Using the Exec Command Interpreter | Cisco Systems 7401ASR manual

Chapter 4 Configuring the VPN Acceleration Module

Configuration Tasks

Using the EXEC Command Interpreter

You modify the configuration of your router through the software command interpreter called the EXEC (also called enable mode). You must enter the privileged level of the EXEC command interpreter with the enable command before you can use the configure command to configure a new interface or change the existing configuration of an interface. The system prompts you for a password if one has been set.

The system prompt for the privileged level ends with a pound sign (#) instead of an angle bracket (>). At the console terminal, use the following procedure to enter the privileged level:

Step 1 At the user-level EXEC prompt, enter the enable command. The EXEC prompts you for a privileged-level password as follows:

Router> enable

Password:

Step 2 Enter the password (the password is case sensitive). For security purposes, the password is not displayed. When you enter the correct password, the system displays the privileged-level system prompt (#):

Router#

This completes the procedure for entering the privileged level of the EXEC command interpreter.

Configuring IKE

If you do not specify a value for a parameter, the default value is assigned. For information on default values, refer to the “IP Security and Encryption” chapter of the Security Command Reference publication.

To configure a policy, use the following commands, starting in global configuration mode:

	Command	Purpose

Step 1	crypto isakmp policy priority	Identifies the policy to create, and enters config-isakmp
		command mode.

Step 2	encryption {des 3des}	Specifies the encryption algorithm.

Step 3	group {1 2}	Specifies the Diffie-Hellman group identifier.

For detailed information on creating IKE policies, refer to the “Configuring Internet Key Exchange Security Protocol” chapter in the Security Configuration Guide publication.

Cisco 7401ASR Installation and Configuration Guide

4-2	OL-5419-01 B0

Image 90

Cisco Systems 7401ASR manual Using the Exec Command Interpreter, Configuring IKE

Contents

Cisco 7401ASR Installation and Configuration Guide Corporate Headquarters Cisco 7401ASR Installation and Configuration Guide N T E N T S Iii Using the Cable-Management Bracket Troubleshooting Using the show pxf feature ? Command and Subcommands B-6 Product Description C-2 Vii Viii Preface Audience Organization Document ConventionsChapter Title Description Default responses to system prompts are in square brackets You press the D keyIndicates a comment line Waarschuwing Belangrijke Veiligheidsinstructies Xii Figyelem! Fontos Biztonsági Elõírások Warnung Wichtige SicherheitsanweisungenHinweis Bewahren SIE Diese Sicherheitsanweisungen AUF Megjegyzés Õrizze MEG Ezeket AZ Utasításokat Aviso Instruções Importantes DE Segurança Xiv Terms and Acronyms Xvi Cisco.com Related DocumentationObtaining Documentation Ordering Documentation Cisco Technical Support Website Documentation FeedbackObtaining Technical Assistance You can order Cisco documentation in these ways Submitting a Service Request Definitions of Service Request SeverityXix Obtaining Additional Publications and Information Overview and Parts Installation Hardware Overview Front View Cisco 7401ASR Router-Front View LED Label Power UpLEDs Color State, the LED is Traffic Rear View System Board Checking the Shipping Container Contents Installation Checklist Verified Task Date Installing the CompactFlash Disk, GBIC, and Port Adapter Installing and Removing the CompactFlash Disk Installing and Removing the Gigabit Interface Converter Gigabit Interface Converter-GBIC 57603 Installing and Removing a Port Adapter or Service Adapter Installing a Port Adapter or Service Adapter Replacing the Sdram Dimm Cover screws Cover removal slot and flatblade screwdriver Black zinc coating, as a replacementRemoving the Cover Remove the four screws holding the cover to the chassis Removing and Installing the Sdram Dimm Spring latch on Dimm socketDimm Replacing the Cover Rack-Mounting, Tabletop Installation, Cabling Preparing to Install the Cisco 7401ASR Router Tools and Parts Required Cisco 7401ASR Electrical Equipment Guidelines Electrostatic Discharge Prevention Safety GuidelinesPreventing Electrostatic Discharge Damage Site Requirement Guidelines Installing the Router General Tabletop or Workbench Installation Rack-Mounting a Cisco 7401ASR Router Locate the threaded holes in the front sides of the chassis Installing Rack-Mount Brackets on the Rear of the Chassis Attaching the Cable-Management Bracket Installing the Chassis in the Rack Two-Post Rack Installation Installing the Cisco 7401ASR Router in a Two-Post Rack Four-Post Rack Installation Attaching a Chassis Ground Connection Fan vents Ground connector Locating the Chassis Grounding Connector Connecting Port Adapter Cables Attaching a Grounding Lug to the Chassis Grounding Connector Connecting I/O Cables Connecting Console and Auxiliary Port CablesAdapter DTE M/F Pins DCE M/F Pins Mmod Pins Fdte FdceMmod Attaching the Fast Ethernet/Ethernet 10/100 Cables Intra-Building Lightning Protection Attaching the Gbic Interface Cables Attaching Multimode and Single-Mode Optical Fiber Cables GBIC-SX= Product NumberDescription Operating Distance GBIC-LX/LH= Mode-Conditioning Patch Cord Description 13 Gbic Port Connections Cisco 7401ASR Installation and Configuration Guide Attaching the Mode-Conditioning Patch Cord Attaching the Alarm Port Cable Using the Cable-Management Bracket Connecting Power Connecting AC-Input Power Connecting DC-Input Power OL-5419-01 B0 OL-5419-01 B0 Functional Overview Chassis Slot and Logical Interface Numbering Router# show interfaces Router# show interface g1/0 MAC Address Online Insertion and Removal Environmental Monitoring and Reporting Functions Environmental Monitoring PXF Reporting FunctionsParameter High Warning High Critical Shutdown CPU Router# show environment last Router# show environment tableRouter# show environment all With a single 24V DC power supply installed With a single 48V DC power supply installed With dual 48V DC power supplies installed Fan Failures Checking Conditions Prior to System Startup Starting the System and Observing Initial Conditions Configuring a Cisco 7401ASR Router Performing a Basic Configuration Using AutoInstall Performing a Basic Configuration Using the Setup FacilityHostname# copy running-config startup-config Configuring Global Parameters Restricted Rights Legend Enter enable secret, enable, and virtual terminal passwords Enter enable secret barney Configure RIP routing? no Following speed/duplex settings are supported Example Configuring Port Adapter Interfaces Interface counters may be cleared reset by using the command Configuring Fast Ethernet Interfaces Configuring Synchronous Serial Interfaces Turn off IPX to prevent network conflicts. interface ATM1/0 Router Configuration changes can only be made in enable modeConnect a console terminal to the console port Prompt changes to the privileged Exec prompt Performing Other Configuration Tasks Saving the Running Configuration to NvramChecking the Running Configuration Settings Replacing or Recovering a Lost Password Overview of the Password Recovery Procedure Details of the Password Recovery Procedure Change all three passwords using the following commands Release 12.21DD Viewing Your System ConfigurationBoot images Router# show version Show diag Performing Complex Configurations OL-5419-01 B0 Configuration Tasks Overview Using the Exec Command Interpreter Configuring IKE Configuring IPSec Creating Crypto Access Lists Command Purpose Defining Transform Sets Creating Crypto Map Entries Verifying the Configuration Currentpeer 172.21.114.67 PERMIT, flags=originisacl OL-5419-01 B0 Troubleshooting Troubleshooting Overview Problem Solving Using a Subsystems Approach Action Yes Identifying Startup Problems Troubleshooting the Power Subsystem Symptom Possible Cause Possible Solution To determine if the fans are operating, listen Troubleshooting the Cooling SubsystemCommand to display the internal chassis System shuts down, use the show Troubleshooting the I/O Subsystem Troubleshooting the Processor SubsystemTroubleshooting the Port Adapter or Service Adapter Upgrading the Boot Helper Boot Loader Image Router# format bootflashRouter# copy tftp bootflash Cisco IOS Statistics Not Supported by PXF PXF Troubleshooting InformationFeatures Not Supported by PXF High PXF CPU Usage Ignored Packets Router# show interfaces ethernet 0/0Router# show interfaces serial 0/0 PXF Punts Priority and Policing Configured in the Class PolicyNo Buffers QoS Fast-send and QoS Enqueue System Specifications Description Specification Software Requirements Processor Specifications Memory Specifications and Configurations Gbic Cabling and Connection Equipment Transmit Power Receive PowerMinimum Maximum Power Budget GBIC-SX= or DBm 17 dBm WS-G5484= Wave Length Core Size GBIC-SX or WS-G5484GBIC-LX/LH or WS-G5486 Fiber Type Micron MHz/km Cable Distance Fast Ethernet/Ethernet RJ-45 Port Pinouts GBIC-ZX or WS-G5487 Pin Description DTE Console and Auxiliary Port Signals and Pinouts Pin Signal Direction Description Valmistajan ohjeiden mikaisesti Alarm PortLithium Battery Caution Kasseres i henhold til fabrikantens instruksjoner OL-5419-01 B0 Using show Commands PXF Information Using the show version Command Using the show pxf Commands Using the show c7400 Command Using the show pxf accounting ? Command and Subcommands Router# show pxf accounting ? Using the show pxf crash Command Router# show pxf accounting POS4/0Router#show pxf crash Using the show pxf feature ? Command and Subcommands Using the show pxf info CommandUsing the show pxf interface Command Router# show pxf feature ? Router# show pxf feature nat entry Router# show pxf feature cef ? entryFeature Nat ? Router# show pxf feature nat stat OL-5419-01 B0 Hardware and Software Requirements Tools and Parts Required 64 MB Product DescriptionMemory Size Product Number MEM-COMP-FLD64M= Compatibility Requirements System Memory and Software Image Functions and Interactions Boot Environment Variables Sample Upgrade Process Working with a CompactFlash DiskThis section includes the following subsections Software Command Overview Command and Arguments Purpose Using Software Commands Using the cd Command Using the show CommandSystem# cd disk0 Using the pwd Command Using the dir CommandUsing the format Command Using the mkdir Command Router# format disk0System# mkdir disk0dailydir Delete the file fun1 Using the rmdir CommandUsing the delete Command System# rmdir disk0dailydir Enabling Booting from a CompactFlash Disk Verify that the file fun1 is deleted System# copy systemrunning-config nvramstartup-config System# config terminalCrtl-Z OL-5419-01 B0 Configuration Bit Meanings Following information is found in this appendixBit No Hex Meaning Bits Boot Field MeaningBoots the boot helper image as a system image Tftp flash filename Bit Action/File Name Bit Bit IP Address net host Bit 10 and BitBit 11 and Bit Baud Bit Router# show version Setting the Configuration Register While Running Cisco IOS Enable OL-5419-01 B0 D E IN-1 Show version Cisco IOS Cisco 7401ASR requirements DocumentationInitialization-vector size IN-2 Igrp IKE ATM interfaces AutoInstall Basic router ExamplesInterface parameters Sample configuration Eeprom Gbic IgrpIN-4 IPX IN-5 OIR IN-6 RIP IN-7 LED SnmpVAM IN-8 Safety information IN-9