ConfiguraçãConfiguração de Roteadoreso de Roteadores
-
Upload
damon-smith -
Category
Documents
-
view
61 -
download
5
description
Transcript of ConfiguraçãConfiguração de Roteadoreso de Roteadores
Configurao de Roteadores (CISCO)
Dicas e Toques
Conexo da porta COM (Adaptador DB9 / RJ45) do Computador e a porta CONSOLE do Roteador usando um cabo ROLL OVER (1-8 / 8-1)
Escolha a Porta serial COM1 ou COM2.
Bits por segundo 9600 Bits de Parada2e Controle de fluxo Nenhum
Ordem de Boot do Roteador
1-ROM BOOTSTARP (Teste de Hardware)
2-Busca IOS
2.1- FLASH
2.2- TFTP (Servidor Computador com BACKUP)
2.3- ROM
3-Busca de Arquivo de Configurao
3.1- NVRAM
3.2- SETUP (Assistente com perguntas)
Obs*
Perguntando se quer entrar no modo SETUP
Would you like to enter the initial configuration dialog?[yes/no]:
Para Sair do Modo SetupCtrl + C
Responda No e o roteador vai ligar sem configuraes
Inicializao do Roteador CISCO 2600sem Arquivos de Configurao
Smart Init is enabled
smartinit is sizing iomem
IDMEMORY_REQTYPE
00036C0X000BA600 C2620XM Single Fast Ethernet
0X000F3BB0 public buffer pools
0X00211000 public particle pools
TOTAL:0X003BF1B0
If any of the above Memory Requirements are
"UNKNOWN", you may be using an unsupported
configurationor there is a software problem and
systemoperation may be compromised.
Rounded IOMEM up to: 4Mb.
Using 12 percent iomem.[4Mb/32Mb]
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subjectto restrictions as set forth in subparagraph
(c)ofthe Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
ciscoSystems, Inc.
170 West Tasman Drive
San Jose,California95134-1706
Cisco Internetwork Operating System Software
IOS (tm) C2600 Software (C2600-D-M), Version 12.2(17a), RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Thu19-Jun-0316:34by pwade
Image text-base: 0x8000808C, data-base: 0x80B55190
cisco2620XM (MPC860P) processor (revision 0x100) with 28672K/4096K bytes of mem
ory.
Processor board ID JAD0645069H (2079948430)
M860 processor: part number 5, mask 2
Bridging software.
X.25 software, Version 3.0.0.
1 FastEthernet/IEEE 802.3 interface(s)
2Serial(sync/async) network interface(s)
32K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)
--- System Configuration Dialog ---
Would you like to enter the initial configuration dialog? [yes/no]: n
Press RETURN to get started!
00:00:07: %LINK-3-UPDOWN: Interface Serial0/0, changed state to up
00:00:07: %LINK-3-UPDOWN: Interface Serial0/1, changed state to up
00:00:08: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, chang
edstate to down
00:00:08: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0, changed sta
teto up
00:00:08: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1, changed sta
teto up
00:00:36: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1, changed sta
teto down
00:01:00: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0, changed sta
teto down
00:02:50: %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to administr
ativelydown
00:02:50: %LINK-5-CHANGED: Interface Serial0/0, changed state to administrativel
ydown
00:02:50: %LINK-5-CHANGED: Interface Serial0/1, changed state to administrativel
ydown
00:02:52: %IP-5-WEBINST_KILL: Terminating DNS process
00:02:58: %SYS-5-RESTART: System restarted --
Cisco Internetwork Operating System Software
IOS (tm) C2600 Software (C2600-D-M), Version 12.2(17a), RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Thu19-Jun-0316:34by pwade
00:02:58: %SNMP-5-COLDSTART: SNMP agent on host Router is undergoing a cold star
t
Router>
Ocomando?exibea ajuda do Roteador
Este Prompt Router> o modousuriolimitando oscomandos
Router>
Router>?
Exec commands:
access-enableCreate a temporary Access-List entry
access-profileApply user-profile to interface
clearReset functions
connectOpen a terminal connection
disableTurn off privileged commands
disconnectDisconnect an existing network connection
enableTurn on privileged commands
exitExit from the EXEC
helpDescription of the interactive help system
lockLock the terminal
loginLog in as a particular user
logoutExit from the EXEC
mrinfoRequest neighbor and version information from a multicast
router
mstatShow statistics after multiple multicast traceroutes
mtraceTrace reverse multicast path from destination to source
name-connectionNamean existing network connection
padOpen a X.29 PAD connection
pingSend echo messages
pppStart IETF Point-to-Point Protocol (PPP)
resumeResume an active network connection
rloginOpen an rlogin connection
showShow running system information
slipStart Serial-line IP (SLIP)
systatDisplay information about terminal lines
telnetOpen a telnet connection
terminalSet terminal line parameters
tracerouteTrace route to destination
tunnelOpen a tunnel connection
udptnOpen an udptn connection
whereList active connections
x28Become an X.28 PAD
x3Set X.3 parameters on PAD
Paramudar de Modousuariopara modoprevilegiadousamos o comandoenable, se solicitado digite a senha para entrar neste modo o prompt muda paraRouter#
?paraajuda (HELP)
Obs* podemos digitarapenas osprimeiros caracteres de um comandoe eleser executado
Ex:enexecuta enable
Ex:show runexecuta show running-config
Sedigitarmos apenas oiniciode um comandoe teclarmosTABo IOS do roteadorcompletara o comando.
Ex:encompleta para enable
Ex:show runcompleta para show running-config
Router>enable
Password:
Router#
Router#?
Exec commands:
access-enableCreate a temporary Access-List entry
access-profileApply user-profile to interface
access-templateCreatea temporary Access-List entry
archivemanage archive files
bfeFor manual emergency modes setting
cdChange current directory
clearReset functions
clockManage the system clock
configureEnter configuration mode
connectOpen a terminal connection
copyCopy from one file to another
debugDebugging functions (see also 'undebug')
deleteDelete a file
dirList files on a filesystem
disableTurn off privileged commands
disconnectDisconnect an existing network connection
enableTurn on privileged commands
eraseErase a filesystem
exitExit from the EXEC
helpDescription of the interactive help system
isdnRun an ISDN EXEC command on a BRI interface
lockLock the terminal
loginLog in as a particular user
logoutExit from the EXEC
moreDisplay the contents of a file
mrinfoRequest neighbor and version information from a multicast
router
mrmIP Multicast Routing Monitor Test
mstatShow statistics after multiple multicast traceroutes
mtraceTrace reverse multicast path from destination to source
name-connectionNamean existing network connection
noDisable debugging functions
padOpen a X.29 PAD connection
pingSend echo messages
pppStart IETF Point-to-Point Protocol (PPP)
pwdDisplay current working directory
reloadHalt and perform a cold restart
renameRename a file
restartRestart Connection
resumeResume an active network connection
rloginOpen an rlogin connection
rshExecute a remote command
rtrRTR Exec Configuration
sendSend a message to other tty lines
setupRun the SETUP command facility
showShow running system information
slipStart Serial-line IP (SLIP)
squeezeSqueeze a filesystem
start-chatStart a chat-script on a line
systatDisplay information about terminal lines
telnetOpen a telnet connection
terminalSet terminal line parameters
testTest subsystems, memory, and interfaces
tracerouteTrace route to destination
tunnelOpen a tunnel connection
udptnOpen an udptn connection
undebugDisable debugging functions (see also 'debug')
upgradeUpgrade firmware
verifyVerify a file
whereList active connections
writeWrite running configuration to memory, network, or terminal
x28Become an X.28 PAD
x3Set X.3 parameters on PAD
Router#
Para obter ajuda de um comando digite o Comando seguidode ?
Router#Show ?
access-expressionList access expression
access-listsList access lists
accountingAccounting data for active sessions
adjacencyAdjacent nodes
aliasesDisplay alias commands
appletalkAppleTalk information
arapShow Appletalk Remote Access statistics
arpARP table
asyncInformation on terminal lines used as router interfaces
backupBackup status
bridgeBridge Forwarding/Filtering Database [verbose]
buffersBuffer pool statistics
c2600Show c2600 information
ccaCCA information
cdapiCDAPI information
cdpCDP information
cefCisco Express Forwarding
class-mapShow QoS Class Map
clockDisplay the system clock
compressShow compression statistics
configurationContents of Non-Volatile memory
connectionShow Connection
contextShow context information
controllersInterface controller status
copsCOPS information
debuggingState of each debugging option
decnetDECnet information
derived-configDerived operating configuration
dhcpDynamic Host Configuration Protocol status
diagShow diagnostic information for port adapters/modules
dialerDialer parameters and statistics
dnsixShows Dnsix/DMDP information
dxiatm-dxi information
entryQueued terminal entries
environmentEnvironmental monitor statistics
exceptionexception informations
fileShow filesystem information
flash:display information about flash: file system
frame-relayFrame-Relay information
historyDisplay the session command history
hostsIP domain-name, lookup style, nameservers, and host
table
htmlHTML helper commands
idbList of Hardware Interface Descriptor Blocks
interfacesInterface status and configuration
ipIP information
ipxNovell IPX information
keyKey information
lineTTY line information
llc2IBM LLC2 circuit information
locationDisplay the system location
loggingShow the contents of logging buffers
memoryMemory statistics
modemcapShow Modem Capabilities database
ntpNetwork time protocol
parserDisplay parser information
pasPort Adaptor Information
pciPCI Information
policy-mapShow QoS Policy Map
pppPPP parameters and statistics
printersShow LPD printer information
privilegeShow current privilege level
processesActive process statistics
protocolsActive network routing protocols
qdmShow information about QoS Device Manager
queueShow queue contents
queueingShow queueing configuration
radiusShows radius information
random-detect-groupdisplayrandom-detetct group
regionRegion Manager Status
registryFunction registry information
reloadScheduled reload information
rhostsRemote-host+user equivalences
rifRIFcache entries
rmonrmon statistics
route-maproute-map information
rtrResponse Time Reporter (RTR)
running-configCurrent operating configuration
sessionsInformation about Telnet connections
smdsSMDS information
smfSoftware MAC filter
smrpSimple Multicast Routing Protocol (SMRP) information
snapshotSnapshot parameters and statistics
snmpsnmp statistics
spanning-treeSpanning tree topology
stacksProcess stack utilization
standbyHot Standby Router Protocol (HSRP) information
startup-configContents of startup configuration
subscriber-policySubscriber policy
subsysShow subsystem information
tacacsShows tacacs+ server statistics
tcpStatus of TCP connections
tech-supportShow system information for Tech-Support
templateTemplate information
terminalDisplay terminal configuration parameters
tgrmTrunk Group Resource Mananger info
time-rangeTime range
traffic-shapetraffic rate shaping configuration
usersDisplay information about terminal lines
versionSystem hardware and software status
vlansVirtual LANs Information
vtemplateVirtual Template interface information
whoamiInfo on current tty line
x25X.25 information
x29X.29 information
Verificar o Status das Interfaces
Router>enable
Router#show interfaces
FastEthernet0/0 is administratively down, line protocol is down
Hardware isAmdFE,address is 000b.5f63.1f00 (bia 000b.5f63.1f00)
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Auto-duplex, Auto Speed, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input never, output00:06:50, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy:fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec,0 packets/sec
5 minute output rate 0 bits/sec,0 packets/sec
0 packets input, 0 bytes
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0frame, 0 overrun, 0 ignored
0watchdog
0 input packets with dribble condition detected
15 packets output, 900 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 latecollision, 0 deferred
Mostrar os roteadores Visinhos somenteCISCO
Router#show cdp neighbors
^
% Invalid input detected at '^' marker.
Router#
Exibir a Tabela de Roteamento
Router#show ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF interarea
N1 - OSPF NSSA external type1, N2 - OSPF NSSA external type 2
E1 - OSPF external type1, E2 - OSPF external type 2, E - EGP
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia- IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route
Gateway of last resort is not set
Router#
Entrar em modo de Configurao Global, com o comando ConfigureTerminal
Router#configure terminal
Enter configuration commands, one per line.End withCNTL/Z.
Router(config)#
Mapa da Sala (Laboratrio CISCO)
Exemplo de Configurao para o RoteadorLabB
Modelo_LabB.txt
hostnameLab_B
enablesecret 5 $1$7Sv8$1jg.sasx.3Rv59zC117Vi/
enablepassword cisco
ipsubnet-zero
noip domain-lookup
iphost LAB_A 192.5.5.1 205.7.5.1 201.100.11.1
iphost LAB_B 219.17.100.1 199.6.13.1 201.100.11.2
iphost LAB_C 223.8.151.1 204.204.7.1 199.6.13.2
iphost LAB_D 211.93.105.1 204.204.7.2
iphost LAB_E 210.93.105.1
interfacefa0/0
descriptionConectado a Rede_A
ipaddress 219.17.100.1 255.255.255.0
noip directed-broadcast
noshutdown
interfaceSerial0/0
bandwidth56
ipaddress 199.6.13.1 255.255.255.0
noip directed-broadcast
clockrate56000
noshutdown
interfaceSerial0/1
ipaddress 201.100.11.2 255.255.255.0
noip directed-broadcast
noshutdown
routerrip
network219.17.100.0
network199.6.13.0
network201.100.11.2
iphttp server
noip classless
linecon 0
passwordcisco
transportinput none
lineaux 0
linevty 0 4
passwordtelnet
login
end
Descarregar o Arquivo de exemplo no roteador
Menu TransferirEnviar arquivo de texto
Escolher o Arquivo Correto
Transferncia Completa
Para Transferir configurao do Roteador para arquivo
Tudo que configurado (digitado) guardado no arquivo indicado (formato .txt).
Para derrubar uma sesso TELNET, primeiro verificamos quemesta conectadocom o comandoshow users, note que no primeiro comando ningum esta conectado no roteador e no segundo comando um usurio 66 da conexo IP: 219.17.100.3 esta conectado. O Comando para derrubar o usurio clear line ndo USR.
Lab_B#show users
LineUserHost(s)IdleLocation
*0con 0idle00:00:00
InterfaceUserModeIdlePeer Address
Lab_B#show users
LineUserHost(s)IdleLocation
*0con 0idle00:00:00
66 vty 0idle00:00:06219.17.100.3
InterfaceUserModeIdlePeer Address
Lab_B#clear line 66
[confirm]
[OK]
Lab_B#
Enviar Mensagensusar o comandoshow users, para descobrir o n dos usurios conectados e depois o comandosend n e CTRL + Zpara enviar a mensagem.
Lab_B#show users
LineUserHost(s)IdleLocation
*0con 0idle00:00:00
66 vty 0idle00:00:03219.17.100.3
InterfaceUserModeIdlePeer Address
Lab_B#send 66
Enter message, end with CTRL/Z; abort with CTRL/C:
O Link esta ON LINE
Configura a PORTA F0/0 com o IP 200.100.10.12
Leandro Ramos
^Z
Send message? [confirm]
Lab_B#
Mensagem recebida
***
***
*** Message from tty66 to tty0:
***
Porta configurada
Link OK
Faa o teste
Quando digitado um comando errado no roteador o caractere '^' informa o local onde o comando esta digitado errado. No exemplo o comando correto seria show startup-config, mas foi digitado errado e o IOS do roteador informa a partir de onde o comando esta digitado errado (umra mais).
Lab_B#show starrtup-config
^
% Invalid input detected at '^' marker.
Lab_B#
Visualizar a tabela de roteamento
Lab_C#show ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B -BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF interarea
N1 - OSPF NSSA external type1, N2 - OSPF NSSA external type 2
E1 - OSPF external type1, E2 - OSPF external type 2, E - EGP
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia- IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route
Gateway of last resort is not set
R210.93.105.0/24 [120/2] via 204.204.7.2, 00:00:09, Serial0/0
R211.93.105.0/24 [120/1] via 204.204.7.2, 00:00:09, Serial0/0
R219.17.100.0/24 [120/1] via 199.6.13.1, 00:00:02, Serial0/1
R192.168.10.0/24 [120/2] via 204.204.7.2, 00:00:09, Serial0/0
[120/2] via 199.6.13.1,00:00:02, Serial0/1
C199.6.13.0/24 is directly connected, Serial0/1
R193.114.41.0/24 [120/1] via 204.204.7.2, 00:00:09, Serial0/0
C204.204.7.0/24 is directly connected, Serial0/0
R192.5.5.0/24 [120/2] via 199.6.13.1, 00:00:03, Serial0/1
C223.8.151.0/24 is directly connected, FastEthernet0/0
R201.100.11.0/24 [120/1] via 199.6.13.1, 00:00:03, Serial0/1
Lab_C#
Visualizar aVerso do IOSe
Lab_C>show version
Cisco Internetwork Operating System Software
IOS (tm)C2600 Software(C2600-D-M), Version 12.2(17a), RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Thu19-Jun-0316:34by pwade
Image text-base: 0x8000808C, data-base: 0x80B55190
ROM: System Bootstrap, Version 12.2(7r) [cmong 7r], RELEASE SOFTWARE (fc1)
Lab_C uptime is 20 minutes
System returned to ROM by reload
System image file is "flash:c2600-d-mz.122-17a.bin"
cisco2620XM (MPC860P) processor (revision 0x100) with28672K/4096K bytes of mem
ory.
Processor board ID JAD06450GSV (3223792012)
M860 processor: part number 5, mask 2
Bridging software.
X.25 software, Version 3.0.0.
1 FastEthernet/IEEE 802.3 interface(s)
2Serial(sync/async) network interface(s)
32K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)
Configuration register is0x2102
Lab_C>
Retirar Senha do Roteador.
Deve estar conectado na porta CONSOLE.
Toda vez que ligar o Router, o roteador l oRegister
Register 0x2102Hexadecimal de16 bits
Alterar os4ltimos para mudar a inicializao
0 ROM Monitor
1-ROM
2at F NVRAM
Mudar o numero do registropara 0x2142
Desligar e Ligar o Roteador eCtrl + Cno momento da inicializao que aparecerCISCO 2600
rommon1 > confreg 0x2142
You must reset or power cycle for new config to take effect
rommon2 > i
System Bootstrap, Version 12.2(7r) [cmong 7r], RELEASE SOFTWARE (fc1)
Copyright (c) 2002 by cisco Systems, Inc.
Would you like to enter the initial configuration dialog? [yes/no]: n
Router>
Router>ena
Router#copy star run
Destination filename [running-config]?
920 bytes copied in 0.568 secs (1620 bytes/sec)
Lab_C#
Lab_C#configure terminal
Enter configuration commands, one per line.End with CNTL/Z.
Lab_C(config)#enable secret senha123
Lab_C(config)#
Lab_C(config)#config-register 0x2102
CTRL + Z
Lab_C#copy running-config startup-config
Destination filename [startup-config]?
Building configuration...
[OK]
Lab_C#
Lab_C#reload
Proceed with reload? [confirm]
00:09:56: %SYS-5-RELOAD: Reload requested by console.
System Bootstrap, Version 12.2(7r) [cmong 7r], RELEASE SOFTWARE (fc1)
Copyright (c) 2002 by cisco Systems, Inc.
...
rommon1 > o prompt ROM Monitor, e o comandoconfreg 0x2142muda o parmetro de 0x2102 para0x2142e o comandoiinicializa o roteador.
O Comandoconfigure terminalaltera do modo Privilegiado -Lab_C#para o modo de configurao Global -Lab_C(config)#.
O Comandoenable secretsenha123define a senha.
O Comandoconfig-register 0x2102altera o parametro de 0x2142 para 0x2102 que padro.
A teclaCTRL + Zvolta para o modo de configurao Privilegiado.
Obs* As interfaces apos reiniciar todas interfaces ficamDOWN, devemos LEVANTAR as Interfaces.
interfaceFastEthernet0/0
descriptionConectado ao SW
ipaddress 223.8.151.1 255.255.255.0
shutdown
duplexauto
speedauto
!
interfaceSerial0/0
bandwidth56
ipaddress 204.204.7.1 255.255.255.0
shutdown
clockrate56000
!
interfaceSerial0/1
ipaddress 199.6.13.2 255.255.255.0
shutdown
Lab_C(config)#interface fastEthernet 0/0
Lab_C(config-if)#no shutdown
00:02:02: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, chang
edstate to up
Lab_C(config-if)#exit
Lab_C(config)#interface serial 0/0
Lab_C(config-if)#
Lab_C(config-if)#
00:03:00: %LINK-3-UPDOWN: Interface Serial0/0, changed state to down
Lab_C(config-if)#
Lab_C(config)#int s0/1
Lab_C(config-if)#no shut
Lab_C(config-if)#
Lab_C(config-if)#exit
Lab_C(config)#exit
Lab_C#
O Comandointerface serial 0/0acessa a interface serial 0/0 para acessar outra interface mude o nome da interface e o seu numero (ex. interfacefastEthernet0/0). O Comandono shutdownlevanta a porta.,Ocomandoshutdowndesabilita a porta.
Visualizar Informaes sobre as interfaces interface.
Lab_C#show interfaces
FastEthernet0/0 is up, line protocol is up
Hardware isAmdFE,address is 000b.5f76.7900 (bia 000b.5f76.7900)
Description: Conectado ao SW
Internet address is 223.8.151.1/24
MTU1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability255/255,txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 100Mb/s, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:00:00, output 00:00:08,output hangnever
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy:fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec,0 packets/sec
5 minute output rate 0 bits/sec,0 packets/sec
2064 packets input, 253354 bytes
Received 1185 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0frame, 0 overrun, 0 ignored
0watchdog
0 input packets with dribble condition detected
1293 packets output, 202255 bytes, 0 underruns
0 output errors, 0 collisions, 1 interface resets
0 babbles, 0 latecollision, 0 deferred
3 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
Serial0/0 is up, line protocol is up
Hardware is PowerQUICC Serial
Internet address is 204.204.7.1/24
MTU 1500 bytes, BW 56 Kbit, DLY 20000 usec,
reliability255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input 00:00:02, output 00:00:02,output hangnever
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations0/1/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 42 kilobits/sec
5 minute input rate 0 bits/sec,0 packets/sec
5 minute output rate 0 bits/sec,0 packets/sec
613 packets input, 41356 bytes, 0 no buffer
Received 597 broadcasts, 0 runts, 0 giants, 0 throttles
1 input errors, 0 CRC, 1 frame, 0 overrun, 0 ignored, 0 abort
614 packets output, 49668 bytes, 0 underruns
0 output errors, 0 collisions, 2 interface resets
0 output buffer failures, 0 output buffers swapped out
1 carrier transitions
DCD=upDSR=upDTR=upRTS=upCTS=up
Serial0/1 is up, line protocol is up
Hardware is PowerQUICC Serial
Internet address is 199.6.13.2/24
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input 00:00:05, output 00:00:04,output hangnever
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations0/1/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 0 bits/sec,0 packets/sec
5 minute output rate 0 bits/sec,0 packets/sec
618 packets input, 44888 bytes, 0 no buffer
Received 585 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0frame, 0 overrun, 0 ignored, 0 abort
615 packets output, 46260 bytes, 0 underruns
0 output errors, 0 collisions, 1 interface resets
0 output buffer failures, 0 output buffers swapped out
0 carrier transitions
DCD=upDSR=upDTR=upRTS=upCTS=up
Lab_C#
Parmetros da Interface
MTU
Mximo de bytes (1500)
RELY
Confiabilidade 255/255 (100%)
LOAD
Carga da interface 1/255
RUNT
Qtd.dequadros menores que 64 bytes
GIANT
Qtd.dequadros maiores que 1518 bytes
Para alterar e visualizar o calendrio do roteador
Lab_C#clock set12:42:0913aug2003
Lab_C#show clock
12:42:19.199 UTCWed Aug 13 2003
Lab_C#
Visualizar oscomandos inseridos anteriormente
Lab_C#show history
ENA
showinterfaces
showclock
clock
clockset13/08/2003
clockset12:42:0913 aug 2003
showclock
showusers
showhistory
Lab_C#
Visualizar a Tabela ARP do roteador
Lab_C#showarp
ProtocolAddressAge (min)Hardware AddrTypeInterface
Internet223.8.151.1-000b.5f76.7900ARPAFastEthernet0/0
Internet223.8.151.380001.02c6.a589ARPAFastEthernet0/0
Internet223.8.151.500001.0287.f076ARPAFastEthernet0/0
Internet223.8.151.24230001.0287.f109ARPAFastEthernet0/0
Visualizar os protocolos do roteador, exibindo os protocolos rateveis e de roteamento.
Lab_C#show protocols
Global values:
Internet Protocol routing is enabled
FastEthernet0/0 is up, line protocol is up
Internet address is 223.8.151.1/24
Serial0/0 is up, line protocol is up
Internet address is 204.204.7.1/24
Serial0/1 is up, line protocol is up
Internet address is 199.6.13.2/24
Configurar o Roteador via TELNET
Primeiramente devemos mudar o IP da estao para a mesma rede da porta Ethernet/FastEthernetdo roteador e que exista conexo fsica entre o Roteador e esta estao.
Copiar para umservidor TFTP ou de um Servidor TFTPpara o roteador.
Primeiro abre o servidor TFTP em uma estao, depois usa o comandocopyoque?tftp(onde oque? Pode ser aflash, NVRAM, RAM, etc...) informe o ip (223.8.151.3)deste servidor e o nome do Arquivo de BACKUP (leandro_router).
Lab_C#copy star tftp
Address or name of remote host []?223.8.151.3
Destination filename [lab_c-confg]?leandro_router
!!
950 bytes copied in 2.340 secs (406 bytes/sec)
Lab_C#
Para copiar do servidor TFTP use o comandocopy tftprun ,onde run pode ser substitudo por qualquer tipo de memria do roteador.
Descobrir os Visinhos do seu roteador, atravs do protocolo CDP de Camada de Enlace (2)
Lab_C#showcdpneighbors
Capability Codes: R - Router, T -TransBridge, B -SourceRouteBridge
S - Switch, H - Host, I - IGMP, r - Repeater
Device IDLocal IntrfceHoldtmeCapabilityPlatformPort ID
SuperiorFas 0/0142S IWS-C2950-2Fas 0/7
Lab_BSer 0/1150R2620XMSer 0/0
Lab_DSer 0/0149R2620XMSer 0/1
Lab_C#
TELNET de Roteador para Roteador.
Lab_C#telnet lab_a
Trying LAB_A (192.5.5.1)... Open
ine
Bem vindo Ao Leandro Ramos - Roteador A
User Access Verification
Password:
Lab_A>
PINGpara testar conectividade entre redes (Camada1at 3)
Exemplo em sucedido
Lab_C#ping 192.168.10.2
Type escapesequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.10.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 64/78/116 ms
Exemplo de falha
Lab_C#ping 200.100.10.2
Type escapesequence to abort.
Sending 5, 100-byte ICMP Echos to 200.100.10.2, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
Para Alterar oNome do Roteador
LAB_B#configure terminal
Enter configuration commands, one per line.End with CNTL/Z.
LAB_B(config)#hostname Router_Leandro
Router_Leandro(config)#
Alterar a senha de acesso paraconsole
Lab_B(config)#line con 0
Lab_B(config-line)#login
Lab_B(config-line)#password 1234
Lab_B(config-line)#
Alterar a senha de acesso paratelnet
Lab_B(config)#line vty 0 4
Lab_B(config-line)#login
Lab_B(config-line)#password 1234
Lab_B(config-line)#
Alterar a senha de acesso paraAuxiliar
Lab_B(config)#line aux 0
Lab_B(config-line)#login
% Login disabled on line 65, until 'password' is set
Lab_B(config-line)#password 1234
Lab_B(config-line)#
Alterar asenha de acesso para entrada no modo privilegiado com senha criptografada,esta a senha valida.
Lab_B(config)#enable secret 1234
Alterar asenha de acesso para entrada no modo privilegiadocom senha no criptografada, esta senha s ser valida se existir problemas com a senha criptografada.
Lab_B(config)#enable password 1234
The enable password you have chosen is the same as your enable secret.
This is not recommended.Re-enter the enable password.
Apagar a configurao da memria NVRAMdo roteador.
Lab_B#erase star
Erasing the nvram filesystem will remove all configuration files! Continue? [con
firm]
[OK]
Erase of nvram: complete
Lab_B#
01:09:42: %SYS-7-NV_BLOCK_INIT: Initialized the geometry of nvram
Lab_B#
Reniniciar o Roteador
Lab_B#reload
System configuration has been modified. Save? [yes/no]:n
Proceed with reload? [confirm]
01:13:08: %SYS-5-RELOAD: Reload requested by console.
Mensagem(Banner)de Entrada do Roteador
Lab_B(config)#banner motd "------------- Roteador Leandro Ramos ------------"
Lab_B(config)#
Descrioda porta do Roteador
Lab_B#conf t
Enter configuration commands, one per line.End with CNTL/Z.
Lab_B(config)#int f0/0
Lab_B(config-if)#description# Porta 100 Mbps ligada ao SW7 da Rede1#
interfaceFastEthernet0/0
description# Porta 100 Mbps ligada ao SW7 da Rede1#
ipaddress 219.17.100.1 255.255.255.0
duplexauto
speedauto
Comandos para configurao dasInterfaces
Dentro do modo de configurao Global usamos o comandointerface XXXpara entrar dentro da interface (interface f0/0para portaFastEthernet0/0einterface s0/1para serial 0/1),note que o prompt do roteador mudou paraLab_B(config-if)#,depois deveremos atribuir o IP e a Mascara para a porta do Roteador com o comandoip address IP MASK (ip address 219.17.100.1 255.255.255.0) e subir a porta com o comandono shutdowne o comandodescriptionpara inserir um comentrio na porta.
Lab_B>enable
Password:
Lab_B#conf t
Enter configuration commands, one per line.End with CNTL/Z.
Lab_B(config)#interface f0/0
Lab_B(config-if)#ip address 219.17.100.1 255.255.255.0
Lab_B(config-if)#no shutdown
Lab_B(config-if)#description Porta ligada ao SW
Copiar o IOSda Flashpara umservidor TFTP (Backup de IOS)
Lab_B#copy flash tftp
Source filename []?c2600-d-mz.122-17a(2620XM).bin
Address or name of remote host []?219.17.100.3
Destination filename [c2600-d-mz.122-17a(2620XM).bin]?
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
6215052 bytes copied in 78.896 secs (78775 bytes/sec)
Mudar a Seqncia de Boot do Roteador, ao invs debuscar oIOSna FLASH, buscaremos em umservidor TFTP
Lab_B#conf t
Enter configuration commands, one per line.End with CNTL/Z.
Lab_B(config)#boot system tftp c2600-d-mz.122-17a(2620XM).bin 219.17.100.3
Lab_B(config)#^Z
Lab_B#
00:51:27: %SYS-5-CONFIG_I: Configured from console by console
Lab_B#copy run star
Destination filename [startup-config]?
Building configuration...
[OK]
Lab_B#
Configurao do Protocolo RIP, para troca de tabela de roteamento com seus vizinhos. O Comandorouter ripativa o modo de configurao, note que o prompt alterou paraLab_B(config-router)#e o comandonetwork xx.xx.xx.xx,onde devemos declarar os endereos de rede de todas as portas locais do seu roteador.
Lab_B#conf t
Enter configuration commands, one per line.End with CNTL/Z.
Lab_B(config)#router rip
Lab_B(config-router)#network 219.17.100.0
Lab_B(config-router)#network 199.6.13.0
Lab_B(config-router)#network 201.100.11.2
Lab_B(config-router)#^Z
Lab_B#
Lab_B#show run
Building configuration...
routerrip
network199.6.13.0
network201.100.11.0
network219.17.100.0
Sub Redes com Roteadores
IP200.16.45.0/28
MASK255.255.255.240
24214 Subredes
24214 Hosts em cada subrede
1SubRede entre roteadores5
1SubRede para cada porta Ethernet6
Total de Subredes11
Portas do Roteador
SubRedes
Endereo de Rede
1 Host
Ultimo Host
Broadcast
0
1
14
15
A (F0/0)
1
16
17
30
31
A (F0/1)
2
32
33
46
47
A (S0/0)B (S0/1)
3
48
49
62
63
A (S0/1)E(S0/0)
4
64
65
78
79
B F0/0
5
80
81
94
95
B (S0/0)C(S0/1)
6
96
97
110
111
C (F0/0)
7
112
113
126
127
C (S0/0)D(S0/1)
8
128
129
142
143
D (F0/1)
9
144
145
158
159
D(S0/0)E(S0/1)
10
160
161
174
175
E (F0/0)
11
176
177
190
191
12
192
193
206
207
13
208
209
222
223
14
224
225
238
239
Mapa da rede (IPPortaConexo)
Resoluo do ExerccioLab_B
Router>ena
Router#conf t
Enter configuration commands, one per line.End with CNTL/Z.
Router(config)#int s0/0
Router(config-if)#ip add 200.16.45.97 255.255.255.240
Router(config-if)#no shut
Router(config-if)#
00:04:48: %LINK-3-UPDOWN: Interface Serial0/0, changed state to up
00:04:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0, changed sta
teto up
Router(config-if)#clock rate 56000
Router(config-if)#exit
Router(config)#int s0/1
Router(config-if)#ip add 200.16.45.50 255.255.255.240
Router(config-if)#no shut
00:06:05: %LINK-3-UPDOWN: Interface Serial0/1, changed state ip add 200.16.45.50
Router(config-if)#clock rate 56000
Router(config-if)#exit
Router(config)#int f0/0
Router(config-if)#ip add 200.16.45.81 255.255.255.240
Router(config-if)#no shut
00:07:14: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, chang
edstate to up
Router(config-if)#exit
Router(config)#hostname Lab_B
Lab_B(config)#router rip
Lab_B(config-router)#network 200.16.45.96
Lab_B(config-router)#network 200.16.45.48
Lab_B(config-router)#network 200.16.45.80
Lab_B(config-router)#exit
Lab_B(config)#enable secret class
Lab_B(config)#enable password cisco
Lab_B(config)#no ip domain lookup
Lab_B(config)#ip host Lab_A200.16.45.33 200.16.45.65 200.16.45.49 200.16.45.17
Lab_B(config)#ip host Lab_B 200.16.45.97 200.16.45.50 200.16.45.81
Lab_B(config)#ip host Lab_C 200.16.45.98 200.16.45.129 200.16.45.113
Lab_B(config)#ip host Lab_D 200.16.45.130 200.16.45.145 200.16.45.161
Lab_B(config)#ip host Lab_E 200.16.45.162 200.16.45.66 200.16.45.177
Lab_B(config)#exit
Lab_B#
00:17:03: %SYS-5-CONFIG_I: Configured from console by console
Lab_B#copy run star
Destination filename [startup-config]?
Building configuration...
[OK]
Lab_B#sh star
Using 890 out of 29688 bytes
!
version12.2
servicetimestamps debug uptime
servicetimestamps log uptime
noservice password-encryption
!
hostnameLab_B
!
enablesecret 5 $1$jPuB$E6k3C.o3Z0b8zAbbJRfYm.
enablepassword cisco
!
ipsubnet-zero
!
!
noip domain-lookup
iphost Lab_E 200.16.45.162 200.16.45.66 200.16.45.177
iphost Lab_D 200.16.45.130 200.16.45.145 200.16.45.161
iphost Lab_C 200.16.45.98 200.16.45.129 200.16.45.113
iphost Lab_B 200.16.45.97 200.16.45.50 200.16.45.81
iphost Lab_A 200.16.45.33 200.16.45.65 200.16.45.49 200.16.45.17
!
!
!
!
interfaceFastEthernet0/0
ipaddress 200.16.45.81 255.255.255.240
duplexauto
speedauto
!
interfaceSerial0/0
ipaddress 200.16.45.97 255.255.255.240
nofair-queue
clockrate56000
!
interfaceSerial0/1
ipaddress 200.16.45.50 255.255.255.240
!
routerrip
network200.16.45.0
!
ipclassless
iphttp server
!
!
linecon 0
lineaux 0
linevty 0 4
!
end
Lab_B#ping Lab_E
Type escapesequence to abort.
Sending 5, 100-byte ICMP Echos to 200.16.45.162, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 92/95/96 ms
Lab_B#traceroute Lab_C
Type escapesequence to abort.
Tracing the route to Lab_C (200.16.45.98)
1 Lab_C (200.16.45.98) 16 msec*16msec
Lab_B#
Configurar usurios para acessar o roteador devemos definir o nome do usurio e senha com o comandousername NOME password SENHAe login LOCAL, para o roteador solicitar a senha (Lab_B(config)#line vty 0 4Lab_B(config-line)#login local)
Lab_B#conf t
Enter configuration commands, one per line.End with CNTL/Z.
Lab_B(config)#username leandro password paocomovo
Lab_B(config)#username joilson password 123senha
Lab_B(config)#line vty 0 4
Lab_B(config-line)#login local
Lab_B(config-line)#exit
Lab_B(config)#line con 0
Lab_B(config-line)#login local
Agora o USERNAME a SENHA ser solicitada no login via CONSOLE e via TELNET.
Lab_B con0 is now available
Press RETURN to get started.
User Access Verification
Username: leandro
Password:
Lab_B>
Para criptografar todas as senhas do roteador
Lab_B(config)#service password-encryption
Antes
Lab_B#show run
usernameleandro password 0 paocomovo
usernamejoilson password 0 123senha
Depois
Lab_B#show run
usernameleandro password 7 05080F1C2243
usernamejoilson password 7 0205085A1815
Comandotracerouteindica o caminho percorrido para atingir uma rede, podemos utilizar este comando com oipdodestinoou com seunomese utilizado servidor DNS.
Lab_B#traceroute lab_e
Type escapesequence to abort.
Tracing the route to Lab_E (210.93.105.1)
1 Lab_C (199.6.13.2) 16 msec 16 msec 16 msec
2 Lab_D (204.204.7.2) 32 msec 32 msec 28 msec
3 193.114.41.2 48 msec*44msec
As configuraes da rota estticas so administradas manualmente por um administrador de rede que a insere em uma configurao do roteador. O administrador deve atualizar manualmente essa entrada de rota esttica sempre que uma atualizao da alterao da topologia de internetwork for necessria. Para configuirar as rotas estticas usamos o comandoip routeRede_DestinoMask Porta_de_Sada ou ip route Rede_Destino Mask IP_do_1_Salto.
Lab_B(config)#ip route 211.93.105.0 255.255.255.0 s0/0
Lab_B(config)#ip route 223.8.151.0 255.255.255.0 199.6.13.2
Lab_B(config)#exit
Lab_B#show run
iproute 210.93.105.0 255.255.255.0 199.6.13.2
iproute 223.8.151.0 255.255.255.0 199.6.13.2
VisualizarstatusdosProtocolosdeRoteamento
RIP
Update (Atualizao)
30
Invalid (Invalidar)
180
HoldDown(Contador para Remover)
180
Flush (Descartado)
240
Distancia Administrativa
120
Lab_B#show ip protocols
Routing Protocol is "rip"
Sendingupdates every 30seconds, next due in 16 seconds
Invalid after 180 seconds,hold down 180,flushed after 240
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Redistributing: rip
Default version control: send version 1, receive any version
InterfaceSendRecvTriggered RIPKey-chain
FastEthernet0/011 2
Serial0/011 2
Serial0/111 2
Automatic network summarization is in effect
Maximum path: 4
Routing for Networks:
199.6.13.0
200.16.45.0
201.100.11.0
219.17.100.0
Routing Information Sources:
GatewayDistanceLast Update
199.6.13.212000:00:18
Distance: (default is 120)
Lab_B#
Show ip route, visualiza a tabela de roteamento contendoas rotas e o tipo SEsttica, RRIP, CDiretamente Conectada, etc..
Lab_B#show ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF interarea
N1 - OSPF NSSA external type1, N2 - OSPF NSSA external type 2
E1 - OSPF external type1, E2 - OSPF external type 2, E - EGP
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia- IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route
Gateway of last resort is not set
S210.93.105.0/24 [1/0] via 199.6.13.2
S211.93.105.0/24 is directly connected, Serial0/0
R205.7.5.0/24 [120/1] via 201.100.11.1,00:00:01, Serial0/1
C219.17.100.0/24 is directly connected, FastEthernet0/0
R192.168.10.0/24 [120/1] via 201.100.11.1,00:00:01, Serial0/1
C199.6.13.0/24 is directly connected, Serial0/0
R193.114.41.0/24 [120/2] via 199.6.13.2, 00:00:10, Serial0/0
[120/2] via 201.100.11.1,00:00:01, Serial0/1
R204.204.7.0/24 [120/1] via 199.6.13.2, 00:00:11, Serial0/0
R192.5.5.0/24 [120/1] via 201.100.11.1, 00:00:02, Serial0/1
S223.8.151.0/24 [1/0] via 199.6.13.2
C201.100.11.0/24 is directly connected, Serial0/1
Lab_B#
O Comandodebug ip rip, permite a visualizao da Configurao das tabelas de roteamento emtemporeal.
Lab_B#debug ip rip
RIP protocol debugging is on
06:47:14: RIP: sending v1 update to 255.255.255.255 via FastEthernet0/0 (219.17.
100.1)
06:47:14: RIP: build update entries
06:47:14:network 192.5.5.0 metric 2
06:47:14:network 192.168.10.0 metric 2
06:47:14:network 193.114.41.0 metric 3
06:47:14:network 199.6.13.0 metric 1
06:47:14:network 201.100.11.0 metric 1
06:47:14:network 204.204.7.0 metric 2
06:47:14:network 205.7.5.0 metric 2
06:47:14: RIP: sending v1 update to 255.255.255.255 via Serial0/0 (199.6.13.1)
06:47:14: RIP: build update entries
06:47:14:network 192.5.5.0 metric 2
06:47:14:network 192.168.10.0 metric 2
06:47:14:network 201.100.11.0 metric 1
06:47:14:network 205.7.5.0 metric 2
06:47:14:network 219.17.100.0 metric 1
06:47:27:204.204.7.0 in 1hops
06:47:27:211.93.105.0 in 2 hops
06:47:27:223.8.151.0 in 1hops
Lab_B#no debug ip rip
RIP protocol debugging is off
Alterar a verso do protocoloRIPparaverso2.0que trabalha comSubRedes.
Lab_B(config)#router rip
Lab_B(config-router)#version ?
version
Lab_B(config-router)#version 2
Configurar Rota Padro, com o comandoip default-network N daRede
Lab_B(config)#ip default-network 223.8.151.0
Desabilitaro Protocolo de roteamento dinmicoRIP
Lab_B(config)#no router rip
Configurar o Protocolo de roteamento dinmicoIGRPdefinindo no comandorouter igrp N_do_sistema_autnomo.Este n deve ser o mesmo dentro de toda suainternetwork.
Lab_B(config)#router igrp ?
Autonomoussystem number
Lab_B(config)#router igrp 100
Lab_B(config-router)#network 199.6.13.0
Lab_B(config-router)#network 201.100.11.0
Lab_B(config-router)#network 219.17.100.0
Lab_B(config-router)#^Z
Lab_B#sh run
routerigrp 100
network199.6.13.0
network201.100.11.0
network219.17.100.0
!
....
www.professorramos.com
Leandro [email protected]