Advertisement
tirabytes

Cisco: Base Configuration

Nov 27th, 2013
873
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.56 KB | None | 0 0
  1. ### System Essentials ###
  2.  
  3. ## IOS Hardening ##
  4. service password-encryption
  5. service timestamps debug datetime msec localtime show-timezone
  6. service timestamps log datetime msec localtime show-timezone
  7. service tcp-keepalives-in
  8. service tcp-keepalives-out
  9. !
  10. no service pad
  11. no service config
  12. no service tcp-small-servers
  13. no service udp-small-servers
  14. !
  15. no ip finger
  16. no ip domain-lookup
  17. no ip bootp server
  18. no ip source-route
  19. no ip http server
  20. no ip http secure-server
  21. !
  22. !
  23. !
  24. ## Archive/Logging ##
  25. !
  26. archive
  27. path flash:/config_backup
  28. write-memory
  29. log config
  30. logging enable
  31. logging size 200
  32. hidekeys
  33. !
  34. ## Timezone ##
  35. !
  36. clock timezone NZST 12
  37. clock summer-time NZDT recurring 1 Sun Oct 2:00 3 Sun Mar 3:00
  38. !
  39. !
  40. ## Username & Password ##
  41. username [USERNAME] privilege 15 secret [PASSWORD]
  42. !
  43. ## Banner login ##
  44. !
  45. banner login $
  46. If you are not authorised to connect to this device please disconnect now. If
  47. you fail to disconnect you may be prosecuted under the Crimes Amendment
  48. Act 2003 section 252 under New Zealand law.
  49. $
  50. !
  51. ## Local Access ##
  52. line con 0
  53. privilege level 15
  54. login local
  55. logging synchronous
  56. exec-timeout 20 0
  57. no modem enable
  58. line aux 0
  59. transport output none
  60. no exec
  61. line vty 0 4
  62. !
  63. ## VTY Access-list ##
  64. !
  65. privilege level 15
  66. exec-timeout 20 0
  67. login local
  68. logging synchronous
  69. transport input ssh
  70. exit
  71. !
  72. !
  73. ## Hostname ##
  74. hostname [HOSTNAME]
  75. !
  76. ## Domain ##
  77. !
  78. ip domain-name [DOMAIN.LOCAL]
  79. crypto key generate rsa general-keys modulus 2048
  80. !
  81. ip ssh time-out 60
  82. ip ssh authentication-retries 3
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement