Erinevus lehekülje "Cisco katsetused" redaktsioonide vahel
| 84. rida: | 84. rida: | ||
| + | ip mis on väline 193.40.0.182 maskiga 255.255.255.128 ning gateway 193.40.0.129 | ||
router(config)#interface Ethernet0 | router(config)#interface Ethernet0 | ||
| 91. rida: | 92. rida: | ||
router(config-if)#no shut | router(config-if)#no shut | ||
| − | + | ja sisemine ip 192.168.1.1 | |
| − | |||
router(config-if)#interface Ethernet1 | router(config-if)#interface Ethernet1 | ||
| 107. rida: | 107. rida: | ||
| − | + | Vaatame ip seadistust | |
| 116. rida: | 116. rida: | ||
Serial0 unassigned YES unset down down | Serial0 unassigned YES unset down down | ||
| + | Ja vaatame nat'i tööd | ||
router#debug ip nat detailed | router#debug ip nat detailed | ||
| 126. rida: | 127. rida: | ||
00:33:42: NAT: i: udp (192.168.1.10, 32773) -> (193.40.0.12, 53) [60699] | 00:33:42: NAT: i: udp (192.168.1.10, 32773) -> (193.40.0.12, 53) [60699] | ||
00:33:42: NAT: o: udp (193.40.0.12, 53) -> (193.40.0.182, 32773) [53254] | 00:33:42: NAT: o: udp (193.40.0.12, 53) -> (193.40.0.182, 32773) [53254] | ||
| + | |||
| + | |||
| + | Hetkel töötava serveri seadistuse saame käsuga | ||
| + | |||
| + | |||
| + | show running-config | ||
| + | |||
| + | Building configuration... | ||
| + | |||
| + | Current configuration: | ||
| + | ! | ||
| + | version 12.0 | ||
| + | service config | ||
| + | service timestamps debug uptime | ||
| + | service timestamps log uptime | ||
| + | no service password-encryption | ||
| + | ! | ||
| + | hostname router | ||
| + | ! | ||
| + | enable secret 5 $1$UL/2$QVKigr3d5jmWcJ/.XS.JG0 | ||
| + | enable password parool | ||
| + | ! | ||
| + | ip subnet-zero | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | interface Ethernet0 | ||
| + | description v2liv2rk | ||
| + | ip address 193.40.0.182 255.255.255.128 | ||
| + | no ip directed-broadcast | ||
| + | ip nat outside | ||
| + | no cdp enable | ||
| + | ! | ||
| + | interface Ethernet1 | ||
| + | ip address 192.168.1.1 255.255.255.0 | ||
| + | no ip directed-broadcast | ||
| + | ip nat inside | ||
| + | no cdp enable | ||
| + | ! | ||
| + | interface Serial0 | ||
| + | no ip address | ||
| + | no ip directed-broadcast | ||
| + | no fair-queue | ||
| + | ! | ||
| + | ip nat inside source list 1 interface Ethernet0 overload | ||
| + | ip classless | ||
| + | ip route 0.0.0.0 0.0.0.0 193.40.0.129 | ||
| + | ! | ||
| + | access-list 1 permit 192.168.1.0 0.0.0.255 | ||
| + | ! | ||
| + | line con 0 | ||
| + | exec-timeout 0 0 | ||
| + | transport input none | ||
| + | line vty 0 4 | ||
| + | password parool | ||
| + | login | ||
| + | ! | ||
| + | end | ||
Redaktsioon: 11. oktoober 2007, kell 20:35
Sissejuhatus
Eesmärgiks on antud juhul üks väike cisco ruuter seadistada NAT ja DHCP teenuseid pakkuma.
If you have Used Router (not a brandnew Router) to work with,
and you want to follow along with this tutorial, you can blank out everything,
and start from what we call, "A Clean Slate".
(A Clean Slate refers back to a time when students wrote on slabs of rock)
Type in the following two Commands from the Enable Mode:
enable Erase Startup-config Reload
DO NOT do these two commands on your company's production routers! This will have very BAD consequences - i.e. "Network Down, You Fired!"
Peale seda masin stardib. Ja järgmisena tuleb basic konf initsialiseerida. Küsitakse mitmeid küsimusi routeri hostname admin ja kasutaja parooli kohta SNMP ning võrgu seadistusest.
Minul peale seda tekkis selline konfig
The following configuration command script was created:
hostname Router enable secret 5 $1$VCFk$7345345kkqn93459xy./ enable password parool line vty 0 4 password parool snmp-server community public ! no ip routing ! interface Ethernet0 shutdown no ip address ! interface Ethernet1 shutdown no ip address ! interface Serial0 no shutdown no ip address ! end
Seadistusmode on
config t
In the example below, we change the router's name and then delete one of its many access control list (ACL) entries.
ciscorouter# conf t ciscorouter(config)# no access-list 150 deny ip host 10.1.2.1 host 10.3.2.5
ciscorouter(config)# hostname soho-router
soho-router(config)# exit soho-router #
When you've finished configuring, you can permanently save your changes by using the "write memory" command:
ciscorouter# wr mem Building configuration... Cryptochecksum: 3af43873 d35d6f06 51f8c999 180c2342 [OK] ciscorouter#
ip mis on väline 193.40.0.182 maskiga 255.255.255.128 ning gateway 193.40.0.129
router(config)#interface Ethernet0 router(config-if)#ip address 193.40.0.182 255.255.255.128 router(config-if)#description v2liv2rk router(config-if)#ip nat outside router(config-if)#no shut
ja sisemine ip 192.168.1.1
router(config-if)#interface Ethernet1 router(config-if)#ip address 192.168.1.1 255.255.255.0 router(config-if)#ip nat inside router(config-if)#no shut
router(config-if)#ip nat inside source list 1 interface ethernet0 overload router(config)#ip classless router(config)#ip route 0.0.0.0 0.0.0.0 193.40.0.129 router(config)#access-list 1 permit 192.168.1.0 0.0.0.255 router(config)#ip routing
Vaatame ip seadistust
Router#show ip interface brief Interface IP-Address OK? Method Status Protocol Ethernet0 193.40.0.182 YES manual up up Ethernet1 192.168.1.1 YES manual up up Serial0 unassigned YES unset down down
Ja vaatame nat'i tööd
router#debug ip nat detailed IP NAT detailed debugging is on 00:33:41: NAT: o: udp (193.40.0.225, 137) -> (193.40.0.255, 137) [23558] 00:33:42: NAT: o: udp (193.40.0.225, 137) -> (193.40.0.255, 137) [23563] 00:33:42: NAT*: i: icmp (192.168.1.10, 64274) -> (194.126.101.79, 64274) [0] 00:33:42: NAT*: o: icmp (194.126.101.79, 64274) -> (193.40.0.182, 64274) [3259] 00:33:42: NAT: i: udp (192.168.1.10, 32773) -> (193.40.0.12, 53) [60699] 00:33:42: NAT: o: udp (193.40.0.12, 53) -> (193.40.0.182, 32773) [53254]
Hetkel töötava serveri seadistuse saame käsuga
show running-config
Building configuration... Current configuration: ! version 12.0 service config service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname router ! enable secret 5 $1$UL/2$QVKigr3d5jmWcJ/.XS.JG0 enable password parool ! ip subnet-zero ! ! ! interface Ethernet0 description v2liv2rk ip address 193.40.0.182 255.255.255.128 no ip directed-broadcast ip nat outside no cdp enable ! interface Ethernet1 ip address 192.168.1.1 255.255.255.0 no ip directed-broadcast ip nat inside no cdp enable ! interface Serial0 no ip address no ip directed-broadcast no fair-queue ! ip nat inside source list 1 interface Ethernet0 overload ip classless ip route 0.0.0.0 0.0.0.0 193.40.0.129 ! access-list 1 permit 192.168.1.0 0.0.0.255 ! line con 0 exec-timeout 0 0 transport input none line vty 0 4 password parool login ! end
Lingid
Cisco IOS on väga võimalusterohke operatsioonisüsteem. Sellekohta on cisco andnud välja väga ohtralt ametlikku materjali. Neid siin äratooma ei hakka pigem mõned alternatiivsed viited.
http://www.pimpmynetwork.org/basic_cisco
http://www.fantek.org/cisco/wpbascom.htm
http://www.velocityreviews.com/forums/t41103-basic-cisco-switch-tutorial.html
http://geek.pandemonium.de/2005/07/09/dhcp-server-on-a-cisco-1605/
http://www.dslreports.com/faq/11037
http://www.cisco.com/warp/public/109/config_nat_on_cm.html
