ak8bk_sem-proj/corerouter.tex

\subsection{\texttt{Core Router}}
hostname, loginy
\begin{verbatim}
en
conf t
hostname CoreRouter
#
# enable strong and complicated password 
#
enable password 123
#
# gen keys, needs a domain name
# enter 4096 when asked about bitsize
#
ip domain-name CoreRouter
crypto key generate rsa modulus 4096
#
# set strong and complicated password
#
username admin password admin
line vty 0 15
login local
transport input ssh
exit
ip ssh version 2
ip ssh authentication-retries 3
ip ssh time-out 120
exit
\end{verbatim}

\subsubsection{\texttt{DMZ dhcp}:}
\begin{verbatim}
# (config)
ip dhcp pool DMZ
network 192.168.100.0 255.255.255.128
default-router 192.168.100.1
exit
#
# exclude x.x.x.1-30
#
ip dhcp excluded-address 192.168.100.1 192.168.100.30
\end{verbatim}

\subsubsection{\texttt{Intranet dhcp}:}
\begin{verbatim}
# (config)
ip dhcp pool Intranet
network 192.168.255.0 255.255.255.128
default-router 192.168.255.1
exit
#
# exclude x.x.x.1-60
#
ip dhcp excluded-address 192.168.255.1 192.168.255.60
\end{verbatim}

\subsubsection{\texttt{VLAN-HOST}:}
\begin{verbatim}
# (config)
ip dhcp pool VLAN-HOST
network 10.0.10.0 255.255.254.0
default-router 10.0.10.1
exit
#
# exclude x.x.10.1-x.x.11.0
#
ip dhcp excluded-address 10.0.10.1 10.0.11.0
\end{verbatim}

\subsubsection{\texttt{DMZ DNSpublic}}
\texttt{DNSpublic} cofigure static IP:
\begin{verbatim}
# since this is an older Ubuntu box, we use ifconfig+route
ifconfig eth0 192.168.100.25 255.255.255.128
route add default gw 192.168.100.1
ifconfig eth0 up
\end{verbatim}

\subsubsection{\texttt{DMZ WEBserver}}
\texttt{WEBserver} enable dhcp on eth0:
\begin{verbatim}
# edit /etc/network/interfaces to contain the following
auto eth0
iface eth0 inet dhcp
#
# then reload the interface
#
ip link set eth0 down
ip link set eth0 up

\end{verbatim}