Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
cisco:good-defaults [2010/11/08 12:12] a created |
cisco:good-defaults [2014/09/28 22:43] (current) mrizvic |
||
---|---|---|---|
Line 5: | Line 5: | ||
service password-encryption | service password-encryption | ||
- | clock timezone | + | clock timezone |
- | clock summer-time | + | clock summer-time |
no ip domain lookup | no ip domain lookup | ||
Line 19: | Line 19: | ||
| | ||
</ | </ | ||
+ | |||
+ | Source: http:// | ||
+ | |||
+ | recommended on 2900 series for IPv6 traffic: | ||
+ | |||
+ | < | ||
+ | sdm prefer dual-ipv4-and-ipv6 default | ||
+ | </ | ||
+ | |||
+ | auto archiving on 'write memory' | ||
+ | |||
+ | < | ||
+ | archive | ||
+ | log config | ||
+ | logging enable | ||
+ | logging size 1000 | ||
+ | notify syslog contenttype plaintext | ||
+ | hidekeys | ||
+ | path tftp:// | ||
+ | write-memory | ||
+ | time-period 1440 | ||
+ | </ | ||
+ | |||
+ | disable local services + add some security stuff | ||
+ | |||
+ | < | ||
+ | no service tcp-small-servers | ||
+ | no service udp-small-servers | ||
+ | no service pad | ||
+ | no ip http server | ||
+ | no ip http secure-server | ||
+ | no ip domain-lookup | ||
+ | no ip finger | ||
+ | no ip source-route | ||
+ | login on-failure log | ||
+ | login on-success log | ||
+ | |||
+ | ip ssh authentication-retries 2 | ||
+ | ip ssh logging events | ||
+ | ip ssh version 2 | ||
+ | |||
+ | logging buffered 512000 | ||
+ | </ | ||
+ | |||
+ | |||
+ | |||
+ |