The basic concept is fairly simple - we want to configuration R1, but we are available on R2. If we were able to telnet R1, then we can also set R1, if we have good, given the levels & 39; authorization. In this case, & 39; study CCNA, R2 d & 39; has an IP address 172.12.123.2 and R1 l & 39; address 172.12.123.1. Let us try to R2 telnet on R1.
R2 telnet 172.12.123.1
Trying 172.12.123.1 ... Open
Password necessary, but not set
[172.12.123.1 closed due to foreign host]
This seems like a problem, but & 39; is a problem we have at your disposal. A Cisco router can not & 39; n any user on the telnet default. & 39; C is a good thing, because we do not want someone & 39; one with a single connection to our router! The & quot; Password required & quot; & 39; message means that no password has been placed on VTY lines on R1. Let & 39; to now.
R1 (config) line vty 0 4
R1 (config-line) password baseball
A password & quot; Baseball & quot; was established on the VTY line, we should not have problems with Telnet Take R2 R1. Let & 39 d & 39; try that now.
R2 telnet 172.12.123.1
Trying 172.12.123.1 ... Open
User Access Verification
Password:
R1 & gt;
We & 39; re, and user mode exec. Say you want to set a new IP address on & 39; Ethernet interface R1. We will now off privileged exec ....
R1 & gt; enable
% No password set
R1 & gt;
... or perhaps we are not! The default Telnet on a Cisco router, for users of & 39; arrival exec user mode, and & 39; need a password to enable the user & 39; Exec privileged mode! At the moment we can not set & 39; No matter what this router, and even orders to show that we use are limited to best.
If we wanted all the users on telnetting be put into operation exec preferred mode immediately without allowing request a password The level of command on 15 lines are VTY accomplish this.
R1 (config) line vty 0 4
R1 (config-line) 15
From level R2, we will be again.
R2 Telnet-R1 telnet 172.12.123.1
Trying 172.12. 123.1 ... Open
User Access Verification
Password:
R1
We able to telnet from R2 with the initial password & quot; Baseball & quot; and even better, we have been privileged exec mode now!
You unable or unwilling to do that in the real world, networks, Though. If you want to assign levels of privilege on an individual basis users to configure the & 39; user name and password and privilege to 15 the command itself d & 39; user name and password command to give this privilege to certain levels & 39; users, but not all.
R1 (config) heidi klum
R1 username password (config) username privilege tim 15 Password gunn
Both Users can telnet in the router, but the first user to user exec defied and password for the privileged exec mode. S & 39; it & 39; is no password can, & 39; user can not literally exec privileged. The second privileged user in exec immediately after authenticating.
Passwords successfully on a Cisco router Switch or d & 39; paramount importance and that you & 39; are not linked to the granting of & 39; & amp ; quot; all or nothing & quot; access. Knowing the details as shown here to help you tie down network security, while people do their work - and it & 39; is not harmful to know these things for & 39; CCNA examination, whatsoever!
Chris Bryant, CCIE 12933, the owner of The Bryant Advantage, home to more than 100 free tutorials audit certification, including certification Cisco CCNA Test Prep article. His study guide exclusive CCNA Cisco and Cisco CCNA is also available!
Visit his blog and sign up for Cisco Certification Central, a letter d & 39; information daily, CCNA, Network +, Security +, A +, CCNP certification and verification of the practice questions! 7-A free, of course, as & quot;, & quot; of the NACC is also available and may be one or online CCNA Boot Camp with Bryant advantage!
Bookmark it:
