Cisco Router 850 Series Software Configuration Guide
Have a look at the manual Cisco Router 850 Series Software Configuration Guide online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 53 Cisco manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide Text Part Number: OL-5332-01
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Ber keley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISC O OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. CCVP, the Cisco logo, and the Cisco Square Bridge logo are trademarks of Cis\ co Systems, Inc.; Changing the Way We Work, Live, P lay, and Learn is a service mark of Cisco Systems, Inc.; and Access Registrar, Aironet, BPX, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, Cisco, the Cisco Certified Intern etwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unit\ y, Enterprise/Solver, EtherChannel, EtherFast, EtherSwi tch, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, IP/TV, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, i Quick Study, LightStream, Linksys, MeetingPlace, MGX, Networking Academy, Network Registrar, PIX, ProConnect, ScriptShare, SMARTnet, StackWise, The Fastest Way to Increase Your Internet Quotient, and TransPath are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countri es. All other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word par tner does not imply a partnership relationship between Cisco and any other company. (0708R) Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide Copyright © 2005, Cisco Systems, Inc. All rights reserved.
3 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide OL-5332-01 CONTENTS Preface 11 Audience 11 Organization 12 Conventions 13 Notes, Cautions, and Timesavers 13 Command Conventions 13 Related Documents 14 Obtaining Documentation 14 Cisco.com 14 Documentation DVD 15 Ordering Documentation 15 Documentation Feedback 15 Cisco Product Security Overview 16 Reporting Security Problems in Cisco Products 16 Obtaining Technical Assistance 16 Cisco Technical Support Website 17 Submitting a Service Request 17 Definitions of Service Request Severity 17 Obtaining Additional Publications and Information 18 PART 1Getting Started CHAPTER 1Basic Router Configuration 1 Interface Port Labels 1 Viewing the Default Configuration 2 Information Needed for Configuration 4 Configuring Basic Parameters 5 Configure Global Parameters 5 Configure Fast Ethernet LAN Interfaces 6 Configure WAN Interfaces 6 Configure the Fast Ethernet WAN Interface 6 Configure the ATM WAN Interface 7 Configure the Wireless Interface 7
Contents 4 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide OL-5332-01 Configuring a Loopback Interface 8 Configuration Example 8 Verifying Your Configuration 9 Configuring Command-Line Access to the Router 9 Configuration Example 11 Configuring Static Routes 11 Configuration Example 12 Verifying Your Configuration 12 Configuring Dynamic Routes 12 Configuring RIP 13 Configuration Example 14 Verifying Your Configuration 14 Configuring Enhanced IGRP 14 Configuration Example 15 Verifying Your Configuration 15 PART 2Configuring Your Router for Ethernet and DSL Access CHAPTER 2Sample Network Deployments 1 CHAPTER 3Configuring PPP over Ethernet with NAT 1 Configure the Virtual Private Dialup Network Group Number 2 Configure the Fast Ethernet WAN Interfaces 4 Configure the Dialer Interface 5 Configure Network Address Translation 7 Configuration Example 9 Verifying Your Configuration 10 CHAPTER 4Configuring PPP over ATM with NAT 1 Configure the Dialer Interface 3 Configure the ATM WAN Interface 5 Configure DSL Signaling Protocol 6 Configuring ADSL 6 Verify the Configuration 7 Configuring SHDSL 7 Verify the Configuration 8 Configure Network Address Translation 9 Configuration Example 11
Contents 5 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide OL-5332-01 Verifying Your Configuration 12 CHAPTER 5Configuring a LAN with DHCP and VLANs 1 Configure DHCP 2 Configuration Example 4 Verify Your DHCP Configuration 4 Configure VLANs 5 Verify Your VLAN Configuration 6 CHAPTER 6Configuring a VPN Using Easy VPN and an IPSec Tunnel 1 Configure the IKE Policy 4 Configure Group Policy Information 5 Apply Mode Configuration to the Crypto Map 6 Enable Policy Lookup 6 Configure IPSec Transforms and Protocols 7 Configure the IPSec Crypto Method and Parameters 8 Apply the Crypto Map to the Physical Interface 9 Create an Easy VPN Remote Configuration 10 Verifying Your Easy VPN Configuration 11 Configuration Example 11 CHAPTER 7Configuring VPNs Using an IPSec Tunnel and Generic Routing Encapsulation 1 Configure a VPN 2 Configure the IKE Policy 3 Configure Group Policy Information 4 Enable Policy Lookup 5 Configure IPSec Transforms and Protocols 5 Configure the IPSec Crypto Method and Parameters 6 Apply the Crypto Map to the Physical Interface 7 Configure a GRE Tunnel 8 Configuration Example 9 CHAPTER 8Configuring a Simple Firewall 1 Configure Access Lists 3 Configure Inspection Rules 3 Apply Access Lists and Inspection Rules to Interfaces 4 Configuration Example 5
Contents 6 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide OL-5332-01 CHAPTER 9Configuring a Wireless LAN Connection 1 Configure the Root Radio Station 2 Configure Bridging on VLANs 4 Configure Radio Station Subinterfaces 5 Configuration Example 6 CHAPTER 10Sample Configuration 1 PART 3Configuring Additional Features and Troubleshooting CHAPTER 11Additional Configuration Options 1 CHAPTER 12Configuring Security Features 1 Authentication, Authorization, and Accounting 1 Configuring AutoSecure 2 Configuring Access Lists 2 Access Groups 3 Guidelines for Creating Access Groups 3 Configuring a CBAC Firewall 3 Configuring Cisco IOS Firewall IDS 4 Configuring VPNs 4 CHAPTER 13Configuring Dial Backup and Remote Management 1 Dial Backup Feature Activation Methods 1 Backup Interfaces 2 Configuring Backup Interfaces 2 Floating Static Routes 2 Configuring Floating Static Routes 3 Dialer Watch 4 Configuring Dialer Watch 4 Dial Backup Feature Limitations 5 Configuration Example 6 Configuring Dial Backup and Remote Management Through the Console or Auxiliary Port 9 Configuration Tasks 10 Configuration Example 13 Configuring Dial Backup and Remote Management Through the ISDN S/T Port 16 Configuration Tasks 17
Contents 7 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide OL-5332-01 Configure ISDN Settings 17 Configure the Aggregator and ISDN Peer Router 20 CHAPTER 14Troubleshooting 1 Getting Started 1 Before Contacting Cisco or Your Reseller 1 ADSL Troubleshooting 2 SHDSL Troubleshooting 2 ATM Troubleshooting Commands 2 ping atm interface Command 3 show interface Command 3 show atm interface Command 5 debug atm Commands 6 Guidelines for Using Debug Commands 6 debug atm errors Command 6 debug atm events Command 7 debug atm packet Command 8 Software Upgrade Methods 9 Recovering a Lost Password 9 Change the Configuration Register 10 Reset the Router 11 Reset the Password and Save Your Changes 12 Reset the Configuration Register Value 12 Managing Your Router with SDM 13 PART 4Reference Information APPENDIX ACisco IOS Software Basic Skills 1 Configuring the Router from a PC 1 Understanding Command Modes 2 Getting Help 4 Enable Secret Passwords and Enable Passwords 5 Entering Global Configuration Mode 5 Using Commands 6 Abbreviating Commands 6 Undoing Commands 6 Command-Line Error Messages 6 Saving Configuration Changes 7
Contents 8 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide OL-5332-01 Summary 7 Where to Go Next 7 APPENDIX BConcepts 1 ADSL 1 SHDSL 2 Network Protocols 2 IP 2 Routing Protocol Options 2 RIP 3 Enhanced IGRP 3 PPP Authentication Protocols 3 PAP 4 CHAP 4 TACACS+ 5 Network Interfaces 5 Ethernet 5 ATM for DSL 5 PVC 6 Dialer Interface 6 Dial Backup 6 Backup Interface 6 Floating Static Routes 7 Dialer Watch 7 NAT 7 Easy IP (Phase 1) 8 Easy IP (Phase 2) 8 QoS 9 IP Precedence 9 PPP Fragmentation and Interleaving 9 CBWFQ 10 RSVP 10 Low Latency Queuing 10 Access Lists 11 APPENDIX CROM Monitor 1 Entering the ROM Monitor 1 ROM Monitor Commands 2
Contents 9 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide OL-5332-01 Command Descriptions 3 Disaster Recovery with TFTP Download 3 TFTP Download Command Variables 4 Required Variables 4 Optional Variables 5 Using the TFTP Download Command 5 Configuration Register 6 Changing the Configuration Register Manually 6 Changing the Configuration Register Using Prompts 6 Console Download 7 Command Description 8 Error Reporting 8 Debug Commands 8 Exiting the ROM Monitor 10 APPENDIX DCommon Port Assignments 1 INDEX
Contents 10 Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide OL-5332-01