The next mood we're gonna go to is the mode that we do most of our configurations from, or
the mood that we have to go to first
before we do most of our configurations.
So to go up one mood, I'm gonna type configure
Now I don't have to type in the whole command.
I can just type in config
and the letter t space and then the letter t
So when I type in configure terminal
and hit enter, it takes me to global configuration mode. I repeat,
this mode is called the Global Configuration mode.
Any changes made to the router or the switch or the Cisco device from this mode
will affect the device as a whole.
today or tomorrow you will see that I can change or make configuration changes two parts off a router
from the other modes. However,
any changes I make to the Cisco device from this mode or the router in this case from this mode will affect the router as a whole.
Okay, So I showed you that I can type exit and go back.
Now let's go back to convict mode. So as I said, I can just type c o N f I g and then the letter t
It will take me back to CONFIG mode
or I could type end.
That too will take me back to privilege mode.
Once again, I'm gonna go back to config mode
or Global Configuration mode.
So the two commands that take me back are either exit
So this is control Z right here.
Control Z will do the same.
It will take me back all the way
Now what is the difference between exit
and end? I will show you in a little bit
Control Z, however, is the same as end
Take me no matter where I am back all the way to prove mode
So let me go back to config mode or contribute global config mode.
And the first command I'm going to show you is how to assign the router a name.
So I'm going to assign.
Since this is rather one
we see this is our one
A name of router one. So the command is
followed by whatever you're gonna name the device.
I'm gonna say lower case R and then one.
And when I hit enter, you notice that the prompt change from router config pound sign to our one config pound sign. So at this point, I have changed the router name.
go back to prove mode
because I want to show you something and type in some gibberish. Let's let's
let's say I was gonna type in configure Terminal
So for some reason, I misspelled configure terminal and I hit Enter.
It actually did not do what I was expecting you to do. So let's just type in gibberish and
we will see that Just pretend that this is a miss type.
Okay, so that's what I wanted it to do.
This 255255255255 We haven't covered i p address ing yet, but I'm telling you right now and take it. Take my word for it. This is a broadcast message. Ah, broadcast message is set to from one device to everybody, as I mentioned earlier,
and here it says, Domain server.
So what this device or this router is actually doing when you fat finger command or when you
miss type a command?
The router actually thinks that it is a domain name.
Now. What is the domain?
If I were to ask, you, give me the I P address and again keeping in mind you don't know how I p address ING works. But
give me the idea, and I p address is an address that
routers used to get you places to get you to
websites to get you to servers to get you to other networks. So let's say I ask you, what is the I p address for google dot com?
You wouldn't know because you have never had to type in the i p Address for google dot com in your browser to get to google dot com,
you simply know the words Google
or www dot google dot com
that those words www dot google dot com is a domain name,
and when you type in www dot google dot com in your browser, your PC actually sends out a request
looking for a server
that has in it in its database stored. Www dot google dot com and the i p address. Associate ID with that domain name.
So your PC actually sends out a request called a domain name request
to the domain name server, which is holding the binding between google dot com and its i p address. And it asks the domain name server Hey, I need to go to google dot com. Could you please return me back? The I pee once that server turns you back the I. P or your machine that i p
then you go to google dot com.
Now, when a fat finger command or a type in some gibberish which is supposed to simulate me, Miss typing
your router actually sends out
a domain server request asking, Hey, who is the guy on this network here that is holding all the bindings between domain names and I P addresses?
This guy actually is looking for a domain server.
Now, in this lab, we don't have a domain server, so
we need to turn this feature off. Otherwise, every time I'm sitting here and I miss type of command. We're gonna see this. And this doesn't go away for a while about I think, 60 seconds. I'm not going to sit here in 60 seconds of silence to make this go away.
But just in case out of frustration, you hit enter a few times and you can hear me hitting. Enter.
This will do a domain server search for every enter key that you have pressed.
Which 60 seconds perky is really annoying.
So what we do is weak press control shift and six
once again, that is control shift and six
And look what it says.
That is the brake sequence. It says his name. Look up aborted.
However, how about we not have this happen in the first place? That would be nice. So all configuration changes that apply to the whole router are done from conflict mode to go toe config Modi type and configure terminal
now I'm in config mode
because my prop changed to config
and I'm going to say no,
So no, I p domain hyphen Look up
and that should have turned off
server search for when I miss type of command.
exit out back to privilege mode,
type some gibberish again
And we find that this time, instead of doing
a domain look up or sending out a broadcast looking for a domain name server,
it just simply states
unknown commander, computer name or unable to find computer address. It just simply does not do the domain server search.
Okay, I'm gonna go back to Mike and FIG mode.
The next command we're going to see
is how to set a password.
control traffic between organizations. These devices control traffic between that, say your organization and a bank or to hospitals.
And it is very easy for somebody to log into this device and just simply erase it
and take that lead link between Let's, say, two hospitals that could spell disaster for a lot of doctors and a lot of patients. So these devices need to be password protected.
The first password we're going to set
is the password required
user mode to privilege mode called the Enable password.
So the command for that is
space. If I say a question mark, if I used the help feature at this point, it is asking me, Do I need to set a level? Don't worry about this.
This is asking me if I want to set a password for privilege mode 10 for example, or John Privileged level that we were talking about for mode. 15 14. We're not going to go into that.
The next thing is asking for me for his line.
So a clear text password.
So let's go ahead and type in the password, and we'll keep it simple. Will say Cisco
So at this point, the enable password or the password to go from privilege mode to enable mode should be set to Sisko.
A good rule of thumb guys.
When you make a change on a Cisco device
immediately, make sure that change works.
So one change followed by one test.
Another change, followed by another test. Don't make 10 changes to a router and then go start testing because then you don't know which one of those changes caused for the test to fail.
then you basically have to one by one. Remove all the changes until it fixes itself. You're creating more work for yourself. Test the change immediately after you make it. So if it doesn't work, you know what command caused the problem.
It was the one you did right before he started testing.
So I'm going to test this. Go to say, exit, but exit out
back to prison mode.
Then I'm going to say Disable,
which gets me back to
user mode. So keep track
as you watch this video off the prompt. When I said exit took me from CONFIG mode
to prep mode when I said disable
prove mode, which would the pound sign to the greater than sign, which is user mode,
as I worked through these labs with you
Always, always keep track of the prompt. That's how you know where you are.
we set a password right here.
Enable password Cisco.
execute the enable Command, or when I try to go from user mode to privilege mode,
it should ask me for a password
and I hit enter and has a
it asked me for a password, which I set to the word Cisco.
So let's type and Cisco
When you're typing in your passwords
tie pins that say it Cisco type and C I s c o n er
If you by accident say C I s C o space, enter your password is going to be Cisco Space Center.
And when you later on are looking at your passwords, you can't see that enter or that space and you assume your password it Cisco. And for some reason, you cannot log into your outer because Cisco won't work.
Be careful with that. If you hit, Enter that space Key
is part of the password.
So once again disabled, go back to prove mode. When I try and enable and go back to user mode. It asked me for a password
and I said it to Sisko,
which we did with the command enable password Cisco
now. Remember, I said
around her has three types of memories.
The 1st 1 I covered was your
random access memory or your ram,
and in your ram, you store your current running config or you're running configuration. The configuration changes that you have made. Right now,
I haven't saved the changes I've made yet. I made two changes. I've created a password for the enable approved mode. And I have changed the router host name to our one
from just router from the word router.
These changes are reflected in your running configuration.
If, at this point, I power cycle, the router,
these these passwords and this host name will be gone
because they only reside in my running configuration, which is in my ram.
So shall we test this out? Well, why not?
I'm going to polish cycle my router
with the reload command
and I'm going to confirm
now, remember, I haven't said it to my password, and I haven't saved my post name.
I had nothing in my startup config, which is envy, Ram. I had not transferred the contents of
my running config or ram to my start of config or envy Ram or non volatile Ram. Since I had not done the transfer or the save, I come back with a blank router.
I'm going to quickly bring it back to where we were, so I had control C to pop out of
the initial dialogue.
And I'm going to give it a host name. Are one
password Cisco and no, I d
domain. Look up. So these are the changes we had made up until now,
and we're back to where we were.
Oops, I named it are two. Let me fix that.
Whose name? See, I don't have to type in the whole command the least amount of letters that makes a command unique.
We'll work. So the only command that starts with the letters H U S t is a command hosting even H O s, I believe works.
So the letters h us make the command host named unique. Since it's the only command
that exists with the 1st 3 letters at us and I can see are one and are too if you keep your eye on, it will change to our one.
All right. So let's look at our running configuration or our ramp
running config. I could have just said Sure, ru n and it would've worked just the same because once again, to ram the point home.
If I say show, run and question mark the only command that exists with the 1st 3 letters R U N is the command running config
I'm gonna hit, enter.
And here the changes we have made
say's host name are one
enable password Cisco
I believe that. No, I'd be domain. Look up commanders here. These other commands are there by default, so don't worry about them right now.
We will look at them later.
But the three changes have made close Neymar one
enable password Cisco
and no, I p Domain. Look up
that I see my password right here on screen when I look at my running configuration
by executing the command show running convict?
Nope, that's not a good thing.
What if you're at work and you're looking at your running convict or you have executed the command show running conflict
and somebody that doesn't like you is standing behind you drinking coffee and they see that your password is Cisco
and then you walk away from
your table to go get coffee or use the restroom or whatever
and they log into your outer because they dislike you
executing your password and then they erase the router
You are because the last password used to log into the router was yours.
You are responsible for your own password, so this is not a good thing.
So we're gonna go ahead and encrypt this password.
So once again, I'm going to go into Mac and Global CONFIG mode with the command configure terminal.
And from tomorrow on, I'm going to start shortening these commands. Who config tea. Right now, these commands are new to you. So I'm making sure I taped the whole thing out,
and I'm going to execute the command, enable
followed by a password.
So I'm gonna say enable secret.
We just need a word.
So enable Secret Bob.
Let's look at our running conflict
and let's see if we can see Mr Bob here.
So how do we look at our running config?
We execute the command show
The previous password we had was Cisco, which is your un encrypted password.
We can still see that
the other password, Bob, You see this line of gibberish?
that is our on, but that is our encrypted password. So when we executed the command enable secret we are creating an encrypted password, something that somebody standing behind you as you look at your running config can't figure out.
So I don't know anybody that can look at this line and come up with Bob on the spot.
Now this password uses the number five stands for Message Digest five or MD five uses the N B five
algorithm or encryption method,
which is a pretty strong encryption.
It take takes years to break
weaken. As you see, we can still see Cisco. So let's test out to see which one of these passwords actually works.
So I'm going to say disable and go back to print mode.
And now I'm going to try and get back into my Oh, I'm going to say disable sorry and go back to user mode with the greater than sign.
And now I'm going to try and get back into my privilege mode.
So to get back to privilege mood, I type in enable
and I get prompted for a password. I'm gonna try Cisco first C I s C. o
So the fact that somebody standing behind you can visually see Cisco doesn't help them now, does it? They can type Cisco all they want to try and log into your outer.
It won't work. The one that'll work is the encrypted one.
Now, at your work, you're not actually gonna set and enable password You're just gonna set in enable secret.
The reason I showed you this is because it's part of the exam in part of the course. But the general practices you don't even set and enable password. And then the password. You just had an enable secret, and then the password.