Rozdíly
Zde můžete vidět rozdíly mezi vybranou verzí a aktuální verzí dané stránky.
— |
brocade_fcx [2019/05/05 23:50] (aktuální) 0.0.0.0 vytvořeno |
||
---|---|---|---|
Řádek 1: | Řádek 1: | ||
+ | ====== Brocade_FCX ====== | ||
+ | Sériová konzole 3 dráty, ale nekříží RXD a TXD. | ||
+ | Baud: 9600 bps | ||
+ | Data bits: 8 | ||
+ | Parity: None | ||
+ | Stop bits: 1 | ||
+ | Flow control: None | ||
+ | |||
+ | Hesla | ||
+ | |||
+ | device(config)# enable super-user-password | ||
+ | text | ||
+ | |||
+ | NOTE: You must set the super user password before you can set other types of passwords. | ||
+ | Enter the following commands to set the port configuration and read-only passwords: | ||
+ | |||
+ | device(config)# enable port-config-password | ||
+ | text | ||
+ | device(config)# enable read-only-password | ||
+ | text | ||
+ | |||
+ | Obnova hesla | ||
+ | |||
+ | Use the following procedure to recover from a lost password. | ||
+ | Start a CLI session over the serial interface to the Brocade device. | ||
+ | Reboot the device. | ||
+ | While the system is booting, before the initial system prompt appears, enter b to enter the boot monitor mode. | ||
+ | Enter no password at the prompt. (You cannot abbreviate this command.) | ||
+ | Enter boot system flash primary at the prompt. This command causes the device to bypass the system password check. | ||
+ | |||
+ | FGS Boot Code Version 05.0.00 | ||
+ | Enter 'b' to stop at boot ... | ||
+ | FGS-Boot> | ||
+ | boot Boot system | ||
+ | ip Set IP address | ||
+ | monitor Toggle monitor mode | ||
+ | reset Reset system | ||
+ | show Show information | ||
+ | FGS-Boot>monitor | ||
+ | OK! The debug task will stop at start point. | ||
+ | FGS-Boot>no password | ||
+ | OK! Skip password check when the system is up. | ||
+ | FGS-Boot>boot system flash primary | ||
+ | |||
+ | FastIron(config)# banner motd $ | ||
+ | (Press Return) | ||
+ | Enter TEXT message, End with the character '$'. | ||
+ | Welcome to FESX! $ | ||
+ | A delimiting character is established on the first line of the | ||
+ | banner motd | ||
+ | command. You begin and | ||
+ | end the message with this delimiting character. | ||
+ | The delimiting character can be any character | ||
+ | except “ (double-quotation mark) | ||
+ | and cannot appear in the banner text. In this example, the | ||
+ | delimiting character is $ (dollar sign). The text | ||
+ | in between the dollar signs is the contents of the | ||
+ | banner. The banner text can be up to 4000 char | ||
+ | acters long, which can co | ||
+ | nsist of multiple lines. | ||
+ | Syntax: | ||
+ | [[ | ||
+ | |no | ||
+ | ]] | ||
+ | banner motd | ||
+ | <delimiting-character> | ||
+ | To remove the banner, enter the | ||
+ | no banner motd | ||
+ | command | ||
+ | |||
+ | |||
+ | banner motd $ | ||
+ | ************************************************************ | ||
+ | *Unauthorized access prohibited * | ||
+ | *Disconnect IMMEDIATELY if you are not an authorized user! * | ||
+ | *This system is managed and monitored by jablonka.cz * | ||
+ | *Contact info@jablonka.cz +420 777 99 15 69 * | ||
+ | ************************************************************ | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | $ | ||
+ | |||
+ | buffer-sharing-full | ||
+ | ! | ||
+ | aaa authentication web-server default local | ||
+ | aaa authentication enable default tacacs+ enable | ||
+ | aaa authentication enable implicit-user | ||
+ | aaa authentication login default local | ||
+ | aaa authorization commands 0 default tacacs+ none | ||
+ | aaa authorization exec default tacacs+ none | ||
+ | aaa accounting commands 0 default start-stop tacacs+ | ||
+ | |||
+ | boot system flash secondary | ||
+ | Are you sure? (enter 'y' or 'n'): y | ||
+ | Halt and reboot | ||
+ | |||
+ | ssh a konto a disable telnet | ||
+ | config t | ||
+ | crypto key generate rsa | ||
+ | username konto pri 0 password heslo | ||
+ | aaa authentication login default local | ||
+ | no telnet server | ||
+ | [[http://www1.brocade.com/downloads/documents/html_product_manuals/FI_ICX6650_07500_SCG/wwhelp/wwhimpl/common/html/wwhelp.htm#href=FI_Security_DHCP.14.3.html&single=true|DHCP snooping]] | ||
+ | enable ACL-per-port-per-vlan | ||
+ | write memory | ||
+ | exit | ||
+ | reload | ||
+ | |||
+ | ip dhcp snooping vlan 50 | ||
+ | |||
+ | interface ethernet 1/1/1 | ||
+ | dhcp snooping trust |