Cisco C1000初期設定
既存のCatalyst2960Xのリプレースとして、C1000を購入し、初期設定を行います。
C1000を電源に接続し(電源スイッチはない)TeraTermで以下の通り初期設定します。
General initialization - Version: 1.0.0
Serdes initialization - Version: 1.0.2
** Link is Gen1, check the EP capability
PEX: pexIdx 0, Link upgraded to Gen2 based on client capabilities
DDR3 Training Sequence - Ver TIP-1.56.0
DDR3 Training Sequence - Switching XBAR Window to FastPath Window
DDR3 Training Sequence - Ended Successfully
BootROM: Image checksum verification PASSED
Board SKU ID is (3)
FPU initialized to Run Fast Mode.
FPGA: 7.0
PCI-e 0: Detected Link.
PCI-e 0: (bus 0) , Detected Link X1, GEN 2.0
DRAM Size: 512 MB
Xmodem file system is available.
USB EHCI 1.00
Using driver version 1 for media type 3
yaffs[9]: Initialization complete.
yaffs[10]: Initialization complete.
yaffs[11]: Initialization complete.
Base ethernet MAC Address: 78:f1:c6:47:e1:00
The password-recovery mechanism is enabled.
*** The system will autoboot in 5 seconds ***
Send break character to prevent autobooting.
..................................................
config file not found..
Loading "flash:/c1000-universalk9-mz.152-7.E4/c1000-universalk9-mz.152-7.E4.bin"...Verifying image flash:/c1000-universalk9-mz.152-7.E4/c1000-universalk9-mz.152-7.E4.bin............................................................................................................................................................................................................................................................
Image passed digital signature verification
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
File "flash:/c1000-universalk9-mz.152-7.E4/c1000-universalk9-mz.152-7.E4.bin" uncompressed and installed, entry point: 0x3000
executing...
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, C1000 Software (C1000-UNIVERSALK9-M), Version 15.2(7)E4, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2021 by Cisco Systems, Inc.
Compiled Mon 08-Mar-21 09:07 by prod_rel_team
Initializing flash...
Using driver version 1 for media type 3
yaffs[8]: Initialization complete.
yaffs[9]: Initialization complete.
yaffs[10]: Initialization complete.
...done Initializing flash.
Checking for Bootloader upgrade..
Boot Loader upgrade not needed(v)PCI-e 0: Detected Link.
PCI-e 0: (bus 0) , Detected Link X1, GEN 2.0
MCU version 0x17
Current MCU BL version 0xAE
Checking for MCU firmware upgrade..
New version = 0x17
Current version = 0x17
MCU Upgrade not needed!!
INIT: Pp init completed.
INIT: ASIC 0 phases init completed.
INIT: ASIC 1 phases init completed.
INIT: phases init completed.
INIT: features init completed.
POST: PortASIC Port Loopback Tests : Begin
POST: PortASIC Port Loopback Tests : End, Status Passed
POST: ACT2 Authentication : Begin
POST: ACT2 Authentication : End, Status Passed
Waiting for Stack Master Election...
POST: Thermal Tests : Begin
POST: Thermal Tests : End, Status Passed
Election Complete
Switch 1 booting as Master
Initializing Device Manager...
Waiting for Port download...Complete
Resetting PoE Controllers
Initializing OBFL Module......done
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
cisco C1000-48P-4X-L (Marvell PJ4B (584) v7 (Rev 2)) processor (revision A0) with 524288K bytes of memory.
Processor board ID PSZ26401JAC
Last reset from Reload
1 Virtual Ethernet interface
52 Gigabit Ethernet interfaces
4 Ten Gigabit Ethernet interfaces
The password-recovery mechanism is enabled.
512K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address : 78:F1:C6:47:E1:00
Motherboard assembly number : 69BBA5M1PA01
Power supply part number : 341-0528-02
Motherboard serial number : 2274553201103
Power supply serial number : LIT2632C9HU
Model revision number : A0
Motherboard revision number : 2
Model number : C1000-48P-4X-L
Daughterboard assembly number : 69BBA5Y12A01
Daughterboard serial number : 2274553300519
System serial number : PSZ26401JAC
Top Assembly Part Number : 74-122923-02
Top Assembly Revision Number : A0
Version ID : V02
CLEI Code Number : CMM5F00ARB
Daughterboard revision number : 2
Hardware Board Revision Number : 0x01
Switch Ports Model SW Version SW Image
------ ----- ----- ---------- ----------
* 1 56 C1000-48P-4X-L 15.2(7)E4 C1000-UNIVERSALK9-M
%Error opening tftp://255.255.255.255/network-confg (Socket error)
%Error opening tftp://255.255.255.255/cisconet.cfg (Socket error)
%Error opening tftp://255.255.255.255/switch-confg (Socket error)
%Error opening tftp://255.255.255.255/ciscortr.cfg (Socket error)
Press RETURN to get started!→これが表示されたらEnterを押す
*Mar 1 00:00:01.293:
Board SKU ID is (3)
*Mar 1 00:00:20.201: %STACKMGR-4-SWITCH_ADDED: Switch 1 has been ADDED to the stack
*Mar 1 00:00:23.679: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan1, changed state to down
*Aug 15 02:25:36.469: %SPANTREE-5-EXTENDED_SYSID: Extended SysId enabled for type vlan
*Aug 15 02:25:36.987: %PNP-6-PNP_DISCOVERY_STARTED: PnP Discovery started
*Aug 15 02:25:58.004: %STACKMGR-5-SWITCH_READY: Switch 1 is READY
*Aug 15 02:25:58.004: %STACKMGR-4-STACK_LINK_CHANGE: Stack Port 1 Switch 1 has changed to state DOWN
*Aug 15 02:25:58.004: %STACKMGR-4-STACK_LINK_CHANGE: Stack Port 2 Switch 1 has changed to state DOWN
*Aug 15 02:25:58.447: %STACKMGR-5-MASTER_READY: Master Switch 1 is READY
*Aug 15 02:25:58.736: %USB_CONSOLE-6-MEDIA_RJ45: Console media-type is RJ45.
*Aug 15 02:25:59.848: %SYS-4-CONFIG_RESOLVE_FAILURE: System config parse from (tftp://255.255.255.255/network-confg) failed
*Aug 15 02:25:59.848: %SYS-4-CONFIG_RESOLVE_FAILURE: System config parse from (tftp://255.255.255.255/cisconet.cfg) failed
*Aug 15 02:25:59.850: %SYS-4-CONFIG_RESOLVE_FAILURE: System config parse from (tftp://255.255.255.255/switch-confg) failed
*Aug 15 02:25:59.850: %SYS-4-CONFIG_RESOLVE_FAILURE: System config parse from (tftp://255.255.255.255/ciscortr.cfg) failed
*Aug 15 02:25:59.851: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1000 Software (C1000-UNIVERSALK9-M), Version 15.2(7)E4, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2021 by Cisco Systems, Inc.
Compiled Mon 08-Mar-21 09:07 by prod_rel_team
*Aug 15 02:25:59.938: %PNP-6-PNP_BEST_UDI_UPDATE: Best UDI [PID:C1000-48P-4X-L,VID:V02,SN:PSZ26401JAC] identified via (master-registry)
*Aug 15 02:25:59.938: %PNP-6-PNP_CDP_UPDATE: Device UDI [PID:C1000-48P-4X-L,VID:V02,SN:PSZ26401JAC] identified for CDP
コンソールなので、ログが継続的に表示されるが、無視する
--- System Configuration Dialog ---
Enable secret warning
----------------------------------
In order to access the device manager, an enable secret is required
If you enter the initial configuration dialog, you will be prompted for the enable secret
If you choose not to enter the intial configuration dialog, or if you exit setup without setting the enable secret,
please set an enable secret using the following CLI in configuration mode-
enable secret 0 <cleartext password>
----------------------------------
これ以降、初期設定を行う(赤字が入力)
Would you like to enter the initial configuration dialog? [yes/no]: yes
At any point you may enter a question mark '?' for help.
Use ctrl-c to abort configuration dialog at any prompt.
Default settings are in square brackets '[]'.
Basic management setup configures only enough connectivity
for management of the system, extended setup will ask you
to configure each interface on the system
Would you like to enter basic setup instead of extended setup? [yes/no]: yes
Configuring global parameters:
Enter host name [Switch]: C1000
The enable secret is a password used to protect access to
privileged EXEC and configuration modes. This password, after
entered, becomes encrypted in the configuration.
Enter enable secret: *********→パスワードを入力
The enable password is used when you do not specify an
enable secret password, with some older software versions, and
some boot images.
Enter enable password: *********→パスワードを入力
% Please choose a password that is different from the enable secret
Enter enable password: *********→enable secretと違うパスワードを入力
The virtual terminal password is used to protect
access to the router over a network interface.
Enter virtual terminal password: →パスワードなしは許されなかった
% No defaulting allowed
Enter virtual terminal password: *********→パスワードを入力(Enable Secretと同じでもOK)
Configure SNMP Network Management? [no]: →Enterのみ
Current interface summary
Interface IP-Address OK? Method Status Protocol
Vlan1 unassigned YES unset up down
GigabitEthernet1/0/1 unassigned YES unset down down
GigabitEthernet1/0/2 unassigned YES unset down down
GigabitEthernet1/0/3 unassigned YES unset down down
GigabitEthernet1/0/4 unassigned YES unset down down
GigabitEthernet1/0/5 unassigned YES unset down down
GigabitEthernet1/0/6 unassigned YES unset down down
GigabitEthernet1/0/7 unassigned YES unset down down
GigabitEthernet1/0/8 unassigned YES unset down down
GigabitEthernet1/0/9 unassigned YES unset down down
GigabitEthernet1/0/10 unassigned YES unset down down
GigabitEthernet1/0/11 unassigned YES unset down down
GigabitEthernet1/0/12 unassigned YES unset down down
GigabitEthernet1/0/13 unassigned YES unset down down
GigabitEthernet1/0/14 unassigned YES unset down down
GigabitEthernet1/0/15 unassigned YES unset down down
GigabitEthernet1/0/16 unassigned YES unset down down
GigabitEthernet1/0/17 unassigned YES unset down down
GigabitEthernet1/0/18 unassigned YES unset down down
GigabitEthernet1/0/19 unassigned YES unset down down
GigabitEthernet1/0/20 unassigned YES unset down down
GigabitEthernet1/0/21 unassigned YES unset down down
GigabitEthernet1/0/22 unassigned YES unset down down
GigabitEthernet1/0/23 unassigned YES unset down down
GigabitEthernet1/0/24 unassigned YES unset down down
GigabitEthernet1/0/25 unassigned YES unset down down
GigabitEthernet1/0/26 unassigned YES unset down down
GigabitEthernet1/0/27 unassigned YES unset down down
GigabitEthernet1/0/28 unassigned YES unset down down
GigabitEthernet1/0/29 unassigned YES unset down down
GigabitEthernet1/0/30 unassigned YES unset down down
GigabitEthernet1/0/31 unassigned YES unset down down
GigabitEthernet1/0/32 unassigned YES unset down down
GigabitEthernet1/0/33 unassigned YES unset down down
GigabitEthernet1/0/34 unassigned YES unset down down
GigabitEthernet1/0/35 unassigned YES unset down down
GigabitEthernet1/0/36 unassigned YES unset down down
GigabitEthernet1/0/37 unassigned YES unset down down
GigabitEthernet1/0/38 unassigned YES unset down down
GigabitEthernet1/0/39 unassigned YES unset down down
GigabitEthernet1/0/40 unassigned YES unset down down
GigabitEthernet1/0/41 unassigned YES unset down down
GigabitEthernet1/0/42 unassigned YES unset down down
GigabitEthernet1/0/43 unassigned YES unset down down
GigabitEthernet1/0/44 unassigned YES unset down down
GigabitEthernet1/0/45 unassigned YES unset down down
GigabitEthernet1/0/46 unassigned YES unset down down
GigabitEthernet1/0/47 unassigned YES unset down down
GigabitEthernet1/0/48 unassigned YES unset down down
GigabitEthernet1/0/49 unassigned YES unset down down
GigabitEthernet1/0/50 unassigned YES unset down down
GigabitEthernet1/0/51 unassigned YES unset down down
GigabitEthernet1/0/52 unassigned YES unset down down
Te1/0/1 unassigned YES unset down down
Te1/0/2 unassigned YES unset down down
Te1/0/3 unassigned YES unset down down
Te1/0/4 unassigned YES unset down down
Enter interface name used to connect to the
management network from the above interface summary: GigabitEthernet1/0/1
Configuring interface GigabitEthernet1/0/1:
Configure IP on this interface? [no]: →Enterのみ
The following configuration command script was created:
hostname 7F-C1000
enable secret 5 $1$5Y02$mCoNvyi1slCFe7C/ooGRr0
enable password **********
line vty 0 15
password *
no snmp-server
!
no ip routing
!
interface Vlan1
shutdown
no ip address
!
interface GigabitEthernet1/0/1
no shutdown
no ip address
!
interface GigabitEthernet1/0/2
!
interface GigabitEthernet1/0/3
!
interface GigabitEthernet1/0/4
!
interface GigabitEthernet1/0/5
!
interface GigabitEthernet1/0/6
!
interface GigabitEthernet1/0/7
!
interface GigabitEthernet1/0/8
!
interface GigabitEthernet1/0/9
!
interface GigabitEthernet1/0/10
!
interface GigabitEthernet1/0/11
!
interface GigabitEthernet1/0/12
!
interface GigabitEthernet1/0/13
!
interface GigabitEthernet1/0/14
--More-- !
interface GigabitEthernet1/0/15
!
interface GigabitEthernet1/0/16
!
interface GigabitEthernet1/0/17
!
interface GigabitEthernet1/0/18
!
interface GigabitEthernet1/0/19
!
interface GigabitEthernet1/0/20
!
interface GigabitEthernet1/0/21
!
interface GigabitEthernet1/0/22
!
interface GigabitEthernet1/0/23
!
interface GigabitEthernet1/0/24
!
interface GigabitEthernet1/0/25
!
interface GigabitEthernet1/0/26
!
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface GigabitEthernet1/0/29
!
interface GigabitEthernet1/0/30
!
interface GigabitEthernet1/0/31
!
interface GigabitEthernet1/0/32
!
interface GigabitEthernet1/0/33
!
interface GigabitEthernet1/0/34
!
interface GigabitEthernet1/0/35
!
interface GigabitEthernet1/0/36
!
interface GigabitEthernet1/0/37
!
interface GigabitEthernet1/0/38
!
interface GigabitEthernet1/0/39
!
interface GigabitEthernet1/0/40
!
interface GigabitEthernet1/0/41
!
interface GigabitEthernet1/0/42
!
interface GigabitEthernet1/0/43
!
interface GigabitEthernet1/0/44
!
interface GigabitEthernet1/0/45
!
interface GigabitEthernet1/0/46
!
interface GigabitEthernet1/0/47
!
interface GigabitEthernet1/0/48
!
interface GigabitEthernet1/0/49
!
interface GigabitEthernet1/0/50
!
interface GigabitEthernet1/0/51
!
interface GigabitEthernet1/0/52
!
interface TenGigabitEthernet1/0/1
!
interface TenGigabitEthernet1/0/2
!
interface TenGigabitEthernet1/0/3
!
interface TenGigabitEthernet1/0/4
!
end
[0] Go to the IOS command prompt without saving this config.
[1] Return back to the setup without saving this config.
[2] Save this configuration to nvram and exit.
Enter your selection [2]: →Enterのみ
Building configuration...
[OK]
Use the enabled mode 'configure' command to modify this configuration.
7F-C1000>
7F-C1000>
これで基本的な設定は完了です。
これ以降はコンソールから、コンフィグを設定していきます。
しかし、初期設定時の注意点があります。
■リモートアクセス(Telnet)
初期状態で
line vty 0 4
password ********
login
transport input none
line vty 5 15
password ********
login
transport input none
と設定されているため、リモートからのTelnet接続ができません
transport input none
を
transport input all
とする必要があります
■service config
service config
が初期状態では、設定されており、
%Error opening tftp://255.255.255.255/cisconet.cfg (Timed out)
%Error opening tftp://255.255.255.255/7f-c1000-confg (Timed out)
というようなエラーが多数発生します
no service config
として無効化する必要があります
■VLAN
各ポートに以下のようにVLANを設定すると
switchport access vlan xxx
xxxというVLANが自動的に生成さます
しかし、ポートに設定されないVLANは自分で別途VLAN DBに追加する必要があります
(Trunkのみで通過するVLANなど)
conf t
vlan xxx
exit
この記事が気に入ったらサポートをしてみませんか?