Cisco отметки

Нещо което  забравям 🙂 … да се прави при първи настройки  …

  1. service password-encryption – да си скрием паролите
  2. ip default-gateway .. да си сложим гейт
  3. ако използваме dhcp сървър е добре да направим малко рестрикции
    (config)#ip dhcp snooping
    (config)#ip dhcp snooping vlan 1 – избираме влана за който да е вкл снупинга
    (config)#interface FastEthernet 0/1  – избираме порта който трябва да работи с dhcp да може да връша заявки
    (config-if)#ip dhcp snooping trust
    по подробно тук http://blog.router-switch.com/2012/08/how-to-configure-dhcp-snooping/
  4. (config-if)#logging 192.168.x.x – конфигурираме хост за логовете, може да се наложи и описване в rsyslog.conf на ремоте машината
  5. (config-if)#mac-address-table static 7844.7682.9988 vlan 1 drop  – пример как да най-лесно да си отрежем достъпа на определен мак адрес
  6. ако е стакван може да искаме да сменим номера на сиуча : switch ( config) # switch 3 renumber 1

reset 3750 – 

switch: flash_init
Initializing Flash…
flashfs[0]: 547 files, 19 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 32514048
flashfs[0]: Bytes used: 15487488
flashfs[0]: Bytes available: 17026560
flashfs[0]: flashfs fsck took 11 seconds.
…done Initializing Flash.

switch: dir flash:
Directory of flash:/

2  -rwx  564       <date>               vlan.dat
3  -rwx  1914      <date>               private-config.text
5  drwx  192       <date>               c2960-lanbasek9-mz.122-58.SE2
6  -rwx  3096      <date>               multiple-fs
7  -rwx  2289      <date>               config.text

switch: del flash:config.text
Are you sure you want to delete “flash:config.text” (y/n)?y
File “flash:config.text” deleted

switch: del flash:vlan.dat
Are you sure you want to delete “flash:vlan.dat” (y/n)?y
File “flash:vlan.dat” deleted

switch: rename flash:config.text flash:config.old

препратка статия

Reset Switch Configuration

To reset the switch to factory default, issue the erase startup-config or write erase command. This command does not clear the boot variables, such as config-register and boot system settings. You can alter the boot system parameters with the boot command. In Catalyst 4500/4000 and 6500/6000 series switches running Cisco IOS Software, you can change the configuration register value with the config-register command.

This example shows how to reset a switch running Cisco IOS Software to factory defaults with the write erase command:

Cat2950# write erase
Erasing the nvram filesystem will remove all files! Continue? [confirm]y[OK]
Erase of nvram: complete
Cat2950#
Cat2950# reload

System configuration has been modified. Save? [yes/no]: n

Leave A Reply

Before you submit form:
Human test by Not Captcha

Comments

No comments yet, be the first to add one!

Архив