...

Thursday, March 4, 2010

Misc 1

To configure an NTP master:1) Set the timezone
conf t
clock time SGT 8


2) Set the time
exit
clock set 7:12:00 4 March 2010


3) Specify that the router is the master
conf t
ntp master


To specify an NTP server:
1) Set the timezone
conf t
clock time SGT 8


2) Specify the server
ntp server 192.168.1.1

To do NTP authentication, type this in global configuration:
ntp authenticate
ntp authentication-key 1 cisco
ntp trusted-key 1


If the logging happen to use the wrong timezone, manually set the service through:
service timestamp log datetime msec local
service timestamp debug datetime msec local


In RIP, to manually change the hop count of certain paths, we must first manually disable auto summary:
conf t
router rip
no auto


Next, proceed to create a standard access-list that matches the affected routes:
ip access-l standard OFFSET
permit 192.168.1.0 0.0.0.255


Finally, apply the list to RIP as an offset-list:
conf t
router rip
offset-list OFFSET 8


Likewise, to prevent certain routes from coming in or out, create a standard access-list that matches the affected routes, then apply it as a distribute-list either inbound or outbound.

To do RIP authentication, first set all routers to use RIP version 2:
router rip
ver 2


Then create a key-chain:
key-chain KEYCHAIN
key 1
key-string cisco


Next, apply it the affected interfaces:
int f0/0
ip rip authentication mode md5
ip rip authentication key KEYCHAIN


To do route summarization in RIP, go to participating interface and type:
ip summary-address rip 192.168.1.0 255.255.255.0

To make RIPv2 use broadcast, go under the interface and type:
ip rip v2-broadcast

To use RIP unicast, specify all participating interfaces as passive:
router rip
passive-interface f0/0
passive-interface f0/2


Next, specify the neighbors you want to send unicast updates to:
neighbor 192.168.1.1
neighbor 192.168.1.2


To change RIP timers:
timers basic update invalid holddown flush

By default, update is 30, invalid is 180, holddown is 180, and flush is 60.

To restrict the version of updates allowed through an interface, go under the interface and type:
ip rip send version 2
ip rip receive version 2

No comments :

Post a Comment

<