Software Guide
Page 3
...Interfaces 1-4 Configure WAN Interfaces 1-4 Configure the Fast Ethernet WAN Interface 1-5 Configure the ATM WAN Interface 1-5 Configure the Wireless Interface 1-6 Configuring a Loopback Interface 1-6 Configuration Example 1-7 Verifying Your Configuration 1-7 Configuring Command-Line Access to the Router 1-8 Configuration Example 1-9 Configuring Static Routes 1-10 Configuration Example 1-10 Verifying Your Configuration 1-10 Configuring Dynamic Routes 1-11 Configuring RIP 1-11 Configuration Example 1-12 Verifying Your Configuration 1-12 Cisco Secure Router 520 Series Software Configuration Guide...
...Interfaces 1-4 Configure WAN Interfaces 1-4 Configure the Fast Ethernet WAN Interface 1-5 Configure the ATM WAN Interface 1-5 Configure the Wireless Interface 1-6 Configuring a Loopback Interface 1-6 Configuration Example 1-7 Verifying Your Configuration 1-7 Configuring Command-Line Access to the Router 1-8 Configuration Example 1-9 Configuring Static Routes 1-10 Configuration Example 1-10 Verifying Your Configuration 1-10 Configuring Dynamic Routes 1-11 Configuring RIP 1-11 Configuration Example 1-12 Verifying Your Configuration 1-12 Cisco Secure Router 520 Series Software Configuration Guide...
Software Guide
Page 21
...Global Configuration Mode" section in the following sections: • Viewing the Default Configuration • Information Needed for configuring the basic parameters of service (QoS) features. For more information on how to the Internet. 1 C H A P T E R Basic Router Configuration The Cisco Secure Router 520 Series routers are indicated whenever possible. The Cisco Secure Router 520 Series routers also provide dynamic routing and advanced quality of your Cisco router, including global parameter settings, routing protocols, interfaces, and command-line access using the CLI. For...
...Global Configuration Mode" section in the following sections: • Viewing the Default Configuration • Information Needed for configuring the basic parameters of service (QoS) features. For more information on how to the Internet. 1 C H A P T E R Basic Router Configuration The Cisco Secure Router 520 Series routers are indicated whenever possible. The Cisco Secure Router 520 Series routers also provide dynamic routing and advanced quality of your Cisco router, including global parameter settings, routing protocols, interfaces, and command-line access using the CLI. For...
Software Guide
Page 22
... encapsulation supported. All of the LAN and WAN interfaces have been created, console and VTY ports are setting up IP routing: - Information Needed for Customizing the Default Parameters You need to determine the PPP-related configuration items. • If you are typically virtual path identifier (VPI), virtual circuit identifier (VCI), and traffic shaping parameters. - PPP client name to connect over an ADSL line: Cisco Secure Router 520 Series Software Configuration Guide 1-2 OL-14210-01 PPP password to...
... encapsulation supported. All of the LAN and WAN interfaces have been created, console and VTY ports are setting up IP routing: - Information Needed for Customizing the Default Parameters You need to determine the PPP-related configuration items. • If you are typically virtual path identifier (VPI), virtual circuit identifier (VCI), and traffic shaping parameters. - PPP client name to connect over an ADSL line: Cisco Secure Router 520 Series Software Configuration Guide 1-2 OL-14210-01 PPP password to...
Software Guide
Page 24
...no ip domain-lookup Example: Router(config)# no ip domain-lookup Router(config)# Purpose Enters global configuration mode, when using a remote terminal, use the following: telnet router name or address Login: login id Password: ********* Router> enable Specifies the name for WAN connection. Access is afforded through the VLAN. Specifies an encrypted password to prevent unauthorized access to other VLANs if desired. For more information about creating VLANs, see the Cisco IOS Release 12.3 documentation set. Configure Fast Ethernet LAN Interfaces The Fast Ethernet LAN interfaces on the...
...no ip domain-lookup Example: Router(config)# no ip domain-lookup Router(config)# Purpose Enters global configuration mode, when using a remote terminal, use the following: telnet router name or address Login: login id Password: ********* Router> enable Specifies the name for WAN connection. Access is afforded through the VLAN. Specifies an encrypted password to prevent unauthorized access to other VLANs if desired. For more information about creating VLANs, see the Cisco IOS Release 12.3 documentation set. Configure Fast Ethernet LAN Interfaces The Fast Ethernet LAN interfaces on the...
Software Guide
Page 28
...for access. Cisco Secure Router 520 Series Software Configuration Guide 1-8 OL-14210-01 Enables password checking at terminal session login. Sets the interval that the EXEC command interpreter waits until user input is 2 seconds: !!!!! This example specifies a console terminal for the console terminal line. Sending 5, 100-byte ICMP Echos to the router, beginning in global configuration mode: Step 1 Command line [aux | console | tty | vty] line-number Example: Router(config)# line console 0 Router(config-line)# Step 2 password password Example: Router(config-line)# password...
...for access. Cisco Secure Router 520 Series Software Configuration Guide 1-8 OL-14210-01 Enables password checking at terminal session login. Sets the interval that the EXEC command interpreter waits until user input is 2 seconds: !!!!! This example specifies a console terminal for the console terminal line. Sending 5, 100-byte ICMP Echos to the router, beginning in global configuration mode: Step 1 Command line [aux | console | tty | vty] line-number Example: Router(config)# line console 0 Router(config-line)# Step 2 password password Example: Router(config-line)# password...
Software Guide
Page 29
... file generated when you use the show running-config command. ! OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 1-9 Exits line configuration mode, and returns to input the commands marked "default." Enables password checking at the virtual terminal session login. You do not need to privileged EXEC mode. Chapter 1 Basic Router Configuration Configuring Basic Parameters Step 5 Command exit Example: Router(config-line)# exit Router (config)# Step 6 line [aux | console | tty | vty] line-number Example: Router(config)# line vty 0 4 Router(config-line...
... file generated when you use the show running-config command. ! OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 1-9 Exits line configuration mode, and returns to input the commands marked "default." Enables password checking at the virtual terminal session login. You do not need to privileged EXEC mode. Chapter 1 Basic Router Configuration Configuring Basic Parameters Step 5 Command exit Example: Router(config-line)# exit Router (config)# Step 6 line [aux | console | tty | vty] line-number Example: Router(config)# line vty 0 4 Router(config-line...
Software Guide
Page 31
...Cisco Secure Router 520 Series Software Configuration Guide 1-11 per-user static route o - You can use of directly connected networks. Changes in dynamic routes are shared with other routers in global configuration mode: Step 1 Command router rip Example: Router# configure terminal Router(config)# router rip Router(config-router)# Task Enters router configuration mode, and enables RIP on network traffic or topology. Example: Router(config-router)# version 2 Router(config-router)# Step 3 network ip-address Example: Router(config-router)# network 192.168.1.1 Router(config...
...Cisco Secure Router 520 Series Software Configuration Guide 1-11 per-user static route o - You can use of directly connected networks. Changes in dynamic routes are shared with other routers in global configuration mode: Step 1 Command router rip Example: Router# configure terminal Router(config)# router rip Router(config-router)# Task Enters router configuration mode, and enables RIP on network traffic or topology. Example: Router(config-router)# version 2 Router(config-router)# Step 3 network ip-address Example: Router(config-router)# network 192.168.1.1 Router(config...
Software Guide
Page 41
... Router(config)# Sets the IP route for the default gateway for either static or dynamic address translations. Chapter 3 Configuring PPP over Ethernet with it. Configure Network Address Translation Network Address Translation (NAT) translates packets from the router, or both are then forwarded through the inside interface, packets sourced from addresses that can be set, see the Cisco IOS Security Command Reference. Packets are checked against the access list for possible address translation. Step 7 dialer-group group-number Example: Router(config-if)# dialer-group 1 Router...
... Router(config)# Sets the IP route for the default gateway for either static or dynamic address translations. Chapter 3 Configuring PPP over Ethernet with it. Configure Network Address Translation Network Address Translation (NAT) translates packets from the router, or both are then forwarded through the inside interface, packets sourced from addresses that can be set, see the Cisco IOS Security Command Reference. Packets are checked against the access list for possible address translation. Step 7 dialer-group group-number Example: Router(config-if)# dialer-group 1 Router...
Software Guide
Page 58
... VLANs Note Whenever you change server properties, you have already configured basic router features as well as appropriate for your router for DHCP operation, beginning in this chapter assume you can configure VLANs. VLANs The Cisco Secure Router 520 Series routers support four Fast Ethernet ports on which you have not performed these steps to configure your router. Step 2 ip name-server server-address1 [server-address2...server-address6] Example: Specifies the address of the user's physical location or LAN connection...
... VLANs Note Whenever you change server properties, you have already configured basic router features as well as appropriate for your router for DHCP operation, beginning in this chapter assume you can configure VLANs. VLANs The Cisco Secure Router 520 Series routers support four Fast Ethernet ports on which you have not performed these steps to configure your router. Step 2 ip name-server server-address1 [server-address2...server-address6] Example: Specifies the address of the user's physical location or LAN connection...
Software Guide
Page 81
... configuration mode: Step 1 Command or Action aaa new-model Purpose Enables the AAA access control model. username name {nopassword | password password | password encryption-type encrypted-password} Example: Router(config)# username cisco password 0 cisco Router(config)# Establishes a username-based authentication system. OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 7-5 aaa authorization {network | exec | commands Specifies AAA authorization of all level | reverse-access | configuration} {default | network-related service requests, including PPP, list...
... configuration mode: Step 1 Command or Action aaa new-model Purpose Enables the AAA access control model. username name {nopassword | password password | password encryption-type encrypted-password} Example: Router(config)# username cisco password 0 cisco Router(config)# Establishes a username-based authentication system. OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 7-5 aaa authorization {network | exec | commands Specifies AAA authorization of all level | reverse-access | configuration} {default | network-related service requests, including PPP, list...
Software Guide
Page 116
...-6 Cisco Secure Router 520 Series Software Configuration Guide OL-14210-01 ATM Troubleshooting Commands Chapter 12 Troubleshooting • To disable debugging, enter the undebug all command. • To use debug commands during periods of low network traffic so that other activity on the network is up and training successfully. Example 12-4 Viewing ATM Errors Router# debug atm errors ATM errors debugging is not communicating correctly. The no form of this reason, use debug commands only to troubleshoot specific problems...
...-6 Cisco Secure Router 520 Series Software Configuration Guide OL-14210-01 ATM Troubleshooting Commands Chapter 12 Troubleshooting • To disable debugging, enter the undebug all command. • To use debug commands during periods of low network traffic so that other activity on the network is up and training successfully. Example 12-4 Viewing ATM Errors Router# debug atm errors ATM errors debugging is not communicating correctly. The no form of this reason, use debug commands only to troubleshoot specific problems...
Software Guide
Page 121
... configure register command and the original configuration register value that you recorded. Reset the Password and Save Your Changes To reset your configuration changes: Router# copy running-config startup-config Reset the Configuration Register Value To reset the configuration register value after you have recovered or reconfigured a password, follow these steps: Step 1 Step 2 Enter the configure terminal command to enter enable mode. Router(config)# config-reg value OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 12-11 Complete the password recovery...
... configure register command and the original configuration register value that you recorded. Reset the Password and Save Your Changes To reset your configuration changes: Router# copy running-config startup-config Reset the Configuration Register Value To reset the configuration register value after you have recovered or reconfigured a password, follow these steps: Step 1 Step 2 Enter the configure terminal command to enter enable mode. Router(config)# config-reg value OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 12-11 Complete the password recovery...
Software Guide
Page 125
... send commands to your router. Configuring the Router from a PC connected through the console port using . The PC uses this software, which are based on the type of PC you are configuring your router from a PC You can save you time when you are already familiar with Windows software), ProComm Plus OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide A-1 Table A-1 lists some common types of the configuration topic chapters described in Chapter 10, "Additional Configuration Options." A A P P E N D I X Cisco IOS Software...
... send commands to your router. Configuring the Router from a PC connected through the console port using . The PC uses this software, which are based on the type of PC you are configuring your router from a PC You can save you time when you are already familiar with Windows software), ProComm Plus OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide A-1 Table A-1 lists some common types of the configuration topic chapters described in Chapter 10, "Additional Configuration Options." A A P P E N D I X Cisco IOS Software...
Software Guide
Page 127
...; Change terminal settings. • Perform basic tests. • Display system information. • To exit to your router command. To prevent unauthorized changes to your router configuration, access to this mode to configure EXEC mode, enter the parameters that apply to user EXEC Use this mode for the router Ethernet enter the exit command. press Ctrl-Z. Prompt Router> Privileged EXEC Enter the enable command from privileged EXEC mode. Appendix A Cisco IOS Software Basic Skills Understanding Command Modes Table A-2 Command Modes Summary Mode User...
...; Change terminal settings. • Perform basic tests. • Display system information. • To exit to your router command. To prevent unauthorized changes to your router configuration, access to this mode to configure EXEC mode, enter the parameters that apply to user EXEC Use this mode for the router Ethernet enter the exit command. press Ctrl-Z. Prompt Router> Privileged EXEC Enter the enable command from privileged EXEC mode. Appendix A Cisco IOS Software Basic Skills Understanding Command Modes Table A-2 Command Modes Summary Mode User...
Software Guide
Page 128
... mark (with the desired line number and optional line type, for the terminal line. Router (configline)# Exit and Entrance Method About This Mode • To exit to global Use this mode to help you previously entered, press the Up Arrow key. Cisco Secure Router 520 Series Software Configuration Guide A-4 OL-14210-01 Getting Help Appendix A Cisco IOS Software Basic Skills Table A-2 Command Modes Summary (continued) Mode Router configuration Access Method Prompt Enter one of the router commands followed by the appropriate...
... mark (with the desired line number and optional line type, for the terminal line. Router (configline)# Exit and Entrance Method About This Mode • To exit to global Use this mode to help you previously entered, press the Up Arrow key. Cisco Secure Router 520 Series Software Configuration Guide A-4 OL-14210-01 Getting Help Appendix A Cisco IOS Software Basic Skills Table A-2 Command Modes Summary (continued) Mode Router configuration Access Method Prompt Enter one of the router commands followed by the appropriate...
Software Guide
Page 138
.... NAT is a client-server protocol that uses a globally unique IP address; In this single registered IP address. DHCP is configured on the remote LAN are defined by the dialer interface. This feature enables a Cisco router to automatically negotiate its own registered WAN interface IP address from having to assign an IP address to access the Internet using this type of an inside network may conflict with registered addresses already assigned within Cisco IOS software, IP addresses on the router at...
.... NAT is a client-server protocol that uses a globally unique IP address; In this single registered IP address. DHCP is configured on the remote LAN are defined by the dialer interface. This feature enables a Cisco router to automatically negotiate its own registered WAN interface IP address from having to assign an IP address to access the Internet using this type of an inside network may conflict with registered addresses already assigned within Cisco IOS software, IP addresses on the router at...
Software Guide
Page 143
... downloading software over the console port. Enters global configuration mode. OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide C-1 Resets the configuration register. The firmware helps to the router over the console port. You can use the ROM monitor, you must be using a terminal or PC that is no Cisco IOS software image loaded on the router, the ROM monitor runs the router. If there is connected to initialize the processor hardware and boot the operating system software. Enter your password...
... downloading software over the console port. Enters global configuration mode. OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide C-1 Resets the configuration register. The firmware helps to the router over the console port. You can use the ROM monitor, you must be using a terminal or PC that is no Cisco IOS software image loaded on the router, the ROM monitor runs the router. If there is connected to initialize the processor hardware and boot the operating system software. Enter your password...
Software Guide
Page 146
... variables. MAC address 00:00:0c:07:ac:01 Cisco Secure Router 520 Series Software Configuration Guide C-4 OL-14210-01 for example: • Initializing interface. • Interface link state up. • ARPing for 1.4.0.1 • ARP reply for 1.4.0.1 received. IP_SUBNET_MASK= ip_address IP address of the default gateway of the router. This is the default setting. 2-Detailed progress is displayed. 1-Exclamation points (!!!) are used during the file download process; DEFAULT_GATEWAY= ip_address IP address of the TFTP server from which...
... variables. MAC address 00:00:0c:07:ac:01 Cisco Secure Router 520 Series Software Configuration Guide C-4 OL-14210-01 for example: • Initializing interface. • Interface link state up. • ARPing for 1.4.0.1 • ARP reply for 1.4.0.1 received. IP_SUBNET_MASK= ip_address IP address of the default gateway of the router. This is the default setting. 2-Detailed progress is displayed. 1-Exclamation points (!!!) are used during the file download process; DEFAULT_GATEWAY= ip_address IP address of the TFTP server from which...
Software Guide
Page 156
... A-4 reset C-3 ROM monitor C-2 to C-3 ROM monitor debugging C-8, C-9 show atm interface 12-5 show dsl interface atm 4-7 IN-2 Cisco Secure Router 520 Series Software Configuration Guide show interface 12-3 stack C-8 sysret C-8 tftpdnld C-3, C-5 undoing A-6 xmodem C-7 command variables listing A-4 TFTP download C-4 committed access rate See CAR configuration changes making A-5 saving 12-11, A-6 configuration examples command-line access 1-9 DHCP server 5-4 dynamic routes 1-12 PPPoA with NAT 4-9 PPPoE with NAT 3-8 simple firewall 8-5 static route 1-10 VPN with IPsec and GRE 7-9 VPN with IPsec...
... A-4 reset C-3 ROM monitor C-2 to C-3 ROM monitor debugging C-8, C-9 show atm interface 12-5 show dsl interface atm 4-7 IN-2 Cisco Secure Router 520 Series Software Configuration Guide show interface 12-3 stack C-8 sysret C-8 tftpdnld C-3, C-5 undoing A-6 xmodem C-7 command variables listing A-4 TFTP download C-4 committed access rate See CAR configuration changes making A-5 saving 12-11, A-6 configuration examples command-line access 1-9 DHCP server 5-4 dynamic routes 1-12 PPPoA with NAT 4-9 PPPoE with NAT 3-8 simple firewall 8-5 static route 1-10 VPN with IPsec and GRE 7-9 VPN with IPsec...
Software Guide
Page 157
... A-1 static routes 1-10 VLANs 5-1 VPDN group number 3-2 VPNs 6-1, 7-2 WAN interface 1-4 your network, preparing for 1-2 confreg command C-6 connections, setting up 1-2 console download C-7 to C-8 context command C-8 copy running-config startup-config command A-6 copy tftp flash command C-3 corporate network, connecting to 1-2 crypto map, applying to interface 6-8, 7-7 D debug atm commands 12-5 debug atm errors command 12-6 debug atm events command 12-6, 12-7 debug atm packet command 12-7 debug commands, ROM monitor C-8, C-9 default configuration, viewing 1-2 DHCP configuring DHCP server 5-2 OL...
... A-1 static routes 1-10 VLANs 5-1 VPDN group number 3-2 VPNs 6-1, 7-2 WAN interface 1-4 your network, preparing for 1-2 confreg command C-6 connections, setting up 1-2 console download C-7 to C-8 context command C-8 copy running-config startup-config command A-6 copy tftp flash command C-3 corporate network, connecting to 1-2 crypto map, applying to interface 6-8, 7-7 D debug atm commands 12-5 debug atm errors command 12-6 debug atm events command 12-6, 12-7 debug atm packet command 12-7 debug commands, ROM monitor C-8, C-9 default configuration, viewing 1-2 DHCP configuring DHCP server 5-2 OL...