Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ### System Essentials ###
- ## IOS Hardening ##
- service password-encryption
- service timestamps debug datetime msec localtime show-timezone
- service timestamps log datetime msec localtime show-timezone
- service tcp-keepalives-in
- service tcp-keepalives-out
- !
- no service pad
- no service config
- no service tcp-small-servers
- no service udp-small-servers
- !
- no ip finger
- no ip domain-lookup
- no ip bootp server
- no ip source-route
- no ip http server
- no ip http secure-server
- !
- !
- !
- ## Archive/Logging ##
- !
- archive
- path flash:/config_backup
- write-memory
- log config
- logging enable
- logging size 200
- hidekeys
- !
- ## Timezone ##
- !
- clock timezone NZST 12
- clock summer-time NZDT recurring 1 Sun Oct 2:00 3 Sun Mar 3:00
- !
- !
- ## Username & Password ##
- username [USERNAME] privilege 15 secret [PASSWORD]
- !
- ## Banner login ##
- !
- banner login $
- If you are not authorised to connect to this device please disconnect now. If
- you fail to disconnect you may be prosecuted under the Crimes Amendment
- Act 2003 section 252 under New Zealand law.
- $
- !
- ## Local Access ##
- line con 0
- privilege level 15
- login local
- logging synchronous
- exec-timeout 20 0
- no modem enable
- line aux 0
- transport output none
- no exec
- line vty 0 4
- !
- ## VTY Access-list ##
- !
- privilege level 15
- exec-timeout 20 0
- login local
- logging synchronous
- transport input ssh
- exit
- !
- !
- ## Hostname ##
- hostname [HOSTNAME]
- !
- ## Domain ##
- !
- ip domain-name [DOMAIN.LOCAL]
- crypto key generate rsa general-keys modulus 2048
- !
- ip ssh time-out 60
- ip ssh authentication-retries 3
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
