Running Red Lights

This road's starting to feel like a drag-race. I've spent at least 16 hours of the past two days watching videos and studying content. It's been a blast configuring my Cisco 2811 router, using it's switchports, and going through basic switch security and optimization. So far I've setup my router (with 16 switchport addon card) with some simple security, console/telnet/ssh access, played around with a few settings here and there, gotten myself used to the IOS commands. It's pretty neat knowing that you can type a ? just about anywhere and get a list of what you can do, also being able to hit tab to complete a command is nice.

I will be keeping somewhat of a journal of new commands that I use. Anything in Italics is for my reference or could contain something useful for you if you're just starting out! Just a quick glimpse at some of the things I've gotten a chance to go over:

Basic Setup for a Switch/Router

en Short for enable. Puts you in privileged exec mode Would prompt for a password if you had one set up in your router
conf t Short for configure terminal. Basically puts you in config mode from privileged exec mode.
hostname xxxx Simple enough, sets the hostname of the router. This is effective in your console session, for example Router> will become Hostname>
int vlan 1 Selects the interface, in this case its the vlan1 interface. Other times it can be a fast ethernet port, serial port, etc.
ip addr 172.30.2.180 255.255.255.0
no shutdown I had trouble remembering to do this, being the GUI-spoiled tech that I am
exit
ip default-gateway 172.30.2.1 Sets your default gateway.
(ctrl + z) Keyboard shortcut to back out
copy running-config startup-config Saves the changes you've made to NVRAM

Great! We've got a router setup with an IP address. We're in business. Except for the fact that it's totally unsecure and open for just about anyone to make their way into. That's where this comes into play...

Configure Switch Security

en
conf t
enable password cisco Sets the plaintext password for the router. Usually a no-no. Stick with enable secret
exit
enable secret cisco1 Encrypted password that doesn't show up in "show run"
no enable password Disables the clear-text enable password

Setting the Console Password

en
conf t
line console 0
password cisco
login (requires login prompt)

Setting the telnet password

en
conf t
line vty 0 4
password cisco

Protect Running-Config Passwords

en
conf t
service password-encryption

Set Message of the Day

banner motd [
Unauthorized access is prohibited
]

Configuring SSH

en
conf t
username test
password cisco
ip domain-name cisco.com
crypto key generate rsa
1024
ip ssh version 2
line vty 0 4
transport input ssh
transport input telnet ssh

Configuring Port Security

en
show ip int brief
terminal monitor
show mac address table
conf t
int fa 0/5
switchport mode access
switchport port-security maximum
switchport port-security violation shutdown
switchport port-security mac-address xxxx.xxxx.xxxx
(ctrl + z)
show port-security fa 0/5
copy running-config startup-config

-504Steve

...And so it Begins

I cautiously look left, right, then left again as I turn onto the seemingly crazy street, catching a glimpse of the street-sign that bears the words "Cisco Networking." Armed with my trusty Acer laptop, 200-page notebook, used 2811 Router, my fair console cable, and the receipt for my CBTNuggets subscription of ~$800 (Yep. No turning back now.), I am ready for anything.

I log on to CBTNuggets and get ready to watch the first video, ready to take notes like it was finals all over again, thinking I'll have to force myself to stay awake through hours of video lessons... but to my surprise, the first video isn't dreadful. It's not totally boring. I didn't have to pull out a 5-hour Energy! I was amazed how the speaker, Jeremy Cioara, actually grabbed my attention and held onto it for the full thirty minutes of a video simply titled "Welcome to Cisco CCENT!"

Before watching, I had an idea of the Cisco certification track and how it worked, but Jeremy did a great job of explaining it, and laying down what to expect out of this video series. Great. It's exactly what I wanted to hear, I'm excited. The thirty minutes I had originally set aside quickly ended up being over an hour and a half... I couldn't wait to ACTUALLY get into working on this Cisco router I had next to me.

Despite the titles that suggested well-known content, I was psyched to continue the series as it was meant to be. I opened up the second video titled "Foundations: What is a Network?" and blazed through it's 35 minutes of content, absorbing the familiar material along with some interesting points of view.

It was time to continue on to video #3, "Foundations: Living in the OSI World." I opened this section with resentment, my idea of the OSI model some obnoxious system crammed into my head back in high school that seemingly served no purpose. Regardless, note after note after note, I filled a few pages of my notebook just like I did years ago... But this time, it made sense. I was actually told WHY this system was important, and HOW to use it. Sweet! It's not just a boring list anymore. I just might want to memorize this and get a full understanding of each layer, but not tonight. I'm already an hour behind and staring at my university homework half-done, just begging to be left incomplete. And with that, I unplug my Cisco router, knowing it's not getting any use just yet.

Wish me luck, Blogger, I'll give it everything I've got and hopefully I'll be signing my posts with "CCNA" by the end of February!

-504Steve