Packet Lab
Loading...
1,045
subscribers
248,423
video views
Featured Playlists
Cisco IOS CLI Modes
To aid in the configuration of Cisco devices, the Cisco IOS command-line interface is divided into different command modes. Each command mode has its own set of commands available for the configuration, maintenance, and monitoring of router and network operations. The commands available to you at any given time depend on the mode you are in.
6 videos
Play all(6)
6 videos
Play all(6)
MPLS Basics PHP
Penultimate Hop Popping (PHP) is a function performed by certain routers in an MPLS enabled network. It refers to the process whereby the outermost label of an MPLS tagged packet is removed by a Label Switch Router (LSR) before the packet is passed to an adjacent Label Edge Router (LER).
6 videos
Play all(6)
6 videos
Play all(6)
Cisco AutoSecure
AutoSecure is valuable to customers without special Security Operations Applications because it allows them to quickly secure their network without thorough knowledge of all the Cisco IOS features.
This feature eliminates the complexity of securing a router by creating a new CLI that automates the configuration of security features and disables certain features enabled by default that could be exploited for security holes.
This command takes you through a semi-interactive session (also known as the AutoSecure dialogue) in which to secure the management and forwarding planes. This command gives you the option to secure just the management or forwarding plane; if neither option is selected, the dialogue will ask you to configure both planes.
The biggest advantage of using AutoSecure is that you can harden a router with a single command. This is a blessing and a curse. The command is intended to assist those who dont know much about routers and and want to make sure their device is secure. The problem with this is that if you dont know much about routers then youre going to have a hell of a time troubleshooting any issues brought on by AutoSecure.
7 videos
Play all(7)
7 videos
Play all(7)
Configuring Syslog Server On Cisco Routers With SDM
While using a syslog server is usually considered a necessity in larger networks, I would argue that even very small networks can benefit greatly from implementing a syslog server. In some industries a syslog server may be mandated as part of a larger security/audit process. Using a remote syslog server rather than just the local logging buffer on Cisco devices gives you a number of advantages such as message persistence, event correlation across devices, and advanced message searching/sorting to name a few examples.
Basic syslog server configuration on a Cisco device is ridiculously easy (logging host x.x.x.x). Cisco SDM allows you to configure the local syslog buffer as well as configure the router to use a remote syslog server. The syslog options available to you via SDM are pretty limited. I would strongly advise reviewing syslog configuration on the CLI to get a better grasp of the various options you can configure.
7 videos
Play all(7)
7 videos
Play all(7)
Advertisement
