Difference between revisions of "Device configuration for MupsBox"

From Mupssoft Wiki
Jump to navigation Jump to search
Line 62: Line 62:
  
  
{| class="wikitable"
 
|+BASIC SSH CONFIG - DETAILED STEPS
 
!
 
!Comman or Action
 
!Purpose
 
|-
 
|'''Step 10'''
 
|'''ip domain name''' ''domain name''
 
 
 
 
'''Example:'''
 
 
Router(config)# ip domain name domain.local
 
|Specifies the default domain name that Cisco IOS software uses to complete unqualified host names
 
 
|-
 
|'''Step 11'''
 
|'''hostname''' ''newhostname''
 
 
 
'''Example:'''
 
 
Router(config)# hostname MBRouter
 
|Specifies the name for the router.
 
|-
 
|'''Step 12'''
 
|'''crypto key generate rsa modulus 1024'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# crypto key generate rsa modulus 1024
 
|To generate Rivest, Shamir, and Adelman (RSA) key pairs.
 
|-
 
|'''Step 13'''
 
|'''username''' ''root'' privilege 15 '''secret''' ''PassW0rd''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# username root privilege 15 secret PassW0rd
 
|Specifies the secret for the root.
 
|-
 
|'''Step 14'''
 
|'''aaa new-model'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# aaa new-model
 
| Enable AAA on router.
 
|-
 
|'''Step 15'''
 
|'''line vty 0 4'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# line vty 0 4
 
|Entering the configuration mode VTY is a virtual port and used to get Telnet or SSH access to the device.
 
|-
 
|'''Step 16'''
 
|'''transport input ssh'''
 
 
 
'''Example:'''
 
 
MBRouter(config-line)# transport input ssh
 
 
MBRouter(config-line)# exit
 
|Accept only ssh via vty line.
 
|}
 
 
{| class="wikitable"
 
|+ADDITIONAL CONFIG - DETAILED STEPS
 
!
 
!Comman or Action
 
!Purpose
 
|-
 
|'''Step 17'''
 
|'''enable secre'''t ''PassW0rd''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# enable secret PassW0rd
 
|Defines a new password or changes an existing password for access to privileged EXEC mode.
 
 
|-
 
|'''Step 18'''
 
|'''service password-encryption'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# service password-encryption
 
|(Optional) Encrypts the password when the
 
password is defined or when the configuration
 
 
is written
 
 
Encryption prevents the password from being readable in the configuration file.
 
|-
 
|'''Step 19'''
 
|'''end'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# end
 
|Exits global configuration mode and returns to privileged EXEC mode.
 
|-
 
|'''Step 20'''
 
|'''copy running-config startup-config'''
 
 
 
 
'''Example:'''
 
 
MBrouter# copy running-config startup-config
 
|Saves the running configuration file as the startup configuration file.
 
|}
 
  
 
<p>MupsBox will sort the data and display only the values found. These data can be exported to Excel for further processing.</p>
 
<p>MupsBox will sort the data and display only the values found. These data can be exported to Excel for further processing.</p>
Line 246: Line 116:
  
 
18.    MBRouter# '''copy running-config startup-config'''
 
18.    MBRouter# '''copy running-config startup-config'''
 
{| class="wikitable"
 
|+BASIC ETHERNET CONFIGURATION - DETAILED STEPS
 
!
 
!Comman or Action
 
!Purpose
 
|-
 
|'''Step 1'''
 
|'''enable'''
 
 
 
 
'''Example:'''
 
 
Router> enable
 
|Enables privileged EXEC mode.
 
 
*Enter your password if prompted.
 
|-
 
|'''Step 2'''
 
|'''configure terminal'''
 
 
 
 
'''Example:'''
 
 
Router# configure terminal
 
|Enters global configuration mode.
 
|-
 
|'''Step 3'''
 
|'''interface gigabitethernet''' ''slot/port''
 
 
 
'''Example:'''
 
 
Router(config)# interface gigabitethernet 0/0
 
|Specify the port adapter type and the location of the interface to be configured.
 
|-
 
|'''Step 4'''
 
|'''ip address''' ''ip subnetmask''
 
 
 
 
'''Example:'''
 
 
Router(config-if)# ip address 10.9.90.201 255.255.255.0
 
|Sets the IP address and subnet mask for the specified GE interface.
 
|-
 
|'''Step 5'''
 
|'''no shutdown'''
 
 
 
 
'''Example:'''
 
 
Router(config-if)# no shutdown
 
|Enables the GE interface, changing its state from administratively down to administratively up
 
|-
 
|'''Step 6'''
 
|'''exit'''
 
 
 
 
'''Example:'''
 
 
Router(config-if)# exit
 
|Exits configuration mode for the GE interface and returns to global configuration mode.
 
|-
 
|'''Step 7'''
 
|'''ip route 0.0.0.0 0.0.0.0''' ''gateway''
 
 
 
 
'''Example:'''
 
 
Router(config)# ip route 0.0.0.0 0.0.0.0 10.9.90.1
 
|Add route - default gateway
 
|}
 
 
 
{| class="wikitable"
 
|+BASIC SSH CONFIG - DETAILED STEPS
 
!
 
!Comman or Action
 
!Purpose
 
|-
 
|'''Step 8'''
 
|'''ip domain name''' ''domain name''
 
 
 
 
'''Example:'''
 
 
Router(config)# ip domain name domain.local
 
|Specifies the default domain name that Cisco IOS software uses to complete unqualified host names
 
 
|-
 
|'''Step 9'''
 
|'''hostname''' ''newhostname''
 
 
 
'''Example:'''
 
 
Router(config)# hostname MBRouter
 
|Specifies the name for the router.
 
|-
 
|'''Step 10'''
 
|'''crypto key generate rsa modulus 1024'''
 
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# crypto key generate rsa modulus 1024
 
|To generate Rivest, Shamir, and Adelman (RSA) key pairs.
 
|-
 
|'''Step 11'''
 
|'''username''' ''root'' privilege 15 '''secret''' ''PassW0rd''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# username root privilege 15 secret PassW0rd
 
|Specifies the secret for the root.
 
|-
 
|'''Step 12'''
 
|'''aaa new-model'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# aaa new-model
 
|Enable AAA on router.
 
|-
 
|'''Step 13'''
 
|'''line vty 0 4'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# line vty 0 4
 
|Entering the configuration mode VTY is a virtual port and used to get Telnet or SSH access to the device.
 
|-
 
|'''Step 14'''
 
|'''transport input ssh'''
 
 
 
'''Example:'''
 
 
MBRouter(config-line)# transport input ssh
 
 
MBRouter(config-line)# exit
 
|Accept only ssh via vty line.
 
|}
 
 
{| class="wikitable"
 
|+ADDITIONAL CONFIG - DETAILED STEPS
 
!
 
!Comman or Action
 
!Purpose
 
|-
 
|'''Step 15'''
 
|'''enable secre'''t ''PassW0rd''
 
 
'''Example:'''
 
 
MBRouter(config)# enable secret PassW0rd
 
|Defines a new password or changes an existing password for access to privileged EXEC mode.
 
 
|-
 
|'''Step 16'''
 
|'''service password-encryption'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# service password-encryption
 
|(Optional) Encrypts the password when the
 
password is defined or when the configuration
 
 
is written
 
 
Encryption prevents the password from being readable in the configuration file.
 
|-
 
|'''Step 17'''
 
|'''end'''
 
 
 
 
'''Example:'''
 
 
MBRouter(config)# end
 
| Exits global configuration mode and returns to privileged EXEC mode.
 
|-
 
|'''Step 18'''
 
|'''copy running-config startup-config'''
 
 
 
 
Example:
 
 
MBrouter# copy running-config startup-config
 
|Saves the running configuration file as the startup configuration file.
 
|}
 
  
  

Revision as of 01:08, 10 June 2021

Device Configuration

Introduction

This section is not a tutorial on configuration different manufacturers. Here you will find the minimum settings in the CLI (for access from MUPSBOX to devices).


Vendor Configuration

Cisco - IOS v15

Minimum* configuration:

BASIC ETHERNET CONFIGURATION - SUMMARY STEPS

1. Router> enable

2. Router# configure terminal

3. Router(config)# interface gigabitethernet 0/0

4. Router(config-if)# ip adress 10.9.90.201 255.255.255.0

5. Router(config-if)# ipv6 address 2001:db8:B40:4000::101/64

6. Router(config-if)# no shutdown

7. Router(config-if)# exit

8. Router(config)# ip route 0.0.0.0 0.0.0.0 10.9.90.1

9. Router(config)# ipv6 route ::/0 2001:db8:B40:4000::1



BASIC SSH CONFIGURATION - SUMMARY STEPS

10. Router(config)# ip domain name domain.local

11. Router(config)# hostname MBRouter

12. MBRouter(config)# crypto key generate rsa modulus 1024

13. MBRouter(config)# username root privilege 15 secret PassW0rd

14. MBRouter(config)# aaa new-model

15. MBRouter(config)# line vty 0 4

16. MBRouter(config-line)# transport input ssh

MBRouter(config-line)# exit


ADDITIONAL CONFIGURATION - SUMMARY STEPS

17. MBRouter(config)# enable secret PassW0rd

18. MBRouter(config)# service password-encryption

19. MBRouter(config)# end

20. MBRouter# copy running-config startup-config


MupsBox will sort the data and display only the values found. These data can be exported to Excel for further processing.


Cisco - ASA

Minimum* configuration. ASA Version 8.2(5):

BASIC ETHERNET CONFIGURATION - SUMMARY STEPS

1. Switch> enable

2. Switch# configure terminal

3. Switch(config)# interface gigabitethernet 0/0

4. Switch(config-if)# no switchport

5. Switch(config-if)# ip adress 10.9.90.201 255.255.255.0

6. Switch(config-if)# exit

7. Switch(config)# ip route 0.0.0.0 0.0.0.0 10.9.90.1


BASIC SSH CONFIGURATION - SUMMARY STEPS

8. Router(config)# ip domain name domain.local

9. Router(config)# hostname MBRouter

10. MBRouter(config)# crypto key generate rsa modulus 1024

11. MBRouter(config)# username root privilege 15 secret PassW0rd

12. MBRouter(config)# aaa new-model

13. MBRouter(config)# line vty 0 4

14. MBRouter(config-line)# transport input ssh

MBRouter(config-line)# exit


ADDITIONAL CONFIGURATION - SUMMARY STEPS

15. MBRouter(config)# enable secret PassW0rd

16. MBRouter(config)# service password-encryption

17. MBRouter(config)# end

18. MBRouter# copy running-config startup-config


MikroTik

Minimum configuration for RouterOS V6 (with "zero" configuration)

BASIC ETHERNET CONFIGURATION - SUMMARY STEPS

1. [admin@MikroTik] > ip address add address=172.17.22.4/24 interface=ether1

2. [admin@MikroTik] > ip route add gateway=172.17.22.1

3. [admin@MikroTik] > ipv6 address add address=2001:db8:b40:4002::4/64 interface=ether1

4. [admin@MikroTik] > ipv6 route add gateway=2001:db8:b40:4002::1

5. [admin@MikroTik] > system identity set name=MBMikroTik

6. [admin@MBMikroTik] > ip service disable telnet,ftp,www,api

7. [admin@MBMikroTik] > user add name=mupsbox password=PassW0rd group=full

8. [admin@MBMikroTik] > user remove admin

DLink DGS

Minimum* configuration:

BASIC ETHERNET CONFIGURATION - SUMMARY STEPS

1. DGS-1210-28MP/ME:5# config ipif System ipaddress 172.17.22.2/24

2. DGS-1210-28MP/ME:5#config ipif System ipv6 ipv6address 2001:db8:b40:4002::2/64

3. DGS-1210-28MP/ME:5# create iproute default 172.17.22.1

4. DGS-1210-28MP/ME:5# create ipv6route default 2001:db8:b40:4002::1

5. DGS-1210-28MP/ME:5# enable ssh

6. DGS-1210-28MP/ME:5# enable password encryption

7. DGS-1210-28MP/ME:5# create account admin mupsbox

8. DGS-1210-28MP/ME:5# save

Huawei AR100

Minimum* configuration:

BASIC ETHERNET CONFIGURATION - SUMMARY STEPS

1. <Huawei> system-view

2. [Huawei] interface GigabitEthernet 0/0/0

3. [Huawei-GigabitEthernet0/0/0] undo portswhich

4. [Huawei-GigabitEthernet0/0/0] ip address 192.168.168.1 255.255.255.0

5. [Huawei-GigabitEthernet0/0/0] quit

6. [Huawei]ip route-static 0.0.0.0 0.0.0.0 172.17.22.1

7. DGS-1210-28MP/ME:5# create account admin mupsbox

8. DGS-1210-28MP/ME:5# save

Custom Filter

Retrieved from "https://wiki.mupssoft.com/index.php?title=Device_configuration_for_MupsBox&oldid=1010"