Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
cisco:good-defaults [2011/05/27 12:18] 217.196.226.80 |
cisco:good-defaults [2014/09/28 22:43] (current) mrizvic |
||
|---|---|---|---|
| Line 21: | Line 21: | ||
| Source: http:// | Source: http:// | ||
| + | |||
| + | recommended on 2900 series for IPv6 traffic: | ||
| + | |||
| + | < | ||
| + | sdm prefer dual-ipv4-and-ipv6 default | ||
| + | </ | ||
| + | |||
| + | auto archiving on 'write memory' | ||
| + | |||
| + | < | ||
| + | archive | ||
| + | log config | ||
| + | logging enable | ||
| + | logging size 1000 | ||
| + | notify syslog contenttype plaintext | ||
| + | hidekeys | ||
| + | path tftp:// | ||
| + | write-memory | ||
| + | time-period 1440 | ||
| + | </ | ||
| + | |||
| + | disable local services + add some security stuff | ||
| + | |||
| + | < | ||
| + | no service tcp-small-servers | ||
| + | no service udp-small-servers | ||
| + | no service pad | ||
| + | no ip http server | ||
| + | no ip http secure-server | ||
| + | no ip domain-lookup | ||
| + | no ip finger | ||
| + | no ip source-route | ||
| + | login on-failure log | ||
| + | login on-success log | ||
| + | |||
| + | ip ssh authentication-retries 2 | ||
| + | ip ssh logging events | ||
| + | ip ssh version 2 | ||
| + | |||
| + | logging buffered 512000 | ||
| + | </ | ||
| + | |||
| + | |||
| + | |||
| + | |||
