Cisco 1710 Software Configuration Manual
  1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Network Router
  5. 1710
  6. Software configuration manual

Cisco 1710 Software Configuration Manual

Security router
Hide thumbs Also See for 1710:
Table of Contents

Advertisement

Quick Links

Cisco 1710 Security Router Software
Configuration Guide
Corporate Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
http://www.cisco.com
Tel:
408 526-4000
800 553-NETS (6387)
Fax:
408 526-4100
Customer Order Number: DOC-7812696=
Text Part Number: 78-12696-01

Advertisement

Table of Contents
loading

Related Manuals for Cisco 1710

Summary of Contents for Cisco 1710

  • Page 1 Cisco 1710 Security Router Software Configuration Guide Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: DOC-7812696= Text Part Number: 78-12696-01...
  • Page 2 You can determine whether your equipment is causing interference by turning it off. If the interference stops, it was probably caused by the Cisco equipment or one of its peripheral devices. If the equipment causes interference to radio or television reception, try to correct the interference by using one or more of the following measures: •...
  • Page 3 Enterprise/Solver, EtherChannel, EtherSwitch, FastHub, FastSwitch, IOS, IP/TV, LightStream, MICA, Network Registrar, PIX, Post-Routing, Pre-Routing, Registrar, StrataView Plus, Stratm, SwitchProbe, TeleRouter, and VCO are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries.
  • Page 5 Ordering Documentation Documentation Feedback Obtaining Technical Assistance Cisco.com Technical Assistance Center Contacting TAC by Using the Cisco TAC Website Contacting TAC by Telephone xvii Introduction to Router Configuration C H A P T E R Configuring the Router from a PC...

  • Page 6: Table Of Contents

    Configuring Network Address Translation 2-10 Configuration Example 2-11 Configuring Firewalls 2-12 Access Lists 2-13 Configuration Examples 2-14 Inspection Rules 2-15 Complete Sample Configuration 2-15 Cisco 1710 Security Router Configuration 2-17 Network Access Router Configuration 2-19 Cisco 1710 Security Router Software Configuration Guide 78-12696-01...
  • Page 7 Defining the VLAN Encapsulation Format Assigning an IP Address to a Network Interface Configuring IPX Routing over IEEE 802.1Q Enabling NetWare Routing Defining the VLAN Encapsulation Format Configuring NetWare on the Subinterface Cisco 1710 Security Router Software Configuration Guide 78-12696-01...
  • Page 8 4-10 show vlans 4-11 Syntax Description 4-11 Command Mode 4-11 Example 4-11 ROM Monitor A P P E N D I X Entering the ROM Monitor ROM Monitor Commands Command Descriptions Cisco 1710 Security Router Software Configuration Guide viii 78-12696-01...
  • Page 9 TFTP Download Command Variables Required Variables Optional Variables Using the TFTP Download Command Configuration Register Console Download A-10 Command Description A-11 Error Reporting A-12 Debug Commands A-12 I N D E X Cisco 1710 Security Router Software Configuration Guide 78-12696-01...
  • Page 10 Contents Cisco 1710 Security Router Software Configuration Guide 78-12696-01...
  • Page 11 Preface This preface describes the objectives, audience, organization, and conventions of the Cisco 1710 Security Router Software Configuration Guide. It also provides information about additional documentation and how to obtain technical assistance. Objectives This software configuration guide explains how to configure the Cisco 1710 router.
  • Page 12 Cisco IOS. Chapter 2, “Cisco 1710 Security Router Configuration”—Describes what you • need to know about the Cisco IOS software (the software that runs the router) before you begin to configure the router. • Chapter 3, “Overview of Routing Between Virtual LANs”—Provides an...

  • Page 13: Related Documentation

    Cisco IOS Software Configuration: Cisco IOS Release 12.2: Configuration • Guides and Command References provide complete information about all the Cisco IOS CLI commands and how to use them, as well as information on designing and configuring LANs and WANs. •...

  • Page 14: Obtaining Documentation

    Obtaining Documentation The following sections provide sources for obtaining documentation from Cisco Systems. World Wide Web You can access the most current Cisco documentation on the World Wide Web at the following sites: • http://www.cisco.com http://www-china.cisco.com •...

  • Page 15: Documentation Feedback

    553-NETS(6387). Documentation Feedback If you are reading Cisco product documentation on the World Wide Web, you can submit technical comments electronically. Click Feedback in the toolbar and select Documentation. After you complete the form, click Submit to send it to Cisco.

  • Page 16: Technical Assistance Center

    This highly integrated Internet application is a powerful, easy-to-use tool for doing business with Cisco. Cisco.com provides a broad range of features and services to help customers and partners streamline business processes and improve productivity. Through Cisco.com, you can find information about Cisco and our networking solutions,...
  • Page 17 P4—You need information or assistance on Cisco product capabilities, • product installation, or basic product configuration. In each of the above cases, use the Cisco TAC website to quickly find answers to your questions. To register for Cisco.com, go to the following website: http://www.cisco.com/register/...
  • Page 18 Preface Obtaining Technical Assistance Cisco 1710 Security Router Software Configuration Guide xviii 78-12696-01...
  • Page 19 Understanding these concepts saves you time when you are configuring your router. If you have never used the Cisco IOS software or need a refresher, take a few minutes to read this chapter before you proceed to the next chapter.

  • Page 20: Configuring The Router From A Pc

    You can now configure your router using your PC. Understanding Command Modes This section describes the Cisco IOS command mode structure. Each command mode supports specific Cisco IOS commands. For example, the interface type_number command is used only when in global configuration mode.
  • Page 21 Chapter 1 Introduction to Router Configuration Understanding Command Modes You use the following Cisco IOS command modes when configuring the scenarios described in this document: • User EXEC Privileged EXEC • Global configuration • Interface configuration • Router configuration •...
  • Page 22 You should configure command. your router with an enable password to prevent anyone from making unauthorized changes to the router configuration. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...
  • Page 23 EXEC 10BaseT Ethernet • configuration mode, enter the interface. mode. exit command, or • 10/100BaseT press Ctrl-Z. FastEthernet To enter interface. • subinterface configuration mode, specify a subinterface with the interface command. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 24: Getting Help

    You can restrict the list to all commands starting with a specific letter by entering that letter, followed by a question mark (no space): Router (config-if)# s? shutdown snapshot snmp standby Cisco 1710 Security Router Software Configuration Guide 78-12696-01...
  • Page 25 For maximum security, the passwords should be different. If you enter the same password for both during the setup process, your router accepts the passwords, but warns you that they should be different. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 26: Entering Configuration Mode

    The enable password does not show on the screen when you enter it. This example shows how to enter configuration mode on a Cisco 1710 Security router: 1710> enable enable_password Password: <...

  • Page 27: Using Commands

    Chapter 1 Introduction to Router Configuration Using Commands Using Commands This section provides some tips about entering Cisco IOS commands at the command-line interface (CLI). Abbreviating Commands You only have to enter enough characters for the router to recognize the command as unique.

  • Page 28: Undoing Commands

    Router# copy running-config startup-config Building configuration... It might take a minute or two to save the configuration to NVRAM. After the configuration has been saved, the following appears: [OK] Router# Cisco 1710 Security Router Software Configuration Guide 1-10 78-12696-01...

  • Page 29: Using Debug Commands

    You can find additional information and documentation about the debug commands in the Debug Command Reference document on the Cisco IOS software documentation CD-ROM that came with your router. If you are not sure where to find this document on the CD-ROM, use the Search function in the Verity Mosaic browser that comes with the CD-ROM.

  • Page 30: Where To Go Next

    Introduction to Router Configuration Where to Go Next Where to Go Next Now that you have learned some Cisco IOS software basics, you can begin to configure your router. Remember that You can use the question mark (?) and arrow keys to help you enter •...
  • Page 31 Cisco 1710 Security Router Configuration This chapter presents basic configuration procedures for features of the Cisco 1710 Security router. For a full description of these features and their configurations, please refer to Cisco IOS Software Configuration: Cisco IOS Release 12.2.

  • Page 32: C H A P T E R 2 Cisco 1710 Security Router Configuration

    (VPDN). Start in global configuration mode. Command Task Step 1 vpdn enable Enable VPDN. Step 2 no vpdn logging Disable VPDN logging. Step 3 vpdn-group tag Configure a VPDN group. Step 4 request-dialin Specify the dialing direction. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 33: Configuring Ip Security

    IPSec implements the Data Encryption Standard (DES) and triple DES (3DES). Refer to the Cisco IOS Security Configuration Guide, Release 12.1, for more detailed information on IPSec. Perform the following tasks to configure IPSec. Start in global configuration mode.

  • Page 34: Disabling Hardware Encryption

    Exit crypto map configuration mode. Disabling Hardware Encryption The Cisco 1710 Security router is equipped with a Virtual Private Network (VPN) module that provides hardware 3DES encryption by default. It is possible to disable the VPN module and use Cisco IOS software encryption/decryption instead.
  • Page 35 The following is a useful command that shows statistical information about the VPN module: show crypto engine accelerator statistic An example of its use is as follows: c1710#show crypto engine accelerator statistic C1700_EM: ds: 0x81784BA4 idb:0x81780560 Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 36: Configuring The Dialer Interface

    Set the size of the IP maximum transmission unit (MTU). Step 4 encapsulation ppp Set the encapsulation type to PPP. Step 5 dialer pool 1 Specify the dialer pool to be used. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 37: Configuring The Ethernet Interfaces

    Step 9 pppoe enable Optional. Enable PPPoE as protocol. Step 10 pppoe-client dial-pool-number 1 Optional. Create the PPPoE dial pool. Step 11 exit Exit Fast Ethernet 0 interface configuration. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 38: Configuring Dynamic Host Configuration Protocol

    172.16.0.0, one in subnetwork 172.16.1.0, and one in subnetwork 172.16.2.0. Attributes from network 172.16.0.0, such as the domain name, DNS server, NetBIOS name server, and NetBIOS node type, are inherited in subnetworks Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 39: Manual Binding Configuration Example

    30 Manual Binding Configuration Example The following example creates a manual binding for a client named Mars.cisco.com. The MAC address of the client is 02c7.f800.0422 and the IP address of the client is 172.16.2.254. ip dhcp pool Mars host 172.16.2.254 hardware-address 02c7.f800.0422 ieee802...

  • Page 40: Configuring Network Address Translation

    Step 4 ip nat outside source static global-ip Enable static translation of a specified outside local-ip source address. This command is optional. Cisco 1710 Security Router Software Configuration Guide 2-10 78-12696-01...

  • Page 41: Configuration Example

    172.16.10.0 172.16.10.63 prefix 24 Define access list 7 to permit packets with source addresses ranging from 10.10.10.0 through 10.10.10.31 and from 10.10.20.0 through 10.10.20.31. access-list 7 permit 10.10.10.0 0.0.0.31 access-list 7 permit 10.10.20.0 0.0.0.31 Cisco 1710 Security Router Software Configuration Guide 2-11 78-12696-01...

  • Page 42: Configuring Firewalls

    The openings allow returning traffic for the specified session (that would normally be blocked) back through the firewall. Refer to the Cisco IOS Security Configuration Guide, Release 12.1, for more detailed information on traffic filtering and firewalls. Cisco 1710 Security Router Software Configuration Guide...

  • Page 43: Access Lists

    The order of commands in the sequence is important. A packet will be • operated on by the first command. If there is no match (neither a permit nor a deny occurs), the next command operates on the packet, and so on. Cisco 1710 Security Router Software Configuration Guide 2-13 78-12696-01...

  • Page 44: Configuration Examples

    102 permit tcp 0.0.0.0 255.255.255.255 128.88.0.0 0.0.255.255 gt 1023 access-list 102 permit tcp 0.0.0.0 255.255.255.255 128.88.1.2 0.0.0.0 eq 25 access-list 102 permit icmp 0.0.0.0 255.255.255.255 128.88.0.0 255.255.255.255 Cisco 1710 Security Router Software Configuration Guide 2-14 78-12696-01...

  • Page 45: Inspection Rules

    Complete Sample Configuration An example configuration is presented here, in which a Cisco 1710 Security router is a PPPoE client connected through a modem to an external network access router. The router might be located in a branch office with the network access router located at the corporate site.
  • Page 46 Cisco 1710 Security Router Configuration Complete Sample Configuration In this example, both the Cisco 1710 Security router and the network access router have inside and outside interfaces. The outside interfaces have global IP addresses while the inside interfaces have local IP addresses. These addresses are as follows: Cisco 1710 Security router outside interface: 24.119.216.150 255.255.255.0...

  • Page 47: Cisco 1710 Security Router Configuration

    1 request-dialin protocol pppoe crypto isakmp key 12abcjhrweit345 address 16.0.0.2 crypto isakmp policy 1 authentication pre-share encryption 3des hash sha group 2 crypto ipsec transform-set proposal1 esp-3des esp-sha-hmac ah-sha-hmac Cisco 1710 Security Router Software Configuration Guide 2-17 78-12696-01...
  • Page 48 102 permit ahp any any access-list 102 permit udp any eq isakmp any eq isakmp access-list 102 deny udp any any access-list 102 permit ip any any access-list 102 permit icmp any any Cisco 1710 Security Router Software Configuration Guide 2-18 78-12696-01...

  • Page 49: Network Access Router Configuration

    Complete Sample Configuration Network Access Router Configuration The following commands configure the network access router so that it provides a secure connection to the Cisco 1710 Security router. crypto isakmp key 12abcjhrweit345 address 24.19.216.150 crypto isakmp policy 1 authentication pre-share...
  • Page 50 Chapter 2 Cisco 1710 Security Router Configuration Complete Sample Configuration Cisco 1710 Security Router Software Configuration Guide 2-20 78-12696-01...
  • Page 51 VLAN, regardless of their physical connections to the network or their intermingling with other teams. The network can be reconfigured by using software rather than by physically unplugging and moving the devices or wires. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 52: C H A P T E R 3 Overview Of Routing Between Virtual Lans

    LAN environments that support broadcast- or multicast-intensive protocols and applications that flood packets throughout the network. Figure 3-1 illustrates the difference between traditional physical LAN segmentation and logical VLAN segmentation. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 53: Lan Segmentation

    Just as switches isolate collision domains for attached hosts and only forward appropriate traffic out a particular port, VLANs provide complete isolation between VLANs. A VLAN is a bridging domain; all broadcast and multicast traffic is contained within the VLAN. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 54: Security

    Communication Between VLANs Communication between VLANs is accomplished through routing, and the traditional security and filtering functions of the router can be used. Cisco IOS software provides network services such as security filtering, quality of service (QoS), and accounting on a per VLAN basis. As switched networks evolve to distributed VLANs, Cisco IOS provides key inter-VLAN communications and allows the network to scale.

  • Page 55: Performance

    Network additions, moves, and changes • Communicating Between VLANs The Cisco 1710 Security router uses the IEEE 802.1Q protocol for routing between VLANs. The IEEE 802.1Q protocol is used to interconnect multiple switches and routers and for defining VLAN topologies. IEEE 802.1Q support is currently available only for Fast Ethernet interfaces.

  • Page 56: Vlan Translation

    VLAN Translation VLAN translation refers to the ability of the Cisco IOS software to translate between different virtual LANs or between VLAN and non-VLAN encapsulating interfaces at Layer 2. Translation is typically used for selective inter-VLAN switching of non-routable protocols and to extend a single VLAN topology across hybrid switching environments.

  • Page 57: Ieee 802.1Q Encapsulation Configuration Task List

    This chapter describes the required and optional tasks for configuring routing between VLANs with IEEE 802.1Q encapsulation. For complete descriptions of the VLAN commands used in this chapter, refer to the “Cisco IOS Switching Commands” chapter in the Cisco IOS Switching Services Command Reference.

  • Page 58: Configuring Appletalk Routing Over Ieee 802.1Q

    AppleTalk can be routed over virtual LAN (VLAN) subinterfaces, using the IEEE 802.1Q VLAN encapsulation protocol. AppleTalk Routing provides full-feature Cisco IOS software AppleTalk support on a per VLAN basis, allowing standard AppleTalk capabilities to be configured on VLANs. To route AppleTalk over IEEE 802.1Q between VLANs, you need to customize the subinterface to create the environment in which it will be used.

  • Page 59: C H A P T E R 4 Configuring Routing Between Vlans With Ieee 802.1Q Encapsulation

    VLAN identifier. Configuring IP Routing over IEEE 802.1Q IP routing over IEEE 802.1Q extends IP routing capabilities to include support for routing IP frame types in VLAN configurations using the IEEE 802.1Q encapsulation. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 60: Enabling Ip Routing

    Assigning an IP Address to a Network Interface • Enabling IP Routing IP routing is automatically enabled in the Cisco IOS software for routers. To re-enable IP routing if it has been disabled, use the following command in global configuration mode:...

  • Page 61: Assigning An Ip Address To A Network Interface

    Novell Ethernet_802.3 encapsulation frames to be routed using IEEE 802.1Q encapsulation across VLAN boundaries. To configure Cisco IOS software on a router with connected VLANs to exchange IPX Novell Ethernet_802.3 encapsulated frames, perform these tasks in the order...

  • Page 62: Defining The Vlan Encapsulation Format

    This section provides configuration examples for each of the protocols described in this chapter. The section provides the examples for the following: Configuring AppleTalk over IEEE 802.1Q • • Configuring IP Routing over IEEE 802.1Q • Configuring IPX Routing over IEEE 802.1Q Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 63: Configuring Appletalk Over Ieee 802.1Q

    101 ip addr 10.0.0.11 255.0.0.0 Configuring IPX Routing over IEEE 802.1Q This configuration example shows IPX being routed on VLAN 102: ipx routing interface fastethernet 0.102 encapsulation dot1q 102 ipx network 100 Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 64: Vlan Commands

    VLAN Commands This section provides an alphabetical listing of all the VLAN commands that are new or specific to the Cisco 1710 router. All other commands used with this feature are documented in the Cisco IOS Release 12.1T command reference documents.

  • Page 65: Debug Vlan Packets

    Example The following is sample output from the debug vlan packets output: Router# debug vlan packets Virtual LAN packet information debugging is on Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 66: Encapsulation Dot1Q

    Usage Guidelines IEEE 802.1Q encapsulation is configurable on Fast Ethernet interfaces. Example The following example encapsulates VLAN traffic, using the IEEE 802.1Q protocol for VLAN 100: interface fastethernet 0.100 encapsulation dot1q 100 Cisco 1710 Security Router Software Configuration Guide 4-10 78-12696-01...

  • Page 67: Show Vlans

    Virtual LAN ID:100 (IEEE 802.1Q Encapsulation) vLAN Trunk Interface: FastEthernet0.100 Protocols Configured: Address: Received: Transmitted: 100.0.0.2 Virtual LAN ID:2500 (IEEE 802.1Q Encapsulation) vLAN Trunk Interface: FastEthernet0.200 Protocols Configured: Address: Received: Transmitted: 200.0.0.2 Cisco 1710 Security Router Software Configuration Guide 4-11 78-12696-01...
  • Page 68 Virtual LAN ID Domain number of the VLAN vLAN Trunk Interface Subinterface that carries the VLAN traffic Protocols Configured Protocols configured on the VLAN Address Network address Received Packets received Transmitted Packets transmitted Cisco 1710 Security Router Software Configuration Guide 4-12 78-12696-01...

  • Page 69: Rom Monitor

    You can perform certain configuration tasks, such as recovering a lost password or downloading software over the console port, by using ROM monitor. If there is no Cisco IOS software image loaded on the router, the ROM monitor runs the router.
  • Page 70 1700# reload register value. The router remains in ROM monitor and does not boot the Cisco IOS software. As long as the configuration value is 0x0, you must manually boot the operating system from the console. Refer to the boot command in the “Command...

  • Page 71: Rom Monitor Commands

    Ctrl and the Break keys at the same time. If you are using another type of terminal emulator or terminal emulation software, refer to the documentation for that product for information on how to send a Break command. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 72: Command Descriptions

    0xb86d c1700-bk9no3r2sy7-mz.0412 Boot Commands For more information about the ROM monitor boot commands, see the Cisco IOS Configuration Guide and Cisco IOS Command Reference publications. Boots the first image in Flash memory. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 73: Disaster Recovery With Tftp Download

    The standard way to load new software on your router is using the copy tftp flash privileged EXEC command from the Cisco IOS software command-line interface (CLI). However, if the router is unable to boot the Cisco IOS software, you can load new software while in ROM monitor mode.

  • Page 74: Required Variables

    DEFAULT_GATEWAY= ip_address the router. IP address of the TFTP server from TFTP_SERVER= ip_address which the software will be downloaded. The name of the file that will be TFTP_FILE= filename downloaded to the router. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 75: Optional Variables

    The default is 2, 400 seconds (40 minutes). Whether or not the router performs a TFTP_CHECKSUM=setting checksum test on the downloaded image: 1—Checksum test is performed. 0—No checksum test is performed. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 76: Using The Tftp Download Command

    Step 3 output: Do you wish to continue? y/n: [n]:y The router will begin to download the new file. Pressing Ctrl-C or Break stops the transfer before the Flash memory is erased. Cisco 1710 Security Router Software Configuration Guide 78-12696-01...

  • Page 77: Configuration Register

    Configuration Register The virtual configuration register is in NVRAM and has the same functionality as other Cisco routers. You can view or modify the virtual configuration register from either the ROM monitor or the operating system software. To change the virtual configuration register from the ROM monitor, enter confreg by itself for menu mode, or enter the new value of the register in hexadecimal.

  • Page 78: Console Download

    If you want to download a software image or a configuration file to the router over the console port, you must use the ROM monitor command. If you are using a PC to download a Cisco IOS image over the router console Note port at 115,200 bps, ensure that the PC serial port is using a 16550 universal asynchronous receiver/transmitter (UART).

  • Page 79: Command Description

    The name of the system image file or the system configuration file. In order for the router to recognize it, the name of the configuration file must be router_confg. Cisco 1710 Security Router Software Configuration Guide A-11 78-12696-01...

  • Page 80: Error Reporting

    Debug Commands Most ROM monitor debugging commands are functional only when Cisco IOS software has crashed or is halted. If you enter a debugging command and Cisco IOS crash information is not available, you see the following error message: "xxx: kernel context state is invalid, can not proceed."...
  • Page 81 (NVRAM). For example: rommon 3> meminfo Main memory size: 64 MB. Available main memory starts at 0x10000, size 65472KB IO (packet) memory size: 25 percent of main memory. NVRAM size: 32KB Cisco 1710 Security Router Software Configuration Guide A-13 78-12696-01...
  • Page 82 Appendix A ROM Monitor Debug Commands Cisco 1710 Security Router Software Configuration Guide A-14 78-12696-01...

  • Page 83: Broadcast Control

    ROM monitor mode enable bridging domain enable secret broadcast encapsulation dot1q 4-10 control frame A-13 domain inspect name 2-15 interface 2-7, 4-3, 4-4, 4-6 ipx network ipx routing meminfo A-13 caution, definition xiii Cisco 1710 Router Software Configuration Guide IN-1 78-12696-01...
  • Page 84 1-11 using in a Telnet session 1-11 firewall configuration 2-12 when to use 1-11 firewalls debug vlan packets command and access lists 2-13 to 2-15 dev (device) command and inspection rules 2-15 Cisco 1710 Router Software Configuration Guide IN-2 78-12696-01...
  • Page 85 IPSec configuration See NAT ipx network command no crypto engine accelerator command ipx routing command note, definition xiii packets, VLAN segmentation 3-2, 3-3 password Layer 2, encapsulating interfaces enable enable secret performance Cisco 1710 Router Software Configuration Guide IN-3 78-12696-01...
  • Page 86 A-13 tftpdnld translation, in VLANs router configuration register routers, in switched VLANs virtual LANs See VLANs sample configuration 2-15 to 2-19 virtual private dialup network saving your configuration See VPDN 1-10 Cisco 1710 Router Software Configuration Guide IN-4 78-12696-01...
  • Page 87 4-11 network design concerns management performance routers in routing between scalability security segmenting LANs with 3-2, 3-3 sharing resources between translation VlanDirector VPDN configuration Cisco 1710 Router Software Configuration Guide IN-5 78-12696-01...
  • Page 88 Index Cisco 1710 Router Software Configuration Guide IN-6 78-12696-01...

Table of Contents