Cisco router optical fiber access settings

 

Analysis of Cisco Broadband Access configuration method

 

China Telecom's bandwidth is 2 M and the assigned fixed IP Address: 202.249.11.101 subnet mask: 255.255.255.255.248 Gateway: 202.249.11.20
Planned LAN address range: 192.168.0.2-192.168.0.254 subnet mask: 255.255.255.248 Gateway: 192.168.0.1
The vro provides a 1721 M Adaptive port for Cisco 10/100. Next, we need to configure a 1ENET expansion card with a 10 M RJ45 port on the card. We use the 1ENET port as the Internet port and the port on the machine as the Intranet port.

The configuration process is as follows:

Router> en // enter the privileged Configuration Mode
Router # configure terminal // enter the global configuration mode
Enter configuration commands, one per line. End with CNTL/Z)
Router <config> # interface FastEthernet 0 // first enter the Intranet port (the built-in port of the device)
Router <config-if> # ip address 192.168.0.1 255.255.255.0 // specify the ip address and subnet mask of the Intranet Port
Router <config-if> # ip nat inside // defines this port as an "internal port" for address translation (NAT"
Router <config-if> # no shutdown // make the port "running"
Router <config-if> # exit // return

Router <config> # interface Ethernet 0 // enter the Internet port (the port above 1ENET)
Router <config-if> # ip address 202.249.11.101 255.255.255.255.248 // specify the Internet port ip address and subnet mask
Router <config-if> # ip nat outside // defines this port as an "external port" for address translation (NAT"
Router <config-if> # no shutdown // make the port "running"
Router <config-if> # exit // return

Router <config> # ip router 0.0.0.0 0.0.0.0 202.249.11.20 // define the route address

 

 

Router <config> # no access-list 1 // cancel the access control list "1" in the factory status"
Router <config> # access-list 1 permit 192.168.0.0 0.0.255 // redefine the "1" in the access control list as "allowed CIDR blocks of 192.168.0.0/24"

Router <config> # ip nat pool nanpool 202.249.11.97 202.249.11.102 netmask 255.255.255.248 // defines the policy for allocating public ip addresses applied from the ISP supplier to the Enterprise, here we define an address pool named "nanpool". The IP addresses (from 202.249.11.97 to 202.249.11.102) defined in this pool will be used by Intranet users to access the Internet.
If the ISP only gives you one ip address (for example, 202.249.11.101), you can write "ip nat pool nanpool 202.249.11.101 202.249.11.101 netmask 255.255.255.248" here"
Router <config> # ip nat inside source list 1 pool nanpool overload // bind the access control list "1" to the address pool "nanpool. This means that when all users in the "192.168.0.0" network segment access the Internet, their intranet addresses will be converted to any Internet address in "202.249.11.97-202.249.11.102. The subsequent "overload" indicates that if there is more than the number of addresses defined in the address pool (for example, there were 6 users accessing the internet, their respective Internet addresses are 202.249.11.97, 202.249.11.98, 202.249.11.99, 202.249.11.100, 202.249.11.101, and 202.249.11.102. Now, 30 users suddenly access the Internet, and then they will execute a task according to the above command, that is, to allow multiple Intranet users to use the same Internet address. In this way, the nanpool address pool can drive all users on the Intranet to access the Internet. Therefore, this command is very important !).

Router <config> # enable password 12345 // set the password to "12345"
Router <config> # enable secret 12345 // set the privileged ciphertext to "12345"

Router <config> # line console 0 // enter the "0" Port of the main console
Router <config-line> # password cisco // set the logon password on the console to "cisco"
Router <config-line> # login // set the "0" Port of the console to "Allow Logon"
Router <config-line> # exit // exit

Router <config> # line vty 0 4 // enter VTY (LOGIN ue terminal line virtual terminal, usually for Telnet login)
Router <config-line> # password cisco // set the password for virtual terminal login to "cisco"
Router <config-line> # exec-timeout 5 0 // After logging on to the vro, The vro。 will be disconnected after 5 minutes 0 seconds without any operation. If you do not enter this command, when you enter the vro without entering any content, the vro will be automatically kicked out 10 minutes later. The complete format of the "exec-timeout" command is exec-timeout x (that is, exec-timeout in seconds). Note: if you enter "exec-timeout 0 0" here, it means that you will always be connected to the vro, unless you have your own logout.

Router <config-line> # login // do not forget this last login ~ This is an important command to allow virtual terminal login.

Now the configuration process is complete.

In the preceding configuration, the DHCP function is not enabled on the vrodhcp. Therefore, if you want to access the Internet, you must set the NIC. Example:

The IP address of the client Nic is set to 192.168.0.3 subnet mask: 255.255.255.0 Gateway: 192.168.0.1
Primary DNS address: 202.106.0.20 secondary DNS address: 202.106.46.151

However, most of my friends who use Cisco routers will set up a DHCP server in the LAN to work and assign IP addresses to machines in the LAN.

Saves the route memory. We recommend that you use this network. By the way, when talking about the vro memory, I will introduce some common commands to you. Remember this ~
The following commands are all in the "Router #" status:

Show version: displays the hardware configuration, software version, source and name of the configuration file, and startup image of the system.
Show processes: displays the current active process
Show protocols: displays the configured Protocol
Show memory: displays the memory information of the vro.
Show ip route: displays route table information
Show flash: displays flash device information
Show running-config: displays the current activity information
Show startup-config: displays the backup configuration file.
Show interfaces: displays the configured port attributes. For example, show interface eth0 displays the configuration information of Ethernet 0.