Cisco Configuration Professional: Difference between revisions

From ITCwiki
Jump to navigation Jump to search
 
Line 193: Line 193:


a. In the Edit Address Translation Rule window configure the Translate to interface to
a. In the Edit Address Translation Rule window configure the Translate to interface to
address pool under type and name the address pool under that and enter Ok.
address pool under type and name the address pool under that and enter Ok.[[File:Edit NAT Translation Rule.jpg|400px|thumb|right|CAPTION NEED]]


7. You are then brought back to the Edit NAT Configuration tab to designate the interfaces. Click
7. You are then brought back to the Edit NAT Configuration tab to designate the interfaces. Click
Line 199: Line 199:


a. Here you can assign the interfaces to be inside (trusted) or outside (untrusted). Once
a. Here you can assign the interfaces to be inside (trusted) or outside (untrusted). Once
they are assigned the interfaces will be used in all NAT translation rules.1. Follow the following steps to configure dynamic NAT on a router.
they are assigned the interfaces will be used in all NAT translation rules.1. Follow the following steps to configure dynamic NAT on a router.[[File:Edit NAT Interface Settings.jpg|400px|thumb|right|CAPTION NEED]]


a. Navigate to Configure> Router> NAT > Basic NAT and launch the selected task by clicking
a. Navigate to Configure> Router> NAT > Basic NAT and launch the selected task by clicking

Latest revision as of 22:02, 11 December 2011

Before You Begin

The network must be configured and connected before trying to use CCP.

With that being said you can have the most basic of configurations on the router.

Essentially all you have to do is assign ip addresses to the connecting Fast Ethernet devices.

Each router must have level 15 privilege set to use CCP properly.


The network topology used for this lab is relatively simple.

There is One host machine with an IP address of 172.16.1.1 connected to a router via straight thru to FA0/2 with an IP of 172.16.1.2.

Then the router is connected to another router via 192.168.1.1 to our simulated WAN with an IP of 192.168.1.2

CCP Topology.jpg

Configuring a Cisco Router for CCP

Step 1.

Connect to your router using Telnet, SSH, or through the console.

Enter global configuration mode using this command:

Router(config)#enable

Router(config)#

Step 2.

If HTTP and HTTPS are enabled and configured to use nonstandard port numbers, you can skip this step and use the already configured port number.

Router(config)# ip http server

Router(config)# ip http secure-server

Router(config)# ip http authentication local

Step 3.

Create User with Privilege level 15

Router(config)# username <username> privilege 15 password 0 <password>

Step 4.

Configure SSH and Telnet for local login and privilege level 15

Router(config)# line vty 0 4

Router(config-line)# privilege level 15

Router(config-line)# login local

Router(config-line)# transport input telnet

Router(config-line)# transport input telnet ssh

Router(config-line)# exit

Step 5.

Enable local logging for log monitoring function

Router(config)# logging buffered 51200 warning


Installing CCP

Cisco Configuration Professional is installed directly on to a host machine that will be configuring the network. If you want to install software on the router that is similar but not as in depth, there is also Cisco Configuration Express which is installed on the memory of the router.

Step 1.

Go to http://www.cisco.com/en/US/products/ps9422/index.html which is the CCP webpage on Cisco.com

Step 2.

Create or username or login with your cisco username, then select Download Software under support. You will have to add CCP to the cart and confirm the download at least 3 times.

Step 3.

Once you have successfully downloaded the .exe launch and install CCP.

Discovering an Interface

Step 1.

First you must start a new community, and then discover the device. Type in an ip of 172.16.1.2 with your username and password. In this example we will use Loake for the username and class as the password.

172.16.1.2 Disocvered
Caption Goes Here


Step 2.

Once the network is discovered click the Configure tab on the top left. Since we didn't set a router named click Router and then select Router Options. Double click the router name and you can configure the name and the banner.

Caption Goes Here
Caption Goes Here


To send these settings to the router you can deliver them. While doing this you can also save the configuration to the startup config.

Caption Goes Here
Caption Goes Here

Interface Configuration

Step 1.

Once CCP is loaded click Home to go to the Homepage.

Step 2.

On the pane in the left you want to select Configure, Interface Management, Interfaces and Connections and then select Create Connection. We will be configuring a WAN connection in this scenario.



Step 3.

Once inside the Interfaces and Connections dialog select Ethernet(PPPoE or Unencapsulated Routing) and then select Create New Connection.

Interfaces and Connections Window
Int 192.168.1.1 down


Step 4.

The Ethernet Wizard pops up, click next on the Welcome screen. On the Encapsulation page select Interface FA0/1 and then hit next.

caption
caption


Step 5.

For the IP address assign it an IP of 192.168.1.1 /25 (255.255.255.0) and hit next. For Advanced options we are going to select Default Static Route. Then click Next-Hop IP address and assign the IP of 192.168.1.2 and hit next.

Wizard IP add
Static Route


Step 6.

The next window will be the summary showing the changes we have made. Click the Test the Connectivey after configuring check box and select Finish. The Delivery Status window will pop up and ask if you would like to Deliver and save the running config hit yes and close out.

CAPTION NEED
CAPTION NEED
CAPTION NEED



Side Note

In the Configure pane on the left browse through Interface Management, Interfaces and Connections and then Edit Interfaces/Connections. This will let us add, delete and edit interfaces.


Once in the menu select the interface you want to make changes to. At the top select Edit Interface/Connection. Here you can change the type of IP address, the IP address its self and the subnet mask. You also have an option for a Dynamic DNS Method but we're going to ignore that. Click ok to exit this menu.


When configuring interfaces these settings can be applied to just creating a new connection, you will just have to tweak the settings a little bit and instead of selecting the PPPoE , Unencapsulation select plain ethernet.

Int up!

You have successfully configured an interface using Cisco Configuration Protocol!












Configuring NAT with Cisco Configuration Protocol

1. Follow the following steps to configure dynamic NAT on a router.

a. Navigate to Configure> Router> NAT > Basic NAT and launch the selected task by clicking on the button on the bottom right corner of the screen. This starts the configuration of

basic NAT.

NAT

2. Enter Next on the Welcome to the Basic NAT Wizard page.

NAT Wizard

3. Configure the interface that connects to the provided ISP and set the IP address range that

needs to access the internet. Once completing this hit Next.

ISP config

4. On the Summary of the Configuration page click Finish to complete the review.

Summary

5. Next navigate to the Edit NAT Configuration tab to review the configured dynamic NAT configurations and the translated IP addresses using PATing. In order to configure dynamic

NATing with an address pool, click the Address Pool button.

Edit NAT

a. In the Address Pools window click Add.

Add Pool

b. This is where you view information like the pool name and IP range with natmasks. Also in order to configure PATing over NAT click the Port Address Translation checkbox and

then click Ok.

NAT

c. Click Add to add the address pool into the configuration.

Verify Pool

6. Once you finish adding the pool edit the pool you just configured.

a. In the Edit Address Translation Rule window configure the Translate to interface to

address pool under type and name the address pool under that and enter Ok.

CAPTION NEED

7. You are then brought back to the Edit NAT Configuration tab to designate the interfaces. Click Designate NAT Interfaces button to set the NAT interface settings.

a. Here you can assign the interfaces to be inside (trusted) or outside (untrusted). Once

they are assigned the interfaces will be used in all NAT translation rules.1. Follow the following steps to configure dynamic NAT on a router.

CAPTION NEED

a. Navigate to Configure> Router> NAT > Basic NAT and launch the selected task by clicking on the button on the bottom right corner of the screen. This starts the configuration of basic NAT.

2. Enter Next on the Welcome to the Basic NAT Wizard page.

3. Configure the interface that connects to the provided ISP and set the IP address range that needs to access the internet. Once completing this hit Next.

4. On the Summary of the Configuration page click Finish to complete the review.

5. Next navigate to the Edit NAT Configuration tab to review the configured dynamic NAT configurations and the translated IP addresses using PATing. In order to configure dynamic NATing with an address pool, click the Address Pool button.

a. In the Address Pools window click Add.

b. This is where you view information like the pool name and IP range with natmasks. Also in order to configure PATing over NAT click the Port Address Translation checkbox and then click Ok.

c. Click Add to add the address pool into the configuration.

6. Once you finish adding the pool edit the pool you just configured.

a. In the Edit Address Translation Rule window configure the Translate to interface to address pool under type and name the address pool under that and enter Ok.

7. You are then brought back to the Edit NAT Configuration tab to designate the interfaces. Click Designate NAT Interfaces button to set the NAT interface settings.

a. Here you can assign the interfaces to be inside (trusted) or outside (untrusted). Once they are assigned the interfaces will be used in all NAT translation rules.

Static NAT Configuration

1. Follow the following steps to configure static NAT on a router.

a. In CCP navigate to Configure > Router > NAT > Edit NAT Configuration and add a rule.

2. In the Add Address Translation Rule window you configure the direction from inside to outside or from outside to inside along with specifying the inside IP address that will be translated.

a. If you choose IP Address you will want the Translate from Address to translate to a IP address that is configured in the IP Address field.

b. You want to select interface if you are trying to translate from the address to use the address assign to an interface on the router.

c. Check Redirect Port if you want to send information for the inside devices in translation

also allowing you to use the same public IP address for many devices.

3. Once you finish configuring the translation rule the Edit NAT Configuration tab allows you to see the static NATing configuration.

Static and Dynamic Routing

In CCP to perform Static routing you go to the configure tab, then router, static and dynamic routing and then click add. When you do that you are prompted to add in the destination network address with its mask and set whether it goes out an interface or a next hop IP address. You then click add and it adds in the static route. It’s very simple.

For dynamic routing you click configure, router, static and dynamic routing, and then click on the RIP and select edit. Then Check the enable RIP and pick which RIP version you want to use and then click add. When you finish with that you set the network address to what you want set and click ok. After that you click the deliver button and everything should be set the way that you want it.