It so happens that you have to face tasks that you seem to be not ready to solve, but you need to get the result here and now. Sound familiar, huh? Welcome to the world of Eastern European management with an appropriate management culture.
, , , , - ASUS, CCNA. , , " ", " , , ".
, , , , , .
. : , ( ), () . .
, . , :
Ethernet , , IP -- "" ( , ). - , . - . Cisco, .
COM- , COM-USB . , "" mini-usb . , , , . , . Cisco miniusb (COM LPT) Cisco Serial (COM14) ( 14, ). Putty, , , , . Serial (Com14) Telnet (TCP23).
Putty Serial ( COM14, Baud Rate 9600). , . ROMMON โ โ , cisco IOS ( IOS, ). ROMMON, IOS โ .
, , Cisco 1941 Break ( Pause) Ctrl+Break ( , Putty special command โ break). .
rommon (ROM monitor) :
rommon 1 >
confreg reset
rommon 1 > confreg 0x2142
rommon 2 > reset
enable
en
:)
Router1>en
ยซยป :
Router1#copy startup-config running-config
, , , , telnet .
Router1#conf terminal
Router1(config)#enable secret $$$NewPassword
Router1(config)#enable password $$$NewPassword
Router1(config)#line vty 0 4
Router1(config-line)#password $$$NewPassword
Router1(config-line)#login
Router1(config-line)#exit
Router1(config)#line console 0
Router1(config-line)#password $$$NewPassword
Router1(config-line)#login
Router1(config-line)#exit
, . , .
Router1(config)# config-register 0x2102
Router1(config)#exit
:
Router1# copy running-config startup-config
Router1# reload
, . . " " ( , ?). , .
, " ". "" : GigabitEthernet0/0 GigabitEthernet0/1. WAN LAN , .
WAN, 100.200.100.202/30 100.200.100.201
LAN, , 192.168.1.1/24 192.168.1.1
:
>en
#
configure terminal, - exit:
#conf t
#exit
:
#conf t
#interface GigabitEthernet0/1
#description LAN
#ip address 192.168.1.1 255.255.255.0
#no shutdown
#exit
DHCP ( .1-.50 .200-.254).
:
#ip dhcp excluded-address 192.168.1.200 192.168.1.254
#ip dhcp excluded-address 192.168.1.1 192.168.1.50
#ip dhcp ping packets 4
:
#ip dhcp pool MY_DHCP_POOL_1
#import all
#network 192.168.1.0 255.255.255.0
#default-router 192.168.1.1
#dns-server 77.88.8.8
#lease 3
#exit
, ( )
DHCP . ping -t .
:
#conf t
#interface GigabitEthernet0/0
#ip address 100.200.100.202 255.255.255.252
#no shutdown
#exit
- 100.200.100.201 - , ( - )
#ip forward-protocol nd
#ip route 0.0.0.0 0.0.0.0 100.200.100.201
8.8.8.8
#ip domain timeout 2
#ip name-server 8.8.8.8
#ip name-server 77.88.8.8
#ip cef
ya.ru
#copy running-config startup-config
( #wr
)
, . .
, . NAT (ACL)
, (access-group), NAT, . . any ( -- any ). (access-list standard) , (access-list extended). -- , .
NAT
(, , iptables, ):
#ip access-list standard 10
#permit 192.168.1.0 0.0.0.255
#deny any
#exit
():
#interface gigabitethernet0/1
#ip nat inside
#exit
#interface gigabitethernet0/0
#ip nat outside
#exit
C : ( ):
#ip nat inside source list 10 interface gigabitethernet0/0 overload
TCPSYN:
#ip tcp synwait-time 30
โ ( , dhcp ). -- (tcp 23). http(s) ssh โ
( โ icmp)
#ip access-list extended 101
#deny tcp any any eq 23
#permit tcp any any
#permit udp any any
#permit icmp any any echo-reply
#permit icmp any any time-exceeded
#permit icmp any any unreachable
#deny ip any any
#exit
:
#int gigabitethernet0/0
#ip access-group 101 in
#exit
#copy running-config startup-config
( #wr
)
"" , . , .
. , . , , , . .
P.S.
-- show.
sh
, , shutdown
, -, , :
#no shutdown
/ :
#show running-config
show:
#show ?
:
#ip ?
:
#show ip interface brief
L2:
#show interface summary
, DHCP:
#show ip dhcp bind
:
#no [ ]
, :
#no ip default-gateway
:
#no ip access-list extended 101
:
#no ip route []
- . , :) , ACL, . .
10% !
