1 Boson NetSim Lab Manual

Stand-Alone Lab: Router Basics Part I

Objective
Learn how to properly congure a router. You would typically perform these types of tasks when setting up the
local area network (LAN) for a new ofce. Congure Router1 with basic settings: set the routers host name, and
congure security.
Lab Topology
The topology in this lab contains three 2800 series Cisco routers.
S0/0/0
Router1 Router3
Router2
S0/0/1
S0/0/0
S0/0/0
Command Summary
Command Description
congure terminal enters global conguration mode from privileged EXEC mode
disable returns to user EXEC mode
enable enters privileged EXEC mode
enable password password sets the enable password
enable secret password sets the enable secret password
end ends and exits conguration mode
exit exits one level in the menu structure
hostname host-name sets the device name
line console 0 accesses console line conguration mode
login enables password checking
password password species the password that is required for a user to log in
show running-cong displays the active conguration le
Lab ID: 8.8K612A030.SAI1.1
2 Boson NetSim Lab Manual
Lab Tasks
Task 1: Load the Initial Network Conguration
Make sure that the correct topology and conguration les for this lab are loaded. This will occur automatically
when you load this lab by using the Lab Navigator.
Task 2: Connect to a Router
Become familiar with the command-line interface (CLI), user EXEC mode, and privileged EXEC mode.
1. When the lab has nished loading, the Router1 window will open, and the text 4VIWW )28)6 XS 7XEVX
will appear.
2. Click inside the Router1 window, and press the ENTER key to begin. You are now connected to Router1,
and the user EXEC mode prompt (6SYXIV") is displayed. The prompt is broken into two parts: the host
name and the mode. 6SYXIV is Router1s host name, and the " prompt indicates user EXEC mode.
4VIWW )28)6 XS 7XEVX
6SYXIV"
3. Next, issue the enable command to access the privileged EXEC mode. You should note that the "
changes to a after you issue the enable command, which indicates that you are in privileged EXEC
mode.
6SYXIV"IREFPI
6SYXIV
4. To return to user EXEC mode, issue the disable command. From user EXEC mode, issue the logout
command or the exit command to terminate the current session.
6SYXIVHMWEFPI
6SYXIV"
6SYXIV"I\MX
6SYXIV GSR MW RS[ EZEMPEFPI
4VIWW 6)8962 XS KIX WXEVXIH
Task 3: Learn the Basic User Interface
Become familiar with basic help commands.
1. Press ENTER to begin the session and connect to the CLI of Router1.
4VIWW )28)6 XS 7XEVX
6SYXIV"
3 Boson NetSim Lab Manual
2. You are now connected to Router1 and are at the user EXEC mode prompt. At the user EXEC mode
prompt, type a question mark (?). This will enable you to view a list of commands that can be issued
from the user EXEC mode. At the zz136)zz prompt, press the SPACEBAR key to view the next page of
information.
Note: You can view the additional device output one line at a time by pressing ENTER or a page at a time
by pressing the SPACEBAR. To stop viewing the output before all of it has been displayed, press the TAB
key.
6SYXIV"#
EGGIWWIREFPI 'VIEXI E XIQTSVEV] %GGIWW0MWX IRXV]
EGGIWWTVSJMPI %TTP] YWIVTVSJMPI XS MRXIVJEGI
GSRRIGX 3TIR E XIVQMREP GSRRIGXMSR
HMWEFPI 8YVR SJJ TVMZMPIKIH GSQQERHW
HMWGSRRIGX (MWGSRRIGX ER I\MWXMRK RIX[SVO GSRRIGXMSR
IREFPI 8YVR SR TVMZMPIKIH GSQQERHW
I\MX )\MX JVSQ XLI )<)'
LIPT (IWGVMTXMSR SJ XLI MRXIVEGXMZI LIPT W]WXIQ
PSGO 0SGO XLI XIVQMREP
PSKMR 0SK MR EW E TEVXMGYPEV YWIV
PSKSYX )\MX JVSQ XLI )<)'
QVMRJS 6IUYIWX RIMKLFSV ERH ZIVWMSR MRJSVQEXMSR JVSQ E QYPXMGEWX VSYXIV
QWXEX 7LS[ WXEXMWXMGW EJXIV QYPXMTPI QYPXMGEWX XVEGIVSYXIW
QXVEGI 8VEGI VIZIVWI QYPXMGEWX TEXL JVSQ HIWXMREXMSR XS WSYVGI
REQIGSRRIGXMSR 2EQI ERH I\MWXMRK RIX[SVO GSRRIGXMSR
pad Open a X.?9 PAD connection
TMRK 7IRH IGLS QIWWEKIW
ppp Start IETF Point-to-Point Protocol (PPP)
VIWYQI 6IWYQI ER EGXMZI RIX[SVO GSRRIGXMSR
VPSKMR 3TIR ER VPSKMR GSRRIGXMSR
WLS[ 7LS[ VYRRMRK W]WXIQ MRJSVQEXMSR
slip Start a Serial-line IP (SLIP)
W]WXEX (MWTPE] MRJSVQEXMSR EFSYX XIVQMREP PMRIW
136)z
SYXTYX SQMXXIH"
3. Issue the enable command to enter privileged EXEC mode.
6SYXIV"IREFPI
4 Boson NetSim Lab Manual
4. Type a question mark (?). This will enable you to view a list of commands that can be issued from
the privileged EXEC mode. At the zz136)zz prompt, press the SPACEBAR to view the next page of
information.
6SYXIV#
EGGIWWXIQTPEXI 'VIEXI E XIQTSVEV] %GGIWW0MWX IRXV]
EPTW %047 I\IG GSQQERHW
EVGLMZI QEREKI EVGLMZI JMPIW
FJI *SV QERYEP IQIVKIRG] QSHIW WIXXMRK
GH 'LERKI GYVVIRX HMVIGXSV]
GPIEV 6IWIX JYRGXMSRW
GPSGO 1EREKI XLI W]WXIQ GPSGO
GSRJMKYVI )RXIV GSRJMKYVEXMSR QSHI
GST] 'ST] JVSQ SRI JMPI XS ERSXLIV
HIFYK (IFYKKMRK JYRGXMSRW WII EPWS uYRHIFYKv
HIPIXI (IPIXI E JMPI
HMV 0MWX JMPIW SR E JMPIW]WXIQ
HMWEFPI
HMWGSRRIGX (MWGSRRIGX ER I\MWXMRK RIX[SVO GSRRIGXMSR
IPSK )ZIRXPSKKMRK GSRXVSP GSQQERHW
IVEWI )VEWI E JMPIW]WXIQ
I\MX
PSKSYX )\MX JVSQ XLI )<)'
QSVI (MWTPE] XLI GSRXIRXW SJ E JMPI
QVQ -4 1YPXMGEWX 6SYXMRK 1SRMXSV 8IWX
RGME 7XEVX7XST 2'-% 7IVZIV
TMRK 7IRH IGLS QIWWEKIW
T[H (MWTPE] GYVVIRX [SVOMRK HMVIGXSV]
136)z
SYXTYX SQMXXIH"
5 Boson NetSim Lab Manual
5. In addition to showing available commands that can be issued at the user EXEC and privileged EXEC
prompt, the question mark offers additional help. For example, you can type show and a question mark (?)
to see all the show commands. At the zz136)zz prompt, press the SPACEBAR to view the next page of
information.
6SYXIVWLS[ #
EGGIWWPMWXW 0MWX EGGIWW PMWXW
EVT %64 XEFPI
EYXS 7LS[ %YXSQEXMSR 8IQTPEXI
GHT '(4 MRJSVQEXMSR
GPEWWQET 7LS[ 5S7 'PEWW1ET
GPRW '027 RIX[SVO MRJSVQEXMSR
GPSGO (MWTPE] XLI W]WXIQ GPSGO
GSQTVIWW 7LS[ GSQTVIWWMSR WXEXMWXMGW
GSRJMKYVEXMSR 'SRXIRXW SJ 2SR:SPEXMPI QIQSV]
GSRXVSPPIVW -RXIVJEGI GSRXVSPPIV WXEXYW
GV]TXS )RGV]TXMSR QSHYPI
HMEPIV (MEPIV TEVEQIXIVW ERH WXEXMWXMGW
JPEWL HMWTPE] MRJSVQEXMSR EFSYX JPEWL JMPI W]WXIQ
JVEQIVIPE] *VEQI6IPE] MRJSVQEXMSR
LMWXSV] (MWTPE] XLI WIWWMSR GSQQERH LMWXSV]
LSWXW -4 HSQEMRREQI REQIWIVZIVW ERH LSWX XEFPI
MRXIVJEGIW -RXIVJEGI WXEXYW ERH GSRJMKYVEXMSR
MT -4 MRJSVQEXMSR
MTZ -4Z MRJSVQEXMSR
MWHR -7(2 MRJSVQEXMSR
MWMW -7-7 VSYXMRK MRJSVQEXMSR
QTPW 1407 MRJSVQEXMSR
RXT 2IX[SVO XMQI TVSXSGSP
136)z
SYXTYX SQMXXIH"
6. You can also use the help function with partial words in a command. For example, type show run? to view
the command that starts with show run. Now issue the show running-cong command to display the
active, or running, conguration on Router1. You can press TAB after typing show run, and the Cisco CLI
will ll in the rest of the command for you.
6SYXIVWLS[ VYR#
VYRRMRKGSRJMK
6SYXIVWLS[ VYRRMRKGSRJMK
&YMPHMRK GSRJMKYVEXMSR

Version I?.
WIVZMGI XMQIWXEQTW HIFYK YTXMQI
WIVZMGI XMQIWXEQTW PSK YTXMQI
RS WIVZMGI TEWW[SVHIRGV]TXMSR

LSWXREQI 6SYXIV

MT WYFRIX^IVS
SYXTYX SQMXXIH"
6 Boson NetSim Lab Manual
7. Finally, type one of the commands that will log you out of the router.
6SYXIVI\MX
or
6SYXIVHMWEFPI
Task 4: Congure Basic Security
Congure basic security for Router1.
1. From user EXEC mode, issue the enable command to enter privileged EXEC mode.
6SYXIV"IREFPI
6SYXIV
2. Basic router security is congured from global conguration mode. To enter global conguration mode on
Router1, you must issue the congure terminal command from privileged EXEC mode.
6SYXIVGSRJMKYVI XIVQMREP
6SYXIVGSRJMK
3. When you log in to the router, the host name is displayed in front of the prompt (either the " or the
prompt). The host name of a router is typically congured to enable you to determine the routers location
or function within the network. In this lab, you will congure the routers host name as Router1.
Router(config)=hostname RouterI
RouterI(config)=
4. The enable password controls access to privileged EXEC mode. This is a very important password
because, when it is congured, only those who know the password can access privileged EXEC mode to
make conguration changes. Issue the command necessary to set Router1s enable password to boson.
RouterI(config)=enable password boson
5. Test the password. Exit the router, and try to enter privileged EXEC mode. Notice that you have to enter
boson as the password in order to enter privileged EXEC mode.
RouterI(config)=exit
6SYXIVI\MX
6SYXIV"IREFPI
4EWW[SVHFSWSR
6SYXIVGSRJMKYVI XIVQMREP
RouterI(config)=
7 Boson NetSim Lab Manual
6. The enable password is stored as plain text in the routers conguration le. Because an enable password
is not encrypted, it is more secure to congure an encrypted password to control access to user EXEC
mode on a router. The enable secret password command stores the password in an encrypted form. Issue
the enable secret cisco command on Router1 to set the enable secret password to cisco.
RouterI(config)=enable secret cisco
7. Test this password by logging out of the router and then typing enable at the user EXEC mode prompt.
Try to use boson as the password to access privileged EXEC mode on Router1. Authentication will fail,
because the enable secret password overrides the enable password. Therefore, if both enable passwords
are set, you must use the enable secret password to enter privileged EXEC mode. Enter cisco to access
Router1.
RouterI(config)=exit
6SYXIVI\MX
6SYXIV"IREFPI
4EWW[SVHFSWSR
%YXLIRXMGEXMSR JEMPIH
4EWW[SVHGMWGS
6SYXIV
8. You can connect to a Cisco device remotely by using a protocol such as Telnet or locally by using a
console connection. Physical access is necessary to connect to the console connection on a Cisco device.
You should issue the following commands to congure a password for Router1s console connection:
6SYXIVGSRJMKYVI XIVQMREP
Enter configuration commands, one per line. End with CNTL/Z.
RouterI(config)=line console 0
RouterI(config-line)=login
PSKMR HMWEFPIH SR PMRI YRXMP TEWW[SVH MW WIX
RouterI(config-line)=password cisco
9. Test this password by logging out of the router and then pressing ENTER. With the console password
congured, you are required to provide a password before you can access user EXEC mode.
RouterI(config-line)=end
6SYXIVHMWEFPI
6SYXIV"I\MX
6SYXIV GSR MW RS[ EZEMPEFPI
4VIWW 6)8962 XS KIX WXEVXIH
4EWW[SVHGMWGS
6SYXIV"
8 Boson NetSim Lab Manual
10. Issue the enable command, and provide the password required to access privileged EXEC mode.
6SYXIV"IREFPI
4EWW[SVHGMWGS
6SYXIV
11. Sample conguration scripts are provided at the end of labs so that you can review the congurations
performed in the lab. You should note that the sample conguration script in this lab displays the plain
text enable password boson, the plain text console password cisco, and the encrypted enable secret
password cisco. The sample conguration script in this document is a copy of the show running-cong
command output from Router1 as it was displayed in NetSim when this document was created. The output
you receive may vary slightly.
9 Boson NetSim Lab Manual
Sample Conguration Script
Router1
Router1#show running-cong
Building conguration...
!
Version 12.3
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname Router1
enable secret 5 $sdf$6978yhg$jnb76sd
enable password boson
!
ip subnet-zero
!
interface Serial0/0/0
no ip address
no ip directed-broadcast
shutdown
!
interface Serial0/0/1
no ip address
no ip directed-broadcast
shutdown
!
interface FastEthernet0/0
no ip address
no ip directed-broadcast
shutdown
!
interface FastEthernet0/1
no ip address
no ip directed-broadcast
shutdown
!
ip classless
no ip http server
!
line con 0
login
password cisco
line aux 0
line vty 0 4
!
no scheduler allocate
end
Copyright 19962012 Boson Software, LLC. All rights reserved. NetSim software and documentation are protected by copyright law.