Cisco Router and Switch Recommended Startup Configuration

SOURCE: LabMinutes# RS0005

(config)#service nagle
(config)#no service pad
(config)#no service tcp-small-servers
(config)#no service config
(config)#no cdp run
(config)#service tcp-keepalives-in
(config)#service tcp-keepalives-out
(config)#service timestamps debug datetime msec localtime show-timezone
(config)#service password-encryption
(config)#service linenumber
(config)#service disable-ip-fast-frag
(config)#service sequence-numbers
(config)#no service password-recovery
Password recovery disable mode is not supported by the current ROMMON.
Please upgrade the ROMMON if you want to use this feature.
(config)#do sh run | in enable
enable secret 5 $1$8HsG$ghtysD40B/ItdaBGDhX9t.
(config)#no ip source-route
(config)#no ip domain lookup
(config)#ip domain name poc.local
(config)#ip tcp synwait-time 10
(config)#no ip bootp server
(config)#no ip forward-protocol udp domain
(config)#no ip forward-protocol udp nameserver
(config)#no ip forward-protocol nd
(config)#no ip forward-protocol udp netbios-ns
(config)#no ip forward-protocol udp netbios-dgm
(config)#no ip forward-protocol udp tacacs
(config)#no ip forward-protocol udp tftp
(config)#do sh run | in forward
no ip forward-protocol nd
no ip forward-protocol udp tftp
no ip forward-protocol udp nameserver
no ip forward-protocol udp domain
no ip forward-protocol udp time
no ip forward-protocol udp netbios-ns
no ip forward-protocol udp netbios-dgm
no ip forward-protocol udp tacacs
(config)#no ip http server
(config)#no ip http secure-server
(config)#ip http access-class 10
(config)#banner login %
Enter TEXT message. End with the character ‘%’.
###############
Disconnect Immediately
###############
%
(config)#line console 0
(config-line)#exec-timeout 5 0
(config-line)#password cisco
(config-line)#login
(config-line)#transport output ssh
(config-line)#exit
(config)#line aux 0
(config-line)#exec-timeout 5 0
(config-line)#password cisco
(config-line)#login
(config-line)#transport output none
(config-line)#exit
(config)#line vty 0 4
(config-line)#exec-timeout 5 0
(config-line)#password cisco
(config-line)#login
(config-line)#logging synchronous
(config-line)#transport preferred ssh
(config-line)#end
#show flash:
NOTE: if you have multiple image, you can specify which one is primary and secondary boot
(config)#boot system flash:/c3725-adventerprisek9-mz.124-15.T5.bin

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s