Are welcome back everyone, are you ready? We're gonna go inside the router command line interface, see Li and do some configuration. All right, what are we gonna do? What are we going to do? minimum? Don't go crazy minimum configurations on the routers, Eli, what are they?

We're gonna put some passwords on there. Some banners go on to our lines, minier console, or vt y, which is our selling lines, and a little DNS while we're in there. Okay, just turning on DNS and to look for a DNS server. Simple, simple things, maybe some SSH, just show you some basic administration's. All right, but things that I want you to know. It'll be quick and simple.

All right. So that's that. Let's go do this. All righty. Here we are inside our lab ball for basic router configuration. And like I said, it says something you need to know.

So I mean, it's an IP addressing course. So I want you to know this. Very simple very quick. All right. We're Have the IP addresses sitting here. Here's our networks, one dot zero, we're using the last standard, which is one dot one for the computer on that 24 for the gateway, which is going to be the F 00 when I got into that yet, all right, you'll see, you know, the networks that were here you see, there's another network and these are the cable, huh?

When we get to that particular lecture, we'll talk about that right? Now we're gonna just do some basic admin stuff. All right, so let's go ahead and open up rodder zero. And this is what you call and I'm gonna go quickly through it. Alright, because again, this is not for this, I want to do a little extra stuff. Alright.

So this is what's called setup mode. You will say no, no, I will do anything from scratch. user mode, type enable go to go to configuration, config t go to blog or I mean from user mode or push mode. And then from privileged mode, you go to global configuration, then you type in the host name and if I can get my spelling I'm just going to tap that out hostname r1 Okay, and then we go into the basic interface, enable password Cisco enable secret student enable password Cisco enable secure students are both privileged mode passwords the secret will override the plain text one because enable password Cisco is plaintext secret will always override it because it's usually an MD five encryption, why put both in case you need to go back and use an older iOS that does not have the capabilities of encryption, so you got to leave the plaintext password.

Alright, but we're gonna go ahead and fix that to service password hyphen encryption tab is my friend. All right, because my spelling and typing is atrocious. Well this will do we'll go ahead and encrypt using MD seven All passwords past present future, okay? It will encrypt all the passwords that are there. All right, they're a plain text. Now we're going to go into banner message of the day.

And the important things here just to remember, all right is the the symbols for one a number similar words, or any symbol really not any symbol. There's usually a symbol used pound, welcome. It's not going to be a welcome sign. It will be a Hey, this was going on today, hey, you don't belong in here. It's a warning pretty much message of the day, but it really tells you you know, it could tell you a warning. Hey, if you don't belong in this particular router, get the heck out or until you Hey, you're now on router one.

Today. Remember administrators, we're going to go ahead and upgrade the routers into the maintenance window. Wow, that was just a message of the day type of thing. All right, now we're going to do usernames, okay, usernames, no? username lbos. I'll put her lowercase privilege tab 15, which is administrative privilege that goes from one to 1515 being the highest password.

It's either zero or seven, meaning no encryption or encryption. We're encrypting anyway, with a service password encryption scopa 00 and then we'll put Cisco, okay, everything lowercase, not as our username on there. Alright, there's a username on there. So when you log in, you exit the router is gonna ask you, hey, what's your username? Hey, what's your password, all that so I'm gonna be a username and password. Okay, and then let's go ahead and do DNS, IP domain, hyphen, local.

This turns on the DNS service, which is all by default. Let me show you the command. I'm gonna do IP domain hyphen name. I will do cisco.com. Okay, and then IP name, hyphens server and just put it in a bogus IP address. 192 though once again No one that one right for my previous one.

All right. So now you have DNS configured on the router. Alright, so the router will then all if you want to ping or telnet or do anything get to a particular place using its hostname, you know, the, the name of the router will have you you can do it using that, okay, instead of actually just Hey, what's the IP address? What's the IP address, you know, you can use DNS, also DNS, and host names that we configure are used for SSH configuration. And we're gonna do that. So we'll do IP SSH, and then we're gonna put in authentication retries, we'll try Hey, you're gonna try three times after three times.

If you fail, then you're not getting in. We're also going to put a timeout, IP SSH timeout, we're going to come out after 120 seconds. If you're in there and you're idle, and you're playing around 20 120 seconds, you're gonna get kicked out. You You can put in a version just gonna leave the default, whatever doesn't really matter, but you can put the version as well. Alright, so from there, we're going to go into our essay, ours, I know it's crypto key, RSA. crypto key, or generates our generate RSA.

And then we're going to leave the default you see says r1. She says r1 dot Cisco comm because it's going to use that the hostname plus the domain name to create our encryption, okay? And you're gonna give it a 512 or you just hit Enter, and that's what it will do. But if you do anything bigger remembering Christian bogs down your router, it bogs down your router. So you don't want to go ahead and do that. So we have that configured.

Now we'll do the lines line via line con zero is your console. I look it says hey We've done this we've enabled SSH for whatever version of ISO 168 it gives you information on what you just configured. Okay? So like on zero password Cisco and normally we just type in login right certification purposes you log in real world is login local. All right the way you use the local username and password okay? Doing that constantly and it will do it too and we're also going to do this exact type in timeout.

Zero space zero this is minutes. The space yeah 00 minutes, zero seconds here in a lab, never timezone you want to put 10 minutes, zero seconds, 20 minutes, zero seconds, whatever whatever it is. You want the time out to be but the first one is minutes. The second one is seconds. You also want to use login. Synchronous, and yes, I'm tabbing logging synchronous.

Why? Because the router gives you back gives you feedback on what you're doing. Just like you did with the SSH, it may interrupt your typing or will interrupt your typing. So if you're if you do logging synchronous, it will not interrupt your typing, you will be in the same line you're in, it will just give you the feedback and then you will another line, they won't break your commands up, which is nice. Alright, so we're going on out to line bt wise, that's zero space 15. The default telnet lines, these are your tunnel lines, Virtual Terminal lines are zero through four, right your father, but we do it on all real world.

If some guy, you know you're working in the IT department, this guy doesn't put your eggs, exit out of his telnet session, SSH session, whatever the case may be. And then you don't have enough telnet lines open, you run into a problem you gonna go kill that particular telnet session. So open up enough lines, you know how many people you need, and also put a note, listen, if you're not using that logo, next time you do that you're gonna get ripped off and I'm telling you, this is been an issue when I was in telecommunications was an issue constantly. Alright people not ending their session so why did you why zero to 15? password I mean, yeah power Cisco login logo so username and password. Okay and then the same thing exact hyphens timeout zero minutes, zero seconds.

Zero minutes zero seconds. All right and then login synchronous, okay. And that's pretty much it for some basic administration, okay and do w or what you can do your certification Ctrl Z. I'm just gonna do a show start. So there you see that your enable secret is very strong, right? That's Cisco, actually. Right.

Oh, that student actually encrypted and this is Cisco, which is playing password enable password, Cisco, that's what it is using MD seven here is using MD phi. So you can see this one is much, much stronger. So this is not as strong as using this. That's not like a question. Okay, there's your username, see how the password seven encrypted was really using it, we put zero was using the seven on top to encrypt. Here's SSH using version one.

There's your domain name, there's your IP address or a name server. We haven't put any IP addresses in there. Yeah, that's going to be in our next lecture. Okay. And there's your banner. Okay, doo doo doo doo doo.

And there's our things. So let's see if this is actually working. Let's exit. Right? It says r1 available. I'm gonna hit enter.

Says Hey, welcome. What is your user access? Okay, LD is what is your password LD is C i s c o co Hey, if I want to put logging logo that wouldn't have happened. All right, that would not have happened. So that's how you can go ahead and log in. Okay, that's what you should do it because if you notice, we're not in user mode.

We're privileged mode. Again, this is not for that, but I just want to do this little extra bit. Okay. And now what you do is you have this right now Notepad, and you do the exact same thing, right, the exact same thing on the other router. Alright, but with that, I'll see you in the next one.