Posted inCisco
Cisco Router NAT and Port forwarding
host PC1 no ip routing no ip domain-lookup int e0/0 ip add 192.168.1.10 255.255.255.0 duplex full no shut ip default-gateway 192.168.1.1 line vty 0 4 ...
Posted inCisco
Cisco IPSec & EIGRP
host R1 no ip domain lookup int e0/0 ip address 10.255.255.1 255.255.255.0 no shut duplex full int lo0 ip address 1.1.1.1 255.255.255.255 router eigrp...
Cisco EIGRP + BGP redistribute eigrp
host MPLS int e0/0 ip address 192.168.1.1 255.255.255.0 no shut int e0/1 ip address 192.168.2.1 255.255.255.0 no shut int e0/2 ip address 192.168.3.1 ...
Cisco ISE NAC Dot1x
請先看ISE NAC MAB再看ISE NAC 802.11x https://www.stupid.hk/wordpress/?p=2284 我們首先安裝CA Server 選擇Active Directory Certificate Services 一直Next, 然後除了原有的Certifi...
Cisco Switch copy ftp
ip ftp username ftpuser ip ftp password ftpuserpassword copy flash:xxx.bin ftp://xxx.xxx.xxx.xxx/ copy ftp://xxx.xxx.xxx.xxx/xxx.bin flash: no ip ftp ...
Cisco ISE NAC MAB
由於這個只是實驗性質, 以免測試過程中, Lock了這個Mac address, 影響結果, 可以先停用這個Suppress Repeated Failed Clients Administration -> System -> Settings -> Protocols ->...
Cisco Switch 使用 Cisco ISE 驗証
在Switch上的設定 hostname R6 enable algorithm-type scrypt secret {Password} ip domain name abc.com username admin algorithm-type scrypt secret {Password} l...
Cisco send logging to syslog server
service timestamps log datetime localtime show-timezone clock timezone HK 8 0 logging host xxx.xxx.xxx.xxx transport udp port 514
Cisco Policy Based Routing (PBR)
https://www.stupid.hk/wordpress/?p=1929 https://www.stupid.hk/wordpress/?p=1571 再一次測試PBR 都是由PC1到R4的lo1 192.168.5.1 PC1 no ip domain-lookup no ip routi...