Term
Switching
Global configuration mode?
Global commands |
|
Definition
hostname(config)#
accessed by config t
Items that are set once for the entire switch are likely global commands
Example, the hostnamecommand is a global command because there is only one hostname per switch |
|
|
Term
Switching
Exiting and or backtracking |
|
Definition
CTRL-z and end commands exit the user from any part of config mode and back to privileged EXEC mode.
exit will back you out one config mode at a time at a time
|
|
|
Term
Switching
Steps to configure local SSH security |
|
Definition
|
Step 1.
|
- Change the vty lines to use usernames, with either locally configured usernames or an AAA server
-the login local subcommand defines the use of local usernames, replacing the login subcommand in vty configuration mode.
|
|
Step 2.
|
Tell the switch to accept both Telnet and SSH with the transport input telnet ssh vty subcommand. (The default is transport input telnet, omitting the ssh parameter.)
|
|
Step 3.
|
Add one or more username name password pass-value global configuration commands to configure username/password pairs.
|
|
Step 4.
|
Configure a DNS domain name with the ip domain-name name global configuration command.
|
|
Step 5.
|
Configure the switch to generate a matched public and private key pair, as well as a shared encryption key, using the crypto key generate rsa global configuration command.
|
|
Step 6.
|
Although no switch commands are required, each SSH client needs a copy of the switch’s public key before the client can connect.
|
|
|
|
Term
Switching
Which is more secure, service encryption or enable secret? |
|
Definition
|
|
Term
Switching
The 3 banners used |
|
Definition
MOTD - Message of the day
Login - for permanent messages (shown before login but after MOTD)
Exec - to be seen by authorized users |
|
|
Term
Switching
In relation to banners, what is the setup, including beginning delimiter character? |
|
Definition
The beginning delimiter is the first non-blank character after the banner type.
MOTD
SW1(config) #banner #
Switch down for maint #
Login
Sw1(config)# banner login #
Unauthorized people get out #
Exec
SW1(config)# banner exec z
Company picnic on Sat Z |
|
|
Term
Switching
Logging synchronous and exec-timeout commands |
|
Definition
logging sychronous - prevents interruption when syslog outputs to screen
exec-timeout 0 0 (minutes and seconds) this would set it to never timeout
line console 0
login
exec-timeout 0 0
logging synchronous |
|
|
Term
Switching
What is the default setting for a switch out of the box, for speeds and duplex?
STP? |
|
Definition
Auto
A switch will work out of the box with interfaces set to no shut and with speed and duplex set to auto
STP is default |
|
|
Term
Switching
Where is the IP, mask and gateway configured on a switch? |
|
Definition
|
|
Term
Switching
Configuring an IP address on a switch |
|
Definition
|
Step 1.
|
Enter VLAN 1 configuration mode using the interface vlan 1 global configuration command (from any config mode).
|
|
Step 2.
|
Assign an IP address and mask using the ip address ip-address mask interface subcommand.
|
|
Step 3.
|
Enable the VLAN 1 interface using the no shutdown interface subcommand.
|
|
Step 4.
|
Add the ip default-gateway ip-address global command to configure the default gateway
|
|
|
|
