nb_instructorppt_chapter2_final.pptx

7/21/2019 NB_instructorPPT_Chapter2_final.pptx

1/49

2008 Cisco Systems, Inc. Al l r ights reserved. Cisco ConfidentialPresentation_ID

Cha!ter 2"

Config#ring a $et%or&'!erating System

Network Basics


2/49

Presentation_ID 2 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco Confidential

Chapter 2: Objectives

(!on com!letion of this cha!ter yo# %ill )e a)le to"

*+!lain the !#r!ose of Cisco I'S.

*+!lain ho% to access and navigate Cisco I'S to config#re net%or&

devices.

Descri)e the command str#ct#re of Cisco I'S soft%are.

Config#re hostnames on a Cisco I'S device #sing the CI.

(se Cisco I'S commands to limit access to device config#rations.

(se Cisco I'S commands to save the r#nning config#ration.

*+!lain ho% devices comm#nicate across net%or& media.

Config#re a host device %ith an IP address.

-erify connectivity )et%een t%o end devices.


3/49

Presentation_ID 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco Confidential

Chapter 2

2.0 Introd#ction

2. I'S /ootcam!

2.2 etting /asic

2. Address Schemes

2.1 S#mmary


4/49

2008 Cisco Systems, Inc. Al l r ights reserved. Cisco ConfidentialPresentation_ID 1

2. I'S /ootcam!


5/49


Cisco IOS

Purposeof OS

PC o!erating systems 34indo%s 8 and 'S 56 !erform technicalf#nctions that ena)le"

(se of a mo#se -ie% o#t!#t *nter te+t

S%itch or ro#ter I'S !rovides o!tions to" Config#re interfaces *na)le ro#ting and s%itching f#nctions

All net%or&ing devices come %ith a defa#lt I'S

Possi)le to #!grade the I'S version or feat#re set


6/49


Cisco IOS

Location of the Cisco IOS

I'S stored in Flash

$onvolatile storage, not lost %hen !o%er is lost

Can )e changed or over%ritten as needed

Can )e #sed to store m#lti!le versions of I'S

I'S co!ied from flash to volatile 9A: ;#antity of flash and 9A: memory determines I'S that can )e #sed


7/49Presentation_ID or f#nctions !erformed or ena)led )y

Cisco ro#ters and s%itches.


8/49Presentation_ID 8 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco Confidential

ccessin! a Cisco IOS "evice

Console ccess #etho$

=he most common methods to access the CI"

Console

=elnet or SS?

A(5 !ort


9/49Presentation_ID @ 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco Confidential


Console ccess #etho$

Console port Device is accessi)le even if no net%or&ing services have )een

config#red 3o#tof)and6

$eed a s!ecial console ca)le

Allo%s config#ration commands to )e entered

Sho#ld )e config#red %ith !ass%ords to !revent #na#thoriedaccess

Device sho#ld )e located in a sec#re room so console !ort can not)e easily accessed




%elnet& SS'& an$ () ccess #etho$s

%elnet :ethod for remotely accessing the CI over a net%or&

9eB#ire active net%or&ing services and one active interface that isconfig#red

Secure Shell *SS'+ 9emote login similar to =elnet, )#t #tilies more sec#rity

Stronger !ass%ord a#thentication

(ses encry!tion %hen trans!orting data

u, Port

'#tof)and connection

(ses tele!hone line

Can )e #sed li&e console !ort


11/49Presentation_ID 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco Confidential


%er-inal .-ulation Pro!ra-s

Soft%are availa)le for

connecting to a net%or&ing

device"

P#==

=era =erm

Sec#reC9=

?y!er=erminal

'S 5 =erminal



Navi!atin! the IOS

Cisco IOS #o$es of Operation



Navi!atin! the IOS

Pri-ar/ #o$es



Navi!atin! the IOS

0lobal Confi!uration #o$e an$ Sub-o$es



Navi!atin! the IOS

Navi!atin! between IOS #o$es



Navi!atin! the IOS

Navi!atin! between IOS #o$es *Cont1+


17/49Presentation_ID



%he Co--an$ Structure

Cisco IOS Co--an$ eferenceSteps to navi!ate Cisco3s Co--an$ eference to fin$ a particular

co--an$"

. o to htt!"%%%.cisco.com.

2. Clic& Support.

. Clic& Networkin! Software *IOS 4 N)5OS+.

1. Clic& 6712#4%3for e+am!le6.

. Clic& eference 0ui$es.

7. Clic& Co--an$ eferences..


19/49Presentation_ID @ 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco Confidential


Conte,t5Sensitive 'elp




Co--an$ S/nta, Check




'ot 8e/s an$ Shortcuts

%ab 9Com!letes the remainder of a !artially ty!ed command or&ey%ord

Ctrl5 99edis!lays a line

Ctrl5 9:oves c#rsor to the )eginning of the line

Ctrl5 9*+its config#ration mode and ret#rns to #ser *5*C

"own rrow 9Allo%s the #ser to scroll for%ard thro#gh former

commands

(p rrow 9Allo%s the #ser to scroll )ac&%ard thro#gh former

commands Ctrl5Shift5; 9Allo%s the #ser to interr#!t an I'S !rocess s#ch

as pin! or traceroute

Ctrl5C 9A)orts the c#rrent command and e+its the config#ration

mode




IOS .,a-ination Co--an$s




%he show version Co--an$


24/49 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco ConfidentialPresentation_ID 21

2.2 etting /asic


25/49


'ostna-es


26/49


'ostna-es

"evice Na-es

Some g#idelines for naming conventions" Start %ith a letter

Contain no s!aces

*nd %ith a letter or digit

(se only letters, digits, and dashes

/e less than 71 characters in length

4itho#t names, net%or&devices are diffic#lt to

identify for config#ration

!#r!oses.


27/49

Presentation_ID 2


28/49


Li-itin! ccess to "evice Confi!urations

Securin! "evice ccess

=he !ass%ords introd#ced here are"

enable passwor$F imits access to the !rivileged *5*C mode enable secret F *ncry!ted, limits access to the !rivileged *5*C

mode

console passwor$F imits device access #sing the consoleconnection

=%> passwor$F imits device access over =elnet

Note:In most of the la)s in this co#rse, %e %ill )e #sing sim!le

!ass%ords s#ch as ciscoor class.


29/49

Presentation_ID 2@ 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco Confidential


Securin! Privile!e$ .).C ccess

(se the enable secret command, not theolder enable!ass%ord command

=heenable secret !rovides greater sec#rity )eca#se the!ass%ord is encry!ted


30/49



Securin! (ser .).C ccess

Console !ort m#st )e sec#redG it red#ces the chance of

#na#thoried !ersonnel !hysically !l#gging a ca)le into the

device and gaining device access.

-= lines allo% access to a Cisco device via =elnet. =he

n#m)er of -= lines s#!!orted varies %ith the ty!e of device

and the I'S version.


31/49



.ncr/ptin! Passwor$ "ispla/

service password-encryption

Prevents !ass%ordsfrom sho%ing #! as!lain te+t %henvie%ing the

config#ration Hee!s #na#thoried

individ#als fromvie%ing !ass%ords inthe config#ration file

'nce a!!lied,

removing theencry!tion servicedoes not reverse theencry!tion


32/49



Banner #essa!es

Im!ortant !art ofthe legal !rocess inthe event thatsomeone is!rosec#ted for)rea&ing into adevice

4ording thatim!lies that a loginis %elcome orinvited is nota!!ro!riate

often #sed for legalnotification)eca#se it isdis!layed to allconnectedterminals


33/49


Savin! Confi!urations

Confi!uration Files Switch#reloadSystem configuration

has been modified.

Save? [yes/no]: n

Proceed with reload?

[confirm]

Start#! config#ration isremoved )y #singthe erase startup-

configSwitch# erase startup-

config

'n a s%itch, yo# m#st also

iss#e the delete

vlan.datSwitch# delete

vlan.dat

Delete filename

[vlan.dat]?

Delete flash:vlan.dat?

[confirm]


34/49


Savin! Confi!urations

Capturin! %e,t


35/49

2008 Cisco Systems, Inc. Al l r ights reserved. Cisco ConfidentialPresentation_ID

2. Addressing Schemes


36/49


Ports an$ $$resses

IP $$ressin! of "evices

*ach end device on anet%or& m#st )econfig#red %ith an IPaddress

Str#ct#re of an IPv1address is called dotteddecimal

IP address dis!layed indecimal notation, %ithfo#r decimal n#m)ers)et%een 0 and 2

4ith the IP address, a

s#)net mas& is alsonecessary.

IP addresses can )eassigned to )oth!hysical !orts and virt#alinterfaces.


37/49

Presentation_ID


38/49


$$ressin! "evices

Confi!urin! a Switch =irtual Interface

IP a$$ressF =ogether %ith s#)net mas&, #niB#ely identifies end

device on internet%or&

Subnet -askF Determines %hich !art of a larger net%or& is #sed )y

an IP address

interface =LN 6F Availa)le interface config#ration mode

ip a$$ress 6?216;@16A12 277127712771AF Config#res the IP address

and s#)net mas& for the s%itch

no shut$ownF Administratively ena)les the interface

S%itchstill needs to have !hysical !orts config#red and -= lines to

ena)le remote management


39/49

Presentation_ID @ 2008 Cisco Systems, Inc. Al l r ights reserved. Cisco Confidential

$$ressin! "evices

Confi!urin! a Switch =irtual Interface


40/49


$$ressin! "evices

#anual IP $$ress Confi!uration for .n$ "evices


41/49


$$ressin! "evices

uto-atic IP $$ress Confi!uration for .n$ "evices


42/49


$$ressin! "evices

IP $$ress Conflicts


43/49


=erif/in! Connectivit/

%est the Loopback $$ress on an .n$ "evice


44/49



%estin! the Interface ssi!n-ent


45/49



%estin! .n$5to5.n$ Connectivit/


46/49


Confi!urin! a Network Operatin! S/ste-

Chapter 2 Su--ar/

Cisco I'S" =he technician can enter commands to config#re, or !rogram, the

device to !erform vario#s net%or&ing f#nctions.

Services are generally accessed #sing a commandline interface

3CI6, %hich is accessed )y either the console !ort, the A(5 !ort, or

thro#gh telnet or SS?.

'nce connected to the CI, net%or& technicians can ma&e

config#ration changes to Cisco I'S devices.

Cisco I'S is designed as a modal o!erating system, %hich means

a net%or& technician m#st navigate thro#gh vario#s hierarchicalmodes of the I'S.

Cisco I'S ro#ters and s%itches s#!!ort a similar modal o!erating

system, s#!!ort similar command str#ct#res, and s#!!ort many of

the same commands. In addition, )oth devices have identical initial

config#ration ste!s %hen im!lementing them in a net%or&.


47/49

Presentation_ID 1


48/49


Confi!urin! a Network Operatin! S/ste-

Chapter 2 Su--ar/ *cont1+


49/49

nb_instructorppt_chapter2_final.pptx

Documents