Templates Tagged "cisco"

template icon

Fetch ipsec Tunnel in/out octets with SNMP

February 16, 2012Simple bash script to retrieve ingress and egress traffic statistics for an ipsec tunnel.
template icon

Enable netflow and export on a router

February 16, 2012Enables netflow monitoring on the %[interface_to_monitor]% interface and configures netflow exporting to a %[destination_ip]% and %[destination_port]%
template icon

Cisco ACE Module New Farm - 2 Servers http/https - w/ sticky

February 16, 2012Create Rservers Create Serverfarm Create VIP This is specific to my environment and doesn't create the probes but should be easy enough or enough of a baseline for most simple configs.
template icon

tcl ping script

February 16, 2012Cisco tcl ping script
template icon

Cisco IOS - Create VLAN

February 16, 2012Create a VLAN and it's L3 interface on Cisco IOS.
template icon

Configure RTR/SLA Ping in IOS

February 22, 2012This configures and schedules the pinging of a destination ip address. I tend to define "site codes" which is generally the third octet of a given site's /24 address space. For example: Beijing, China = 192.168.56.0/24 , site code is "56" rtr 56 type echo protocol ipIcmpEcho 192.168.56.1 frequency 300 rtr schedule 56 life forever start-time now Once this is ...
template icon

Get IOS version via snmp

February 16, 2012The following allows you to grab the IOS version of a list of cisco devices.
template icon

Ipsec l2l tunnel between two routers

February 16, 2012Build an ipsec tunnel between Router A and Router B.
template icon

Configuring A Cisco 2600 Series Router as a Terminal Server

February 16, 2012Configures the use of a NM-16A card in a cisco 2600 router as a terminal server.
template icon

Cisco IOS IPSec L2L VPN with AES PSK Encryption

February 16, 2012Example of Cisco IOS IPSec LAN2LAN VPN with local on device AES (type 6) encryption of PSK's to protect them. WARNING - This will encrypt your PSK with non-reversible encryption. MAKE SURE YOU HAVE A SECURE BACKUP OF IT. Notes: - xauth is disabled for the peer - AES 256 with PFS using group 5 for phase 1 ISAKMP. - ...
template icon

Cisco Router as Terminal Server with SSH Line Access

February 16, 2012Example of how to use a Cisco router as a terminal server using an NM-32A 32-port async serial line card. In use with 2811's and IOS 12.4T. SSH is used to securely make the serial lines available on the network. Be aware that SSH requires a username/password combination, hence this is not like when you simply bind the serial ports ...
template icon

Cisco ASA Guest Wireless Configuration

February 16, 2012This is a simple template to configure an ASA device using asa821-k8.bin code. Interfaces: Ethernet0/0 is connected to a DSL modem and that DSL modem dishes out dhcp addresses. Ethernet0/1 is the management interface for this device. Ethernet0/2 is a trunk interface to a Cisco wireless controller. The guest wireless network is 192.168.10.0/24
template icon

Configure SNMP RO/RW Community Strings Cisco IOS

February 16, 2012A simple template to configure snmp community strings for read-only and read-write access according to access-lists
template icon

Configure tacacs in Cisco IOS

February 16, 2012Simple template to configure tacacs on a given IOS piece of gear. A "network" entry should be added to your CiscoACS configuration for the ip address of %[tacacs_source_interface]%.
template icon

Configure 3750X Power Stack in Redundant Mode

February 16, 2012This is a standard configuration for powerstack redundancy. This was tested with 2 3750X switches each with a single 1100W power supply. In this configuration power can be removed from a single power supply and all the switches in this stack will stay powered on. http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps6406/white_paper_c11-578931.html
template icon

Configure DHCP Snooping on Cisco IOS

February 16, 2012DHCP snooping allows you to create a white-list of interfaces for which trusted dhcp servers are connected. All dhcp specific traffic which passes through "untrusted" interfaces will be dropped. This helps guard against rogue dhcp servers.
template icon

IP SLA Probes for IOS instead of rtr

February 16, 2012http://www.cisco.com/en/US/docs/ios/12_4/ip_sla/configuration/guide/hsicmp.html
template icon

Cisco Switchport Security

May 15, 2012Static access port with configurable permitted MAC's, if you want to use a dot1q trunk configure it as so and look up the option extras - MAC's can be specified per-VLAN on a dot1q trunk. One static MAC, sticky mode for additional MAC's. Duplicate mac-address line for more statics. Violation mode configurable, ensure mls statement is used if using protect ...
template icon

Cisco IOS Secure NTP Configuration

July 8, 2012Synchronize Cisco IOS device clock with trusted and authenticated NTP servers. The must be the same on both the router and the NTP servers. NOTE: Only the peer and serve-only ACL's are set here, you may wish to change to query-only or serve. - peer, Allows time requests and NTP control queries and allows the system to ...
template icon

Cisco IOS Basics

July 9, 2012IPv4 only, no IPv6 options, see other template. Uses case insensitive local AAA only with enable secret and a local user. SSH and line timeouts are set to 15 minutes for PCI-DSS compliance requirement. FTP crashdump destination configured, remove if you don't want it. Bear in mind this disables the AUX port on routers, it isn't there on most switches, ...
template icon

Cisco Switchports for Avaya IP Phones

July 11, 2012Shows the two methods - using LLDP or using DHCP Option 242 specified VLAN numbers in the L2Q and L2QVLAN options.
template icon

Create Vlan

July 15, 2012An example of how to create layer 2 and layer 3 vlans
template icon

Cisco ASR L2L VPN configuration (BETA)

July 29, 2014Cisco ASR L2L VPN Configuration (BETA) - This Template is for the configuration of a L2L IPSec VPN Tunnel on a Cisco ASR
template icon

Cisco LACP Layer 2 802.1Q

October 21, 2012Layer 2 802.1Q LACP bundle.
template icon

Cisco LACP Layer 3

October 21, 2012LACP Layer 3 bundle.
template icon

A Few Easy Steps: Cisco IOS, Setup NTP Template

December 18, 2012Transcribed [http://www.staticnat.com/WP/2012/12/18/a-few-easy-steps-cisco-ios-setup-ntp/] into hatch
template icon

A Few Easy Steps: Cisco IOS, Setup DNS Resolution Template

January 23, 2013Transcribed [http://www.staticnat.com/WP/2012/12/17/a-few-easy-steps-cisco-ios-setup-dns-resolution/] into hatch
template icon

Create ip sla udp-jitter probe

April 2, 2013Creates an ip sla probe to measure udp-jitter and more namely mos scores based on icpif calculations
template icon

DMVPN Hub and Spoke configuration

July 15, 2013Basic configuration of dmvpn on cisco IOS using pre-shared keys
template icon

cisco interface vlan

August 14, 2013create interface vlan with hsrp
template icon

Add User Subnet to ASA

February 14, 2014General config for adding a DHCP enabled subnet to a Cisco ASA as a sub-interface. Note: Default firewall rule in this config blocks all traffic to RFC-1918 addresses. Warning: My regexes suck so make sure you type in correct values for subnets, etc.
template icon

ASA Real-time Capture with ACL

February 19, 2014A quick ACL for use with the capture command in the ASA. Use "host x.x.x.x" or "x.x.x.0 255.255.255.0" in the target boxes and it will reverse to see traffic in both directions. NOTE: It clears config on the ACL so be sure you've got the right ACL!
template icon

Cisco IOS Basic Zone-based firewall

March 11, 2014Basic Zone-based firewall which inspects dns, smtp, pop3, http, https, ntp, ftp and icmp. Enter inside interface (for example vlan1 or gig0/0) and outside interface (for example fa4 or gig0/1)
template icon

Basic PBR Configuration

May 5, 2014Very basic/simple pbr implementation.
template icon

PBR With IP SLA

May 5, 2014Policy based routing configuration example using ip sla to verify next hop reachability
template icon

Network Config Template v0.1

May 14, 2014Network Config Template V0.1
template icon

Cisco IOS Router Template

July 18, 2014Basic IOS router template with EIGRP. OSPF/ISIS/iBGP/eBGP to be added later.
template icon

Cisco IOS Switch Template

July 18, 2014Generic Cisco IOS switch template, should work on all switches with 12.x/15.x
template icon

Cisco ASR L2L VPN Configuration (BETA) v2

July 29, 2014Cisco ASR L2L VPN Configuration (BETA) - This Template is for the configuration of a L2L IPSec VPN Tunnel on a Cisco ASR
template icon

Team CYMRU Secure IOS Template

August 14, 2014Refer to the following location: https://www.cymru.com/Documents/secure-ios-template.html Still undergoing edit'ing to create all of the template variables.
template icon

Cisco IOS PPPoE Client

August 14, 2014Super basic PPPoE client configuration for Cisco IOS routers.
template icon

Cisco IOS IPSec VPN, L2L plus EasyVPN

August 28, 2014L2L plus EasyVPN at the same time.
template icon

Cisco IOS IPSec VPN, L2L plus EasyVPN

August 28, 2014L2L plus EasyVPN at the same time.
template icon

Create BVIs "VLANS" on IOS xR

September 25, 2014This is how you would create a VLAN trunk over a port-channel in Cisco IOS XR.
template icon

[Cisco IOS] Use TCL Ping Scripts on Cisco Routers for Reachability Testing

March 24, 2015One common problem in networking is the lack of complete IP reachability to various segments of our network. Sometimes it can be difficult to dedicate enough time to properly verify that reachability exists between all relevant segments. In order to solve this problem two very useful features can be implemented, TCL scripting on the Cisco routers and macro scripting on ...
template icon

[cisco iOS] Use Macro Ping Scripts for Reachability Testing

March 9, 2015For macro scripting on the Catalyst switches, we can take the same list of IP addresses used before and prefix them with the commands “do ping”. The resulting list in notepad should look like this.....
template icon

NEWDC Network Configuration Template v0.1

December 16, 2014NEWDC Network Configuration Template v0.1