User Guide
Page 7
... of the alphanumeric characters drastically decreases the odds of the following: • Configure the router-define network interfaces and settings, create command aliases, set the protocols the router will support, enable interfaces and network services, set system date and time, and load ...authentication information. See the "Secure Operation of the Cisco 2621XM/2651XM Router" section on page 17, for the configuration and maintenance of the router,...
... of the alphanumeric characters drastically decreases the odds of the following: • Configure the router-define network interfaces and settings, create command aliases, set the protocols the router will support, enable interfaces and network services, set system date and time, and load ...authentication information. See the "Secure Operation of the Cisco 2621XM/2651XM Router" section on page 17, for the configuration and maintenance of the router,...
User Guide
Page 11
... or the IP address. After above expiration happens and before a new public key structure is zeroized after if no crypto isakmp key" command zeroizes it is deleted. Zeroized when IPSec session is the same as mentioned here. Zeroized using the same mechanism as above DRAM (plaintext...) The IKE session encrypt key. This key does not need to validate signatures within IKE. NVRAM (plaintext) Cisco 2621XM and Cisco 2651XM Modular Access Routers with AIM-VPN/EP FIPS 140-2 Non-Proprietary Security Policy OL-6262-01 11 These keys are expired either when CRL ...
... or the IP address. After above expiration happens and before a new public key structure is zeroized after if no crypto isakmp key" command zeroizes it is deleted. Zeroized when IPSec session is the same as mentioned here. Zeroized using the same mechanism as above DRAM (plaintext...) The IKE session encrypt key. This key does not need to validate signatures within IKE. NVRAM (plaintext) Cisco 2621XM and Cisco 2651XM Modular Access Routers with AIM-VPN/EP FIPS 140-2 Non-Proprietary Security Policy OL-6262-01 11 These keys are expired either when CRL ...
User Guide
Page 12
... (plaintext) The RADIUS shared secret. NVRAM (plaintext), DRAM (plaintext) The TACACS+ shared secret. NVRAM (plaintext), DRAM (plaintext) Cisco 2621XM and Cisco 2651XM Modular Access Routers with a new password. (plaintext) The ciphertext password of the RADIUS shared secret set command. This shared secret is zeroized as an authentication key. This key can turn off the...
... (plaintext) The RADIUS shared secret. NVRAM (plaintext), DRAM (plaintext) The TACACS+ shared secret. NVRAM (plaintext), DRAM (plaintext) Cisco 2621XM and Cisco 2651XM Modular Access Routers with a new password. (plaintext) The ciphertext password of the RADIUS shared secret set command. This shared secret is zeroized as an authentication key. This key can turn off the...
User Guide
Page 18
...privilege level 1 (the default). • The Crypto Officer shall not assign a command to any IOS image onto the router, this will not be possible. esp-des Cisco 2621XM and Cisco 2651XM Modular Access Routers with AIM-VPN/EP FIPS 140-2 Non-Proprietary Security Policy 18 OL-6262-01... management method that are allowed in a FIPS 140-2 configuration: - Secure Operation of the Cisco 2621XM/2651XM Router • The Crypto Officer must disable IOS Password Recovery by executing the following commands: configure terminal no other than its default. • The Crypto Officer may be loaded....
...privilege level 1 (the default). • The Crypto Officer shall not assign a command to any IOS image onto the router, this will not be possible. esp-des Cisco 2621XM and Cisco 2651XM Modular Access Routers with AIM-VPN/EP FIPS 140-2 Non-Proprietary Security Policy 18 OL-6262-01... management method that are allowed in a FIPS 140-2 configuration: - Secure Operation of the Cisco 2621XM/2651XM Router • The Crypto Officer must disable IOS Password Recovery by executing the following commands: configure terminal no other than its default. • The Crypto Officer may be loaded....
Software Configuration Guide
Page 4
... Software Basics 1-13 Getting Help 1-13 Understanding Command Modes 1-13 Undoing a Command or Feature 1-14 Saving Configuration Changes 1-15 Upgrading to a New Cisco IOS Release 1-15 Where to Go Next 1-15 2 C H A P T E R Using the Setup Command Facility 2-1 Before Starting Your Router 2-1 Using the setup Command Facility 2-2 Configuring Global Parameters 2-2 Configuring Interface Parameters 2-5 Ethernet Interface Configuration 2-6 FastEthernet Interface...
... Software Basics 1-13 Getting Help 1-13 Understanding Command Modes 1-13 Undoing a Command or Feature 1-14 Saving Configuration Changes 1-15 Upgrading to a New Cisco IOS Release 1-15 Where to Go Next 1-15 2 C H A P T E R Using the Setup Command Facility 2-1 Before Starting Your Router 2-1 Using the setup Command Facility 2-2 Configuring Global Parameters 2-2 Configuring Interface Parameters 2-5 Ethernet Interface Configuration 2-6 FastEthernet Interface...
Software Configuration Guide
Page 5
Contents 3 C H A P T E R OL-1957-04 Where to Go Next 2-24 Configuring with the Command-Line Interface 3-1 Configuring the Host Name and Password 3-2 Verifying the Host Name and Password 3-2 Configuring 1-Port and 2-Port Ethernet Interfaces 3-3 Configuring Fast Ethernet Interfaces 3-4 Configuring ... 3-30 Prerequisites 3-31 Configuration Tasks 3-31 Configuring the ADSL Port on the ADSL WAN Interface Card 3-31 Verifying ATM Configuration 3-32 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers v
Contents 3 C H A P T E R OL-1957-04 Where to Go Next 2-24 Configuring with the Command-Line Interface 3-1 Configuring the Host Name and Password 3-2 Verifying the Host Name and Password 3-2 Configuring 1-Port and 2-Port Ethernet Interfaces 3-3 Configuring Fast Ethernet Interfaces 3-4 Configuring ... 3-30 Prerequisites 3-31 Configuration Tasks 3-31 Configuring the ADSL Port on the ADSL WAN Interface Card 3-31 Verifying ATM Configuration 3-32 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers v
Software Configuration Guide
Page 9
C A P P E N D I X INDEX B-12 Using the ROM Monitor C-1 Entering the ROM Monitor Mode C-1 Configure C-1 Verify C-1 ROM Monitor Commands C-2 ROM Monitor Syntax Conventions C-3 Command Descriptions C-3 Debugging Commands C-5 Configuration Register Commands C-5 Using the show rom-monitor Command C-6 Using the upgrade rom-monitor Command C-7 Procedures for Recovering Boot and System Images C-8 Using the xmodem Command C-8 Using the tftpdnld Command C-9 Contents OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers ix
C A P P E N D I X INDEX B-12 Using the ROM Monitor C-1 Entering the ROM Monitor Mode C-1 Configure C-1 Verify C-1 ROM Monitor Commands C-2 ROM Monitor Syntax Conventions C-3 Command Descriptions C-3 Debugging Commands C-5 Configuration Register Commands C-5 Using the show rom-monitor Command C-6 Using the upgrade rom-monitor Command C-7 Procedures for Recovering Boot and System Images C-8 Using the xmodem Command C-8 Using the tftpdnld Command C-9 Contents OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers ix
Software Configuration Guide
Page 11
... installing and configuring internetworking equipment, and who will be responsible for configuring your router and on Cisco.com. Objectives After installing the router, use this guide to complete a basic router configuration using the Cisco IOS software to the Cisco IOS configuration guides and command references for detailed configuration instructions. These publications are available on the Documentation CD...
... installing and configuring internetworking equipment, and who will be responsible for configuring your router and on Cisco.com. Objectives After installing the router, use this guide to complete a basic router configuration using the Cisco IOS software to the Cisco IOS configuration guides and command references for detailed configuration instructions. These publications are available on the Documentation CD...
Software Configuration Guide
Page 12
... the Cisco IOS software command-line interface (CLI) to Facility configure your router. Configuration Examples Provides configuration examples of information displayed on the screen. Document Conventions This publication uses the following conventions to system prompts appear in the Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series routers. You must enter. Examples of the Cisco 2600 series, Cisco...
... the Cisco IOS software command-line interface (CLI) to Facility configure your router. Configuration Examples Provides configuration examples of information displayed on the screen. Document Conventions This publication uses the following conventions to system prompts appear in the Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series routers. You must enter. Examples of the Cisco 2600 series, Cisco...
Software Configuration Guide
Page 15
...-Area Networking Configuration Guide • Cisco IOS IP Configuration Guide Release 12.2 • Cisco IOS Wide-Area Networking Command Reference • Debug Command Reference • System Error Messages • Cisco IOS Software Command Summary • Cisco IOS Release notes for your release OL-1957-04 Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers xv
...-Area Networking Configuration Guide • Cisco IOS IP Configuration Guide Release 12.2 • Cisco IOS Wide-Area Networking Command Reference • Debug Command Reference • System Error Messages • Cisco IOS Software Command Summary • Cisco IOS Release notes for your release OL-1957-04 Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers xv
Software Configuration Guide
Page 16
...: • http://www.cisco.com • http://www-china.cisco.com • http://www-europe.cisco.com Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers xvi OL-1957-04 Obtaining... Documentation The following sections provide sources for voice traffic, refer to the Voice over IP Configuration document • To configure DLAMs, refer to the 1-Port and 2-Port ISDN-PRI Network Module Configuration Note. For a reference of security-related commands...
...: • http://www.cisco.com • http://www-china.cisco.com • http://www-europe.cisco.com Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers xvi OL-1957-04 Obtaining... Documentation The following sections provide sources for voice traffic, refer to the Voice over IP Configuration document • To configure DLAMs, refer to the 1-Port and 2-Port ISDN-PRI Network Module Configuration Note. For a reference of security-related commands...
Software Configuration Guide
Page 21
... numbering and what you should be familiar before you begin to use the Cisco IOS software commands. Cisco 2600 Series Interface Numbering Each network interface on each model that are available in the Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series routers. Understanding Interface Numbering This section contains information with which you should do before...
... numbering and what you should be familiar before you begin to use the Cisco IOS software commands. Cisco 2600 Series Interface Numbering Each network interface on each model that are available in the Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series routers. Understanding Interface Numbering This section contains information with which you should do before...
Software Configuration Guide
Page 33
... to use the CLI. OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-13 Understanding Command Modes The Cisco IOS user interface is divided into different modes. Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Understanding Cisco IOS Software Basics • 1/0/1-Chassis slot 1/Voice module slot 0/Voice interface...
... to use the CLI. OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-13 Understanding Command Modes The Cisco IOS user interface is divided into different modes. Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Understanding Cisco IOS Software Basics • 1/0/1-Chassis slot 1/Voice module slot 0/Voice interface...
Software Configuration Guide
Page 34
... or disable a feature, enter the keyword no ip routing. 1-14 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers OL-1957-04 To exit to privileged EXEC mode, press Ctrl-z. Undoing a Command or Feature If you want to undo a command you to global configuration mode, use the exit or end...
... or disable a feature, enter the keyword no ip routing. 1-14 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers OL-1957-04 To exit to privileged EXEC mode, press Ctrl-z. Undoing a Command or Feature If you want to undo a command you to global configuration mode, use the exit or end...
Software Configuration Guide
Page 35
...Cards." It might be in the wrong command mode or using the CLI. Where to Go Next Now that : • You can begin configuring the router. For example: Router# copy running -config startup-config command to save your configuration changes to enter the... copy running -config startup-config Building configuration... OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-15
...Cards." It might be in the wrong command mode or using the CLI. Where to Go Next Now that : • You can begin configuring the router. For example: Router# copy running -config startup-config command to save your configuration changes to enter the... copy running -config startup-config Building configuration... OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-15
Software Configuration Guide
Page 37
..., AppleTalk, IP, Novell IPX, and so on ) OL-1957-04 Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 2-1 The facility steps you are included: • Before Starting Your Router, page 2-1 • Using the setup Command Facility, page 2-2 • Configuring Global Parameters, page 2-2 • Configuring Interface Parameters, page 2-5 • Completing...
..., AppleTalk, IP, Novell IPX, and so on ) OL-1957-04 Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 2-1 The facility steps you are included: • Before Starting Your Router, page 2-1 • Using the setup Command Facility, page 2-2 • Configuring Global Parameters, page 2-2 • Configuring Interface Parameters, page 2-5 • Completing...
Software Configuration Guide
Page 38
...Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 2-2 OL-1957-04 The power switch is on page 2-5 that apply to write erase. Configuring Global Parameters Step 1 Power on your terminal emulation program window. Any keys pressed during this section are interpreted as the first command...at the lower right corner, near the power cord. Using the setup Command Facility Chapter 2 Using the Setup Command Facility Using the setup Command Facility The setup command facility displays from your router, and feature set you can exit and run the facility again. The...
...Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 2-2 OL-1957-04 The power switch is on page 2-5 that apply to write erase. Configuring Global Parameters Step 1 Power on your terminal emulation program window. Any keys pressed during this section are interpreted as the first command...at the lower right corner, near the power cord. Using the setup Command Facility Chapter 2 Using the Setup Command Facility Using the setup Command Facility The setup command facility displays from your router, and feature set you can exit and run the facility again. The...
Software Configuration Guide
Page 65
...WAN Interface Cards You can configure the serial interfaces on the command line. You must have previously enabled these protocols as required for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-5 When you finish configuring interfaces, return to global configuration ... Internetwork Packet Exchange (IPX) routing. Step 8 Router(config)# Ctrl-z Router# Repeat Step 4 through Step 6 if your asynchronous/synchronous serial network module or WAN interface card manually by entering Cisco IOS commands on your router has more than one per line. Enter the password...
...WAN Interface Cards You can configure the serial interfaces on the command line. You must have previously enabled these protocols as required for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-5 When you finish configuring interfaces, return to global configuration ... Internetwork Packet Exchange (IPX) routing. Step 8 Router(config)# Ctrl-z Router# Repeat Step 4 through Step 6 if your asynchronous/synchronous serial network module or WAN interface card manually by entering Cisco IOS commands on your router has more than one per line. Enter the password...
Software Configuration Guide
Page 66
.... See Table 3-2 through Table 3-5 for a list of clock rate settings for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-6 OL-1957-04 Step 2 Router# configure terminal Enter global configuration mode. Enter this example, AppleTalk and IPX are ...you : • Connect a console to Router(config)#. Step 6 Router(config-if)# appletalk static cable-range 5-5 Router(config-if)# appletalk zone ZZSerial Router(config-if)# ipx network B003 Configure routing protocols on the interface. Command Purpose Step 1 Router> enable Enter enable mode. You have ...
.... See Table 3-2 through Table 3-5 for a list of clock rate settings for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-6 OL-1957-04 Step 2 Router# configure terminal Enter global configuration mode. Enter this example, AppleTalk and IPX are ...you : • Connect a console to Router(config)#. Step 6 Router(config-if)# appletalk static cable-range 5-5 Router(config-if)# appletalk zone ZZSerial Router(config-if)# ipx network B003 Configure routing protocols on the interface. Command Purpose Step 1 Router> enable Enter enable mode. You have ...
Software Configuration Guide
Page 69
... a console to a remote Transmission Control Protocol/Internet Protocol (TCP/IP) host. OL-1957-04 Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-9 Password: password Router# You have Enter configuration commands, one per second) 64000 72000 115200 128000 Configuring 16-Port and 32-Port Asynchronous Network Modules You can take...
... a console to a remote Transmission Control Protocol/Internet Protocol (TCP/IP) host. OL-1957-04 Software Configuration Guide for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 3-9 Password: password Router# You have Enter configuration commands, one per second) 64000 72000 115200 128000 Configuring 16-Port and 32-Port Asynchronous Network Modules You can take...