[taken from IE VOL1 workbook]
It’s best to only allow SSH access on your VTY ports. Here’s how you can do it:
1) Configure a domain name on your router:
Rack1R4(config)#ip domain-name internetworkexpert.com
2) Generate the keys:
Rack1R4(config)#crypto key generate rsa general-keys modulus 512
3) Configure the VTY ports with SSH access only:
Rack1R4(config)#line vty 0 4
Rack1R4(config-line)#transport input ssh
4) enable local login [...]
Archive for August, 2008
How to configure SSH on your router
Posted in tutorials, tagged cisco routers, configuring ssh, ssh on August 13, 2008 | 2 Comments »
Going back to the “intermediate” router with term server
Posted in tutorials, tagged switching between routers, term server on August 13, 2008 | Leave a Comment »
[hint taken from Brian Dennis's CoD]
Suppose you are using a term server to login to all your routers. And you’re on R1. You SSH to R4. How do you go back to R1? See below:
ccie-ts#1
[Resuming connection 1 to r1 ... ]
Rack1R1#ssh -l CISCO 155.1.146.4
Password:
Rack1R4>
<—-now you want to go back to R1, how would you do [...]
routing to next-hop vs routing to interface
Posted in InternetworkExp, tutorials, tagged arp, multipoint broadcast interface, proxy arp, routing, static routes on August 7, 2008 | Leave a Comment »
concept learnt from IE’s Vol5.0 workbook for “IP Routing”
When routing to a next-hop value the router performs L2 to L3 resolution on the next-hop address. (e.g. ip route 150.1.4.4 255.255.255.255 155.1.146.4). So in the arp table, you’ll see the MAC for ip address: 155.1.146.4.
When routing to an INTERFACE, the router performs L2 to L3 resolution [...]
IPExperts AUDIO on Demand
Posted in ipexpert, tagged ipexpert, scott morris on August 4, 2008 | Leave a Comment »
is awesome! I listen to one chapter every night before going to sleep….yes yes, I end up dreaming in Scott Morris’s voice but hey, you have to make some sacrfices in order to get IE right?
The best thing about it is that it’s not too long and windy and I get what I [...]
Notes for QoS from IE’s CoD — Part 1
Posted in InternetworkExp, tagged cbwfq, ccie, global synchronization, internetworkexpert, mqc, qos, tcp on August 4, 2008 | 2 Comments »
I really like the way Brian McG explains stuff. In just the first CoD on QoS, he cleared a lot of confusions I had. I have to hear the rest of the CoDs on QoS but here are my notes from the first one for now…
QOS
when we’re talking about QoS, we’re giving different levels of [...]
Basic Config stuff
Posted in tips and tricks, tagged initial config, router config, tips and tricks on August 4, 2008 | Leave a Comment »
Usually when I reboot a router after cleaning it’s startup config…I just copy and paste this on all my routers and switches just to get started (if I’m not using pre-configed stuff):
en
conf t
no ip domain-lookup
line con 0
exec-time 0 0
logg sync
hostname
Also, on my term server, since I always have stuck sessions from my last lab, I [...]
