Americas Headquarters
Cisco Systems, Inc 170 West Tasman Drive San Jose, CA
800 553-NETS Fax 408
Text Part Number OL-23590-02 September 2
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS
Information Needed for Configuration
New Features
WLAN Features
Wireless Device Overview
Configuring a Cellular Interface
Prerequisites for Configuring the 3G Wireless Interface
Configuring DDR
Verifying Configuration
Ignoring DCD and Monitoring DSR as Line Up/Down Indicator
Configuration Examples
Interface Enablement Configuration Examples
Configuring Security Features
Configure the IKE Policy
Create a Cisco Easy VPN Remote Configuration
Configure a Site-to-Site GRE Tunnel
Configuring the Ethernet Switches
Configure the Virtual Private Dialup Network Group Number
Configuring VLANs
Configuring 802.1x Authentication
Configuration Tasks
Entering Global Configuration Mode A-5
Configure the IKE Policy
Configure Group Policy Information
Understanding Command Modes
Changing the Configuration Register Manually C-11
Changing the Configuration Register Using Prompts C-11
Backup Interface
ROM Monitor Commands
Contents
OL-23590-02
General Description, page SKU Information, page New Features, page
Product Overview
General Description
C H A P T E R
Figure 1-1 Cisco 819HG Integrated Services Router
Figure 1-2 Cisco 819HGW Integrated Services Router
Chapter 1 Product Overview General Description
OL-23590-02
New Features
3G Features
3G Features, page WLAN Features, page 4G LTE Features, page
Platform Features, page Security Features, page
Security Features
WLAN Features
Platform Features
Wireless Device Overview
ScanSafe
ScanSafe, page TFTP support with Ethernet WAN interface, page
LEDs, page
TFTP support with Ethernet WAN interface
LEDs
Color
Description
show platform led for all LEDs show controller cellular 0 for 3G LEDs
Color
Description
3G LED Descriptions continued
Chapter 2 Wireless Device Overview LEDs
router# show controllers cellular
Wireless Local Area Network
WLAN Features
Dual-Radio, page Images Supported, page CleanAir Technology, page
Dual-Radio
CleanAir Technology
Images Supported
Dynamic Frequency Selection
LEDs
WLAN LED
Color
Description
WLAN LED Descriptions
Chapter 3 Wireless Local Area Network WLAN Features
OL-23590-02
4G LTE Wireless WAN
C H A P T E R
Chapter 4 4G LTE Wireless WAN
OL-23590-02
Basic Router Configuration
Interface Ports, page Default Configuration, page
Information Needed for Configuration, page
Configuring Command-Line Access, page
Default Configuration
Interface Ports
Router
Interface
Information Needed for Configuration
3G-ACC-OUT-LA-See Cisco 3G Lightning Arrestor 3G-ACC-OUT-LA
If you are setting up IP routing
Configuring Command-Line Access
1. line aux console tty vty line-number 2. password password
3. login
4. exec-timeout minutes seconds
Command
DETAILED STEPS
Purpose
Example
Example
Command
Purpose
Example
Configuring Global Parameters
configure terminal
enable secret password
hostname name
Configuring WAN Interfaces
Configuring a Gigabit Ethernet WAN Interface
Configuring a Gigabit Ethernet WAN Interface, page
Configuring the Cellular Wireless WAN Interface, page
Configuring the Cellular Wireless WAN Interface
Command
Enters the configuration mode for a Gigabit
Enables the Ethernet interface, changing its
5-11
Prerequisites for Configuring the 3G Wireless Interface
Restrictions for Configuring the Cellular Wireless Interface
Verifying Signal Strength and Service Availability
Verifying Signal Strength and Service Availability, page
Configuring a GSM Modem Data Profile, page
Command or Action
Configuring a GSM Modem Data Profile
5-13
Command or Action
Command or Action
authentication
Type of authentication, for example, CHAP, PAP
Username provided by your service provider
Password
Activating with Over-the-Air Service Provisioning
cellular cdma activate iota
router # cellular 0 cdma activate otasp phonenumber
5-15
Configuring a Cellular Interface
1. configure terminal 2. interface cellular 3. encapsulation ppp
4. ppp chap hostname hostname 5. ppp chap password 0 password
6. asynchronous mode interactive 7. ip address negotiated
Configuring DDR
1. configure terminal 2. interface cellular 3. dialer in-band
4. dialer idle-timeout seconds 5. dialer string string
9. ip access-list access list number permit ip source address
5-18
Command or Action
DETAILED STEPS
Purpose
5-19
Command or Action
Purpose
Example
Examples for Configuring Cellular Wireless Interfaces
Basic Cellular Interface Configuration
Basic Cellular Interface Configuration, page
Tunnel over Cellular Interface Configuration, page
Tunnel over Cellular Interface Configuration
Configuration for 8705 modem
5-21
Chapter 5 Basic Router Configuration Configuring WAN Interfaces
Configuring Dual SIM for Cellular Networks
Syntax
5-22
Command
Configuring Router for Image and Config Recovery Using Push Button
5-23
Command
Syntax
Output When Button Is Not Pushed Example
Output When Button Is Pushed Example
ROMMON Behavior
IOS Behavior
Configuring a Loopback Interface
Configuring the Fast Ethernet LAN Interfaces
Push Button in WLAN AP
3. exit
Verifying Configuration
Enters configuration mode for the loopback
Exits configuration mode for the loopback
interface and returns to global configuration
Configuring Static Routes
For details about this command and about
IOS IP Routing Protocol-Independent Command
Exits router configuration mode and enters
Configuring Dynamic Routes
Verifying Configuration
Configuring Routing Information Protocol, page
Configuring Enhanced Interior Gateway Routing Protocol, page
Configuring Routing Information Protocol
router rip
2. version 1
3. network ip-address
Configuring Enhanced Interior Gateway Routing Protocol
1. router eigrp as-number
2. network ip-address
3. end
5-31
Verifying Configuration
Command
Example
OL-23590-02
5-32
Chapter 5 Basic Router Configuration Configuring Dynamic Routes
Configuring Backup Data Lines and Remote Management
Configuring Backup Interfaces
Configuring Backup Interfaces, page
Configuring Cellular Dial-on-Demand Routing Backup, page
2. backup interface interface-type interface-number
1. interface type number
Command
SUMMARY STEPS
Configuring Cellular Dial-on-Demand Routing Backup
Configuring DDR Backup Using Dialer Watch
1. configure terminal
6. ip access-list access list number permit ip source address
Command or Action
DETAILED STEPS
Purpose
Example
Configuring DDR Backup Using Floating Static Route
Cellular Wireless Modem as Backup with NAT and IPsec Configuration
1. configure terminal
Command or Action
no aaa new-model
Chapter 6 Configuring Backup Data Lines and Remote Management
Configuring Cellular Dial-on-Demand Routing Backup
OL-23590-02
Chapter 6 Configuring Backup Data Lines and Remote Management
Configuring Cellular Dial-on-Demand Routing Backup
line con no modem enable line aux 0 line
exec-timeout 0 0 script dialer gsm login
line vty 0 4 login
route-map track-primary-if permit 10 match ip address
1 A
Cisco 819 router
15. modem enable 16. exit
1. ip name-server server-address 2. ip dhcp pool name 3. exit
4. chat-script script-name expect-send 5. interface type number
6. exit
section on page
6-11
Command
DETAILED STEPS
Exits the interface configuration mode
Enables dynamic translation of addresses on the
a default gateway
Defines an extended access list that indicates
6-13
Command
Chapter 6 Configuring Backup Data Lines and Remote Management
modem enable
6-14
Chapter 6 Configuring Backup Data Lines and Remote Management
6-15
Chapter 6 Configuring Backup Data Lines and Remote Management
no ip http server ip pim bidir-enable
OL-23590-02
OL-23590-02
6-16
Chapter 6 Configuring Backup Data Lines and Remote Management
Environmental and Power Management
C H A P T E R
Cisco EnergyWise Support
Configuring the Serial Interface
Legacy Protocol Transport, page Configuring Serial Interfaces, page
Information About Configuring Serial Interfaces, page
How to Configure Serial Interfaces, page Configuration Examples, page
Configuring Serial Interfaces
Connector Type
Legacy Protocol Transport
Product Number
Information About Configuring Serial Interfaces
Keepalive Timer, page Frame Relay Encapsulation, page
Cisco HDLC Encapsulation
PPP Encapsulation
Keepalive Timer
Multilink PPP
Frame Relay Encapsulation
Chapter 8 Configuring the Serial Interface
Information About Configuring Serial Interfaces
OL-23590-02
How to Configure Serial Interfaces
Configuring a Synchronous Serial Interface
Configuring a Synchronous Serial Interface, page
Configuring Low-Speed Serial Interfaces, page
Configuring Compression of HDLC Data, page 8-9 Optional
Using the NRZI Line-Coding Format, page 8-9 Optional
Inverting the Transmit Clock Signal, page 8-10 Optional
Setting Transmit Delay, page 8-11 Optional
Configuring PPP
Configuring Bisync
Command
Command
Configuring Compression of HDLC Data
Using the NRZI Line-Coding Format
1. encapsulation hdlc 2. compress stac
1. nrzi-encoding
Inverting the Transmit Clock Signal
Enabling the Internal Clock
1. transmit-clock-internal
1. invert txclock 2. invert rxclock
Setting Transmit Delay
Configuring DTR Signal Pulsing
Ignoring DCD and Monitoring DSR as Line Up/Down Indicator
8-11
1. dce-terminal-timing enable
Configures the DCE to use SCTE from the DTE
Specifying the Serial Network Interface Module Timing
1. ignore-dcd
1. dte-invert-txc
8-13
Command or Action
Chapter 8 Configuring the Serial Interface
Configuring Low-Speed Serial Interfaces
Understanding Half-Duplex DTE and DCE State Machines
Half-Duplex DTE State Machines
Understanding Half-Duplex DTE and DCE State Machines, page
Half-Duplex DTE Receive State Machine
Half-Duplex DCE State Machines
8-15
8-16
Half-Duplex DCE Transmit State Machine
Placing a Low-Speed Serial Interface in Constant-Carrier Mode
1. no half-duplex controlled-carrier
8-17
Command or Action
Tuning Half-Duplex Timers
sdlc cts-delay sdlc rts-timeout
Changing Between Synchronous and Asynchronous Modes
1. physical-layer sync async
Configuration Examples
Interface Enablement Configuration Examples
1. no physical-layer
8-19
Half-Duplex Timers Example
Half-Duplex Timers Example, page
Low-Speed Serial Interface Examples
Synchronous or Asynchronous Mode Examples
Configuring Security Features
Authentication, Authorization, and Accounting
Authentication, Authorization, and Accounting, page
Configuring AutoSecure, page Configuring Access Lists, page
Configuring AutoSecure
Configuring Access Lists
Configuration Commands
access-list 1-99permit deny source-addr source-mask
ip inspect name inspection-name protocol timeout seconds
Configuring Cisco IOS Firewall
Access Groups
Configuring Cisco IOS IPS
Configuring VPN
Remote Access VPN, page Site-to-Site VPN, page
Configuration Examples, page
Remote Access VPN
Site-to-Site VPN
Library, Cisco IOS Release 12.4T
Configuration Examples
Configure a VPN over an IPSec Tunnel
Configure the IKE Policy
Configure the IKE Policy, page
Command or Action
MD5 algorithm. The default is Secure Hash
Specifies the authentication method used in the
Exits IKE policy configuration mode and enters
Configure Group Policy Information
1. crypto isakmp client configuration group group-name default
6. ip local pool default poolname low-ip-address high-ip-address
2. key name
Apply Mode Configuration to the Crypto Map
Technologies Command Reference
1. crypto map map-name isakmp authorization list list-name
2. crypto map tag client configuration address initiate respond
Enable Policy Lookup
2. aaa authentication login default list-name method1 method2
details, see Securing User Services Configuration
IOS Security Command Reference
Configure IPSec Transforms and Protocols
Configure the IPSec Crypto Method and Parameters
Configures IPSec profile to apply protection on
See Secure Connectivity Configuration Guide
crypto map configuration mode
See Cisco IOS Security Command Reference for
more details about this command
Returns to global configuration mode
Where to Go Next
Enters the interface configuration mode for the
Apply the Crypto Map to the Physical Interface
2. crypto map map-name 3. exit
Create a Cisco Easy VPN Remote Configuration
Creates a Cisco Easy VPN remote configuration
and enters Cisco Easy VPN remote configuration
hostname resolution
Configuration Example
9-16
Command or Action
Purpose
Configure a Site-to-Site GRE Tunnel
4. tunnel destination default-gateway-ip-address
7. ip access-list standard extended access-list-name
3. tunnel source interface-type number
tunnel interface must be configured to
Exits interface configuration mode and returns to
Enters ACL configuration mode for the named
Creates a tunnel interface and enters interface
Returns to global configuration mode
Specifies that only GRE traffic is permitted on the
outbound interface
9-19
hash md5 authentication pre-share crypto isakmp key cisco123 address
9-20
Chapter 9 Configuring Security Features Configuring VPN
Configuring the Ethernet Switches
Switch Port Numbering and Naming
Restrictions for the FE Switch
Switch Port Numbering and Naming, page
Information About Ethernet Switches
Layer 2 Ethernet Switching
802.1x Authentication
VLANs and VLAN Trunk Protocol, page Layer 2 Ethernet Switching, page
Switched Port Analyzer
Overview of SNMP MIBs
IGMP Snooping
Storm Control
BRIDGE-MIB for Layer 2 Ethernet Switching
Routerconfig#snmp-server community public RW
MIBs
MIBs Link
MAC Address Notification
10-5
Routerconfig#Routersnmp-server group public v2c context bridge-group
Routerconfig#snmp-server community public RW
How to Configure Ethernet Switches
Configuring VLANs
Configuring VLANs, page Configuring Layer 2 Interfaces, page
Configuring 802.1x Authentication, page
Configuring Layer 2 Interfaces
switchport mode dynamic desirable
VLANs on the GE Port
Comand
10-8
Configuring 802.1x Authentication
Configuring Spanning Tree Protocol
Configuring MAC Table Manipulation
Configuring Cisco Discovery Protocol
Manipulation
Port Security
Configuring the Switched Port Analyzer
Configuring IP Multicast Layer 3 Switching
Configuring IGMP Snooping
Configuring Per-Port Storm Control
Configuring Fallback Bridging
10-11
Managing the Switch
10-12
C H A P T E R
Configuring PPP over Ethernet with NAT
11-1
Configuration Tasks
Configure the Virtual Private Dialup Network Group Number
Configure the Virtual Private Dialup Network Group Number, page
Configure the Fast Ethernet WAN Interfaces, page
Configure the Fast Ethernet WAN Interfaces
11-3
Command or Action
DETAILED STEPS
Configure the Dialer Interface
Enters interface configuration mode for a
Configures the PPPoE client and specifies the
Enables the Fast Ethernet interface and the
5. ppp authentication protocol1 protocol2 6. dialer pool number
Command Reference
1. interface dialer dialer-rotary-group-number
2. ip address negotiated 3. ip mtu bytes
Configure Network Address Translation
Using a dialer group controls access to
Exits the dialer 0 interface configuration
For details about this command and additional
3. interface type number
4. ip nat inside outside 5. no shutdown 6. exit
8. ip nat inside outside 9. no shutdown 10. exit
11-7
by the access list 1 to be translated to one of the
permitted by access list acl1 to be translated to one
Command Reference, Volume 1 of 4 Addressing
and Services
Configuration Example
Enters configuration mode for the Fast Ethernet
Defines a standard access list indicating which
WAN interface FE4 to be the outside interface
11-10
Chapter 11 Configuring PPP over Ethernet with NAT
Configuration Example
vpdn enable vpdn-group 1 request-dialin protocol pppoe
Verifying Your Configuration
11-11
Chapter 11 Configuring PPP over Ethernet with NAT
Configuration Example
11-12
Chapter 11 Configuring PPP over Ethernet with NAT
Configuration Example
OL-23590-02
Configuring a LAN with DHCP and VLANs
DHCP
12-1
C H A P T E R
Configure DHCP
Configure DHCP, page Configure VLANs, page
7. default-router address address2...address8
VLANs
Identifies the default domain that the router uses to
resolution
enters DHCP pool configuration mode. The name
Specifies up to eight default routers for a DHCP
Verify Your DHCP Configuration
Exits DHCP configuration mode and enters global
Specifies up to eight DNS servers available to a
DHCP client
Configure VLANs
1. vlan ? 2. ISL VLAN ID 3. exit
12-5
Chapter 12 Configuring a LAN with DHCP and VLANs Configuration Tasks
Assign a Switch Port to a VLAN
Services Command Reference
1. interface switch port id
2. switchport access vlan vlan-id 3. end
Verify Your VLAN Configuration
Specifies the switch port that you want to assign
to the VLAN
Assigns a port to the VLAN
12-8
Chapter 12 Configuring a LAN with DHCP and VLANs Configuration Tasks
Cisco 819 Integrated Services Routers Software Configuration Guide
Router# vlan database
12-9
Chapter 12 Configuring a LAN with DHCP and VLANs Configuration Tasks
Router# show vlan-switch
OL-23590-02
12-10
Chapter 12 Configuring a LAN with DHCP and VLANs Configuration Tasks
Cisco 819 Integrated Services Routers Software Configuration Guide
OL-23590-02
C H A P T E R
Configuring a VPN Using Easy VPN and an IPSec Tunnel
13-1
Figure 13-1 Remote Access VPN Using IPSec Tunnel
Cisco Easy VPN
13-2
Configure the IKE Policy
Create an Easy VPN Remote Configuration, page
13-3
Configuration Tasks
The example specifies 168-bit data encryption
standard SHA-1
The example specifies a pre-shared key
Specifies the Diffie-Hellman group to be used in
Configure Group Policy Information
13-5
1. crypto isakmp client configuration group group-name default
6. ip local pool default poolname low-ip-address high-ip-address
Apply Mode Configuration to the Crypto Map
13-6
Command or Action
Technologies Command Reference
Enable Policy Lookup
13-7
2. aaa authentication login default list-name method1 method2
Command or Action
Configure IPSec Transforms and Protocols
Configure the IPSec Crypto Method and Parameters
13-8
Command or Action
13-9
Command or Action
crypto map configuration mode
See Cisco IOS Security Command Reference for
Create an Easy VPN Remote Configuration
Apply the Crypto Map to the Physical Interface
2. group group-name key group-key 3. peer ipaddress hostname
13-10
remote configuration applied
this command would be interface atm
6. interface type number
7. crypto ipsec client ezvpn name outside inside 8. exit
Verifying Your Easy VPN Configuration
13-12
Configuration Example
Command or Action
13-13
Chapter 13 Configuring a VPN Using Easy VPN and an IPSec Tunnel
Configuration Example
OL-23590-02
13-14
Chapter 13 Configuring a VPN Using Easy VPN and an IPSec Tunnel
Configuration Example
Cisco 819 Integrated Services Routers Software Configuration Guide
Configuring the Router from a PC
Configuring the Router from a PC, page A-1
Understanding Command Modes, page A-2 Getting Help, page A-4
Enable Secret Passwords and Enable Passwords, page A-5
Terminal Emulation Software
Understanding Command Modes
PC Operating System
Access Method
the “Enable Secret Passwords and
Enable Passwords” procedure on
Mode
Getting Help
router rip-from
Access Method
Mode
Enable Secret Passwords and Enable Passwords
Entering Global Configuration Mode
Using Commands
Abbreviating Commands
Undoing Commands
Command-Line Error Messages
Summary
Saving Configuration Changes
Where to Go Next
OL-18906-02
Appendix A Cisco IOS Software Basic Skills Where to Go Next
Cisco 819 Integrated Services Routers Software Configuration Guide
PPP Authentication Protocols, page B-3 TACACS+, page B-4
Ethernet, page B-4 Dial Backup, page B-5 NAT, page B-6
Easy IP Phase 1, page B-6 Easy IP Phase 2, page B-7 QoS, page B-7
Access Lists, page B-9
Routing Updates
Routing Protocol Options
Protocol
Ideal Topology
PPP Authentication Protocols
Enhanced IGRP
CHAP
TACACS+
Ethernet
Dial Backup
Backup Interface
Backup Interface, page B-5 Floating Static Routes, page B-5
Floating Static Routes
Easy IP Phase
Easy IP Phase
IP Precedence, page B-8 PPP Fragmentation and Interleaving, page B-8
CBWFQ, page B-8 RSVP, page B-8 Low Latency Queuing, page B-9
IP Precedence
PPP Fragmentation and Interleaving
CBWFQ
RSVP
Access Lists
Low Latency Queuing
OL-18906-02
B-10
Appendix B Concepts Access Lists
Entering the ROM Monitor, page C-1 ROM Monitor Commands, page C-2
Command Descriptions, page C-3
Disaster Recovery with TFTP Download, page C-3
Configuration Register, page C-10 Console Download, page C-12
ROM Monitor Commands
exit
reload
Descriptions” section on page C-3
Command Descriptions
Disaster Recovery with TFTP Download
reset or
Configuration Fundamentals and Network Management Guide
TFTP Download Command Variables
Required Variables
Variable
Command
Using the TFTP Download Command
Optional Variables
Command
Variable
Examples
OL-18906-02
Appendix C ROM Monitor Disaster Recovery with TFTP Download
Cisco 819 Integrated Services Routers Software Configuration Guide
Appendix C ROM Monitor Disaster Recovery with TFTP Download
Cisco 819 Integrated Services Routers Software Configuration Guide
OL-18906-02
Disaster Recovery with TFTP Download
Appendix C ROM Monitor
Configuration Register
C-10
Appendix C ROM Monitor Configuration Register
Cisco 819 Integrated Services Routers Software Configuration Guide
C-11
Changing the Configuration Register Manually
Changing the Configuration Register Using Prompts
Command Description
recognize it, the name of the configuration file must be routerconfg
Console Download
xmodem -cyrx destinationfilename
C-13
Debug Commands
Error Reporting
Exiting the ROM Monitor
C-14
Common Port Assignments
A P P E N D I X D
Port
Keyword
Port
Keyword
Description
Table D-1
