Cisco SDM Express User’s Guide Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
C O N T E N T S Cisco SDM Express 1 Welcome 1 Basic Configuration 2 Router Provisioning 3 Provision From USB Token 4 Provision From USB Flash 5 File Selection 6 Wireless Interface Configuration 7 LAN Interface Configuration 7 DHCP Server Configuration 9 Internet (WAN): Ethernet Interface 11 Internet (WAN): Autodetect Encapsulation 13 Internet (WAN): User Specified Encapsulation 13 WAN Interface Selection 16 Serial Connection 17 Frame Relay Configuration Settings 19 Internet (WAN): Advanced Options 20 CNS S
Contents Cisco Network Services 25 Security Settings 26 Disable SNMP 26 Disable Finger Service 27 Disable PAD Service 27 Disable TCP Small Servers Service 28 Disable UDP Small Servers Service 29 Disable IP BOOTP Server Service 29 Disable IP Identification Service 30 Disable CDP 30 Disable IP Source Route 31 Enable Password Encryption Service 31 Enable Netflow Switching 32 Enable TCP Keepalives for Inbound Telnet Sessions 32 Enable TCP Keepalives for Outbound Telnet Sessions 33 Enable Sequence Numbers and T
Contents Set Authentication Failure Rate to Less Than 3 Retries 41 Set Banner 41 Enable Telnet Settings 42 Enable SSH for Access to the Router 42 Cisco SDM Express Buttons 43 Reconnecting to the Router After Initial Configuration 44 Testing Your WAN (Internet) Connection 45 SDP Troubleshooting Tips 46 Cisco SDM Express Edit Mode 1 Overview 1 Basic Configuration 3 Edit a Username 4 LAN 4 Wireless 5 WAN—Unable to Configure WAN Interface 5 No WAN Available 5 Delete Connection 6 Firewall 6 NAT 7 Add or Edit Ad
Contents Date and Time Properties 15 Reset to Factory Defaults 16 Reconfiguring Your PC with a Static or a Dynamic IP Address 17 Feature Not Available 19 Cisco SDM Express User’s Guide iv Ol-7141-04
C H A P T E R 1 Cisco SDM Express The Cisco SDM Express windows guide you through basic configuration of the router. After you complete the basic configuration, the router is available on the LAN, has a WAN connection, and has a firewall. Welcome This wizard guides you through a basic configuration that will help you do the following: • Name the router. • Specify a username and specify passwords.
Chapter 1 Cisco SDM Express Basic Configuration This task is bypassed if SDP or Cisco Network Services is chosen for provisioning the router. • Identify DNS servers and your organization's domain name. Consult your network administrator or Internet service provider for this information. This task is bypassed if SDP or Cisco Network Services is chosen for provisioning the router. • Create a WAN connection. • Create a firewall for the LAN and WAN connections.
Chapter 1 Cisco SDM Express Router Provisioning Note You will use the username and password you set in this window the next time you use Cisco SDM Express, and thereafter, unless you change it. Make the password difficult to guess but easy for you to remember. Username Field Enter a username in this field. Enter New Password Field Enter the new password in this field. The password must be at least 6 characters. Reenter New Password Field Reenter the new password for confirmation.
Chapter 1 Cisco SDM Express Provision From USB Token USB Token or USB Flash Choose this option if you have a USB token or USB flash device attached to your router and it contains the appropriate configuration file. Note If both a USB token and a USB flash device are connected to your router, Cisco SDM Express will use the USB token. If you want to use the USB flash device connected to your router, all USB tokens must be removed from your router before running Cisco SDM Express.
Chapter 1 Cisco SDM Express Provision From USB Flash Note This window appears only if a USB token is connected to your router. If both a USB token and a USB flash device are connected to your router, Cisco SDM Express will use the USB token. If you want to use the USB flash device connected to your router, all USB tokens must be removed from your router before running Cisco SDM Express.
Chapter 1 Cisco SDM Express Provision From USB Flash When you provision your router with a configuration file, the file is merged with the running configuration, and it also becomes part of the startup configuration. Caution Cisco SDM does not check the validity of configuration files you use to provision your router. Be sure that the contents of the configuration file you plan to use contain the appropriate data.
Chapter 1 Cisco SDM Express Wireless Interface Configuration Name Click Name to order the files and directories alphabetically based on name. Clicking Name again will reverse the order. Size Click Size to order the files and directories by size. Directories always have a size of zero bytes, even if they are not empty. Clicking Size again will reverse the order. Time Modified Click Time Modified to order the files and directories based on modification date and time.
Chapter 1 Cisco SDM Express LAN Interface Configuration Interface/Bridge-to-Interface List If the router has multiple LAN interfaces, the interfaces are displayed in this list. Select the LAN interface that you want to configure. If the router has a wireless interface, and you clicked Yes in the Wireless Interface Configuration window, this list is labeled Bridge-to Interface. Select the interface to which you want to bridge wireless traffic.
Chapter 1 Cisco SDM Express DHCP Server Configuration Enter a Service Set Identifier (SSID) for this wireless traffic. The SSID is a unique identifier that wireless networking devices use to establish and maintain wireless connectivity. Note Changing a configured SSID value brings down the wireless connection. If you are editing a LAN configuration after completing the Cisco SDM Express wizard and you want to configure advanced wireless parameters, click Wireless in the category bar.
Chapter 1 Cisco SDM Express DHCP Server Configuration address pool smaller, but you must enter an address in the same subnet as the address of the LAN interface, or Cisco SDM Express displays a message informing you that the address is invalid. Ending IP Address Field Cisco SDM Express enters the highest valid address in the IP address range in this field, based on the IP address and subnet mask that you gave the LAN interface.
Chapter 1 Cisco SDM Express Internet (WAN): Ethernet Interface Use these DNS values for DHCP clients Check Box Available if a DHCP server is enabled on the LAN interface. Check if you want the router DHCP clients to be able to use the DNS servers whose IP addresses you enter in this window. Refresh, Apply Changes, Discard Changes Buttons Visible if you are editing an initial configuration. Click Cisco SDM Express Buttons for more information.
Chapter 1 Cisco SDM Express Internet (WAN): Ethernet Interface IP Unnumbered Option Select IP Unnumbered if you want the interface to share an IP address that has already been assigned to another interface. Then, choose the interface whose IP address you want the interface that you are configuring to use. If you did not choose Enable PPPoE, this option is not available. Easy IP (IP Negotiated) Select Easy IP (IP Negotiated) if the router will obtain an IP address by PPP/IPCP address negotiation.
Chapter 1 Cisco SDM Express Internet (WAN): Autodetect Encapsulation Internet (WAN): Autodetect Encapsulation Cisco SDM Express supports autodetect on SB 106, SB 107, Cisco 836 and Cisco 837 routers. However, if you are configuring a Cisco 837 router running a Cisco IOS release 12.3(8)T or 12.3(8.3)T, the autodetect feature is not supported. Click the Autodetect button to have Cisco SDM Express discover the encapsulation type.
Chapter 1 Cisco SDM Express Internet (WAN): User Specified Encapsulation Encapsulation List The encapsulations available if you have an ADSL, G.SHDSL, or ADSL over ISDN interface are shown in the following table. Encapsulation Description PPPoE Provides Point-to-Point Protocol over Ethernet encapsulation. An ATM subinterface and a dialer interface are created when you configure PPPoE over an ATM interface. These logical interfaces will be visible in the Summary window.
Chapter 1 Cisco SDM Express Internet (WAN): User Specified Encapsulation Address Type List Select one of the following: • Static IP Address—If you choose static IP address, enter the IP address and subnet mask or the subnet bits in the fields provided. • Dynamic (DHCP Client)—If you choose Dynamic, the router will lease an IP address from a remote DHCP server. Enter the name of the DHCP server that will assign addresses.
Chapter 1 Cisco SDM Express WAN Interface Selection Confirm Password Field Reenter the same password that you entered in the previous box. Refresh, Apply Changes, Discard Changes Buttons Visible if you are editing an initial configuration. Click Cisco SDM Express Buttons for more information. WAN Interface Selection Cisco SDM Express allows you to configure one WAN connection. If your router has multiple WAN interfaces, select the interface that you want to configure in this window.
Chapter 1 Cisco SDM Express WAN Interface Selection Interface List Displays the interface name, IP address, and interface type for all WAN interfaces. If no IP address is configured for an interface, the text “no IP address” is displayed. Note If you did not configure the default LAN interface with a new IP address in the LAN Interface Configuration window, it is listed in this window, and can be configured as a WAN interface. Refresh Button Visible if you are editing an initial configuration.
Chapter 1 Cisco SDM Express WAN Interface Selection • Username—Enter exactly as given to you by your Internet service provider or network administrator and is used as the username for CHAP and/or PAP authentication. • Password—Enter exactly as given to you by your service provider. Passwords are case sensitive. For example, the password “test” is not the same as “Test”. • Confirm Password—Reenter the same password that you entered in the previous box.
Chapter 1 Cisco SDM Express WAN Interface Selection Frame Relay Configuration Settings DLCI Field Enter the data link connection identifier (DLCI) in this field. This number must be unique among all DLCIs used on this interface. The DLCI provides a unique frame-relay identifier for this connection. If you are editing an existing connection, the DLCI field is disabled. If you need to change the DLCI, delete the connection and create it again.
Chapter 1 Cisco SDM Express Internet (WAN): Advanced Options Internet (WAN): Advanced Options This window enables you to specify a default static route and to enable NAT on the router. Create Default Route Check Box A default static route specifies an IP address or interface that the router will send traffic to when the traffic is bound for a network that the router has not learned.
Chapter 1 Cisco SDM Express Firewall Configuration Primary DNS Field Enter the IP address of the primary Domain Name Server (DNS) that the router will use. Your network administrator or service provider will provide you with the IP address. The primary DNS server is the server that the router contacts first when attempting to resolve an IP address.
Chapter 1 Cisco SDM Express Security Settings The firewall protects your network in the following ways: • Apply default access rules to inside and outside interfaces—Cisco SDM Express creates and applies a list of default access rules that, among other things, permit DNS and HTTP traffic and deny the private IP address space. • Apply default inspection rules to outside interface—Cisco SDM Express creates and applies a list of default inspection rules.
Chapter 1 Cisco SDM Express Security Settings Disable SNMP Services on Your Router Check Box Check to disable the SNMP service on your router. For an explanation of why SNMP should be disabled, see the help topic Disable SNMP. Disable Services that Involve Security Risks Check Box Check to disable the following services on the router.
Chapter 1 Cisco SDM Express Summary • Enable IP CEF • Set Scheduler Interval • Set Scheduler Allocate • Set TCP Synwait Time • Enable Logging • Enable Unicast RPF on Outside Interfaces Enhance Security on Router Access Check Box Check to implement the following security-enhancing configurations on your router.
Chapter 1 Cisco SDM Express Supplementary Help Note When you click Finish, you will lose the connection to the router if you gave the LAN interface a new IP address as we recommend. To be able to reconnect to the router, you must ensure that the PC remains in the same subnet as the router and then enter the new IP address you gave the LAN interface. Click Reconnecting to the Router After Initial Configuration for more information.
Chapter 1 Cisco SDM Express Supplementary Help server and obtain the configuration. If your service provider has not provided Cisco Network Services server information, or you want to configure the router using Cisco SDM Express, do not select this option. You will not be able to use Cisco Network Services if: • Your router has no installed WAN interfaces, or the router has a WAN interface that Cisco SDM Express does not support.
Chapter 1 Cisco SDM Express Supplementary Help widely used for router monitoring, and frequently for router configuration changes. Version 1 of SNMP, however, which is the most commonly used, is often a security risk for the following reasons: • It uses authentication strings (passwords) called community strings which are stored and sent across the network in plain text. • Most SNMP implementations send those strings repeatedly as part of periodic polling.
Chapter 1 Cisco SDM Express Supplementary Help The configuration that will be delivered to the router to disable PAD is as follows: no service pad You can undo this fix using the Cisco SDM Security Audit feature. To learn how, see the Security Audit online help in Cisco SDM. For more information, click Cisco Router and Security Device Manager. Disable TCP Small Servers Service Cisco SDM Express disables small services whenever possible. By default, Cisco devices running Cisco IOS release 11.
Chapter 1 Cisco SDM Express Supplementary Help Disable UDP Small Servers Service Cisco SDM Express disables small services whenever possible. By default, Cisco devices running Cisco IOS release 11.3 or earlier offer the “small services”: echo, chargen, and discard. (Small services are disabled by default in Cisco IOS software release 12.0 and later.
Chapter 1 Cisco SDM Express Supplementary Help The configuration that will be delivered to the router to disable BOOTP is as follows: no ip bootp server You can undo this fix using the Cisco SDM Security Audit feature. To learn how, see the Security Audit online help in Cisco SDM. For more information, click Cisco Router and Security Device Manager. Disable IP Identification Service Cisco SDM Express disables identification support whenever possible.
Chapter 1 Cisco SDM Express Supplementary Help no cdp run You can undo this fix using the Cisco SDM Security Audit feature. To learn how, see the Security Audit online help in Cisco SDM. For more information, click Cisco Router and Security Device Manager. Disable IP Source Route Cisco SDM Express disables IP source routing whenever possible.
Chapter 1 Cisco SDM Express Supplementary Help You can undo this fix using the Cisco SDM Security Audit feature. To learn how, see the Security Audit online help in Cisco SDM. For more information, click Cisco Router and Security Device Manager. Enable Netflow Switching Cisco SDM Express enables Netflow switching whenever possible.
Chapter 1 Cisco SDM Express Supplementary Help Enable TCP Keepalives for Outbound Telnet Sessions Cisco SDM Express enables TCP keepalive messages for both inbound and outbound Telnet sessions whenever possible. Enabling TCP keepalives causes the router to generate periodic keepalive messages, letting it detect and drop broken Telnet connections.
Chapter 1 Cisco SDM Express Supplementary Help The configuration that will be delivered to the router to enable Cisco Express Forwarding is as follows: ip cef Set Scheduler Interval Cisco SDM Express configures the scheduler interval on the router whenever possible. When a router is fast-switching a large number of packets, it is possible for the router to spend so much time responding to interrupts from the network interfaces that no other work gets done.
Chapter 1 Cisco SDM Express Supplementary Help Set TCP Synwait Time Cisco SDM Express sets the TCP synwait time to 10 seconds whenever possible. The TCP synwait time is a value that is useful in defeating SYN flooding attacks, a form of Denial-of-Service (DoS) attack. A TCP connection requires a three-phase handshake to initially establish the connection.
Chapter 1 Cisco SDM Express Supplementary Help The configuration that will be delivered to the router to set the TCP synwait time to 10 seconds is as follows: ip tcp synwait-time <10> Enable Logging Cisco SDM Express will enable logging with time stamps and sequence numbers whenever possible. Because it gives detailed information about network events, logging is critical in recognizing and responding to security events.
Chapter 1 Cisco SDM Express Supplementary Help enabled, Cisco SDM Express will recommend that IP Cisco Express Forwarding be enabled and will enable it if the recommendation is approved. If IP Cisco Express Forwarding is not enabled, by Cisco SDM Express or otherwise, unicast RPF will not be enabled.
Chapter 1 Cisco SDM Express Supplementary Help rules; some attacks are based on this. Disabling ICMP redirects will cause no operational impact to the network, and it eliminates this possible method of attack. The configuration that will be delivered to the router to disable ICMP redirect messages is as follows: no ip redirects Disable IP Proxy ARP Cisco SDM Express disables proxy Address Resolution Protocol (ARP) whenever possible. ARP is used by the network to convert IP addresses into MAC addresses.
Chapter 1 Cisco SDM Express Supplementary Help directed broadcast address, causing all the hosts on the target subnet to send replies to the falsified source. By sending a continuous stream of such requests, the attacker can create a much larger stream of replies, which can completely inundate the host whose address is being falsified. Disabling IP directed broadcasts causes directed broadcasts that would otherwise be “exploded” into link-layer broadcasts at that interface to be dropped instead.
Chapter 1 Cisco SDM Express Supplementary Help The configuration that will be delivered to the router to disable ICMP host unreachable messages is as follows: int no ip unreachables You can undo this fix using the Cisco SDM Security Audit feature. To learn how, see the Security Audit online help in Cisco SDM. For more information, click Cisco Router and Security Device Manager.
Chapter 1 Cisco SDM Express Supplementary Help The configuration that will be delivered to the router is as follows: security passwords min-length <6> Set Authentication Failure Rate to Less Than 3 Retries Cisco SDM Express configures your router to lock access after 3 unsuccessful login attempts whenever possible. One method of cracking passwords, called the “dictionary” attack, is to use software that attempts to log in using every word in a dictionary.
Chapter 1 Cisco SDM Express Supplementary Help Enable Telnet Settings Cisco SDM Express secures the console, AUX, vty, and tty lines by implementing the following configurations whenever possible: • Configures transport input and transport output commands to define which protocols can be used to connect to those lines. • Sets the exec-timeout value to 10 minutes on the console and AUX lines, causing an administrative user to be logged out from these lines after 10 minutes of no activity.
Chapter 1 Cisco SDM Express Supplementary Help The configuration that will be delivered to the router to secure access and file transfer functions is as follows: ip ssh time-out 60 ip ssh authentication-retries 2 ! line vty 0 4 transport input ssh ! Cisco SDM Express Buttons Help Button Click to open a new browser window and show information about the Cisco SDM Express window displayed. About Button Clicking About displays a window containing Cisco SDM Express version information.
Chapter 1 Cisco SDM Express Supplementary Help Exit Button After you complete an initial configuration, click Exit to close Cisco SDM Express. Refresh Button Visible if you are editing an initial configuration. Click Refresh to refresh the router data in Cisco SDM Express. Apply Changes Button Visible if you are editing an initial configuration. Click Apply Changes to deliver changes you have made to the router. Discard Changes Button Visible if you are editing an initial configuration.
Chapter 1 Cisco SDM Express Supplementary Help Step 2 If you configured a different LAN interface than the default interface, be sure to connect your PC to the LAN interface that you configured. For example, if you configured FE 0/1 and not FE 0/0 as the LAN interface, be sure to connect you PC to FE 0/1. Step 3 After preparing the PC, reconnect your PC to the router by entering the new IP address that you gave the router’s LAN interface in the browser (http://new IP address).
Chapter 1 Cisco SDM Express SDP Troubleshooting Tips SDP Troubleshooting Tips Use this information before enrolling using Secure Device Provisioning (SDP) to prepare the connection between the router and the certificate server. If you experience problems enrolling, you can review these tasks to determine where the problem is. When SDP is launched, you must minimize the browser window displaying this help topic so that you can view the SDP web application.
C H A P T E R 2 Cisco SDM Express Edit Mode SDM Express edit screens allow you to make changes to your LAN and WAN configurations, and change firewall, NAT, PAT, routing, and security settings. Overview The Overview window provides you with basic information about the router LAN, WAN, and Firewall configurations. Icons Up. The interface is up. Active. The Firewall is active. Down. The interface is down. Inactive.
Chapter 2 Cisco SDM Express Edit Mode Overview • Interface—The name of the LAN interface. For example, Fast Ethernet 0. If SDM Express cannot identify the router’s LAN interfaces, it displays the number of configured LAN interfaces in this field. • IP/Mask—The IP address followed by the number of subnet bits, which represents the subnet mask. LAN IP addresses are often drawn from the private IP address range. For example an IP address of 10.10.10.1 using a subnet mask of 255.255.255.
Chapter 2 Cisco SDM Express Edit Mode Basic Configuration • Outside—The type of connection of the Internet interface. Basic Configuration This window displays the user accounts configured on the router, and enables you to change the enable secret password. The enable secret password must be used to enter IOS CLI Enable mode. If you want to add or remove user accounts, you can do so using Cisco Router and Security Device Manager (SDM).
Chapter 2 Cisco SDM Express Edit Mode LAN Refresh/Apply Changes/Discard Changes Buttons These buttons are visible if you editing an initial configuration. Click Cisco SDM Express Buttons for more information. Edit a Username Edit a user account in the fields provided in this window. User Name Field Edit the username in this field. Password Field Enter or edit the password in this field. Reenter the password in the Confirm Password field.
Chapter 2 Cisco SDM Express Edit Mode Wireless LAN interface configuration Fields You can edit the IP address and subnet mask of the LAN interface in these fields. See IP Address Field if you need more information about the IP address and subnet mask fields. Wireless The Wireless window appears when your router has a wireless interface. If you need to configure advanced wireless parameters, click Launch Wireless Application. Refresh Button This button is visible if you editing an initial configuration.
Chapter 2 Cisco SDM Express Edit Mode Delete Connection Delete Connection When you delete a connection, there may be associated configuration commands that can either be retained in the configuration, or deleted along with the connection. Click View Details to display these associations. Click Hide Details to hide association details. Click Automatically delete all associations if you want SDM Express to remove the associations along with the connection.
Chapter 2 Cisco SDM Express Edit Mode NAT Unable to configure Firewall Window If SDM Express is unable to let you configure a firewall, the Unable to configure Firewall window is displayed. The following are reasons why you may not be able to configure a firewall: • The router is a fixed-port router and there is not exactly one LAN and one WAN interface configured. • The router is a modular router, or there are more than two interfaces configured.
Chapter 2 Cisco SDM Express Edit Mode NAT Add Button Click to add a new NAT rule. Edit Button Click to edit the chosen NAT rule. Refresh Button This button is visible if you editing an initial configuration. Click Cisco SDM Express Buttons for more information. Add or Edit Address Translation Rule In this window you can enter or edit the IP address translation information for a server. Private IP Address Enter the IP address that the server uses on your internal network.
Chapter 2 Cisco SDM Express Edit Mode Routing The server is not a web or email server, but requires port translation to provide service. This choise activates the Translated Port field and the Protocol drop-down menu. If you do not choose a server type, all traffic intended for the public IP address you choose for the server will be routed to it, and no port translation will be done. Original Port Enter the port number used by the server to accept service requests from the internal network.
Chapter 2 Cisco SDM Express Edit Mode Security Settings Refresh/Apply Changes/Discard Changes Buttons These buttons are visible if you are editing an initial configuration. Click Cisco SDM Express Buttons for more information. Security Settings This window lets you disable features that are on by default in the Cisco IOS software, but that can create security risks, or make the router send messages at such a high volume that it would use up its available memory.
Chapter 2 Cisco SDM Express Edit Mode Security Settings • Disable IP Redirects • Disable IP Proxy ARP • Disable IP Directed Broadcast • Disable MOP Service • Disable IP Unreachables • Disable IP Mask Reply Enable Services for Enhanced Security on the Router/Network Checkbox Check this box to enable the following security-enhancing features and services on your router.
Chapter 2 Cisco SDM Express Edit Mode Tools Tools SDM Express provides a number of tools that you can use Ping Option Click to open a window in which you can specify the source and destination of the ping. See Ping for more information. Telnet Option Displays the Windows Telnet dialog box, letting you connect to your router and access the Cisco IOS command-line interface (CLI) using the Telnet protocol. Cisco SDM Option Click to launch Cisco Router and Security Device Manager (SDM) .
Chapter 2 Cisco SDM Express Edit Mode Tools Source Field Select or enter the IP address where you want the ping to originate. If the address you want to use is not in the list, you can enter a different one in the field. The ping can originate from any interface on the router. By default, the ping command originates from the outside interface with the connection to the remote device. Destination Field Select the IP address that you want to ping.
Chapter 2 Cisco SDM Express Edit Mode Tools CCO Login You must provide a CCO login and password to access this web page. Provide a username and password, and then click OK. If you do not have a CCO login and password, you can obtain one by opening a web browser and going to the Cisco website at the following link: http://www.cisco.com When the webpage opens, click Register and provide the necessary information to obtain a username and password. Then, try this operation again.
Chapter 2 Cisco SDM Express Edit Mode Date and Time Properties Step 3 SDM will enable you to locate the file SDM-Updates.xml on the CD. When you locate the file, click Open. Step 4 Follow the instructions in the installation wizard. Date and Time Properties Use this window to make router date and time settings. You can have SDM Express synchronize settings with the PC, or you can make settings manually.
Chapter 2 Cisco SDM Express Edit Mode Reset to Factory Defaults Apply Button Click to apply the date and time settings you have made in the Date, Time, and Time Zone fields. Reset to Factory Defaults You can reset the configuration of the router to factory defaults and save the current configuration to a file that can be used later. If you changed the router’s LAN IP address from the factory value 10.10.10.
Chapter 2 Cisco SDM Express Edit Mode Reset to Factory Defaults If you have one of these routers, configure the PC to obtain an IP address automatically SB10x, Cisco 83x, 85x, 87x, 1701, 1710, 1711, and 1712, 180x and 181x. If you have a router listed in the following table, configure the PC with an IP address in the 10.10.10.0 subnet, between 10.10.10.2 and 10.10.10.6 using a subnet mask of 255.255.255.248. Consult Reconfiguring Your PC with a Static or a Dynamic IP Address to learn how to do this.
Chapter 2 Cisco SDM Express Edit Mode Reset to Factory Defaults Microsoft Windows NT From the Control Panel, double-click the Network icon to display the Network window. Click Protocols, select the first TCP/IP Protocol entry, and click Properties. In the Properties window, select the Ethernet adapter used for this connection. Click Obtain an IP Address Automatically to obtain a dynamic IP address. For a static IP address, click Specify an IP address. Enter the IP address 10.10.10.
Chapter 2 Cisco SDM Express Edit Mode Feature Not Available Feature Not Available This window appears when the feature you are attempting to configure is not available. This may occur when the IOS image or the router hardware does not support the feature.
Chapter 2 Cisco SDM Express Edit Mode Feature Not Available Cisco SDM Express 2-20 OL-7141-04
I N D EX B F banner, configuring 41 finger service, disabling 27 BOOTP, disabling 29 Frame Relay DLCI 19 IETF encapsulation 19 C LMI type 19 CDP, disabling 30 CEF, enabling 33 CHAP 12, 15 G gratuitous ARP requests, disabling 37 D DHCP 11, 15 I DLCI 19 ICMP host unreachable messages, disabling 39 dynamic IP address 11, 15 ICMP mask reply messages, disabling 40 ICMP redirect messages, disabling 37 IETF encapsulation 19 E IP address encapsulation dynamic 11, 15 IETF 19 negotiated 12, 15
Index L S LMI 19 scheduler allocate 34 logging scheduler interval 34 enabling 36 enabling sequence numbers and time stamps 33 SDP troubleshooting 46 sequence numbers, enabling 33 SNMP, disabling 26 SSH M enabling 42 MOP service, disabling 39 T N TCP keep-alive message, enabling 32, 33 NetFlow, enabling 32 TCP small servers, disabling 28 TCP synwait time 35 text banner, configuring 41 P time stamps, enabling 33 PAD service, disabling 27 PAP 12, 15 U passwords enabling encryption 31 UDP small
