CCNA Security

Prácticas del módulo 2 ( Parte 1 )

Instructor: Ernesto Vilarrasa  

 

Router#conf t

Router(config)#host Gateway

Gateway(config)#service password-encryption

Gateway(config)#service timestamps log datetime msec

Gateway(config)#security passwords min-length 10

Gateway(config)#ena secret enable1234

Gateway(config)#login block-for 160 attempts 3 within 10

Gateway(config)#username admin priv 15 pass Admin12345

Gateway(config)#username remoto priv 15 pass Remoto1234

Gateway(config)#login on-success log

Gateway(config)#login on-failure log

Gateway(config)#line console 0

Gateway(config-line)#login

Gateway(config-line)#password consola12

% Password too short - must be at least 10 characters. Password not configured.

 

Gateway(config-line)#password consola123

Gateway(config-line)#exec-timeout 3 30

Gateway(config-line)#exit

Gateway(config)#ip domain-name cisco

Gateway(config)#crypto key generate rsa

How many bits in the modulus [512]: 1024

Gateway(config)#line vty 0 4

Gateway(config-line)#login local

Gateway(config-line)#transp input ssh

Gateway(config-line)#exit

Gateway(config)#logging on

Gateway(config)#logging trap debugging

Gateway(config)#logging host 10.0.0.10

Gateway(config)#int fa 0/0

Gateway(config-if)#ip address 10.0.0.1 255.255.255.0

Gateway(config-if)#no shut

Gateway(config-if)#description INSIDE

Gateway(config-if)#exit

Gateway(config)#banner motd $ Buen dia $

Gateway(config)#banner login $ WARNING !!! $

 

 

Desde el PC:

 

PC>ssh -l remoto 10.0.0.1

Open

Password:

 

 Buen dia

 

Gateway#sh clock

*0:48:15.984 UTC lun mar 1 1993

Gateway#conf t

Gateway(config)#ntp server 10.0.0.10

Gateway(config)#ntp trusted-key 1 ( opcional )

Gateway(config)#ntp authentication-key 1 md5 reloj12345 ( opcional )

Gateway(config)#^Z

Gateway#sh clock

*6:15:6.62 UTC lun abr 1 -4713

Gateway#

Gateway#sh flash

 

System flash directory:

File  Length   Name/status

  3   33591768 c1841-advipservicesk9-mz.124-15.T1.bin

  2   28282    sigdef-category.xml

  1   227537   sigdef-default.xml

[33847587 bytes used, 30168797 available, 64016384 total]

63488K bytes of processor board System flash (Read/Write)

 

 

Gateway#conf t

Gateway(config)#secure boot-image

%IOS_RESILIENCE-5-IMAGE_RESIL_ACTIVE: Successfully secured running image

Gateway(config)#^Z

Gateway#sh flash

 

System flash directory:

File  Length   Name/status

  2   28282    sigdef-category.xml

  1   227537   sigdef-default.xml

[33847587 bytes used, 30168797 available, 64016384 total]

63488K bytes of processor board System flash (Read/Write)

 

Gateway#

 

 

 

-----------------------------

(2010) Ernesto Vilarrasa