Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Last revision Both sides next revision | ||
cisco:good-defaults [2010/11/18 10:13] 89.212.5.83 |
cisco:good-defaults [2014/09/28 22:39] mrizvic |
||
---|---|---|---|
Line 19: | Line 19: | ||
| | ||
</ | </ | ||
+ | |||
+ | Source: http:// | ||
+ | |||
+ | recommended on 2900 series for IPv6 traffic: | ||
+ | |||
+ | < | ||
+ | sdm prefer dual-ipv4-and-ipv6 default | ||
+ | </ | ||
+ | |||
+ | auto archiving on 'write memory' | ||
+ | |||
+ | < | ||
+ | archive | ||
+ | log config | ||
+ | logging enable | ||
+ | logging size 1000 | ||
+ | notify syslog contenttype plaintext | ||
+ | hidekeys | ||
+ | path tftp:// | ||
+ | write-memory | ||
+ | time-period 1440 | ||
+ | </ | ||
+ | |||
+ | disable local services + add some security stuff | ||
+ | |||
+ | < | ||
+ | no service tcp-small-servers | ||
+ | no service udp-small-servers | ||
+ | no service pad | ||
+ | no ip http server | ||
+ | no ip http secure-server | ||
+ | no ip domain-lookup | ||
+ | no ip finger | ||
+ | login on-failure log | ||
+ | login on-success log | ||
+ | |||
+ | ip ssh authentication-retries 2 | ||
+ | ip ssh logging events | ||
+ | ip ssh version 2 | ||
+ | |||
+ | logging buffered 512000 | ||
+ | </ | ||
+ | |||
+ | |||
+ | |||
+ |