Lab4 Configuring Basic Router Settings

Topology

Addressing Table
Device
R1

Interface

IP Address

Subnet Mask

Default Gateway

G0/0

192.168.0.1

255.255.255.0

N/A

G0/1

192.168.1.1

255.255.255.0

N/A

PC-A

NIC

192.168.1.3

255.255.255.0

192.168.1.1

PC-B

NIC

192.168.0.3

255.255.255.0

192.168.0.1

Objectives
Part 1: Set Up the Topology and Initialize Devices

Cable equipment to match the network topology.

Initialize and restart the router and switch.

Part 2: Configure Devices and Verify Connectivity

Assign static IPv4 information to the PC interfaces.

Configure basic router settings.

Verify network connectivity.

Configure the router for SSH.

Part 3: Display Router Information

Retrieve hardware and software information from the router.

Interpret the output from the startup configuration.

Interpret the output from the routing table.

Verify the status of the interfaces.

Part 4: Configure IPv6 and Verify Connectivity

Part 5: Configure Router to Allow CCP Access
Part 6: (Optional) Install and Set Up CCP on PC-A
Part 7: Configure R1 Settings Using CCP
Part 8: Use CCP Utilities

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 1 of 19

Lab Configuring Basic Router Settings

Background / Scenario
This is a comprehensive lab to review previously covered IOS router commands. In Parts 1 and 2, you will
cable the equipment and complete basic configurations and IPv4 interface settings on the router.
In Part 3, you will use SSH to connect to the router remotely and utilize IOS commands to retrieve information
from the device to answer questions about the router. In Part 4, you will configure IPv6 on the router so that
PC-B can acquire an IP address and then verify connectivity.
For review purposes, this lab provides the commands necessary for specific router configurations.
Note: The routers used with CCNA hands-on labs are Cisco 1941 Integrated Services Routers (ISRs) with
Cisco IOS Release 15.2(4)M3 (universalk9 image). The switches used are Cisco Catalyst 2960 with Cisco
IOS Release 15.0(2) (lanbasek9 image). Other routers, switches, and Cisco IOS versions can be used.
Depending on the model and Cisco IOS version, the commands available and output produced might vary
from what is shown in the labs. Refer to the Router Interface Summary Table at the end of this lab for the
correct interface identifiers.
Note: Make sure that the router and switch have been erased and have no startup configurations. Refer to
Appendix A for the procedures to initialize and reload devices.

Required Resources

1 Router (Cisco 1941 with Cisco IOS Release 15.2(4)M3 universal image or comparable)

1 Switch (Cisco 2960 with Cisco IOS Release 15.0(2) lanbasek9 image or comparable)

2 PCs (Windows 7, Vista, or XP with terminal emulation program, such as Tera Term)

Console cables to configure the Cisco IOS devices via the console ports

Ethernet cables as shown in the topology

Note: The Gigabit Ethernet interfaces on Cisco 1941 ISRs are autosensing and an Ethernet straight-through
cable can be used between the router and PC-B. If using another model Cisco router, it may be necessary to
use an Ethernet crossover cable.

Part 1: Set Up the Topology and Initialize Devices

Step 1: Cable the network as shown in the topology.
a. Attach the devices as shown in the topology diagram, and cable as necessary.
b. Power on all the devices in the topology.

Step 2: Initialize and reload the router and switch.

Note: Appendix A details the steps to initialize and reload the devices.

Part 2: Configure Devices and Verify Connectivity

Step 1: Configure the PC interfaces.
a. Configure the IP address, subnet mask, and default gateway settings on PC-A.
b. Configure the IP address, subnet mask, and default gateway settings on PC-B.

Step 2: Configure the router.

a. Console into the router and enable privileged EXEC mode.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 2 of 19

Lab Configuring Basic Router Settings

Router> enable
Router#
b. Enter into global configuration mode.
Router# config terminal
Router(config)#
c.

Assign a device name to the router.

Router(config)# hostname R1

d. Disable DNS lookup to prevent the router from attempting to translate incorrectly entered commands as
though they were hostnames.
R1(config)# no ip domain-lookup
e. Require that a minimum of 10 characters be used for all passwords.
R1(config)# security passwords min-length 10
Besides setting a minimum length, list other ways to strengthen passwords.
____________________________________________________________________________________
f.

Assign cisco12345 as the privileged EXEC encrypted password.

R1(config)# enable secret cisco12345

g. Assign ciscoconpass as the console password, establish a timeout, enable login, and add the logging
synchronous command. The logging synchronous command synchronizes debug and Cisco IOS
software output and prevents these messages from interrupting your keyboard input.
R1(config)# line
R1(config-line)#
R1(config-line)#
R1(config-line)#
R1(config-line)#
R1(config-line)#
R1(config)#

con 0
password ciscoconpass
exec-timeout 5 0
login
logging synchronous
exit

For the exec-timeout command, what do the 5 and 0 represent?

h. Assign ciscovtypass as the vty password, establish a timeout, enable login, and add the logging
synchronous command.
R1(config)# line
R1(config-line)#
R1(config-line)#
R1(config-line)#
R1(config-line)#
R1(config-line)#
R1(config)#
i.

vty 0 4
password ciscovtypass
exec-timeout 5 0
login
logging synchronous
exit

Encrypt the clear text passwords.

R1(config)# service password-encryption

j.

Create a banner that warns anyone accessing the device that unauthorized access is prohibited.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 3 of 19

Lab Configuring Basic Router Settings

R1(config)# banner motd #Unauthorized access prohibited!#
k.

Configure an IP address and interface description. Activate both interfaces on the router.
R1(config)# int g0/0
R1(config-if)# description Connection
R1(config-if)# ip address 192.168.0.1
R1(config-if)# no shutdown
R1(config-if)# int g0/1
R1(config-if)# description Connection
R1(config-if)# ip address 192.168.1.1
R1(config-if)# no shutdown
R1(config-if)# exit
R1(config)# exit
R1#

l.

to PC-B
255.255.255.0

to S1
255.255.255.0

Set the clock on the router; for example:

R1# clock set 17:00:00 18 Feb 2013

m. Save the running configuration to the startup configuration file.

R1# copy running-config startup-config
Destination filename [startup-config]?
Building configuration...
[OK]

R1#
What would be the result of reloading the router prior to completing the copy running-config startupconfig command?
____________________________________________________________________________________
____________________________________________________________________________________

Step 3: Verify network connectivity.

a. Provide a screenshot of a successful ping from PC-A to PC-B.

Note: It may be necessary to disable the PCs firewall.

After completing this series of commands, what type of remote access could be used to access R1?

b. Remotely access R1 from PC-A using the Tera Term Telnet client.
Open Tera Term and enter the G0/1 interface IP address of R1 in the Host: field of the Tera Term: New
Connection window. Ensure that the Telnet radio button is selected and then click OK to connect to the
router.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 4 of 19

Lab Configuring Basic Router Settings

Why is the Telnet protocol considered to be a security risk?

Step 4: Configure the router for SSH access.

a. Enable SSH connections and create a user in the local database of the router.
R1# configure terminal
R1(config)# ip domain-name CCNA-lab.com
R1(config)# username admin privilege 15 secret adminpass1
R1(config)# line vty 0 4
R1(config-line)# transport input ssh
R1(config-line)# login local
R1(config-line)# exit
R1(config)# crypto key generate rsa modulus 1024
R1(config)# exit
b. Remotely access R1 from PC-A using the Tera Term SSH client.
Open Tera Term and enter the G0/1 interface IP address of R1 in the Host: field of the Tera Term: New
Connection window. Ensure that the SSH radio button is selected and then click OK to connect to the
router.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 5 of 19

Lab Configuring Basic Router Settings

Part 3: Display Router Information

In Part 3, you will use show commands from an SSH session to retrieve information from the router.

Step 1: Establish an SSH session to R1.

Using Tera Term on PC-B, open an SSH session to R1 at IP address 192.168.0.1 and log in as admin with
the password adminpass1.

Step 2: Retrieve important hardware and software information.

a. Use the show version command to answer questions about the router.
What is the name of the IOS image that the router is running?
How much non-volatile random-access memory (NVRAM) does the router have?
How much Flash memory does the router have?
b. The show commands often provide multiple screens of outputs. Filtering the output allows a user to
display certain sections of the output. To enable the filtering command, enter a pipe (|) character after a
show command, followed by a filtering parameter and a filtering expression. You can match the output to
the filtering statement by using the include keyword to display all lines from the output that contain the
filtering expression. Filter the show version command, provide a screenshot of show version | include
register to answer the following question.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 6 of 19

Lab Configuring Basic Router Settings

What is the boot process for the router on the next reload?

Step 3: Display the startup configuration.

Use the show startup-config command on the router to answer the following questions.
How are passwords presented in the output?
Provide a screenshot of the show startup-config | begin vty command.

Step 4: Display the routing table on the router.

Provide a screenshot of the show ip route command on the router to answer the following questions.

What code is used in the routing table to indicate a directly connected network?

How many route entries are coded with a C code in the routing table?

Step 5: Display a summary list of the interfaces on the router.

Provide a screenshot of the show ip interface brief command on the router to answer the following question.

What command changed the status of the Gigabit Ethernet ports from administratively down to up?

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 7 of 19

Lab Configuring Basic Router Settings

Part 4: Configure IPv6 and Verify Connectivity

Step 1: Assign IPv6 addresses to R1 G0/0 and enable IPv6 routing.
Note: Assigning an IPv6 address in addition to an IPv4 address on an interface is known as dual stacking,
because both the IPv4 and IPv6 protocol stacks are active. By enabling IPv6 unicast routing on R1, PC-B
receives the R1 G0/0 IPv6 network prefix and can autoconfigure its IPv6 address and its default gateway.
a. Assign an IPv6 global unicast address to interface G0/0, assign the link-local address in addition to the
unicast address on the interface, and enable IPv6 routing.
R1# configure terminal
R1(config)# interface g0/0
R1(config-if)# ipv6 address 2001:db8:acad:a::1/64
R1(config-if)# ipv6 address fe80::1 link-local
R1(config-if)# no shutdown
R1(config-if)# exit
R1(config)# ipv6 unicast-routing
R1(config)# exit
b. Provide a screenshot of the show ipv6 int brief command to verify IPv6 settings on R1.

If no IPv6 address is assigned to G0/1, why is it listed as [up/up]?

c.

Provide a screenshot of the ipconfig command on PC-B to examine the IPv6 configuration.

What is the IPv6 address assigned to PC-B?

What is the default gateway assigned to PC-B?
Provide a screenshot of a ping from PC-B to the R1 default gateway link local address.

Provide a screenshot of a ping from PC-B to the R1 IPv6 unicast address 2001:db8:acad:a::1.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 8 of 19

Lab Configuring Basic Router Settings

Part 1: Configure the Router to Allow CCP Access

In Part 5, you will set up the router to allow CCP access by enabling HTTP and HTTPS server services. You
will also enable HTTP authentication to use the local database.

Step 1: Enable HTTP and HTTPS server services on the router.

R1(config)# ip http server
R1(config)# ip http secure-server

Step 2: Enable HTTP authentication to use the local database on the router.
R1(config)# ip http authentication local

Step 3: Configure the router for CCP access.

Assign a user in the router local database for accessing CCP using username admin and password
adminpass1.
R1(config)# username admin privilege 15 secret adminpass1

Part 2: Use CCP on PC-A

Step 1: Create or manage communities.

a. On PC-A, start CCP. (Double-click the CCP desktop icon or click Start > Cisco Configuration
Professional.)
b. If you receive a security warning message prompting to allow the CiscoCP.exe program to make changes
to the computer, click Yes.

c.

When CCP starts, the Select / Mange Community dialog box displays. Enter the IP address for R1 G0/1,
and the username admin and password adminpass1 that you added to the local database during the
router configuration in Part 2. Click OK.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 9 of 19

Lab Configuring Basic Router Settings

d. In the Community Information window, click Discover.

If you have configured the router correctly, the Discovery Status changes from Not discovered to
Discovered, and R1 appears in the Router Hostname column.
Note: If there is a problem with your configuration, you will see a Discovery failed status. Click
Discovery Details to determine why the discovery process failed and then troubleshoot the problem.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 10 of 19

Lab Configuring Basic Router Settings

Part 3: Configure R1 Settings Using CCP

In Part 7, you will use CCP to display information about R1, configure interface G0/0, set the date and time,
add a user to the local database, and change your vty settings.

Step 1: View the status of the interfaces on R1.

a. On the CCP toolbar, click Monitor.

b. In the left navigation pane, click Router > Overview to display the Monitor Overview screen in the right
content pane.

c.

Use the up and down arrows to the right of the interface list to scroll through the list of interfaces for the
router.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 11 of 19

Lab Configuring Basic Router Settings

Step 2: Set the date and time on the router.

a. In the left navigation pane, select Router > Time > Date and Time to display the Additional Tasks >
Date/Time screen in the right content pane. Click Change Settings.

b. In the Date and Time Properties window, edit the Date, Time, and Time Zone. Click Apply.

c.

In the Routers clock configured window, click OK. In the Date and Time Properties window, click Close.

Step 3: Add a new user account to the local database.

a. In the left navigation pane, select Router > Router Access > User Accounts/View to display the
Additional Tasks > User Accounts/View screen in the content pane on the right. Click the Add button.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 12 of 19

Lab Configuring Basic Router Settings

b. Enter ccpadmin in the Username: field. Enter ciscoccppass in the New Password: and Confirm New
Password: fields. Select 15 in the Privilege Level: drop-down list. Click OK to add this user to the local
database.

c.

In the Deliver Configuration to Device window, click the Save running config to devices startup config
check box, and then click Deliver.

d. Review the information in the Commands Delivery Status window, and click OK. The new user account
should now appear in the content pane on the right.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 13 of 19

Lab Configuring Basic Router Settings

Step 4: Edit vty line settings.

a. In the left navigation pane, select Router Access > VTY to display the Additional Tasks > VTYs screen in
the content pane on the right. Click Edit.

b. In the Edit VTY Lines window, change the Time out: field to 15 minutes. Click the Input Protocol > Telnet
check box. Review the other options available. Also select the SSH checkbox. Then click OK.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 14 of 19

Lab Configuring Basic Router Settings

c.

Review the commands that will be delivered to the running configuration on the Deliver Configuration to
Device screen and click Deliver. In the Commands Delivery Status window, click OK. The content pane
on the right should reflect the changes to the EXEC timeout value.

Part 4: Use CCP Utilities

In Part 8, you will use the Utilities pane to save the routers running configuration to the startup configuration.
The Ping utility will be used to test network connectivity, and the View utility will be used to show the routers
running configuration. Finally, you will close CCP.

Step 1: Save the routers running configuration to the startup configuration.

a. At the bottom of the left navigation pane, locate the Utilities pane. Click Write to Startup Configuration.

b. The content pane displays a confirmation screen. Click Confirm. An Information window displays, letting
you know that the configuration was saved successfully. Click OK.

Step 2: Use the Ping utility to test connectivity to PC-B.

a. In the Utilities pane, click Ping and Traceroute to display the Ping and Traceroute screen in the content
pane. Enter 192.168.0.3 in the Destination*: field and then click Ping. Use the scrollbar to the right of the
results box to view the results of your ping.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 15 of 19

Lab Configuring Basic Router Settings

Provide a screenshot similar to the one above.

Step 3: Use the View utility to show the running configuration for the router.
a. In the Utilities pane, click View > IOS Show Commands to display the IOS Show Commands screen in
the content pane.

b. Select show run from the drop-down list and click Show. The routers running configuration is displayed
in the content pane.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 16 of 19

Lab Configuring Basic Router Settings

Provide a screenshot similar to the one above.

Step 4: Close CCP.

Close the CCP window. When a Windows Internet Explorer confirmation window displays, click Leave this
page.

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 17 of 19

Lab Configuring Basic Router Settings

Appendix A: Initializing and Reloading a Router and Switch

Step 1: Initialize and reload the router.
a. Console into the router and enable privileged EXEC mode.
Router> enable
Router#
b. Type the erase startup-config command to remove the startup configuration from NVRAM.
Router# erase startup-config
Erasing the nvram filesystem will remove all configuration files! Continue? [confirm]
[OK]
Erase of nvram: complete
Router#

c.

Issue the reload command to remove an old configuration from memory. When prompted to Proceed
with reload, press Enter to confirm the reload. (Pressing any other key aborts the reload.)
Router# reload
Proceed with reload? [confirm]
*Nov 29 18:28:09.923: %SYS-5-RELOAD: Reload requested by console. Reload Reason:
Reload Command.

Note: You may be prompted to save the running configuration prior to reloading the router. Type no and
press Enter.
System configuration has been modified. Save? [yes/no]: no

d. After the router reloads, you are prompted to enter the initial configuration dialog. Enter no and press
Enter.
Would you like to enter the initial configuration dialog? [yes/no]: no

e. You are prompted to terminate autoinstall. Type yes and then press Enter.
Would you like to terminate autoinstall? [yes]: yes

Step 2: Initialize and reload the switch.

a. Console into the switch and enter privileged EXEC mode.
Switch> enable
Switch#
b. Use the show flash command to determine if any VLANs have been created on the switch.
Switch# show flash
Directory of flash:/
2
3
4
5
6

-rwx
-rwx
-rwx
-rwx
-rwx

1919
1632
13336
11607161
616

Mar
Mar
Mar
Mar
Mar

1
1
1
1
1

1993
1993
1993
1993
1993

00:06:33
00:06:33
00:06:33
02:37:06
00:07:13

+00:00
+00:00
+00:00
+00:00
+00:00

private-config.text
config.text
multiple-fs
c2960-lanbasek9-mz.150-2.SE.bin
vlan.dat

32514048 bytes total (20886528 bytes free)

Switch#

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 18 of 19

Lab Configuring Basic Router Settings

c.

If the vlan.dat file was found in flash, then delete this file.
Switch# delete vlan.dat
Delete filename [vlan.dat]?

d. You are prompted to verify the filename. At this point, you can change the filename or just press Enter if
you have entered the name correctly.
e. You are prompted to confirm deleting this file. Press Enter to confirm deletion. (Pressing any other key
aborts the deletion.)
Delete flash:/vlan.dat? [confirm]
Switch#

f.

Use the erase startup-config command to erase the startup configuration file from NVRAM. You are
prompted to confirm removing the configuration file. Press Enter to confirm to erase this file. (Pressing
any other key aborts the operation.)
Switch# erase startup-config
Erasing the nvram filesystem will remove all configuration files! Continue? [confirm]
[OK]
Erase of nvram: complete
Switch#

g. Reload the switch to remove any old configuration information from memory. You are prompted to confirm
reloading the switch. Press Enter to proceed with the reload. (Pressing any other key aborts the reload.)
Switch# reload
Proceed with reload? [confirm]

Note: You may be prompted to save the running configuration prior to reloading the switch. Type no and
press Enter.
System configuration has been modified. Save? [yes/no]: no

h. After the switch reloads, you should be prompted to enter the initial configuration dialog. Type no and
press Enter.
Would you like to enter the initial configuration dialog? [yes/no]: no

Switch>

2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.

Page 19 of 19