Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Enable
- enable secret (password)
- service password-encryption
- banner motd # Unauthorized access will be prosecuted to the fullest extent of criminal law #
- no ip domain-lookup
- ip default-gateway x.x.x.x.
- line console 0
- logging synchronous
- exit
- interface range fa 0/0 - fa 0/24 (switch only)
- spanning-tree portfast bpduguard
- shutdown (remember to re enable the used ports) (switch only)
- exit
- vlan 1
- exit
- interface vlan1
- ip address x.x.x.x x.x.x.x
- exit
- Assigning a vlan to a interface
- enable
- configure terminal
- interface (interface here) (interface port here)
- switchport mode access
- switchport access vlan (vlan number here)
- GNS = Packet tracer pero mejor
- configurar telnet en router
- conf t
- line vty 0 4
- password password here
- login
- do wr
- ex
- configurar ssh en router/switch
- hostname es requerido
- nombre de dominio tambien
- ip domain-name domainnamehere(ucr.ac.cr)
- crypto key generate rsa
- 1024 bits
- username usernamehere password passwordhere
- line vty 0 4
- transport input ssh
- login local
- exec-timeout 1
- para connectarse via ssh usando Command prompt en pc
- ssh -1 usernamehere router/switchipaddresshere
- ººººººººººººººººººººSJºººººººººººººººººººººººººº
- s0/0/0: 192.168.1.1 255.255.255.252
- s0/0/1 192.168.1.9 255.255.255.252
- fa0/0 192.168.100.1 255.255.255.0
- fa0/1 201.193.45.1 255.255.255.252
- ººººººººººººººººººººalajuelaºººººººººººººººººººººººººº
- s0/0/0: 192.168.1.2 255.255.255.252
- s0/0/1 192.168.1.5 255.255.255.252
- fa0/0.10 192.168.10.1 255.255.255.128
- fa0/0.20 192.168.10.129 255.255.255.128
- ººººººººººººººººººººherediaºººººººººººººººººººººººººº
- s0/0/0: 192.168.1.6 255.255.255.252
- s0/0/1 192.168.1.10 255.255.255.252
- fa0/0.10 192.168.10.1 255.255.255.128
- fa0/0.20 192.168.10.129 255.255.255.128
- Frontier Router must be good
- dhcp
- ip dhcp excluded-address fromx.x.x.x tox.x.x.x
- (exclude the first 10 ip addresses from each network/vlan)
- creating dhcp pools
- ip dhcp pool poolnamehere
- network ipaddresshere maskhere
- default-router vlanfirstaddresshere
- dns-server dnsaddresshere
- exit
- (repeat the same for different vlans)
- (helper address vlan )
- int fa0/0.10
- ip helper-address dhcprouteraddresshere
- intfa0/0.20
- ip helper-address dhcprouteraddresshere
- (helper address)
- int fa0/1
- ip helper-address dhcprouteraddresshere
- Static NAT Routing
- only works if the isp has given you more than 1 public address
- ip nat inside source static
- ip nat inside source static privateaddresshere publicaddresshere
- ip nat inside source static privateaddresshere publicaddresshere
- example ip nat inside source static 192.168.100.254 201.193.45.93
- example ip nat inside source static 192.168.100.253 201.193.45.94
- (dynamic nat routing)
- PAT
- ip nat pool poolnamehere natpooladdressstart natpooladdressend netmask subnetmaskhere
- example ip nat pool UCR 201.193.45.81 201.193.45.82 netmask 255.255.255.240
- ip nat inside source list 10
- ip nat inside source list 10 pool UCR
- ip nat inside source list 10 pool UCR overload *IMPORTANT*
- now enter the frontier router interfaces and enter the command
- ip nat inside
- *-****
- show ip nat translations (shows all the currently network access translations done from inside the private network)
- (ACL)
- access-list 10 permit 192.168.0.0 0.0.255.255
- access-lsit 10 permit ipaddress wildcard
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement