-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathConfiguration File (Project 10).txt
271 lines (221 loc) · 5.63 KB
/
Configuration File (Project 10).txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
-------R1-------
<Change Hostname>
enable
configure terminal
hostname R1
<Create Password Encrypted for Privileged EXEC Mode>
enable secret 123
<Activate IPv6>
configure terminal
ipv6 unicast-routing
<Configure interface IP addresses>
interface S0/1/0
ip address 10.1.1.1 255.255.255.252
ipv6 address 2000:1A:1B:30::1/64
no shutdown
interface G0/0/1
ip address 192.168.1.1 255.255.255.0
ipv6 address 2000:1A:1B:20::1/64
no shutdown
exit
<Disable DNS lookup for unrecognized commands>
no ip domain-lookup
<Warning Message>
banner motd $Unauthorized access strictly prohibited! R1$
<Configure Domain Name, RSA encryption>
ip domain-name nti.com
username admin secret 123
crypto key generate rsa
<write> modulus: 1024
<Encrypt all passwords>
service password-encryption
---Configure OSPFv2 (IPv4)-----
router ospf 1
passive-interface G0/0/1 <stops both outgoing and incoming routing updates>
network 192.168.1.0 0.0.0.255 area 0
network 10.1.1.0 0.0.0.3 area 0
exit
----OSPFv2 MD5 Authentication----
enable
configure terminal
router ospf 1
area 0 authentication message-digest
exit
interface S0/1/0
ip ospf message-digest-key 1 md5 cisco123
exit
<Configure R1 NTP clients>
ntp server 192.168.1.5
ntp update-calendar <Configure routers to update hardware clock>
<Configure NTP authentication on R1>
ntp authenticate
ntp trusted-key 1
ntp authentication-key 1 md5 NTPpa55
<Configure routers to timestamp log messages>
service timestamps log datetime msec
<Configure Syslog Server on R1>
logging host 192.168.1.6
logging on
----Configure OSPFv3 (IPv6)-----
enable
configure terminal
router ospf 2
interface S0/1/0
ipv6 ospf 2 area 0
exit
interface G0/0/1
ipv6 ospf 2 area 0
exit
-------R2-------
<Change Hostname>
enable
configure terminal
hostname R2
<Create Password Encrypted for Privileged EXEC Mode>
enable secret 123
<Activate IPv6>
configure terminal
ipv6 unicast-routing
<Configure interface IP addresses>
interface S0/1/0
ip address 10.1.1.2 255.255.255.252
ipv6 address 2000:1A:1B:30::2/64
no shutdown
interface S0/1/1
ip address 10.2.2.2 255.255.255.252
ipv6 address 2000:1A:1B:40::2/64
no shutdown
exit
<Disable DNS lookup for unrecognized commands>
no ip domain-lookup
<Warning Message>
banner motd $Unauthorized access strictly prohibited! R2$
<Configure Domain Name, RSA encryption>
ip domain-name nti.com
username admin secret 123
crypto key generate rsa
<write> modulus: 1024
<Encrypt all passwords>
service password-encryption
---Configure OSPFv2 (IPv4)-----
router ospf 1
network 10.2.2.0 0.0.0.3 area 0
network 10.1.1.0 0.0.0.3 area 0
exit
----OSPF MD5 Authentication----
enable
configure terminal
router ospf 1
area 0 authentication message-digest
exit
interface S0/1/0
ip ospf message-digest-key 1 md5 cisco123
exit
interface S0/1/1
ip ospf message-digest-key 1 md5 cisco123
exit
<Configure R2 NTP clients>
ntp server 192.168.1.5
ntp update-calendar <Configure routers to update hardware clock>
<Configure NTP authentication on R2>
ntp authenticate
ntp trusted-key 1
ntp authentication-key 1 md5 NTPpa55
<Configure routers to timestamp log messages>
service timestamps log datetime msec
<Configure Syslog Server on R2>
logging host 192.168.1.6
logging on
----Configure OSPFv3 (IPv6)-----
enable
configure terminal
router ospf 2
interface S0/1/0
ipv6 ospf 2 area 0
exit
interface S0/1/1
ipv6 ospf 2 area 0
exit
-------R3-------
<Change Hostname>
enable
configure terminal
hostname R3
<Create Password Encrypted for Privileged EXEC Mode>
enable secret 123
<Activate IPv6>
configure terminal
ipv6 unicast-routing
<Configure interface IP addresses>
interface S0/1/0
ip address 10.2.2.1 255.255.255.252
ipv6 address 2000:1A:1B:40::1/64
no shutdown
interface G0/0/1
ip address 192.168.3.1 255.255.255.0
ipv6 address 2000:1A:1B:10::1/64
no shutdown
exit
<Disable DNS lookup for unrecognized commands>
no ip domain-lookup
<Warning Message>
banner motd $Unauthorized access strictly prohibited! R3$
<Configure Domain Name, RSA encryption>
ip domain-name nti.com
username admin secret 123
crypto key generate rsa
<write> modulus: 1024
<Encrypt all passwords>
service password-encryption
---Configure OSPFv2 (IPv4)-----
router ospf 1
passive-interface G0/0/1 <stops both outgoing and incoming routing updates>
network 192.168.3.0 0.0.0.255 area 0
network 10.2.2.0 0.0.0.3 area 0
exit
----OSPF MD5 Authentication----
enable
configure terminal
router ospf 1
area 0 authentication message-digest
exit
interface S0/1/0
ip ospf message-digest-key 1 md5 cisco123
exit
<Configure R3 NTP clients>
ntp server 192.168.1.5
ntp update-calendar <Configure routers to update hardware clock>
<Configure NTP authentication on R3>
ntp authenticate
ntp trusted-key 1
ntp authentication-key 1 md5 NTPpa55
<Configure routers to timestamp log messages>
service timestamps log datetime msec
<Configure Syslog Server on R3>
logging host 192.168.1.6
logging on
------Configure R3 to support SSH------
username SSHadmin privilege 15 secret 123
<Activate Vty>
line vty 0 5
login local
transport input ssh
<Erase existing key pairs on R3>
crypto key zeroize rsa
<Generate the RSA encryption key pair for R3>
crypto key generate rsa
<Force user of SSHv2>
ip ssh version 2
<Configure SSH timeouts and authentication parameters>
ip ssh time-out 90 <by defualt 120>
ip ssh authentication-retries 2
----Configure OSPFv3 (IPv6)-----
enable
configure terminal
router ospf 2
interface S0/1/0
ipv6 ospf 2 area 0
exit
interface G0/0/1
ipv6 ospf 2 area 0
exit