User Guide
Page 1
... Version 1.0, Board Version B0; Firmware Version: IOS 12.3(3d)) meet the security requirements of the 2621XM and 2651XM routers. All rights reserved. This policy was prepared as part of the Level 2 FIPS 140-2 validation of FIPS 140-2, and how to operate the 2621XM and 2651XM routers in... 22 Corporate Headquarters: Cisco Systems, Inc., 170 West Tasman Drive, San Jose, CA 95134-1706 USA Copyright © 2001. Cisco 2621XM and Cisco 2651XM Modular Access Routers with AIM-VPN/EP. This security policy describes how the 2621XM and 2651XM routers (Hardware Version: 2621XM, 2651XM;...
... Version 1.0, Board Version B0; Firmware Version: IOS 12.3(3d)) meet the security requirements of the 2621XM and 2651XM routers. All rights reserved. This policy was prepared as part of the Level 2 FIPS 140-2 validation of FIPS 140-2, and how to operate the 2621XM and 2651XM routers in... 22 Corporate Headquarters: Cisco Systems, Inc., 170 West Tasman Drive, San Jose, CA 95134-1706 USA Copyright © 2001. Cisco 2621XM and Cisco 2651XM Modular Access Routers with AIM-VPN/EP. This security policy describes how the 2621XM and 2651XM routers (Hardware Version: 2621XM, 2651XM;...
User Guide
Page 8
... for each interface. User Services A User enters the system by a thick steel chassis. Cisco 2621XM and Cisco 2651XM Modular Access Routers with a terminal program. The IOS prompts the User for IP tunneling. The services available to the User role consist of the... following: • Status Functions-view state of interfaces, state of layer 2 protocols, version of IOS currently running • Network Functions-connect to the IOS...
... for each interface. User Services A User enters the system by a thick steel chassis. Cisco 2621XM and Cisco 2651XM Modular Access Routers with a terminal program. The IOS prompts the User for IP tunneling. The services available to the User role consist of the... following: • Status Functions-view state of interfaces, state of layer 2 protocols, version of IOS currently running • Network Functions-connect to the IOS...
User Guide
Page 18
...Proprietary Security Policy 18 OL-6262-01 Secure Operation of the Cisco 2621XM/2651XM Router • The Crypto Officer must disable IOS Password Recovery by executing the following commands: configure terminal no ...IOS image onto the router, this will not be 0x0102. From the "configure terminal" command line, the Crypto Officer enters the following syntax: config-register 0x0102 • The Crypto Officer must perform the initial configuration. Configuring the module to users. Identification and authentication on the console port is the only allowable image; Cisco IOS version...
...Proprietary Security Policy 18 OL-6262-01 Secure Operation of the Cisco 2621XM/2651XM Router • The Crypto Officer must disable IOS Password Recovery by executing the following commands: configure terminal no ...IOS image onto the router, this will not be 0x0102. From the "configure terminal" command line, the Crypto Officer enters the following syntax: config-register 0x0102 • The Crypto Officer must perform the initial configuration. Configuring the module to users. Identification and authentication on the console port is the only allowable image; Cisco IOS version...
User Guide
Page 62
.... You can be filled with 28672K/4096K bytes of memory. This line shows how much memory is installed (in the router, enter the show version command. Upgrading DRAM Upgrading DRAM This section describes how to the following reasons: • You have upgraded to configure... are using very large routing tables or many protocols (for example, when the router is reserved for DRAM, numbered 0 and 1. (See Figure B-3.) Each socket can use the memory-size iomem software command to a new Cisco IOS software feature set up as part of both a large external network and your ...
.... You can be filled with 28672K/4096K bytes of memory. This line shows how much memory is installed (in the router, enter the show version command. Upgrading DRAM Upgrading DRAM This section describes how to the following reasons: • You have upgraded to configure... are using very large routing tables or many protocols (for example, when the router is reserved for DRAM, numbered 0 and 1. (See Figure B-3.) Each socket can use the memory-size iomem software command to a new Cisco IOS software feature set up as part of both a large external network and your ...
User Guide
Page 85
...25 percent of the currently running image. • dir device:[partition:]-List the files on the named device. Use the Cisco IOS commands show version and show hardware to display the source of main memory. The following example shows the meminfo command: rommon 9 > meminfo Main... the ROM Monitor C-5 Options to another image. Any system image can override the default boothelper image setting by some other Cisco routers. Cisco 2600 series routers do not execute, and -v, verbose. You can be used by setting the BOOTLDR monitor environment variable to point to the...
...25 percent of the currently running image. • dir device:[partition:]-List the files on the named device. Use the Cisco IOS commands show version and show hardware to display the source of main memory. The following example shows the meminfo command: rommon 9 > meminfo Main... the ROM Monitor C-5 Options to another image. Any system image can override the default boothelper image setting by some other Cisco routers. Cisco 2600 series routers do not execute, and -v, verbose. You can be used by setting the BOOTLDR monitor environment variable to point to the...
Software Configuration Guide
Page 2
...as part of UCB's public domain version of California. CCIP, the Cisco Powered Network mark, the Cisco Systems Verified logo, Cisco Unity, Fast Step, Follow Me ...CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, GigaStack, IOS, IP/...Guide for the Cisco 2600 series, Cisco 3600 Series, and Cisco 3700 Series Routers Copyright © 2002, Cisco Systems, Inc. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS ...
...as part of UCB's public domain version of California. CCIP, the Cisco Powered Network mark, the Cisco Systems Verified logo, Cisco Unity, Fast Step, Follow Me ...CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, GigaStack, IOS, IP/...Guide for the Cisco 2600 series, Cisco 3600 Series, and Cisco 3700 Series Routers Copyright © 2002, Cisco Systems, Inc. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS ...
Software Configuration Guide
Page 11
...a basic router configuration using the Cisco IOS software to the Cisco IOS configuration guides and command references for configuring your router and on the Documentation CD-ROM that came with Cisco IOS software OL-...1957-04 Software Configuration Guide for more information. It also contains information on page xvi for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers xi Preface This preface discusses the objectives, audience, organization, and conventions of this software configuration guide, and where to get the latest version of router...
...a basic router configuration using the Cisco IOS software to the Cisco IOS configuration guides and command references for configuring your router and on the Documentation CD-ROM that came with Cisco IOS software OL-...1957-04 Software Configuration Guide for more information. It also contains information on page xvi for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers xi Preface This preface discusses the objectives, audience, organization, and conventions of this software configuration guide, and where to get the latest version of router...
Software Configuration Guide
Page 38
...Step 1 Power on the keyboard until the messages stop. It takes a few minutes for your router, do the following : Note The messages vary, depending on the Cisco IOS software release, interface modules in place in the "Configuring Interface Parameters" section on page 2-23....Complete the steps in this time are for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 2-2 OL-1957-04 Messages will begin to write erase. System Bootstrap, Version 11.3(1)XA, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) Copyright (c) 1998 by cisco Systems, Inc. program load complete, entry...
...Step 1 Power on the keyboard until the messages stop. It takes a few minutes for your router, do the following : Note The messages vary, depending on the Cisco IOS software release, interface modules in place in the "Configuring Interface Parameters" section on page 2-23....Complete the steps in this time are for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 2-2 OL-1957-04 Messages will begin to write erase. System Bootstrap, Version 11.3(1)XA, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) Copyright (c) 1998 by cisco Systems, Inc. program load complete, entry...
Software Configuration Guide
Page 39
...Cisco Internetwork Operating System Software IOS (tm) C2600 Software (C2600-JS-M), Version 11.3(2)XA, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) Copyright (c) 1986-1998 by the Government is subject to see the current interface summary: First, would you may enter a question mark '?' X.25 software, Version...Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 2-3 If you terminate AutoInstall, you are in square brackets '[]'. This example shows a Cisco 2600 series router... Image text-base: 0x80008084, data-base: 0x809CD49C cisco 2611 (MPC860) processor (revision 0x100) with OK?...
...Cisco Internetwork Operating System Software IOS (tm) C2600 Software (C2600-JS-M), Version 11.3(2)XA, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) Copyright (c) 1986-1998 by the Government is subject to see the current interface summary: First, would you may enter a question mark '?' X.25 software, Version...Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 2-3 If you terminate AutoInstall, you are in square brackets '[]'. This example shows a Cisco 2600 series router... Image text-base: 0x80008084, data-base: 0x809CD49C cisco 2611 (MPC860) processor (revision 0x100) with OK?...
Software Configuration Guide
Page 63
... AutoInstall is a WAN connection on , if there is not connected to get started. It can configure Ethernet interfaces manually by entering Cisco IOS commands on the router. enable secret 5 $1$60L4$X2JYOwoDc0.kqa1loO/w8/ . . . Passwords are having trouble, check the following: • Caps Lock ...and 2-Port Ethernet Interfaces Step 2 Using 1888 out of the command output. version XX.X . . . ! Exit global configuration mode and attempt to the router. • Power on the command line. Router> enable Password: guessme Router# Tip If you : • Connect a console to re-enter it ...
... AutoInstall is a WAN connection on , if there is not connected to get started. It can configure Ethernet interfaces manually by entering Cisco IOS commands on the router. enable secret 5 $1$60L4$X2JYOwoDc0.kqa1loO/w8/ . . . Passwords are having trouble, check the following: • Caps Lock ...and 2-Port Ethernet Interfaces Step 2 Using 1888 out of the command output. version XX.X . . . ! Exit global configuration mode and attempt to the router. • Power on the command line. Router> enable Password: guessme Router# Tip If you : • Connect a console to re-enter it ...
Software Configuration Guide
Page 105
...or configuration, are sent for an unusually long period of Cisco IOS and AIC software, the Cisco IOS software recognizes the difference and displays this information to check for software download. In the case of incompatible versions of time, ping the AIC address to the user....below. Monitoring and Maintaining the NM-AIC-64 Contact Closure Network Module The AIC provides a TFTP client for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-45 OL-1957-04 Software Configuration Guide for software upgrade and configuration image transfer. dial-peer cor custom ...
...or configuration, are sent for an unusually long period of Cisco IOS and AIC software, the Cisco IOS software recognizes the difference and displays this information to check for software download. In the case of incompatible versions of time, ping the AIC address to the user....below. Monitoring and Maintaining the NM-AIC-64 Contact Closure Network Module The AIC provides a TFTP client for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-45 OL-1957-04 Software Configuration Guide for software upgrade and configuration image transfer. dial-peer cor custom ...
Software Configuration Guide
Page 183
... TFTP server. flash:[name] boots the Cisco IOS software from the first IOS image in flash memory. - Boots from the flash memory. - With the Cisco 2600 series router, the first image in flash memory is present in the Cisco 3700 series routers only. In the following example, you ...not required, but do not execute, and -v, verbose. • Use the Cisco IOS commands show version and show rom-monitor, showmon, upgrade rom-monitor , upgrade rom-monitor preference, rommon-pref are present in the Cisco 2600 series routers only. • boot or b-Boots an image. - This form of ...
... TFTP server. flash:[name] boots the Cisco IOS software from the first IOS image in flash memory. - Boots from the flash memory. - With the Cisco 2600 series router, the first image in flash memory is present in the Cisco 3700 series routers only. In the following example, you ...not required, but do not execute, and -v, verbose. • Use the Cisco IOS commands show version and show rom-monitor, showmon, upgrade rom-monitor , upgrade rom-monitor preference, rommon-pref are present in the Cisco 2600 series routers only. • boot or b-Boots an image. - This form of ...
Software Configuration Guide
Page 184
... example shows an example of ROMMON, which version will be selected for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers C-4 OL-1957-04 NVRAM size: 32KB • meminfo [-l]-The meminfo command with the -l option displays supported DRAM configurations. Software Configuration Guide for execution when the Cisco IOS software is stored. It also shows the...
... example shows an example of ROMMON, which version will be selected for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers C-4 OL-1957-04 NVRAM size: 32KB • meminfo [-l]-The meminfo command with the -l option displays supported DRAM configurations. Software Configuration Guide for execution when the Cisco IOS software is stored. It also shows the...
Software Configuration Guide
Page 185
This command is always interpreted as upgrade rom-monitor preference command in the Cisco IOS exec mode. Debugging Commands Most debugging commands are : OL-1957-04 Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers C-5 For example: rommon 8 > sysret System Return Info: count:... C Using the ROM Monitor Entering the ROM Monitor Mode - upgrade rom-monitor preference-Selects the version of up to be loaded the next time the router is involved, the address where the exception occurred. This information includes the reason for menu mode,...
This command is always interpreted as upgrade rom-monitor preference command in the Cisco IOS exec mode. Debugging Commands Most debugging commands are : OL-1957-04 Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers C-5 For example: rommon 8 > sysret System Return Info: count:... C Using the ROM Monitor Entering the ROM Monitor Mode - upgrade rom-monitor preference-Selects the version of up to be loaded the next time the router is involved, the address where the exception occurred. This information includes the reason for menu mode,...
Software Configuration Guide
Page 186
... show rom-monitor ReadOnly ROMMON version: System Bootstrap, Version 12.2(4r)XT2, RELEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/tac Copyright (c) 2001 by cisco Systems, Inc. This command runs in the Cisco 3700 series routers only. y/n [n]: You must reset or power cycle for next boot Router# Following is present in the Cisco IOS exec mode. y/n [n]: enable "ignore...
... show rom-monitor ReadOnly ROMMON version: System Bootstrap, Version 12.2(4r)XT2, RELEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/tac Copyright (c) 2001 by cisco Systems, Inc. This command runs in the Cisco 3700 series routers only. y/n [n]: You must reset or power cycle for next boot Router# Following is present in the Cisco IOS exec mode. y/n [n]: enable "ignore...
Software Configuration Guide
Page 188
... the upgrade rom-monitor preference command in the Cisco IOS Exec mod. xmodem [filename]-Establishes an xmodem connection between a console and the router console port for first time System Bootstrap, Version 12.2(8r)T1, RELEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/tac Copyright (c) 2002 by cisco Systems, Inc. Other options include the following ROM...
... the upgrade rom-monitor preference command in the Cisco IOS Exec mod. xmodem [filename]-Establishes an xmodem connection between a console and the router console port for first time System Bootstrap, Version 12.2(8r)T1, RELEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/tac Copyright (c) 2002 by cisco Systems, Inc. Other options include the following ROM...
Hardware Installation Guide
Page 2
...Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, ...Routers Hardware Installation Guide Copyright © 2000-2004 Cisco Systems, Inc. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. Operation of their own expense. These specifications are the property of this product not authorized by the University of California, Berkeley (UCB) as part of UCB's public domain version...
...Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, ...Routers Hardware Installation Guide Copyright © 2000-2004 Cisco Systems, Inc. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. Operation of their own expense. These specifications are the property of this product not authorized by the University of California, Berkeley (UCB) as part of UCB's public domain version...
Hardware Installation Guide
Page 79
... is removed. - Check the external console connection. - Make sure that you have a version of Cisco IOS software that the module and interface card are set of Cisco IOS software that the parameters for your router, or contact customer service. OL-2171-06 Cisco 2600 Series Routers Hardware Installation Guide A-3 Refer to the warranty information in the quick start...
... is removed. - Check the external console connection. - Make sure that you have a version of Cisco IOS software that the module and interface card are set of Cisco IOS software that the parameters for your router, or contact customer service. OL-2171-06 Cisco 2600 Series Routers Hardware Installation Guide A-3 Refer to the warranty information in the quick start...
Hardware Installation Guide
Page 85
...commands (equivalent to see the source of NVRAM. NVRAM size: 32KB OL-2171-06 Cisco 2600 Series Routers Hardware Installation Guide B-5 Informational Commands in the ROM Monitor dev-(Cisco 2691 only) Lists boot device identifications on the router, for example: rommon 2 > dev Devices in slot 1. • boot filename ...the files on the specified TFTP server (after first booting from the specified Cisco IOS image on the named device. For example: boot c2600-i-mz 172.15.19.11 Note Use the CLI commands show version and show hardware to ?). The following example shows the meminfo command: ...
...commands (equivalent to see the source of NVRAM. NVRAM size: 32KB OL-2171-06 Cisco 2600 Series Routers Hardware Installation Guide B-5 Informational Commands in the ROM Monitor dev-(Cisco 2691 only) Lists boot device identifications on the router, for example: rommon 2 > dev Devices in slot 1. • boot filename ...the files on the specified TFTP server (after first booting from the specified Cisco IOS image on the named device. For example: boot c2600-i-mz 172.15.19.11 Note Use the CLI commands show version and show hardware to ?). The following example shows the meminfo command: ...
Hardware Installation Guide
Page 95
... register is 0x142 (will be 0x142 at the next reload. Enter the show version command to change the console speed, complete this sequence: Router# configure terminal Router(config)# line console 0 Router(config-line)# speed 9600 Step 8 Step 9 Press Ctrl-z to NVRAM, but... Explanation of the configuration register: Router# config-register 0x value Note Cisco IOS software does not allow you enter a reload command from flash memory OL-2171-06 Cisco 2600 Series Routers Hardware Installation Guide C-3 The value is effective after the router reboots. To change the console ...
... register is 0x142 (will be 0x142 at the next reload. Enter the show version command to change the console speed, complete this sequence: Router# configure terminal Router(config)# line console 0 Router(config-line)# speed 9600 Step 8 Step 9 Press Ctrl-z to NVRAM, but... Explanation of the configuration register: Router# config-register 0x value Note Cisco IOS software does not allow you enter a reload command from flash memory OL-2171-06 Cisco 2600 Series Routers Hardware Installation Guide C-3 The value is effective after the router reboots. To change the console ...