Cisco 7513 Router

aliveboonevilleNetworking and Communications

Oct 28, 2013 (3 years and 10 months ago)

249 views

Cisco 7513 Route
r
운영자

M anual






Cisco 7513 Router

운영자

Manual


Cisco 7513 Route
r
운영자

M anual


1. C isco 7513 R outer


접속하는

방법
.

처음

구성하는

경우

IP
주소를

입력하기

위해

반드시

Console


사용하여

연결하여야

하며

이미

IP
주소가

입력되어

있으면

Telnet


이용하여

접속할



있다
.


Console


이용하는

경우
.

Cisco 2501 Router


Console Port


Console Cable


PC


Notebook


연결하여

터미널

에뮬레이터
(
하이퍼터미널
,
이야기

등등
)


실행시킨다
.
이때

에뮬레이터의

Setting


9600,
Data bit 8, No parity


설정한다
.


Telnet


이용하는

경우
.

telnet
기능을

이용하는

에뮬레이터
(
가상단말기
, NetTerm, telnet
등등
)


이용하여

Cisco
2501 Router


설정되어

있는



인터페이스의

IP


사용하여

접속할



있다
.


접속시

화면은

다음과

같다
. (telnet 210.181.152.254




경우
)



암호는

telnet


이용하여

접속하기

위한

Password


지정한다
.
현재

Password


router
이다
.


상태에서는

설정을

수정할

수는

없고

확인만

가능하다
.

위와

같이

enable


하고

Password


router


입력하면

아래

#


표시된

프롬프트가


력된다
.


상태에서는

설정값을

변경할



있다
.


2.
현재

설정되어

있는

c onfiguration


보는

방법

副畴敲R
show configuration

Using 881
out of 32762 bytes

!

癥牳楯渠ㄲ⸰

獥牶楣攠瑩浥獴慭灳t摥扵朠異瑩浥

獥牶楣攠瑩浥獴慭灳t汯朠異瑩浥

no service password
-
encryption

!

桯獴湡浥h此湥k

!

enable secret 5 $1$rGET$/3ctkC.ZT.u.DKjgOqvO5/

enable password kdnet

Cisco 7513 Route
r
운영자

M anual


!

ip subnet
-
zero

!

!

!

interface Ethernet
0


ip address 211.106.168.254 255.255.255.224


ip directed
-
broadcast


no ip mroute
-
cache

!

interface Serial0


ip address 172.16.146.146 255.255.255.252


no ip directed
-
broadcast


no ip mroute
-
cache

!

interface Serial1


no ip address


no ip directed
-
broadca
st


no ip mroute
-
cache


shutdown

!

ip classless

ip route 0.0.0.0 0.0.0.0 172.16.146.145

ip route 211.106.168.128 255.255.255.192 211.106.168.226

ip route 211.106.168.224 255.255.255.224 172.16.146.145

!

snmp
-
server community public RO

snmp
-
server community

enable RO

snmp
-
server community string RO

!

line con 0

transport input none

line aux 0

line vty 0 4

password kdnet

login

Cisco 7513 Route
r
운영자

M anual


!

end


Router#


위에서

각각의

메뉴

체계는

디렉토리와

같은

체계로서

전단의

메뉴로

들어가서

이후의

명령
어를

수행한다
.
입력은

상기의

내용대로

입력해주면

된다
.



3.
라우터의



인터페이스가

정상인지

확인하는

방법
.


副畴敲R
show interface

䕴桥牮整〯E 楳i異Ⱐ汩湥l灲潴潣潬p楳i異


䡡牤睡牥H楳i捸䉵猠䕴桥牮整Ⱐ慤摲敳猠楳i〰〲⸷搳愮挰0〠⡢楡(〰〲⸷搳愮0〰0)



ternet address is 211.106.168.254/27


MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec, rely 255/255, load 4/255


䕮捡灳畬慴楯渠䅒偁Ⱐ汯潰扡捫l湯琠獥琬s步数慬楶攠獥琠⠱〠獥挩


ARP type: ARPA, ARP Timeout 04:00:00


Last input 00:00:00, output 00:00:00, outp
ut hang never


Last clearing of "show interface" counters 1w3d


兵敵敩湧Q獴牡瑥杹㨠晩景


Output queue 0/40, 0 drops; input queue 0/75, 0 drops


㔠浩湵瑥5楮灵琠牡瑥r㈶〰〠扩瑳⽳散Ⱐㄸ1灡捫整猯獥p


㔠浩湵瑥5潵瑰畴o牡瑥rㄷ㌰〰1扩瑳⽳散Ⱐ㈳2灡捫整猯獥p



㘱ㄶ㐱여灡捫整猠楮灵琬i㌳㘷㈶㔰〰 批瑥猬b〠湯n扵晦敲


剥捥楶敤R㈵㘵㐹2扲潡摣慳瑳b 〠牵湴猬r〠杩慮瑳Ⱐ〠瑨牯瑴汥t


〠楮灵琠敲牯牳Ⱐ〠䍒䌬C〠晲慭攬f〠潶敲牵測o〠楧湯牥搬i〠慢潲a


〠楮灵琠灡捫整猠睩瑨w摲楢扬攠捯湤楴楯渠摥瑥捴敤


㜰㌶㔸여灡p
kets output, 588476731 bytes, 0 underruns


〠潵瑰畴0敲牯牳Ⱐ㐳㔰㤶4捯汬楳楯湳Ⱐ〠楮瑥牦慣攠牥獥瑳


〠扡扢汥猬0〠污瑥l捯汬楳楯測c〠摥晥牲敤


0 lost carrier, 0 no carrier


〠潵瑰畴0扵晦敲b晡楬畲敳Ⱐ〠潵瑰畴o扵晦敲猠獷慰灥搠潵o

䕴桥牮整〯E 楳i
up, line protocol is up


䡡牤睡牥H楳i捸䉵猠䕴桥牮整Ⱐ慤摲敳猠楳i〰〲⸷搳愮挰0ㄠ⡢楡(〰〲⸷搳愮0〰0)


䥮瑥牮整I慤摲敳猠楳i㈱ㄮ㄰㘮ㄶ㠮8㔸5㈷

Cisco 7513 Route
r
운영자

M anual



MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec, rely 255/255, load 7/255


Encapsulation ARPA, loopback not set, k
eepalive set (10 sec)


ARP type: ARPA, ARP Timeout 04:00:00


Last input 00:00:00, output 00:00:00, output hang never


Last clearing of "show interface" counters 1w3d


Queueing strategy: fifo


Output queue 0/40, 0 drops; input queue 0/75, 0 drops


5 m
inute input rate 472000 bits/sec, 81 packets/sec


5 minute output rate 277000 bits/sec, 83 packets/sec


21088848 packets input, 224389000 bytes, 0 no buffer


Received 757284 broadcasts, 0 runts, 0 giants, 0 throttles


0 input errors, 0 CRC, 0
frame, 0 overrun, 0 ignored, 0 abort


0 input packets with dribble condition detected


13127732 packets output, 3796394307 bytes, 0 underruns


0 output errors, 569625 collisions, 0 interface resets


0 babbles, 0 late collision, 0 deferred



0 lost carrier, 0 no carrier


0 output buffer failures, 0 output buffers swapped out

Serial4/0/0 is up, line protocol is up


Hardware is cyBus Serial


Description: ** 512K **


Internet address is 172.16.146.146/30


MTU 1500 bytes, BW 1544 Kbit,

DLY 20000 usec, rely 255/255, load 81/255


Encapsulation HDLC, crc 16, loopback not set, keepalive set (10 sec)


Last input 00:00:00, output 00:00:00, output hang never


Last clearing of "show interface" counters 1w3d


Input queue: 0/75/0 (size/max/dr
ops); Total output drops: 2507


Queueing strategy: weighted fair


Output queue: 7/1000/64/2507 (size/max total/threshold/drops)


Conversations 5/179/256 (active/max active/max total)


Reserved Conversations 0/0 (allocated/max allocated)


5 minu
te input rate 433000 bits/sec, 107 packets/sec


5 minute output rate 495000 bits/sec, 98 packets/sec


19042391 packets input, 2715970219 bytes, 0 no buffer


Received 0 broadcasts, 0 runts, 0 giants, 0 throttles


8287 input errors, 7557 CRC, 0
frame, 76 overrun, 0 ignored, 654 abort

Cisco 7513 Route
r
운영자

M anual



25074709 packets output, 1801158254 bytes, 0 underruns


0 output errors, 0 collisions, 3 interface resets


0 output buffer failures, 14550555 output buffers swapped out


0 carrier transitions


RT
S up, CTS up, DTR up, DCD up, DSR up

Serial4/0/1 is administratively down, line protocol is down


Hardware is cyBus Serial


MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255


Encapsulation HDLC, crc 16, loopback not set, keepalive s
et (10 sec)


Last input never, output never, output hang never


Last clearing of "show interface" counters 1w3d


Input queue: 0/75/0 (size/max/drops); Total output drops: 0


Queueing strategy: weighted fair


Output queue: 0/1000/64/0 (size/max total/t
hreshold/drops)


Conversations 0/0/256 (active/max active/max total)


Reserved Conversations 0/0 (allocated/max allocated)


5 minute input rate 0 bits/sec, 0 packets/sec


5 minute output rate 0 bits/sec, 0 packets/sec


0 packets input, 0 byt
es, 0 no buffer


Received 0 broadcasts, 0 runts, 0 giants, 0 throttles


0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort


0 packets output, 0 bytes, 0 underruns


0 output errors, 0 collisions, 0 interface resets


0 output b
uffer failures, 0 output buffers swapped out


0 carrier transitions


RTS down, CTS down, DTR down, DCD down, DSR down

Serial4/0/2 is administratively down, line protocol is down


Hardware is cyBus Serial


MTU 1500 bytes, BW 1544 Kbit, DLY 20000 u
sec, rely 255/255, load 1/255


Encapsulation HDLC, crc 16, loopback not set, keepalive set (10 sec)


Last input never, output never, output hang never


Last clearing of "show interface" counters 1w3d


Input queue: 0/75/0 (size/max/drops); Total output
drops: 0


Queueing strategy: weighted fair


Output queue: 0/1000/64/0 (size/max total/threshold/drops)


Conversations 0/0/256 (active/max active/max total)

Cisco 7513 Route
r
운영자

M anual



Reserved Conversations 0/0 (allocated/max allocated)


5 minute input rate 0 bits/sec, 0

packets/sec


5 minute output rate 0 bits/sec, 0 packets/sec


0 packets input, 0 bytes, 0 no buffer


Received 0 broadcasts, 0 runts, 0 giants, 0 throttles


0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort


0 packets output, 0
bytes, 0 underruns


0 output errors, 0 collisions, 0 interface resets


0 output buffer failures, 0 output buffers swapped out


0 carrier transitions


RTS down, CTS down, DTR down, DCD down, DSR down

Serial4/0/3 is administratively down, lin
e protocol is down


Hardware is cyBus Serial


MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255


Encapsulation HDLC, crc 16, loopback not set, keepalive set (10 sec)


Last input never, output never, output hang never


Last clearin
g of "show interface" counters 1w3d


Input queue: 0/75/0 (size/max/drops); Total output drops: 0


Queueing strategy: weighted fair


Output queue: 0/1000/64/0 (size/max total/threshold/drops)


Conversations 0/0/256 (active/max active/max total)



Reserved Conversations 0/0 (allocated/max allocated)


5 minute input rate 0 bits/sec, 0 packets/sec


5 minute output rate 0 bits/sec, 0 packets/sec


0 packets input, 0 bytes, 0 no buffer


Received 0 broadcasts, 0 runts, 0 giants, 0 throttles



0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort


0 packets output, 0 bytes, 0 underruns


0 output errors, 0 collisions, 0 interface resets


0 output buffer failures, 0 output buffers swapped out


0 carrier transitions


R
TS down, CTS down, DTR down, DCD down, DSR down

Serial4/0/4 is administratively down, line protocol is down


Hardware is cyBus Serial


MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255


Encapsulation HDLC, crc 16, loopback not set,
keepalive set (10 sec)

Cisco 7513 Route
r
운영자

M anual



Last input never, output never, output hang never


Last clearing of "show interface" counters 1w3d


Input queue: 0/75/0 (size/max/drops); Total output drops: 0


Queueing strategy: weighted fair


Output queue: 0/1000/64/0 (size/
max total/threshold/drops)


Conversations 0/0/256 (active/max active/max total)


Reserved Conversations 0/0 (allocated/max allocated)


5 minute input rate 0 bits/sec, 0 packets/sec


5 minute output rate 0 bits/sec, 0 packets/sec


0 packets i
nput, 0 bytes, 0 no buffer


Received 0 broadcasts, 0 runts, 0 giants, 0 throttles


0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort


0 packets output, 0 bytes, 0 underruns


0 output errors, 0 collisions, 0 interface resets



0 output buffer failures, 0 output buffers swapped out


0 carrier transitions


RTS down, CTS down, DTR down, DCD down, DSR down

Serial4/0/5 is administratively down, line protocol is down


Hardware is cyBus Serial


MTU 1500 bytes, BW 1544 Kbit,
DLY 20000 usec, rely 255/255, load 1/255


Encapsulation HDLC, crc 16, loopback not set, keepalive set (10 sec)


Last input never, output never, output hang never


Last clearing of "show interface" counters 1w3d


Input queue: 0/75/0 (size/max/drops); To
tal output drops: 0


Queueing strategy: weighted fair


Output queue: 0/1000/64/0 (size/max total/threshold/drops)


Conversations 0/0/256 (active/max active/max total)


Reserved Conversations 0/0 (allocated/max allocated)


5 minute input rate 0
bits/sec, 0 packets/sec


5 minute output rate 0 bits/sec, 0 packets/sec


0 packets input, 0 bytes, 0 no buffer


Received 0 broadcasts, 0 runts, 0 giants, 0 throttles


0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort


0 packets

output, 0 bytes, 0 underruns


0 output errors, 0 collisions, 0 interface resets


0 output buffer failures, 0 output buffers swapped out

Cisco 7513 Route
r
운영자

M anual



0 carrier transitions


RTS down, CTS down, DTR down, DCD down, DSR down

Serial4/0/6 is administrativel
y down, line protocol is down


Hardware is cyBus Serial


MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255


Encapsulation HDLC, crc 16, loopback not set, keepalive set (10 sec)


Last input never, output never, output hang never


L
ast clearing of "show interface" counters 1w3d


Input queue: 0/75/0 (size/max/drops); Total output drops: 0


Queueing strategy: weighted fair


Output queue: 0/1000/64/0 (size/max total/threshold/drops)


Conversations 0/0/256 (active/max active/max
total)


Reserved Conversations 0/0 (allocated/max allocated)


5 minute input rate 0 bits/sec, 0 packets/sec


5 minute output rate 0 bits/sec, 0 packets/sec


0 packets input, 0 bytes, 0 no buffer


Received 0 broadcasts, 0 runts, 0 giants, 0 th
rottles


0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort


0 packets output, 0 bytes, 0 underruns


0 output errors, 0 collisions, 0 interface resets


0 output buffer failures, 0 output buffers swapped out


0 carrier transit
ions


RTS down, CTS down, DTR down, DCD down, DSR down

Serial4/0/7 is administratively down, line protocol is down


Hardware is cyBus Serial


MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255


Encapsulation HDLC, crc 16, loopbac
k not set, keepalive set (10 sec)


Last input never, output never, output hang never


Last clearing of "show interface" counters 1w3d


Input queue: 0/75/0 (size/max/drops); Total output drops: 0


Queueing strategy: weighted fair


Output queue: 0/1000/
64/0 (size/max total/threshold/drops)


Conversations 0/0/256 (active/max active/max total)


Reserved Conversations 0/0 (allocated/max allocated)


5 minute input rate 0 bits/sec, 0 packets/sec


5 minute output rate 0 bits/sec, 0 packets/sec

Cisco 7513 Route
r
운영자

M anual



0 packets input, 0 bytes, 0 no buffer


Received 0 broadcasts, 0 runts, 0 giants, 0 throttles


0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort


0 packets output, 0 bytes, 0 underruns


0 output errors, 0 collisions, 0 interface
resets


0 output buffer failures, 0 output buffers swapped out


0 carrier transitions


RTS down, CTS down, DTR down, DCD down, DSR down

Router#



4.
라우팅이

정상적으로

되는지

확인하는

방법
.


副畴敲R
show ip route

Codes: C
-

捯湮散瑥搬c匠
-

獴慴楣Ⱐ䤠
-

IGRP, R
-

RIP, M
-

浯扩汥Ⱐ䈠
-

䉇B



-

EIGRP, EX
-

EIGRP external, O
-

OSPF, IA
-

OSPF inter area


丱N
-

OSPF NSSA external type 1, N2
-

OSPF NSSA external type

2


䔱E
-

OSPF external type 1, E2
-

OSPF external type 2, E
-

䕇E



-


-
IS, L1
-


-
IS level
-
1, L2
-


-
IS level
-
2, *
-

捡湤楤慴攠摥晡畬d



-

灥p
-
user static route, o
-

佄O



䝡瑥睡礠潦o污獴l牥獯牴r楳iㄷ㈮ㄶ⸱㐶⸱㐵4瑯t湥瑷潲欠〮〮〮0




ㄷ㈮ㄶ⸰⸰⼳〠楳i獵扮整瑥搬 ㄠ獵扮整s

C 172.16.146.144 is directly connected, Serial4/0/0


㈱ㄮ㄰㘮ㄶ㠮〯0여楳i獵扮整瑥搬 ㌠獵扮整s

C 211.106.168.128 is directly connected, Ethernet0/1

S 211.106.168.160 [1/0] via 211.106.168.22
6

C 211.106.168.224 is directly connected, Ethernet0/0

S* 0.0.0.0/0 [1/0] via 172.16.146.145Router#



㔮5
라우터의

소프트웨어

버전을

확인하는

방법


副畴敲R
show version

Cisco Internetwork Operating System Software

Cisco 7513 Route
r
운영자

M anual


IOS (tm) RSP Software (RSP
-
JSV
-
M), Version 12.0(7), RE
LEASE SOFTWARE (fc1)

Copyright (c) 1986
-
1999 by cisco Systems, Inc.

Compiled Wed 13
-
Oct
-
99 22:56 by phanguye

Image text
-
base: 0x60010930, data
-
base: 0x60EE4000



ROM: System Bootstrap, Version 11.1(8)CA1, EARLY DEPLOYMENT RELEASE SOFTWARE (fc

1)

BOOTFLASH:

RSP Software (RSP
-
BOOT
-
M), Version 12.0(8)S, EARLY DEPLOYMENT RELEASE


SOFTWARE (fc1)



kdnet uptime is 1 week, 3 days, 1 hour, 30 minutes

System restarted by reload

System image file is "slot0:rsp
-
jsv
-
mz.120
-
7"



cisco RSP4 (R5000) processor with 131072K
/2072K bytes of memory.

R5000 processor, Implementation 35, Revision 2.1 (512KB Level 2 Cache)

Last reset from power
-
on

G.703/E1 software, Version 1.0.

G.703/JT2 software, Version 1.0.

X.25 software, Version 3.0.0.

SuperLAT software (copyright 1990 by Meri
dian Technology Corp).

Bridging software.

TN3270 Emulation software.

Chassis Interface.

1 EIP controller (2 Ethernet).

1 VIP2 R5K controller (8 Serial).

2 Ethernet/IEEE 802.3 interface(s)

8 Serial network interface(s)

123K bytes of non
-
volatile configurati
on memory.



20480K bytes of Flash PCMCIA card at slot 0 (Sector size 128K).

8192K bytes of Flash internal SIMM (Sector size 256K).

No slave installed in slot 3.

Configuration register is 0x102


Router

Cisco 7513 Route
r
운영자

M anual


6
. Router


기본적인

사용


7
.
장애






응급조치

진단

순서

점검

사항

조치사항

라우터에

접속

Telnet
사용

t elnet <IP Addres s >

enable mode

enable pas s word


알아야

한다
.

enable

pas s word::XXXX

Cisco 7513 Route
r
운영자

M anual


회선

상태


본다
.

protocol



인가
?

down
이면

장비



회선

점검을

한다
.

Error


발생했나
?

회선

Error
인가

Router Error
인가
?

회선

시험


한다
.

회선을

clear
한다
.

clear counter
<port number>

PING Test


한다
.

100%
성공인가

확인

100%


아닐경우

회선

상태를

보고




파악

장애

원인

파악

LINE DOWN

장비와

전송로가

바르게

연결되어


는지

확인

Protocol DOWN

구간

구간

loopback
시험으로

잘못된

구간을

찾는다
.

PING Test
안됨

IP Adreess


맞는지

확인하고

Protocol



되어

있나

확인한다
.

PING Test


100%
성공

못한


우는

라우터

상태를

확인한다
.

상태에

문제가

없으면

회선에

부하가

많거나

Router
성능이

나쁘다
.

Error


䍒C


문제가

있는

경우


송로



장비를

점검한다
.

collision, frame
등에

문제가

있으면


우터를

점검한다
.

위의

TEST


반복한다
(
시험시

회선

clear


한후

다시

한다



8.
명령어


. Show Command

(1) s h Proces s : Router CPU
점유율

확인


sh process [eigrp
]


(2)
s h ip traffic

: Traffic


확인

(3) sh buffer :
전체

또는



port


buffer
확인


sh buffer [{e|s} <port number>]


(

) Big Model
인경우

Size


1524Byte(Min 40, Max 400)

(

)
어떤

data


1524byte


넘으면

buffer


쌓인다
.
만약

data


계속

들어와

400
개가



찬다면

creat
수치가

count
되며

buffer


생성된다


대로

data


줄어들면

trim
수치가

count
되면서

buffer size


줄어든다
.

(

) no memory
수치가

증가하면

Router


buffer
memory


모자란다는

뜻으로

Router


정상적으로

동작하지

못한다
.
이때는

reload


주어야

한다
.

(4)
s h ver

: Version
확인



Router Up time
확인

Cisco 7513 Route
r
운영자

M anual


(5)
s h log

: s ys tem log


확인한다
.


sh log command


사용하기

위해서는

confi
g


logging buffered


설정되어

있어야

한다
.

(
6
)

s h config

: configuration


확인한다
.



(7)

s h ip route [static]

:

static] routing
경로를

보여줌

(
8
)
s h ip arp

:
접속된

Network
장비의

MAC


IP Address


나타냄

(
9
)
s h ip int <port number>

: port


상세

명세
(access
-
list


설정되었는지

알수

있음
)

(1
0
)
s h
access
-
list

: access
-
list
설정을

보여줌

(1
1
)
s h ip accouting

: config


interface


ip accounting
명령이

수행되었을때



ip


접속상태를

보여줌


. Config Command

(1) hold
-
queue :
특정

Port


Queue Size
조정


hold
-
queue <0~999:Queue length> {in|out}


) hold queue 80 out

(2) passive
-
interfa
ce :
해당

Port


Routing Infomation


보내지

보내지

않음


router {eigrp|igrp} <network number>

passive
-
interface {e|s} <port number>


sh ip protocol


확인할



있다
.

(3) secondary ip
설정


ip address x.x.x.x m.m.m.m [secondary

ip address x.x.x.x m.m.m.m [secondary

ip addres
s x.x.x.x m.m.m.m [secondary ...]]]


(4) buffer size
설정


buffer {{small {max
-
free|min
-
free|inital| permanent}}|

{middle {max
-
free|min
-
free|inital| permanent}}|

{large {max
-
free|min
-
free|inital| permanent}}|

{huge {max
-
free|min
-
free|inital| permanent}}|

{big {m
ax
-
free|min
-
free|inital| permanent}}}


)
일반적으로

small


20(Min) ~ 250(Max), middle


10 ~ 200,
large


0 ~ 30
이다
.

(7) hostname <hostname> : hostname


설정

(8) Access
-
List
설정
(※ ACCESS
-
LIST


기술된

순서에

우선한다
.)

(

) Interface Sub Command


access
-
group <accesslist
-
number>

{in|out}

Cisco 7513 Route
r
운영자

M anual


in :
해당

port


input access

out :
해당

port


output access

(

) Global Command

① access
-
list
기본형


access
-
list <1~99> {deny|permit} {
출발지
-
ip


발지
-
wildcard}}


출발지
-
ip :
출발지의

network or host

출발지
-
wildcard


생략하는

경우

0.0.0.0


의미와

같다
.


② access
-
list
확장형


acces
s
-
list <100~199> {deny| permit} <protocol > {
출발지
-
ip [
출발지
-
wildc ar d]} {
목적지
-
ip
[
목적지
-
wi l dc ar d]} [pr e c e de nc e pr e c e de nc e ] [tos tos ]


출발지
-
ip,
출발지

ip,
목적지
-
ip,
목적지
-
wildcard
부에

any
라는

명령을

쓸수

있다
.

any


출발지
-
ip,
출발지

ip,
목적지
-
ip,
목적지
-
wildcard
부가

0.0.0.0 255.255.255.255 0.0.0.0
255.2
55.255.255


동일


③ ICMP
확장형


access
-
list <100~199> {deny| permit} ICMP {
출발지
-
ip [
출발지
-
wil dc ar d]} {
목적지
-
ip [
목적지
-
wildcard]} [icmp
-
type] [icmp
-
message] [precedence precedence] [tos tos]


④ IGMP
확장형


access
-
list <100~199> {deny| permi t} IGMP {
출발지
-
ip [
출발지
-
wildc ar d]}
{
목적지
-
ip [
목적지
-
wildcard]} [igmp
-
type] [precedence precedence] [tos tos]


⑤ TCP
확장형


access
-
list <100~199> {deny| permit} TCP {
출발지
-
ip [
출발지
-
wildc ar d] [oper ator
-
port [port]]}
{
목적지
-
ip [
목적지
-
wil dc ar d] [oper ator
-
port [por t]]} [establishe d] [prece dence prece dence ]

os tos]


⑥ UDP
확장형



access
-
list
<100~199>
{deny| permit}
UDP
{
출발지
-
ip
[
출발지
-
wi l dc ar d]
[oper at or
-
port [ port ]]}
{
목적지
-
i p
[
목적지
-
wi l dc ar d]
[oper at or
-
eigrp, gre, ic mp, ig mp, ip, ipin ip, nos, os pf, t cp, udp
or
0~255
사이의

ip prot ocol number

Cisco 7513 Route
r
운영자

M anual


port [ port ]]}
[ prece dence
prece de nce]
[t os tos ]]


Protocol

Operator

lt(less than), gt(great then), eq(equal), neq(not equal)

Port

TCP ot UDP port


정수

또는

이름

Precedence
Name

critical, flash, flash
-
overide, immediate, internet,network,
priority, routine

TCP Port
Name

bgp, chargen, d
aytime, discard, domain, echo, finger, ftp,
ftp
-
data, gopher, hostname, irc, klogin, kshell, lpd, nntp,
pop2, pop3, smtp, sunrpc, syslog, tacacs
-
ds, talk, telnet,
time, uucp, whois, www

UDP Port
Name

biff, bootpc, bootps, discard, dns, dnsix, echo, mibile
-
ip,
nameserver, netbios
-
dgm, netbios
-
ns, ntp, rip, snmp,
snmptrap, sunrpc, syslog, tatacs
-
ds, talk, tftp, t ime, who,
xdmcp

TCP
Port
Numbe

Method of acces s

Appl i cati on
l ayer
Protocol

KNOWN
Port

Trans port
l ayer
protoccol

7

9

23

79

1993

2001

4001

6001

ECH
O

DISCARD

TELNET

FINGER

SNMP OVER TCP

AUX PORT

AUX
PORT(STREAM)

AUX
PORT(BINARY)

FTP

TELNET

SMTP

SMTP

TFTP

SNMP

21

23

25

25

69

161

TCP

TCP

TCP

UDP

UDP

UDP

(

)
실제

응용

① access
-
list 102 permit tcp 0.0.0.0
2
55.255.255.255 128.88.0.0 0.0.255.255

= access
-
list

102 permit tcp any 128.88.0.0 0.0.255.255

② access
-
list 102 permit tcp 0.0.0.0 255.255.255.255 128.88.1.2 0.0.0.0 eq 25

= access
-
list 102 permit tcp any 128.88.1.2 0.0.0.0 eq smtp


응용
1


int s 0

ip access
-
group 102 in

access
-
list 102 permit tcp any any e
q domain

access
-
list 12 permit 192.89.55.0 0.0.0.255

access
-
list 1 permit 36.48.0.3 = access
-
list 1 permit 36.48.0.3 0.0.0.0


응용
2 :s1
에서는

icmp


허용하면서

tcp port number 5555
이상은

허용하고

5555
미만은

access
금지

※ tn3270


5555
이상을

사용하고

telnet, rlogin
등은

5555
미만을

사용


Cisco 7513 Route
r
운영자

M anual


int s 1

ip acces s
-
group 101 in

acces s
-
lis t 101 permit t cp any any gt 5555

acces s
-
lis t 101 deny t cp any any lt 5555

acces s
-
lis t permit icmp any any


응용
3 :
해당

network


특정

IP Address Access
금지


interface Fddi0

ip address 100.80.9.1 255.255.255.0

ip access
-
group 100

in

!

access
-
list 100 permit ip 100.80.11.0 0.0.0.255 host 100.80.11.1

access
-
list 100 permit ip 100.80.11.0 0.0.0.255 88.0.0.0 0.255.255.255

access
-
list 100 deny ip 100.80.11.0 0.0.0.255 any

access
-
list 100 permit ip any any

(9) log file


시간

추가


service
timestamps log datetime


(10) router booting address
바꾸기


config
-
reg 0xvalue


0x101, 0x2101

boot from ROM

0x102, 0x2102

boot from Flash

0x10F

manual boot from flash


) config
-
reg 0x2102(flash


booting
하기
)

(11) boot system


falsh file
변경


boot system {f
lash [filename]|mop|rcp|rom|tftp}


(12)
회선

부하시

우회설정


라우터내

두회선중



회선이

부하가

심하여

속도가

지연된다고

하면

부하가

심하지

않은

다른

회선으로

부하

분산을

시키는

명령어
.


int s0

backup int s 1
← s1


백업으로

설정

backup load 25 5
← load


25%
이상이면

ebable
되고

5%
이하면

disable

backup delay 10 60

int s1

backup int
s 0

backup load 25 5

backup delay 10 60

(

) backup interface {interface number}

(

) backup load {enable
-
threshold|never} {disable
-
load|never}

① enable
-
threshold : primary line


이용할



있는

bandwidth


%

② disable
-
load : primary line


이용할



있는

bandwidth


%

③ n
ever : secondary line


traffic load


변화하지

않는다
.

Cisco 7513 Route
r
운영자

M anual


(

) backup delay {enable
-
delay|never} {dis able
-
delay|never}

① enable
-
delay : primary line


down
되고

secondary line
으로

전환하는데

걸리는



설정

② disable
-
delay : primary line


up
되고

secondary line
으로

전환하는데

걸리는



설정

③ never :
전환에

필요한

delay
없이

바로

전환

(13)
ip accounting output
-
packets

: sh ip accounting
명령으로

접속상태를

알수

있음

(14)
password <password>
: login password
설정


line vty 0 4

가상

Terminal 0~4


대한

Setting

exec
-
timeout 120 0

아무

입력도

하지

않을시

자동

logout 120


0


password slic
← login p
assword
설정

enable password dasom
← enable password
설정


(15)
exec
-
timeout <min> <sec>

:
아무

입력도

하지

않을시

자동

logout

(16)
s ervice password
-
encryption

: password


암호화되어

나타난다
.


.
기타

(1)
copy tftp flash

: tftp server
로부터

flash memory


copy
한다
.

(2) flash rom check


>
b

flash


(3)
날자
/
시간

설정


clock set hh:mm:ss [day month year]


) clock set 11:30:40 19 November 1996

(4)
tes t interface <port number>

: interface testing

(5)
clear counter {all | int <port number>}

:
해당

port or
모든

interface


counter


clear