router dhcp and dns listen
# 禁用AutoInstall的报错信息 Router>enable Router#configure terminal Router(config)#no service config Router(config)#tftp-server nvram:startup-config Router(config)#exit Router#write Router#reload # 配置内网接口为静态IP地址 Router>enable Router#configure terminal Router(config)#ip route 0.0.0.0 0.0.0.0 192.168.195.2 Router(config)#ip dns server Router(config)#ip domain-lookup Router(config)#ip name-server 192.168.195.2 Router(config)#ip host lsgx-ubuntu.com 192.168.195.10 Router(config)#ip host pha.lsgx-ubuntu.com 192.168.195.10 Router(config)#interface ethernet 0/0 Router(config-if)#ip address dhcp Router(config-if)#ip nat outside Router(config-if)#exit Router(config)#interface ethernet 0/1 Router(config-if)#ip address 192.168.185.11 255.255.255.0 Router(config-if)#ip nat inside Router(config-if)#exit Router(config)#ip access-list standard nat-inside-185 Router(config-std-nacl)#permit 192.168.185.0 0.0.0.255 Router(config)#exit Router(config)#ip nat inside source list nat-inside-185 interface ethernet 0/0 overload Router(config)#no ip dhcp conflict logging Router(config)#ip dhcp excluded-address 192.168.185.1 192.168.185.100 Router(config)#ip dhcp excluded-address 192.168.185.220 192.168.185.254 Router(config)#ip dhcp pool pool-net-185 Router(dhcp-config)#network 192.168.185.0 255.255.255.0 Router(dhcp-config)#default-router 192.168.185.11 Router(dhcp-config)#dns-server 192.168.185.11 Router(dhcp-config)#lease 3 Router(dhcp-config)#exit Router(config)#ip http server Router(config)#ip http secure-server Router(config)#ip http authentication local Router(config)#username cisco privilege 15 password 0 cisco Router(config)#line vty 0 4 Router(config-line)#logging synchronous Router(config-line)#login local Router(config-line)#transport input ssh Router(config-line)#exit Router(config)#ip ssh server algorithm authentication password Router(config)#hostname router0 router0(config)#ip domain-name ptest.net router0(config)#crypto key generate rsa router0(config)#ip ssh authentication-retries 3 router0(config)#ip ssh time-out 120 router0(config)#ip ssh version 2 router0(config)#exit router0#write router0#show ip interface brief Interface IP-Address OK? Method Status Protocol Ethernet0/0 192.168.195.11 YES DHCP up up Ethernet0/1 192.168.185.11 YES manual up up Ethernet0/2 unassigned YES NVRAM administratively down down Ethernet0/3 unassigned YES NVRAM administratively down down router0#
# 配置管理IP及开启SSH登录 Switch>enable Switch#configure terminal Switch(config)#interface vlan 1 Switch(config-if)#ip address dhcp Switch(config-if)#no shutdown Switch(config-if)#exit Switch(config)#ip http server Switch(config)#ip http secure-server Switch(config)#ip http authentication local Switch(config)#username cisco privilege 15 password 0 cisco Switch(config)#line vty 0 4 Switch(config-line)#logging synchronous Switch(config-line)#login local Switch(config-line)#transport input ssh Switch(config-line)#exit Switch(config)#ip ssh server algorithm authentication password Switch(config)#hostname sw0 sw0(config)#ip domain-name ptest.net sw0(config)#crypto key generate rsa sw0(config)#ip ssh authentication-retries 3 sw0(config)#ip ssh time-out 120 sw0(config)#ip ssh version 2 sw0(config)#ip route 0.0.0.0 0.0.0.0 192.168.185.11 sw0(config)#ip name-server 192.168.185.11 sw0(config)#exit sw0#write sw0#show ip interface brief Interface IP-Address OK? Method Status Protocol Ethernet0/0 unassigned YES unset up up Ethernet0/1 unassigned YES unset up up Ethernet0/2 unassigned YES unset up up Ethernet0/3 unassigned YES unset up up Vlan1 192.168.185.101 YES DHCP up up sw0#show vlan brief VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 1 default active Et0/0, Et0/1, Et0/2, Et0/3 1002 fddi-default act/unsup 1003 token-ring-default act/unsup 1004 fddinet-default act/unsup 1005 trnet-default act/unsup sw0#
========= End