Security Configs
If you can't read please download the document
-
Upload
wilburroberts20034852 -
Category
Documents
-
view
215 -
download
1
description
configuration for cisco security on routers
Transcript of Security Configs
R1Building configuration...Current configuration : 1444 bytes!version 12.4no service timestamps log datetime msecno service timestamps debug datetime msecservice password-encryption!hostname R1!login block-for 300 attempts 2 within 120!!enable secret 5 $1$mERr$NY2X7xBCS5tAN/W1NAs2c1!!!!!aaa new-model!aaa authentication login LOCAL_AUTH local !!!!!!!no ip cefno ipv6 cef!!!username ccna password 7 0822455D0A1606141C0A!!!!!!!!no ip domain-lookup!!spanning-tree mode pvst!!!!!key chain RIP_KEY key 1 key-string cisco!interface FastEthernet0/0 no ip address duplex auto speed auto shutdown!interface FastEthernet0/1 ip address 192.168.10.1 255.255.255.0 duplex auto speed auto!interface Serial0/0/0 ip address 10.1.1.1 255.255.255.252 clock rate 2000000!interface Serial0/0/1 no ip address clock rate 2000000 shutdown!interface Vlan1 no ip address shutdown!router rip version 2 passive-interface default no passive-interface Serial0/0/0 network 10.0.0.0 network 192.168.10.0 no auto-summary!ip classless!ip flow-export version 9!!ip access-list extended sl_def_acl deny tcp any any eq telnet deny tcp any any eq www deny tcp any any eq 22 permit tcp any any eq 22!banner motd ^CNO ILLEGAL ENTRY YOU WILL BE PROSECUTED TO THE FULL EXTENT OF THE LAW^C!!!!line con 0 exec-timeout 5 0 login authentication LOCAL_AUTH!line aux 0!line vty 0 4 exec-timeout 5 0 login authentication LOCAL_AUTH!!!endR2Building configuration...Current configuration : 1071 bytes!version 12.4no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname R2!!!!!!!!no ip cefno ipv6 cef!!!!!!!!!!no ip domain-lookup!!spanning-tree mode pvst!!!!!key chain RIP_KEY key 1 key-string cisco!interface FastEthernet0/0 no ip address duplex auto speed auto shutdown!interface FastEthernet0/1 ip address 192.168.20.1 255.255.255.0 duplex auto speed auto!interface Serial0/0/0 ip address 10.1.1.2 255.255.255.252!interface Serial0/0/1 ip address 10.2.2.1 255.255.255.252 clock rate 2000000!interface Serial0/1/0 ip address 209.165.200.225 255.255.255.224 clock rate 500000!interface Vlan1 no ip address shutdown!router rip version 2 passive-interface default no passive-interface Serial0/0/0 no passive-interface Serial0/0/1 network 10.0.0.0 network 192.168.20.0 network 209.165.200.0 no auto-summary!ip classless!ip flow-export version 9!!!banner motd ^C^C!!!!line con 0!line aux 0!line vty 0 4 login!!!end
