Time
23 hours 18 minutes
Difficulty
Beginner
CEU/CPE
14

Video Transcription

00:00
Hello and welcome back to I see. And you want interconnecting Cisco networking devices. Part one This episode 233 s s h configuring a remote interface from management. Last video went over how to security switch with use names in a few different types of passwords.
00:15
This absurd Arima covered how to set up the switch for atonement. Sshh! In setting up that man it management interface and how to grab it and how to set the interface to grab it. I p from D h c p.
00:27
So we're gonna go over enabling SS agent tell meant we're gonna set up that management interface so we can use a cessation telling that we're gonna choose an I p or let d a C p choose an I p for us.
00:39
So a quick pre assessment here, what's you answers? Need to be set for a s S H key to be generated. So which two items in the configuration have to be set
00:50
for the key to be generated a few seconds.
00:58
All right. It is the domain name and host named only two parts Shuki.
01:04
All right, so we're gonna go ahead and set up, tell not here first. And those are the two commands that Oregon be very useful for. You wanna ramp the party session?
01:14
And if your mother from last episode I've gone ahead and remove the passwords from the VT y lines and the consul lines
01:21
just for good housekeeping here. So I'm gonna go into coffee. Tea
01:26
line, bt Y 0 15
01:30
We're going to transport transports
01:34
inputs
01:37
and will do till nuts.
01:42
All right.
01:44
It's very simple. Remember, you were because we're on the fee t One line is we're gonna be using that local
01:49
user name and password database because reason log in local.
01:53
Um,
01:57
so we're gonna go ahead and move on to setting up. Sshh. It's fairly simple again. There's just a few extra commands,
02:06
otherwise, basically the same thing.
02:08
So again, I'm gonna bring up buddy,
02:12
if you want to give you a few seconds to go ahead and just copied his commands down real quick,
02:19
Okay, I'm gonna bring buddy
02:22
s go into configure terminal
02:27
wine. Me, t y 0 15
02:30
and we want to do is we're just gonna add this onto it. So transport inputs
02:38
tell nuts
02:38
and there's this H
02:42
now, one thing we can also do, Which is the same exact thing is the transports and quits.
02:47
Oh,
02:50
same thing. It'll have telnet and s s age. Either one is acceptable that both do the same thing.
02:59
All right, so if we go back here, we're going to figure terminal.
03:02
And remember, the two things we gotta set is the host name.
03:06
So we'll just go back. We'll just state s w one.
03:09
And then the next wanting you to do is the i P. Domain
03:14
Dash name.
03:17
It will do cyber very labs dot com.
03:23
So from there, we're actually gonna start working into generating that crypto key.
03:29
So the commands we're gonna need his crib too.
03:31
Okay,
03:35
Generate.
03:37
And then from there, we're gonna do the R S. A.
03:39
And you could you could include the module ISS level here, but I'm just going to enter. So the default will be 5 12 by orbits. Um, you need a minimum of 7 60 eight's for sshh version, too. So we're gonna go ahead and go. 10 24 is a good, solid number.
04:08
All right, so I just took a few seconds here.
04:12
C version 1.99 has been enabled on and
04:15
useful commands here.
04:17
A new show i p s s h
04:20
it shows what command. We have a bit of r r c ki,
04:25
but I'm actually gonna do is set it to only use version too.
04:30
So we're gonna come T i p s s h
04:34
we're gonna go to version
04:38
two.
04:39
And now if we do a
04:42
show i p s h
04:46
So now we're in version two.
04:48
No one you can do is show.
04:51
Sshh.
04:55
So they had no connections currently running. I'll show you a little bit. What the When we have a couple of the essays connections in the next video
05:00
or ah, little later on here once we configure that remote interface.
05:05
So for now, I'm gonna go ahead and close at a party.
05:14
Are So now we're gonna go ahead and set up a static I p address for the room. Remote management in her face.
05:19
Um, so we're actually gonna sign a p to an S V I, which is a switch virtual interface.
05:26
So about a fault. All porcelain v land one. Realistically, you want to change this? If you're in any sort of production network,
05:32
But for now, we're keeping a V Lane one, and we're going to use that V Aliant interface
05:39
to assign our I P address for management. So on later, two switches each V land. What actually need a management interface? So let's say you threw a couple of your devices on villian six
05:50
than they couldn't connect to the land. One
05:54
management interface. They would actually get sent to the router and on a router and bring it back. It would
06:00
ran to the switch interview. And one,
06:02
um, that's where you need to set up the default gateway on the switch.
06:08
All right,
06:09
we'll talk a little about layers with three switches that works a little bit differently with that, but it's not on the sub net. If the V lines not on the same. Suddenly it's gonna send the request of the local router the default gateway first.
06:21
So you go ahead and bring up the party session. We'll set up our I P address, and you can actually start SS aging into it and tell netting
06:29
so it's going to bring it up here.
06:31
So do a configure terminal.
06:35
We'll go into interface view in one
06:42
and Let's just set the i P address
06:46
to one night to succeed. I was gonna pick one that I know is out of scope of my router to 10. And then you need to add your subnet mask
07:00
and hopefully remember, this is a
07:02
class C address.
07:04
Um,
07:06
and it uses 24 bits of subjects
07:11
for now.
07:12
So I said that.
07:15
All right,
07:17
we'll run a no. Shut down on this now.
07:25
Okay,
07:26
well, go ahead and just set the default. Gateway is well right now.
07:29
So the default gateway
07:32
to succeed a lot of people just give me 1.10 that one. Um
07:38
you know something along the lines of that You, you you you can see off.
07:44
You're normal, like window settings. Because right now I'm going to go ahead and hook up the
07:48
router to my switch again.
07:51
Right now, it's disconnected. It's the home network is kind of on. So thing
07:57
so
07:58
good again. We need we do not need to set a sub. Not for this.
08:03
So just ends right there.
08:07
Now, this is gonna end.
08:11
So I'm actually gonna do is I'm gonna accident this party session and I'm gonna bring up a cessation will go through that
08:16
initial accepting the RS a key. You'll kind of see You'll get that warning. So I'm gonna go ahead and exit out of this.
08:24
All right? Some of the ransom money session. So I s s H here
08:28
when I to 16 to 81 that
08:35
tune to 10.
08:39
But I said it is actually. Give me a second. Gonna plug in a router to switch here.
08:43
It was already put. Did. Okay, so when you open,
08:50
Okay. So I'm gonna bring this. This is what the
08:54
fingerprint looks like. Here. You'll see the security warning.
08:58
Uh,
09:00
you go ahead. Yes. And then we get the log in, as remember,
09:03
truants. Cyber. Very. And now we're in.
09:09
And so we're getting no password, sir, because we didn't ever set an actual enable password.
09:16
Let's go ahead and do that. I'm gonna exit out of this and bring up the consul connection again here.
09:22
All right, So gets council connection.
09:24
There we go.
09:26
Trent
09:30
Cy Berry,
09:31
the end.
09:31
So if you're going to configure terminal, see if you guys can remember this one.
09:37
What do you think it is?
09:39
Do it. Enable.
09:43
Remember we want one of your secret, not password,
09:46
because thesis pret iss and the five crashed.
09:50
And we'll just sit this one out, Nimda
09:52
or admin backwards.
09:56
Well, and
09:58
exit. And I'm gonna ring of the SS age connection.
10:03
All right, so I got this again.
10:07
Okay, We're gonna is Trent.
10:09
Cyberia is the password and enable
10:13
Well, do you, Nimda?
10:16
And now we're in.
10:18
So let me get this going here,
10:22
buddy. All right?
10:24
So let's do we already say here she'll run.
10:28
So he said our secret password. We have our usual name here.
10:37
We have the S H version set
10:41
and here we go. We got the i P address for veal in one.
10:46
We had to default. Gateway set.
10:48
We have our V t y lines using log and local.
10:54
All right, Now, if we do a
10:58
show, I show S s H here.
11:01
Now we have the session going here
11:05
because we're currently has this age version too.
11:07
So one thing we can also do, we can If we're not using DCP, we might want to use a wanna set our d n a server.
11:15
Our domain name.
11:18
So how we do that is by p
11:22
named ash server.
11:24
And I'm gonna go ahead and set the one that I currently have on my network.
11:28
And now what? You can check your default gateway show. I p
11:37
Sorry, I don't know why that wasn't out of completing, but if you do a show I p d felt *** away. It will bring up the currently set default gateway.
11:46
All right, I'm gonna bring down Putty.
11:48
An hour's gonna set the
11:50
dynamic I P address. We're gonna use d h e p from the what was mine now my main router in my d c p server.
11:58
We're going to use ah, really usable geese from there to set our management i p address. So it's going to bring plenty back up.
12:07
Let's go into configure t.
12:09
Remember, we go into interface villain. One girl had to shut it down,
12:16
shot a short for shutdown.
12:20
So good note. Um, make sure if you shut down that interface, you have a concert connection.
12:26
Ah,
12:26
yeah.
12:28
Make sure you have that kind of connection available, So go ahead and going can't fi. We're going to interface with the land one, so it should be shut down currently.
12:37
So we will go ahead and go to you. Want to go into I p address D h C P
12:46
and I'm Go ahead. Enter.
12:50
We'll do a no shut on it
12:52
or no shutdown,
12:56
but still respect up.
13:00
So we do a show i p interface brief.
13:03
Actually, we can see right in there.
13:05
Uh, stuff.
13:07
There we go. So it does show it in here and that it's been assigned by the h E p 2115 with that static menace in that host name. Where if you do a show I p interface brief, we have 1 91 681.1 15
13:22
mess. It is D h e p.
13:28
So I kind of want actually show you guys what this looks like. So we see here, we're in a up a up status.
13:37
I could do a show interface. Villain one.
13:43
All right, So let's go ahead and show the interface down.
13:48
Shoot
13:50
when we're through counsel this time so it won't kick us out
13:56
my particles down a show i p interface brief.
14:01
So now we see the status is administratively down
14:05
the same thing. If we go into a show and
14:09
you live in one.
14:11
Well, see, that's the same thing here.
14:13
The land is administratively down. That's what is OK. V line is shut down. So I figured
14:18
interface feeling at one?
14:20
No, shut,
14:22
no. Turn it back on. We'll see the stash messages
14:26
configured by trends where it stands up and up.
14:31
All right,
14:33
so to see the DCP releases here
14:35
showed you sheet lease.
14:39
You can modify it with, uh, interfaces if you want, or you can do this real quick.
14:43
So if we see we have a temp I p address wanted to wonder. 15 for view. And one.
14:50
This is the server default gateway, in my case as well.
14:54
Uh, least time renewal. So you have a bit of information here?
14:58
Um,
15:01
one thing You have to know this Well, if we do a show run, you won't see an actual i p address in the running config
15:09
for view. 1,000,000 won.
15:13
So here's what you see.
15:15
You won't have an actual because it could change depending on the d A. C p, sir. Right.
15:20
So just see that selling matter dynamically said,
15:28
All right, let's go into the post assessment. If both a username and password is set on switch and online passwords set.
15:35
Which will the interface use?
15:41
See if you remember this from the last episode
15:48
and over he got this. It is. Remember, it's a bargain or lugging locals. The logging lease that password
15:54
log in local is going to use that database that use named Pass for database.
15:58
The last episode of this lesson. We're gonna go over some very useful lab commands.
16:03
And as always, if you guys have questions, need some help? Feel free to shoot me messages always thank you for washing this episode and look forward to seeing the next one to give it.

Up Next

CCNA ICND1

This course will enable students to understand virtualization and cloud services, and network programmability related to LAN, access and core segments.

Instructed By

Instructor Profile Image
Trenton Darrow
Network Engineer at NCI Information Systems, Inc
Instructor