CISCO 2950 ROUTER DEPLOYMENT 1
==============================
1. INTRODUCTION
2. IP ADDRESS
3. TELNET IN #1
4. SSH ENCRYPTION
5. DNS
6. TELNET IN #2
7. NTP CLOCK
8. DELETE NTP CLOCK
9. WRITE OUR CHANGES


1. INTRODUCTION
===============
We are going to put the router into it's new home.  It needs to be suitably configured so that we may connect to it.


2. IP ADDRESS
=============
We have a few clever ways of setting this up, although all we're going to be doing is having the device perform packet switching.  We do not require any routing or advanced configuration at this time.

IP ADDR : 192.168.1.2
SUBNET : 255.255.255.0
GATEWAY : 192.168.1.1

SERVER WIRED : 192.168.1.10 thru 20
CLIENT WIRELESS : 192.168.1.71 thru 71
CLIENT WIRED : 192.168.1.60 thru 70

Let's ping something and see how it's configured;
   Switch>ping 192.168.1.1

   Type escape sequence to abort.
   Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
   !!!!!
   Success rate is 100 percent (5/5), round-trip min/avg/max = 8/217/1012 ms
   Switch>

Well that's ok.  Isn't it.  OK, how do we find out what OUR address is right now?  We type [show running-config] of course;

   +-----------------------------------------+
   | DESCRIPTION :                           |
   | FILENAME : runningconfig2.txt           |
   +-----------------------------------------+


3. TELNET IN
============
Let's have a go at getting in and see what happens.  We're going to need a bit of information to proceed;
   IP : 192.168.1.2
   PORT : 21
   USERNAME :
   PASSWORD : poo


4. SSH ENCRYPTION
=================
This is obviously much more secure than telnet, but does our router's IOS provide that facility?  Let's have a look;
   Switch>en
   Password:
   Switch#show ip ssh
                ^
   % Invalid input detected at '^' marker.

   Switch#crypto
   Translating "crypto"...domain server (255.255.255.255)
   % Unknown command or computer name, or unable to find computer address
   Switch#


5. DNS
======
We need this working!!

   Switch>en
   Password:
   Switch#conf t
   Enter configuration commands, one per line.  End with CNTL/Z.
   Switch(config)#ip name-server 192.168.1.1
   Switch(config)#end
   Switch#
   05:50:09: %SYS-5-CONFIG_I: Configured from console by console

   Switch#ping www.google.com
   Translating "www.google.com"...domain server (192.168.1.1) [OK]

   Type escape sequence to abort.
   Sending 5, 100-byte ICMP Echos to 216.239.59.103, timeout is 2 seconds:
   !!!!!
   Success rate is 100 percent (5/5), round-trip min/avg/max = 44/51/76 ms
   Switch#traceroute www.bt.com
   Translating "www.bt.com"...domain server (192.168.1.1) [OK]

   Type escape sequence to abort.
   Tracing the route to www.bt.com (62.239.237.2)

     1 www.routerlogin.com (192.168.1.1) 8 msec 16 msec 8 msec
     2 ******************** (***.***.***.***) 32 msec 28 msec 32 msec
     3 ***.***.***.*** 32 msec 28 msec 32 msec
     4 linx1.ukcore.bt.net (195.66.224.10) 32 msec 32 msec 32 msec
     5 core1-pos0-14-4-0.ilford.ukcore.bt.net (195.99.125.226) 36 msec 44 msec 32 msec
     6 62.172.103.89 36 msec 36 msec 52 msec
     7 iar1-gig5-4.birmingham.ukcore.bt.net (62.6.196.94) 36 msec 36 msec 64 msec
     8 62.172.57.218 44 msec 36 msec 36 msec
     9  *  *  *
    10  *  *  *
    11  *  *  *

We got bored of that!  And then we finished off with this;
   Switch#clock set 22:19:00 2 Feb 2010
   Switch#copy running-config startup-config
   Destination filename [startup-config]?
   Building configuration...
   [OK]
   Switch#


6. TELNET #2
============
Having become distracted, we will now attempt to gain remote access.  The author actually wonders if it would be more appropriate to dynamically assign the router's IP/GATEWAY/DNS addresses via DHCP.  A static MAC address entry would be made into the DHCP client list.  It's not as if it's a true server per-se.  While servers can of course be configured via DHCP, it is generally accepted that they are not.

DHCP's most useful feature from an Administrator's POV is that DNS almost always works.  The Internet survives completely on DHCP.  This is due to what is known as IPv4 and IPv6.  Version 4 and Version 6.  4 is the current one.  6 is the future one.  Everything supports 4.  Not everything supports 6.  We've run out of numbers!  IPv4 allows for....  256 x 256 x 256 x 256 = 4,294,967,296.  4 Billion!!  Trust me!  It's not enough!

TELNET was developed initially born in the 1960's, abeilt the very latter half.  It is the WWW (World Wide Web) which we most often use and which gives us pretty web pages, this is all new.

The INTERNET has been around for a very long time, forty years somewhat.  Admittedly it would have been nothing more than an academic project, but you did want some information afterall.  The INTERNET is a collection of all of the different protocols, which running across all of the different ports.  HTTP, SSH, WOW, YIM, MSM, FTP, NNTP.  You may have heard of some of those.  They are what makes the Internet which we know.  It's possibilities are practically endless!

And now we will telnet in;
   aly@e7200:~$ sudo bash
   [sudo] password for aly: 
   root@e7200:~# telnet 192.168.1.2
   Trying 192.168.1.2...
   Connected to 192.168.1.2.
   Escape character is '^]'.


   User Access Verification

   Password: 
   Switch>

That was good don't you think!!??  The author honestly did not know if that was going to work.  So.  We're in!  What next?  DHCP.


7. ADD NTP CLOCK
================
We will attempt to get our switch talking to an NTP server.  First we need to find one!

   http://www.timetools.co.uk/ntp-servers/ref/ntp-servers-uk.htm

   +-----------------------------------------+
   | DESCRIPTION : Very Easy                 |
   | FILENAME : timentp1.txt                 |
   +-----------------------------------------+

We haven't saved it!  And that's deliberate, as there's a problem.  One of the NTP servers doesn't work, and we need to delete it.  We can either reboot and reapply these changes, OR, we can find out how to remove an entry.

To remove a peer or server association, use the no ntp peer ip-address or the no ntp server ip-address global configuration command. 

   Switch#show ntp ass   

         address         ref clock     st  when  poll reach  delay  offset    disp
   *~130.88.200.4     193.62.22.98      2    43    64  377    40.8    1.16     2.0
    ~194.35.252.7     0.0.0.0          16     -    64    0     0.0    0.00  16000.
    * master (synced), # master (unsynced), + selected, - candidate, ~ configured
   Switch#conf t
   Enter configuration commands, one per line.  End with CNTL/Z.


8. DELETE NTP CLOCK
===================
   Switch(config)#no ntp server 194.35.252.7
   Switch(config)#end
   Switch#show ntp ass

         address         ref clock     st  when  poll reach  delay  offset    disp
   *~130.88.200.4     193.62.22.98      2    20    64  377    40.2   -0.11     1.1
    * master (synced), # master (unsynced), + selected, - candidate, ~ configured
   Switch#



9. WRITE OUR CHANGES
====================
   Switch#copy running-config startup-config


10. DHCP
========
IP ADDRESS : 192.168.1.2
MAC : 00:05:dc:d4:49:c0