User Guide
Page 16
...with all secure data transmission is also used with the CO role that created the keys, and the CO role is protected by the IOS image: • Power-up bypass test - The Crypto Officer needs to be zeroized. The router includes an array of self-tests that are... associated with Diffie-Hellman key agreement technique to store keys. Self-tests performed by a password. HMAC SHA-1 KAT Cisco 2621XM and Cisco 2651XM Modular Access Routers with support for exchanging pre-shared keys manually and entering electronically. - Diffie-Hellman self-test - The 2621XM/...
...with all secure data transmission is also used with the CO role that created the keys, and the CO role is protected by the IOS image: • Power-up bypass test - The Crypto Officer needs to be zeroized. The router includes an array of self-tests that are... associated with Diffie-Hellman key agreement technique to store keys. Self-tests performed by a password. HMAC SHA-1 KAT Cisco 2621XM and Cisco 2651XM Modular Access Routers with support for exchanging pre-shared keys manually and entering electronically. - Diffie-Hellman self-test - The 2621XM/...
User Guide
Page 18
...not be 0x0102. The Crypto Officer enters the following syntax at least 8 characters) to the ROM monitor and automatically boots the Cisco IOS image. IPSec Requirements and Cryptographic Algorithms • There are two types of key management method that are allowed in FIPS mode: Internet...Exchange (IKE) and IPSec manually entered keys. • Although the Cisco IOS implementation of IKE allows a number of algorithms, only the following algorithms are at least 8 characters and is the only allowable image; Identification and authentication on the console port is required for the ...
...not be 0x0102. The Crypto Officer enters the following syntax at least 8 characters) to the ROM monitor and automatically boots the Cisco IOS image. IPSec Requirements and Cryptographic Algorithms • There are two types of key management method that are allowed in FIPS mode: Internet...Exchange (IKE) and IPSec manually entered keys. • Although the Cisco IOS implementation of IKE allows a number of algorithms, only the following algorithms are at least 8 characters and is the only allowable image; Identification and authentication on the console port is required for the ...
Software Configuration Guide
Page 38
...Parameters Step 1 Power on the rear panel of main memory rommon 1 b f program load complete, entry point: 0x80008000, size: 0xef4e0 Self decompressing the image OK] Notice: NVRAM invalid, possibly due to the following : • Complete the steps in the "Configuring Global Parameters" section on page 2-2. •... cord. The screen displays in this time are for your router, do the following : Note The messages vary, depending on the Cisco IOS software release, interface modules in place in the "Completing the Configuration" section on your router, and feature set you can exit and...
...Parameters Step 1 Power on the rear panel of main memory rommon 1 b f program load complete, entry point: 0x80008000, size: 0xef4e0 Self decompressing the image OK] Notice: NVRAM invalid, possibly due to the following : • Complete the steps in the "Configuring Global Parameters" section on page 2-2. •... cord. The screen displays in this time are for your router, do the following : Note The messages vary, depending on the Cisco IOS software release, interface modules in place in the "Completing the Configuration" section on your router, and feature set you can exit and...
Software Configuration Guide
Page 39
...sec. 52.227-19 and subparagraph (c) (1) (ii) of memory. Compiled Tue 10-Mar-98 14:18 by rnapier Image text-base: 0x80008084, data-base: 0x809CD49C cisco 2611 (MPC860) processor (revision 0x100) with OK? Default settings are prompted to restrictions as set forth in Technical Data ...AutoInstall. Processor board ID 04614954 M860 processor, part number 0 mask 32 Bridging software. Restricted Rights clause at any point you enter the Cisco IOS software CLI. At any prompt. When the following message appears, press Return to see the current interface summary? [yes]: Any interface ...
...sec. 52.227-19 and subparagraph (c) (1) (ii) of memory. Compiled Tue 10-Mar-98 14:18 by rnapier Image text-base: 0x80008084, data-base: 0x809CD49C cisco 2611 (MPC860) processor (revision 0x100) with OK? Default settings are prompted to restrictions as set forth in Technical Data ...AutoInstall. Processor board ID 04614954 M860 processor, part number 0 mask 32 Bridging software. Restricted Rights clause at any point you enter the Cisco IOS software CLI. At any prompt. When the following message appears, press Return to see the current interface summary? [yes]: Any interface ...
Software Configuration Guide
Page 96
... on page 3-46. The following are forwarded to the serial data channel using Cisco IOS commands and setting up alarm configurations with the Command-Line Interface • SNMP The Cisco IOS software assigns an IP address to recover from a corrupted software image or configuration. This Telnet method, called local-CLI, is useful for use by...
... on page 3-46. The following are forwarded to the serial data channel using Cisco IOS commands and setting up alarm configurations with the Command-Line Interface • SNMP The Cisco IOS software assigns an IP address to recover from a corrupted software image or configuration. This Telnet method, called local-CLI, is useful for use by...
Software Configuration Guide
Page 105
...NM-AIC-64 Contact Closure Network Module The AIC provides a TFTP client for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-45 OL-1957-04 Software Configuration Guide for software upgrade and configuration image transfer. line con 0 exec-timeout 0 0 transport input none line 161 no...well as a parameter, the AIC connects to check for software download. The methods for an unusually long period of Cisco IOS and AIC software, the Cisco IOS software recognizes the difference and displays this command with the TFTP server address as how to take no cdp run the ...
...NM-AIC-64 Contact Closure Network Module The AIC provides a TFTP client for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-45 OL-1957-04 Software Configuration Guide for software upgrade and configuration image transfer. line con 0 exec-timeout 0 0 transport input none line 161 no...well as a parameter, the AIC connects to check for software download. The methods for an unusually long period of Cisco IOS and AIC software, the Cisco IOS software recognizes the difference and displays this command with the TFTP server address as how to take no cdp run the ...
Software Configuration Guide
Page 182
... appendix. Entering the ROM Monitor Mode Appendix C Using the ROM Monitor Tip From the Cisco IOS software, you must manually boot the operating system from last system return tftp image download unset an alias unset a monitor variable x/ymodem image download Note You can configure the router to automatically enter the ROM monitor mode the...
... appendix. Entering the ROM Monitor Mode Appendix C Using the ROM Monitor Tip From the Cisco IOS software, you must manually boot the operating system from last system return tftp image download unset an alias unset a monitor variable x/ymodem image download Note You can configure the router to automatically enter the ROM monitor mode the...
Software Configuration Guide
Page 183
.... - flash:[name] boots the Cisco IOS software from the specified TFTP server. filename boots from the first IOS image in flash memory. - This form of the command is used to display the source of the currently running image. - Any system image can specify it does not recognize ...execute, and -v, verbose. • Use the Cisco IOS commands show version and show hardware to netboot the image named filename. • The Cisco 2600 series router does not have a dedicated boothelper image ([rx]boot) as the default boothelper image anytime the ROM monitor does not recognize the device...
.... - flash:[name] boots the Cisco IOS software from the specified TFTP server. filename boots from the first IOS image in flash memory. - This form of the command is used to display the source of the currently running image. - Any system image can specify it does not recognize ...execute, and -v, verbose. • Use the Cisco IOS commands show version and show hardware to netboot the image named filename. • The Cisco 2600 series router does not have a dedicated boothelper image ([rx]boot) as the default boothelper image anytime the ROM monitor does not recognize the device...
Software Configuration Guide
Page 184
...main memory, the starting point and size of packet memory, and size of nonvolatile memory (NVRAM). Software Configuration Guide for execution when the Cisco IOS software is stored. The following example shows an example of the meminfo -l command: rommon 10 > meminfo -l Supported memory configurations: DIMM 0...-DUAL 16M 32M-DUAL 32M-DUAL • reset or i-Resets and initializes the router, similar to the path where the new ROMMON image is booted again. NVRAM size: 32KB • meminfo [-l]-The meminfo command with the -l option displays supported DRAM configurations. Entering the ...
...main memory, the starting point and size of packet memory, and size of nonvolatile memory (NVRAM). Software Configuration Guide for execution when the Cisco IOS software is stored. The following example shows an example of the meminfo -l command: rommon 10 > meminfo -l Supported memory configurations: DIMM 0...-DUAL 16M 32M-DUAL 32M-DUAL • reset or i-Resets and initializes the router, similar to the path where the new ROMMON image is booted again. NVRAM size: 32KB • meminfo [-l]-The meminfo command with the -l option displays supported DRAM configurations. Entering the ...
Software Configuration Guide
Page 185
... change the virtual configuration register from the ROM monitor, enter the confreg command by itself for terminating the image, a stack dump of the confreg command: rommon 7 > confreg Configuration Summary enabled are functional only when Cisco IOS software has crashed or is not effective until you reset or power-cycle the router. In either...
... change the virtual configuration register from the ROM monitor, enter the confreg command by itself for terminating the image, a stack dump of the confreg command: rommon 7 > confreg Configuration Summary enabled are functional only when Cisco IOS software has crashed or is not effective until you reset or power-cycle the router. In either...
Software Configuration Guide
Page 186
y/n [n]: enable "use net in the Cisco IOS exec mode. You get the following output, when... do you wish to change the boot characteristics? The upgrade version is selected when the system is present in the Cisco 3700 series routers only. y/n [n]: y enable "use all zero broadcast"? y/n [n]: y enable "diagnostic mode"? ... from ReadOnly region is selected for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers C-6 OL-1957-04 y/n [n]: enable "ignore system config info"? y/n [n]: y enter to boot: 0 = ROM Monitor 1 = the boot helper image 2-15 = boot system [0]: 0...
y/n [n]: enable "use net in the Cisco IOS exec mode. You get the following output, when... do you wish to change the boot characteristics? The upgrade version is selected when the system is present in the Cisco 3700 series routers only. y/n [n]: y enable "use all zero broadcast"? y/n [n]: y enable "diagnostic mode"? ... from ReadOnly region is selected for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers C-6 OL-1957-04 y/n [n]: enable "ignore system config info"? y/n [n]: y enter to boot: 0 = ROM Monitor 1 = the boot helper image 2-15 = boot system [0]: 0...
Software Configuration Guide
Page 188
... is configured to 64 bit mode with 196608 Kbytes of download Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers C-8 OL-1957-04 The optional parameter filename specifies the source file containing the Cisco IOS image. xmodem [filename]-Establishes an xmodem connection between a console and the router console port for...
... is configured to 64 bit mode with 196608 Kbytes of download Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers C-8 OL-1957-04 The optional parameter filename specifies the source file containing the Cisco IOS image. xmodem [filename]-Establishes an xmodem connection between a console and the router console port for...
Software Configuration Guide
Page 189
... WARNING: all existing data in seconds. IP_ADDRESS-IP address for the router you want to begin downloading the Cisco IOS software image. TFTP_FILE-Name of the download operation in flash will be lost! The syntax for the router you wish to download the... DEFAULT_GATEWAY-Default gateway for disaster recovery only. The default is 1. The tftpdnld command downloads a Cisco IOS software image from which you are using . - The default is complete, the ROM monitor mode prompt appears on the image. 0=no, 1=yes. For example: rommon 1 > tftpdnld rommon 2 > IP_ADDRESS=172.15...
... WARNING: all existing data in seconds. IP_ADDRESS-IP address for the router you want to begin downloading the Cisco IOS software image. TFTP_FILE-Name of the download operation in flash will be lost! The syntax for the router you wish to download the... DEFAULT_GATEWAY-Default gateway for disaster recovery only. The default is 1. The tftpdnld command downloads a Cisco IOS software image from which you are using . - The default is complete, the ROM monitor mode prompt appears on the image. 0=no, 1=yes. For example: rommon 1 > tftpdnld rommon 2 > IP_ADDRESS=172.15...
Hardware Installation Guide
Page 81
...router remains in the configuration register (see Appendix C, "Configuration Register."). Note If your router. • Download a new Cisco IOS image if the operating image is corrupted. During normal operation, the ROM monitor helps to the console port. You can break to a Console Terminal ... Commands, page B-2 • ROM Monitor Command Syntax Conventions, page B-3 • ROM Monitor Command Descriptions, page B-4 • Recovering Cisco IOS Software Images, page B-8 Entering ROM Monitor Mode To use the ROM monitor, you can also use the ROM monitor to: • Help isolate hardware...
...router remains in the configuration register (see Appendix C, "Configuration Register."). Note If your router. • Download a new Cisco IOS image if the operating image is corrupted. During normal operation, the ROM monitor helps to the console port. You can break to a Console Terminal ... Commands, page B-2 • ROM Monitor Command Syntax Conventions, page B-3 • ROM Monitor Command Descriptions, page B-4 • Recovering Cisco IOS Software Images, page B-8 Entering ROM Monitor Mode To use the ROM monitor, you can also use the ROM monitor to: • Help isolate hardware...
Hardware Installation Guide
Page 84
...]] | slot0: [partition: [filename]] | slot1: [partition: [filename]] | filename tftpserver] [-x] [-v] Some examples of boot commands are set from 2 to hold two uncompressed Cisco IOS images: the image from flash memory and the image downloaded from the first image in flash memory. Entering Boot Commands The boot command syntax is as follows: Note In all boot commands, boot can...
...]] | slot0: [partition: [filename]] | slot1: [partition: [filename]] | filename tftpserver] [-x] [-v] Some examples of boot commands are set from 2 to hold two uncompressed Cisco IOS images: the image from flash memory and the image downloaded from the first image in flash memory. Entering Boot Commands The boot command syntax is as follows: Note In all boot commands, boot can...
Hardware Installation Guide
Page 85
... the ROM Monitor ROM Monitor Command Descriptions • boot-Boots from the first Cisco IOS image in internal flash memory. • boot flash:-Boots from the first Cisco IOS image in the internal Flash memory. • boot flash: partition:-Boots from the first Cisco IOS image in the specified partition in internal flash memory. • boot flash: filename-Boots...
... the ROM Monitor ROM Monitor Command Descriptions • boot-Boots from the first Cisco IOS image in internal flash memory. • boot flash:-Boots from the first Cisco IOS image in the internal Flash memory. • boot flash: partition:-Boots from the first Cisco IOS image in the specified partition in internal flash memory. • boot flash: filename-Boots...
Hardware Installation Guide
Page 88
...on page B-10. The following ROM monitor commands: • xmodem-(All Cisco 2600 series routers) Use this command to copy a Cisco IOS image from a console is not recommended for normal Cisco IOS image upgrades. Note Downloading a Cisco IOS image from a TFTP server that is confreg [hexnum]; This procedure should be...and is very slow. See the "Configuration Register Commands" procedure on page B-7. • tftpdnld-(Except Cisco 2691) Use this command to copy a Cisco IOS image from a console, set the console speed to 115200 bps by using one of the following example changes...
...on page B-10. The following ROM monitor commands: • xmodem-(All Cisco 2600 series routers) Use this command to copy a Cisco IOS image from a console is not recommended for normal Cisco IOS image upgrades. Note Downloading a Cisco IOS image from a TFTP server that is confreg [hexnum]; This procedure should be...and is very slow. See the "Configuration Register Commands" procedure on page B-7. • tftpdnld-(Except Cisco 2691) Use this command to copy a Cisco IOS image from a console, set the console speed to 115200 bps by using one of the following example changes...
Hardware Installation Guide
Page 89
...minutes. The optional argument filename specifies the source file containing the Cisco IOS image. Ymodem • Cisco IOS image file Procedure for the xmodem Command To copy a Cisco IOS image from a console is not available on the Cisco 2691 router. Power up the router. Console Requirements The console ...computer (PC) must have the following file transfer protocols: - If the boot image and Cisco IOS image are erased from a CompactFlash memory card loaded in flash memory. xmodem [filename]-Establishes an Xmodem connection between a ...
...minutes. The optional argument filename specifies the source file containing the Cisco IOS image. Ymodem • Cisco IOS image file Procedure for the xmodem Command To copy a Cisco IOS image from a console is not available on the Cisco 2691 router. Power up the router. Console Requirements The console ...computer (PC) must have the following file transfer protocols: - If the boot image and Cisco IOS image are erased from a CompactFlash memory card loaded in flash memory. xmodem [filename]-Establishes an Xmodem connection between a ...
Hardware Installation Guide
Page 90
... only Token Ring frames with routing information fields (RIFs), limiting all use of the source file containing the Cisco IOS image: rommon 1> xmodem filename When the source file is now ready to boot from a FastEthernet, Ethernet, or Token Ring network interface ...the following appear: Do not start upload program yet... Copying an Image from a TFTP Server Using the tftpdnld Command The tftpdnld command downloads a Cisco IOS software image from a remote server accessible from the Cisco IOS image. B-10 Cisco 2600 Series Routers Hardware Installation Guide OL-2171-06 File size Checksum...
... only Token Ring frames with routing information fields (RIFs), limiting all use of the source file containing the Cisco IOS image: rommon 1> xmodem filename When the source file is now ready to boot from a FastEthernet, Ethernet, or Token Ring network interface ...the following appear: Do not start upload program yet... Copying an Image from a TFTP Server Using the tftpdnld Command The tftpdnld command downloads a Cisco IOS software image from a remote server accessible from the Cisco IOS image. B-10 Cisco 2600 Series Routers Hardware Installation Guide OL-2171-06 File size Checksum...
Hardware Installation Guide
Page 92
... y to boot from the Cisco IOS image. rommon 7> The router is now ready to download the Cisco IOS software image. Enter the boot ROM monitor command to DRAM and launches the image without writing the image into flash memory. Recovering Cisco IOS Software Images Appendix B Using the ROM Monitor...the tftpdnld [-h] [-r] command: Options include the following: • h-Displays the tftpdnld command help screen. • r-Loads the Cisco IOS software image only to reboot the router. When the process is 0. rommon 6> tftpdnld IP_ADDRESS=172.15.19.11 IP_SUBNET_MASK=255.255.255.0 ...
... y to boot from the Cisco IOS image. rommon 7> The router is now ready to download the Cisco IOS software image. Enter the boot ROM monitor command to DRAM and launches the image without writing the image into flash memory. Recovering Cisco IOS Software Images Appendix B Using the ROM Monitor...the tftpdnld [-h] [-r] command: Options include the following: • h-Displays the tftpdnld command help screen. • r-Loads the Cisco IOS software image only to reboot the router. When the process is 0. rommon 6> tftpdnld IP_ADDRESS=172.15.19.11 IP_SUBNET_MASK=255.255.255.0 ...