Manuals / Cisco Systems / Computer Equipment / Network Card

Cisco Systems Gateway 10 Configuring a Static Route, Setting or Changing a Static Enable Password

Models: Gateway 10

1 40
Download 40 pages 53.37 Kb
Page 32
Image 32
Configuring a Static Route

Switch(config)#

ip default-gateway 172.20.52.35

 

Switch(config)#

end

 

 

3d17h: %SYS-5-CONFIG_I: Configured from console by console

Switch# show ip route

 

 

Default gateway is 172.20.52.35

 

 

Host

Gateway

Last Use

Total Uses Interface

ICMP redirect cache is empty

Configuring a Static Route

If your Telnet station or SNMP network management workstation is on a different network from your switch and a routing protocol has not been configured, you might need to add a static routing table entry for the network where your end station is located.

To configure a static route, use this procedure:

Step 1 Configure a static route to the remote network.

Switch(config)# ip route dest_IP_address mask {forwarding_IP vlan vlan_ID}

Step 2 Verify that the static route is displayed correctly.

Switch# show running-config

This example shows how to use the ip route command to configure a static route to a workstation at IP address 171.10.5.10 on the switch with a subnet mask and IP address 172.20.3.35 of the forwarding router:

Switch# configure terminal

Enter configuration commands, one per line. End with CNTL/Z.

Switch(config)# ip route 171.10.5.10 255.255.255.255 172.20.3.35

Switch(config)# end

Controlling Access to Privileged EXEC Commands

The procedures in these sections let you control access to the system configuration file and privileged EXEC commands.

Setting or Changing a Static Enable Password

To set or change a static password that controls access to the enable mode, enter the enable password command:

Switch(config)# enable password password

This example shows how to configure the enable password “lab” in privileged EXEC mode:

Switch# configure terminal

Switch(config)# enable password lab

Using the enable password and enable secret Commands

To provide an additional layer of security, particularly for passwords that cross the network or that are stored on a TFTP server, you can use either the enable password or enable secret commands. Both commands configure an encrypted password that you must enter to access the enable mode (the default) or any other privilege level that you specify.

We recommend that you use the enable secret command.

If you configure the enable secret command, it takes precedence over the enable password command; the two commands cannot be in effect simultaneously.

To configure the switch to require an enable password, issue either of the following commands:

Switch(config)# enable password [level level] {password encryption-type encrypted-password}

The above command establishes a password for the privileged EXEC mode.

Switch(config)# enable secret [level level] {password encryption-type encrypted-password}

The above command specifies a secret password that is saved using a nonreversible encryption method.

32

Page 31 Page 33
Page 32
Image 32
Cisco Systems Gateway 10 quick start Configuring a Static Route, Controlling Access to Privileged EXEC Commands
Page 31 Page 33