later and you want to know exactly what this port is doing, and you
don\'t need to, you know, look for paper manual or anything like that.
It will be here because it\'s linked to LAN, right? It\'s easy to
identify. Or if there are multiple network engineers and network
technicians are working on this project, and you leave after work and
the next person come in, they can simply look at this description to
know and right away identify which interface associated with what side
and what area. So this is just for humans to read. And then we\'re going
to use the IP address command to give a IP v4 address. In this case, we
are giving 192 168 10.1 with the subnet mask associated with that, which
is 255-255-2550, now if you give a wrong subnet mask here, the Cisco
devices are smart enough to give you an error message. So if you give
192168, 10.1, and then you go, 255-244-2440, something like that, it
will give you an error message, and it will let you know that it
doesn\'t match most of the time. However, there are certain subnets that
the Cisco devices may not be able to detect incorrect subnet marks, so
it is always important as a network administrator that you make sure
that you enter these values correctly. So again, Cisco devices typically
give you error message if you enter the and incorrect subnet mask, but
there are certain subnets that will not be detected because of sudden
overlaps and other things and you need that\'s why you need to make sure
that you enter these values correctly. And remember there\'s a space
between the IP address and the subnet mask, and to give an IP v6 address
for this interface. What we\'re going to do, we\'re going to go IPv six
address, and we\'re going to go whatever the IP address you would like
to give, in this case, 2001 dB, eight, AC, AD, 10 and one and slash 64
that\'s the length of that. You know, the IPv six, just like the subnet
mask here for IPv four, we\'re going to give the length. And by issuing
the no shutdown command, what\'s going to happen is it\'s going to turn
this interface from administratively down to administratorly up, making
it that interface alive. And then by exiting, you\'re going to exceed
from that interface configuration section. And once you do that, you
will see some information messages pops up on your Cisco device, unless
you have you know going there and turn that feature off. All Cisco
devices comes by default. This information messages turn on and it will
give you that information that the the gigabit interface is now changed.
The state has been changed to up because we have done no shutdown, and
the interface is now is ready to go. The state is up and it\'s ready to
go again. I will go to the live lab video on a different video, not in
this module video. You can see that basically doing the similar thing
for the next interface. And this says is the interface on the right hand
side, which is G, 001, and you run the same commands, you go, the
interface is in a gigabyte, 001, and we\'re going to give you a
different description in this case, because it\'s on the right hand side
and it is connected to the r2 so we\'re going to just name it, Link 2r,
two. Again, you can name whatever you like for this, and you use the
same IP commands to issue the IP vs four and IPv six. Again, you can
pick whatever the IP addresses you supposed to pick, and in this
example, they actually pick a different subnet, compared to the G 000,

because remember, the G 00 is 255-255-2550,

and here we have 255255255252

as I mentioned before. So you can you know you need to make sure that
you give those information correctly. And once you do the no shutdown,
just like previously, you\'ll get some messages from your Cisco router
showing that the state of that port, 001, has been changed from down to
up, and it\'s ready to go verify interface configuration. To verify
interface configuration, use the Show IP interface brief and show IP v6
interface brief commands. And basically what you do actually once you
exit. So once you exit out of this router, you can exit out all the way
to the Main screen, and then you can type, Show IP interface brief,
again, if you are not in this mode, if you\'re in the previous mode,
like in here the configuration mode, if you put do at the front, like,
instead of going show IP interface brief, you can Go do, show IP
interface brief, and that will display the configurations you just did
and then show IPv six. Interface brief will give you the interfaces that
you have configured for IPv six routing. And again, if you are in the
configuration mode, which is this mode, the R config r1 config mode. In
this case, you just put the do at the front. So instead of saying, show
IP v6 interface brief, you\'re gonna go do, show IP v6 interface brief,
and it will display those information that you\'re looking for. So this
is how you verify that whatever you entered to your device has been
properly configured on your Cisco router. And remember, all of these
configurations are currently is just a running config, and you just need
to make sure that you had to run, do, copy, run, start command to save
it onto the startup configuration. If you lose power or you power cycle
your router at this point without running the do, copy, run, start. You
know command. What\'s going to happen is that you\'re going to lose all
the configurations. Remember that command from. Our previous slide, so
I\'m going to show you quickly, because that\'s very important. So do
running config? Startup config is can be shortened to do copy run start
or copy run start will also do the same command. It\'s a short run form
without this command and all the configurations that you just did in
here will be lost. So make sure that you do that every single time you
change a major thing on your router. Again, I will show you these in my
live lab demonstrations. But for now, what you need to understand the
commands that we just went through and how they are used. So the show IP
interface brief and show IP v6 interface brief displays all interfaces,
their IP addresses and their current status. Show ip route and show IPv
six. Route displays the contents of the IP routing tables stored in the
RAM show interfaces, displays the statistics of all interfaces on the
device. Only display the IPv four addressing information if you do show
ip interfaces, show ip interfaces sorry, in indices, show interfaces,
and then the show ip interfaces display the IPv for statistics for all
interfaces on a router, while the show IPv six interfaces displays the
IPv six statistics for all interfaces on a router. So these are the key
concepts that you should be familiar with as we move forward in these
modules. View status of interfaces with the show IP interface brief and
show IP v6 interface brief commands are shown here, so just by typing
show IP interface brief, it will give you the information about the IPv
six sorry, IPv four information while I show IPv six interface brief
will give you the IPv six information. Again, I will go through these
labs in a separate video, display the contents of the IP routing tables
which show ip route and show IP v6 route commands can be seen like this.
So if you run show ip route, it will give you the IP routes of IP v4
routes, just like this. And show IPv six routes, going to show
information like this. I just want to highlight something really
important in this. Course. We will be mostly focusing on IPv four,
because same principle applies to IPv six. It just IPv four make it less
complicated for us to just looking at those numbers and values
associated with the IP address and the subnet mask as a So, as opposed
to using IPv six. So you will realize in this Cisco netter get course,
most of the focus will be on IP v4 and if you would like to display the
statistics for all interfaces with the show interface command, that
would be something similar to this. You run the show interface command
with associated with a specific interface, and it will give you the
statistics related to that particular interface. In this case, they are
looking at the Gigabit Ethernet 0000, remember those shortened forms.
Instead of using the entire Gigabit Ethernet, 000, they use the gig 000,
and it will still give you that information, because that is a shortened
form for that Ethernet 000, again, I will go through them later in my
lab video, for the display, IP v, for statistics, for route to interface
with the show, IP, interface command, and It looks like this. It will
have the show IPv interface. In this case, we are looking at the G 000,
and then it will result in in showing that statistics for the IPv four
associated with that G 000, interface. Again, I will show this on your

on my

video, on the lab, the live lab video, the show IPv six interface. Show
the exact same information, except for the IPv six. Again, I\'m not
going to go through them right now. I\'ll go through them in the lab
lecture,

configure. The default gateway.

The default gateway is used when host sends a packet to a device on
another network. The default gateway address is generally the router
interface address attached to the local network of the host. First to
reach PC three. The PC one addresses a packet with the IP v4 address of
the PC three, but forward the packet to its default gateway. In this
case, is G, 000, interface of r1 so if you look at the right hand side
diagram, that\'s what this is referring to, the PC three, which would be
this device needs to be reached by the this device, which is PC one. So
what the PC one going to do? It\'s going to send a packet with the IP
address of the PC three, which is going to be this one that\'s going to
be 190 2.1, 68 dot 11, dot 10. But however, the packet get forwarded to
the default gateway of the r1 which sits between this PC One and PC
three. And the default gateway of this PC one going to be the G 001,
sorry.

G 000,

the default gateway of the PC three going to be the G 001, because the
PC three is connected to the the routers G 001, interface while the PC
one is connected to G 000, so in order for PC one to reach PC three, it
has to forward that packet to the G 000, interface of this router with
the IP address associated with the PC three, which is 192 168 11, dot
10. So that\'s what this is trying to, you know, explain it to you on
here by Cisco, this Cisco diagram. So that\'s, that\'s what you need to
get out of this slide. The IP address of the host and the router
interface must be in the same network. So remember that the IP address
of the host and the router interface must be in the same network. In
other words, this PC one have the 192 168 10, dot 10, and this is going
to be 192 168 10.1, but however, this is different. This is 11 dot 10,
right? But that\'s why it has a different interface on this side of the
router, which is going to be 191 68 11.1, here. But here it\'s 191 68
10.1, which is associated this PC can be associated with that gateway.
Default Gateway Interface.

Default Gateway on a switch. A switch must have a default gateway
address configured to remotely manage the switch from another network.
So if you want to manage this s1 switch all the way down here, which is
past that router one you must have a default gateway address configured
so that you can remotely manage that switch. To configure an IP v for
default gateway on a switch, we used the Cisco command, IP default
gateway. Then we add the IP address in the global configuration command.
So if you want to configure that you know this particular switch, you
need the ability to be able to configure this particular switch
remotely. What you need to make sure that we have a IP default gateway,
which is right, right here, this command, IP default gateway added, you
know that command added with the gateway IP address on the switch.
Otherwise you won\'t be able to access this switch remotely behind a
router. So again, I will show exactly how you can do those things on a
live Cisco lab video that I will be posting in the future. But just for
now, just remember, you know, these are the things you need to remember.
You need to understand in this course and in this module, if you have
access to the Cisco NetAcad, you can go ahead and download this lab and
start working on it, but again, I will make sure that I\'ll post that on
my YouTube channel in next few weeks. There\'s another Packet Tracer
file that you can access from your Cisco NetAcad again, because this
particular module lecture is extremely lab heavy, I will make sure that
I\'ll go through all of these commands and labs on a live video and
I\'ll post them onto my YouTube channel. But if you do have access to
it, please go ahead and download the Troubleshoot default gateway
issues. Lab. And work on it, and that will give you a better idea about
everything that we just covered in this module. That will bring us to
the end of this lecture, and I\'m going to go through everything that we
have learned in this module in the next few slides. Again, there is a
video that describe all of these configurations and go through
everything that we just learned on your Cisco NetAcad. You can go ahead
and watch that video, and I will try to find that video and post onto my
YouTube channel. There is also another basic device configuration lab,
the Packet Tracer lab, available on your Cisco NetAcad that will also go
through briefly everything we just learned. There\'s another lab called
Build a switch and a route router network available on your Cisco
NetAcad modules. If you have access to it, please download it and go
ahead and do them. And I\'ll try to get a copy of those labs and post
onto my website so that you can download and you can work on it as well.
And I will leave a link to those labs in the description of this video,
so that you can download them and work on them. And I will also post a
video, as I mentioned multiple times, and all of these labs will give
you a brief summary of everything that we went over. And finally, I will
give you an overview of which what we just covered. So we covered the
task that should be completed when configuring initial settings on a
Cisco router, we learn how to configure the device, name, secure the
privilege, executive mode, secure the user executive mode, how to secure
remote, Telnet, SSH, access, secure all passwords in config file,
provide legal notification and How you can save those configurations to
your Cisco router or switch for routers to be reachable, the router
interfaces must be configured using the no shutdown command. We can
activate the by default turn off interfaces. The interface must also be
connected to another device, such as a switch or a router, for the
physical layer to be active. So if you issue no shutdown command, the
interface may be still down. If there is no other you know device is
connected to that interface, even though you have turned the interface
on there are several commands that can be used to verify the interface
configurations, which we learn in this module, which are, show IP
interface, brief show IP v6 interface, brief show ip route show IP v6
route show interfaces, show IP interface and show IP v6 interface. So
all of these things we will cover in our lab lecture video, but just
know those you know, interface, those commands do exist. We also learn
for an N device to reach the other networks, a default gateway must be
configured so if you do not have a default gateway configured on the on
the end device, it cannot reach the other network. It can reach internal
LAN within its own network segment. But you know, but it cannot reach
pass a router, for example, to another network. If it doesn\'t have the
default gateway, the IP address of the host device and the router
interface therefore must be the in the same network. Remember, I
describe how if the PC one is connected to the port one of that router,
the PC one and port one must have the same subnet mask, and it should be
in the same subnet network in order for it to communicate properly. So
the IP address of the host device, in this case, the PC one I showed you
and the router interface address must be in the same network. A switch
must have a default gateway address configured to remotely manage the
switch from another network. So you can have a switch without the
default gateway configured. However, you won\'t be able to manage that
switch remotely. You had to do it by with a console cable every single
time. But if you add the default gateway address to the Cisco switch,
you would be able to access that switch remotely and manage it from
there to configure an IPv four default gateway on a switch, use the IP
default gateway command, IP Global Address. IP address global
configuration command. So remember those things to configure an IPv.
Four gateway, default gateway on a switch. We use the IP default gateway
command with giving the IP address. So you\'re going to go IP default
gateway and then just going to enter the IP address. So for example, IP
default gateway, 190, 2.1, 68, 10.5, and press enter, and that will
actually give you the default gateway address for that Cisco switch for
global configurations. So basically, it will allow you to access your
Cisco switch remotely for management and configuration.

So that is the end of this lecture, and I will be posting the next few
modules within the next few days, two weeks. And if you have any
questions or concerns related to this very lab heavy lecture, which
probably you do, because I haven\'t gone through the a live lab yet.
You\'re more than welcome to leave a comment below, as I promise I will
make sure that I will post some live lab going through the commands that
we went through in this particular modules, and post to my YouTube
channel so you have a better idea of how these commands are used in a
real world or simulated environment. I\'ll be using Packet Tracer or
even G either simulation or emulation to show these commands,
demonstrate these commands to you in next few videos. If you have
questions related to that, like I mentioned, you\'re more than welcome
to reach out to me, either by leaving a comment in this in this video,
or by sending me a message. Please make sure to thumbs up this video and
subscribe to my channel. So in the future, when I post additional
modules and more Cisco lectures associated with different classes and
class materials, you\'ll be the first one to get notified until next
time. Good luck with your exams and quizzes, and have a nice day. You.