- 1 - chapter 08. 시스코 라우터의 기본 설정. - 2 - 학습목표 시스코 라우터의 설정 파일의 저장과 이동 시스코 라우터의 초기 설정 시스코 라우터의

- 1 -

chapter 08.

시스코 라우터의 기본 설정

- 2 -

학습목표

• 시스코 라우터의 설정 파일의 저장과 이동

• 시스코 라우터의 초기 설정

• 시스코 라우터의 동작 확인

- 3 -

시스코 라우터의 설정 파일의 저장과 이동

• 설정 파일의 저장과 이동

– NVRAM : 설정 파일 저장– RAM : 현재 동작하고 있는 설정 저장– TFTP 서버

[ 그림 ] 설정 파일의 저장

- 4 -


• COPY 명령어router#copy ? /erase Erase destination file system. flash: Copy from flash: file system ftp: Copy from ftp: file system null: Copy from null: file system nvram: Copy from nvram: file system rcp: Copy from rcp: file system running-config Copy from current system configuration slot0: Copy from slot0: file system slot1: Copy from slot1: file system startup-config Copy from startup configuration system: Copy from system: file system tftp: Copy from tftp: file system

Router#copy running-config [startup-config | tftp]

- 5 -


• IOS 의 에러 메시지

% Incomplete command

명령어를 다 입력하지 않았을 때 나타나는 메시지

% Invalid input detected at '^' marker. 명령어의 옵션이나 값을 잘못 입력했을 때 나타나는 메시지

% Unknown command or computer name, or unable to find computer

실제 존재하지 않는 명령어를 입력했을 때 나타나는 메시지 (Privileged 모드 )

% Ambiguous command

명령어의 옵션을 설정하지 않았을 때 나타나는 메시지

- 6 -

• 시스코 라우터의 설정

시스코 라우터의 초기설정

[ 그림 ] 시스코 라우터의 설정 모드

- 7 -


• Setup (Auto configuration) 모드 (1) IOS 프로그램을 부팅한 후 설정 파일이 없을 때 자동

설정할지 물어봄-- System Configuration Dialog ---At any point you may enter a question mark '?' for help.Refer to the 'Getting Started' Guide for additional help.Use ctrl-c to abort configuration dialog at any prompt.Default settings are in square brackets '[]'.Continue with configuration dialog? [yes]: ! 설정을 시작할지를 묻는다 . [ ] 안의 값이 기본 값이므로 엔터키를 칠 경우 자동 입력된다 .First, would you like to see the current interface summary? [yes]: Configuring global parameters: Enter host name [ROUTER]: 2600_CISCO! 라우터의 호스트 이름을 설정한다 .The enable secret is a one-way cryptographic secret usedinstead of the enable password when it exists. Enter enable secret [<Use current secret>]: ! 라우터의 enable secret 설정한다 .The enable password is used when there is no enable secretand when using older software and some boot images.

- 8 -


• Setup (Auto configuration) 모드 (2)Enter enable password [router]:! 라우터의 enable password 설정한다 . Enter virtual terminal password [router]: ! 원격접속을 위한 VTY password 설정한다 . Configure SNMP Network Management? [yes]: ! 원격관리를 위한 SNMP 를 설정한다 . Community string [public]:! 원격관리를 위한 SNMP 커뮤니티 값을 설정한다 . Configure DECnet? [no]: Configure AppleTalk? [no]: Configure IPX? [no]: Configure bridging? [no]: Configure IP? [yes]: ! IP 프로토콜을 설정한다 . Configure IGRP routing? [no]: Configure RIP routing? [yes]: ! RIP 라우팅 프로토콜을 설정한다 .

- 9 -


• Setup (Auto configuration) 모드 (3)Configuring interface parameters:Configuring interface Ethernet0:! 이더넷 인터페이스를 설정한다 . Is this interface in use? [yes]: Configure IP on this interface? [yes]: IP address for this interface [192.168.1.1]: Number of bits in subnet field [0]: Class C network is 192.168.1.1, 0 subnet bits; mask is 255.255.255.0Configuring interface Serial0:! 시리얼 인터페이스를 설정한다 . Is this interface in use? [yes]: Configure IP on this interface? [yes]: Configure IP unnumbered on this interface? [no]: IP address for this interface [192.168.2.1]:Number of bits in subnet field [6]: Class C network is 192,168.2.1, 6 subnet bits; mask is 255.255.255.252

- 10 -


• Setup (Auto configuration) 모드 (4)The following configuration command script was created:! 현재 설정을 보여준다 . show running-config 값과 같다hostname 2600_CISCOenable secret 5 071D2043400C0Denable password routerline vty 0 4password routersnmp-server community public!no decnet routingno appletalk routingno ipx routingno bridge 1ip routing!interface Ethernet0ip address 192.168.1.1 255.255.255.0no mop enabled

- 11 -


• Setup (Auto configuration) 모드 (5)interface Serial0ip address 192.168.2.1 255.255.255.252no mop enabled!!router ripnetwork 192.168.1.0network 192.168.2.0!endUse this configuration? [yes/no]: yes! 현재 설정을 사용할지 묻는다 .#####[OK]Use the enabled mode 'configure' command to modify this configuration.

- 12 -


• hostname 명령어

– 라우터의 이름 부여

Router(config)#hostname {hostname}

- 13 -


• Banner motd 명령어– 라우터에 접속했을 때 보이는 메시지 설정

Authorised Access onlyThis system is the property of XXX Telecom InternationalDisconnect IMMEDIATELY if you are not an authorised user!Contact [email protected] for help. User Access Verification

Username: Password:

Router(config)#banner motd {c line c}

- 14 -


• 패스워드 설정

• 인터페이스 설정

Router(config-line)#password {password}

Router#conf tEnter configuration commands, one per line. End with CNTL/Z.Router(config) #interface fastEthernet 0Router(config-if) #ip address 192.168.1.136 255.255.255.0Router(config-if) #description Connect to Local LANRouter(config-if) #bandwidth 1000Router(config-if) #no shutRouter(config-if) #^Z

- 15 -


• CDP 설정

– Cisco Discovery Protocol– no cdp enable – 특정 인터페이스– no cdp run – 시스템 전체

router#conf t Enter configuration commands, one per line. End with CNTL/Z. router(config)#cdp run router(config)#^Z

- 16 -

시스코 라우터의 동작확인

• 라우터의 동작확인 show version (1) : 현재 시스템의 하드웨어 , 소프트웨어

버전과 메모리의 크기 등을 보여줌

Router#sh version (2600 ROUTER) Cisco Internetwork Operating System Software IOS (tm) C2600 Software (C2600-IS-M), Version 12.0(3)T3, RELEASE SOFTWARE (fc1) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Thu 15-Apr-99 16:12 by kpma Image text-base: 0x80008088, data-base: 0x80A05BAC

ROM: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1)

Router uptime is 7 hours, 41 minutes System restarted by power-on System image file is "flash:c2600-is-mz.120-3.T3“

( 연결 )

- 17 -


• show version (2)

cisco 2621 (MPC860) processor (revision 0x102) with 20480K/4096K bytes of memory . Processor board ID JAB035003EU (2793879697) M860 processor: part number 0, mask 49 Bridging software. X.25 software, Version 3.0.0. 2 FastEthernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read/Write)

Configuration register is 0x2102

- 18 -


• show process– 5 초 동안의 라우터 CPU 평균 사용율 , 5 분 동안의 평균

사용율 , 1 분 동안의 평균 사용율을 보여줌– 라우터가 오작동할 때 중요한 지표로 사용

Router# show processes

CPU utilization for five seconds: 21%/0%; one minute: 2%; five minutes: 2% PID QTy PC Runtime (ms) Invoked uSecs Stacks TTY Process 1 Mwe 2FEA4E 1808 464 3896 1796/3000 0 IP-EIGRP Router 2 Lst 11682 10236 109 93908 1828/2000 0 Check heaps 3 Mst 3AE9C 0 280 0 1768/2000 0 Timers 4 Lwe 74AD2 0 12 0 1492/2000 0 ARP Input

- 19 -


• show controller– 라우터 인터페이스의 하드웨어 정보를 보여줌

Router#sh controllersInterface FastEthernet0/0Hardware is AMD LagunaADDR: 80F94F6C, FASTSEND: 80028ED8, MCI_INDEX: 0DIST ROUTE ENABLED: 0Route Cache Flag: 1LADRF=0x0000 0x0100 0x0000 0x0000CSR0 =0x00000004, CSR3 =0x00001044, CSR4 =0x00004915, CSR15 =0x00000180.Interface Serial0/0Hardware is PowerQUICC MPC860No serial cable attachedidb at 0x80FA0EA8, driver data structure at 0x80FA6418SCC Registers:General [GSMR]=0x2:0x00000000, Protocol-specific [PSMR]=0x8Events [SCCE]=0x0000, Mask [SCCM]=0x0000, Status [SCCS]=0x00Transmit on Demand [TODR]=0x0, Data Sync [DSR]=0x7E7EInterrupt Registers:

- 20 -


• show flash– 라우터 플래시 메모리의 크기와 현재 저장되어 있는

파일을 보여줌

Router# show flash Partition Size Used Free Bank-Size State Copy Mode 1 16384K 4040K 12343K 4096K Read/Write Direct System flash directory: File Length Name/status addr fcksum ccksum 1 4137888 c3640-c2is-mz.Feb24 0x40 0xED65 0xED65 [4137952 bytes used, 12639264 available, 16777216 total] 16384K bytes of processor board System flash (Read/Write) Chip Bank Code Size Name 1 1 01D5 1024KB AMD 29F080 2 1 01D5 1024KB AMD 29F080 3 1 01D5 1024KB AMD 29F080

- 21 -


• show memory– 라우터에 설치되어 있는 Head, Total, Used, Free, Lowes

t, Largest 와 같은 값을 보여줌

Router# show memory

Head Total(b) Used(b) Free(b) Lowest(b) Largest(b) B0EE38 5181896 2210036 2971860 2692456 2845368

Processor memory Address Bytes Prev. Next Ref PrevF NextF Alloc PC What B0EE38 1056 0 B0F280 1 18F132 List Elements B0F280 2656 B0EE38 B0FD08 1 18F132 List Headers B0FD08 2520 B0F280 B10708 1 141384 TTY data B10708 2000 B0FD08 B10F00 1 14353C TTY Input Buf B10F00 512 B10708 B11128 1 14356C TTY Output Buf B11128 2000 B10F00 B11920 1 1A110E Interrupt Stack B11920 44 B11128 B11974 1 970DE8 *Init* B11974 1056 B11920 B11DBC 1 18F132 messages

- 22 -


• show tech-support

– 라우터의 문제 해결을 위한 시스템 전반의 모든 정보를 보여줌

- 23 -


• show cdp (1)– 현재 설정한 CDP 관련한 타이머 값과 버전을 보여줌

router# show cdp Global CDP information: Sending CDP packets every 60 seconds Sending a holdtime value of 180 seconds Sending CDPv2 advertisements is enabled

Router#show cdp neighbors Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge S - Switch, H - Host, I - IGMP, r - Repeater Device ID Local Intrfce Holdtme Capability Platform Port ID lab-7206 Eth 0 157 R 7206VXR Fas 0/0/0 lab-as5300-3 Eth 0 122 R AS5300 Eth 0 lab-as5300-4 Eth 0 132 R AS5300 Fas 0/0

- 24 -


• show cdp (2)

router#show cdp neighbors detail ------------------------- Device ID: lab-7206 Entry address(es): IP address: 172.19.169.83 Platform: cisco 7206VXR, Capabilities: Router Interface: Ethernet0, Port ID (outgoing port): FastEthernet0/0/0 Holdtime : 123 sec Version : Cisco Internetwork Operating System Software IOS (tm) 5800 Software (C5800-P4-M), Version 12.1(2) Copyright (c) 1986-2002 by Cisco Systems, Inc. advertisement version: 2 Duplex: half -------------------------

- 25 -


• show ip route

Router# show ip route Codes: I - IGRP derived, R - RIP derived, O - OSPF derived, C - connected, S - static, E - EGP derived, B - BGP derived, * - candidate default route, IA - OSPF inter area route, i - IS-IS derived, ia - IS-IS, U - per-user static route, o - on-demand routing, M - mobile, P - periodic downloaded static route, D - EIGRP, EX - EIGRP external, E1 - OSPF external type 1 route, E2 - OSPF external type 2 route, N1 - OSPF NSSA external type 1 route, N2 - OSPF NSSA external type 2 route

Gateway of last resort is 10.119.254.240 to network 10.140.0.0

O 172.150.0.0 [160/5] via 10.119.254.6, 0:01:00, Ethernet2 E 172.17.10.0 [200/128] via 10.119.254.244, 0:02:22, Ethernet2 S 172.21.114.201/32 is directly connected, BRI0 S 172.21.114.205/32 is directly connected, BRI0 E 172.30.0.0 [200/128] via 10.119.254.244, 0:02:22, Ethernet2

- 26 -


• show interface

Router# show interfaces serial Serial 0 is up, line protocol is up Hardware is MCI Serial Internet address is 131.136.190.203, subnet mask is 255.255.255.0 MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 0:00:07, output 0:00:00, output hang never Output queue 0/40, 0 drops; input queue 0/75, 0 drops Five minute input rate 0 bits/sec, 0 packets/sec Five minute output rate 0 bits/sec, 0 packets/sec 16263 packets input, 1347238 bytes, 0 no buffer Received 13983 broadcasts, 0 runts, 0 giants 2 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 2 abort 1 carrier transitions 22146 packets output, 2383680 bytes, 0 underruns 0 output errors, 0 collisions, 2 interface resets, 0 restart

- 27 -


• show running-config (1)– 현재 동작하고 있는 라우터의 설정 값을 보여줌

Router#show running-configBuilding configuration...

Current configuration : 2399 bytes!version 12.2service password-encryption!hostname Router!enable password 7 071D2043400C0D!ip subnet-zeroip cefno ip domain lookup!interface Loopback0 ip address 36.36.36.36 255.255.255.255

- 28 -


• show running-config (2)interface FastEthernet0/0 description Connect to Local LAN bandwidth 1000 ip address 192.168.1.136 255.255.255.0 no keepalive duplex auto speed auto!router ospf 100 log-adjacency-changes network 192.168.1.0 0.0.0.255 area 0!no ip http serverip classless!banner motd ^CCisco 3600 Router^C

- 29 -


• show running-config (3)!line con 0 exec-timeout 300 0 timeout login response 0 speed 115200line aux 0line vty 0 4 exec-timeout 35000 0 password 7 095E4F061C0B03 login!end

- 30 -


• Debug– 라우터에 문제가 발생했을 때 문제를 해결하기 위해 사용

aaa AAA Authentication, Authorization and Accounting access-expression Boolean access expression adjacency adjacency ip IP information lane LAN Emulation lapb LAPB protocol transactions lex LAN Extender protocol list Set interface or/and access list for the next debug

- 1 - chapter 08. 시스코 라우터의 기본 설정. - 2 - 학습목표 시스코 라우터의 설정 파일의 저장과 이동 시스코 라우터의 초기 설정 시스코 라우터의

Documents