Assumptions
The following is a list of assumptions, they don’t specifically have to be used and can be modified to suit your setup.
- Using “Dialer0” interface to connect to ISP
- Using CHAP for authentication
- Using DHCP IP assignment from ISP
- Using Google name servers
- Using standard MTU size (1452)
Configuration
Enable Terminal Monitoring
enable
terminal monitor
Change Host Name
enable
configure terminal
hostname <name>
exit
Configure Enable Password (Hashed)
enable
configure terminal
enable secret <password>
exit
Enable HTTPS Server
enable
configure terminal
ip http secure-server
exit
Disable HTTP Server
enable
configure terminal
no ip http server
exit
Configure Name Servers
enable
configure terminal
ip name-server 8.8.8.8
ip name-server 8.8.4.4
exit
Configure Dialer0 Interface
enable
configure terminal
interface dialer0
description <name>
ip address negotiated
ip mtu 1452
ip nat outside
encapsulation ppp
no ip redirects
no ip proxy-arp
ip virtual-reassembly max-reassemblies 256
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname <ispusername>
ppp chap password <isppassword>
exit
Route Traffic to Dialer0
enable
configure terminal
ip route 0.0.0.0 0.0.0.0 Dialer0
exit
Configure NTP Server
enable
configure terminal
ntp server <ntpipaddress> source Dialer0 perfer
exit
Add Username
enable
configure terminal
username <name> privilege 15 secret <password>
exit
Disable Synchronous Logging
enable
configure terminal
line vty 0
logging synchronous
exit
line con 0
logging synchronous
exit
Disable Console and Shell Timeout
enable
configure terminal
line con 0
no exec-timeout
exit
Login Banner
enable
configure terminal
banner login &
*******************************************
* Message here *
*******************************************&
exit
Configure Ethernet Port 1
enable
configure terminal
description FastEthernet_Port1
ip address 192.168.0.1
duplex full
speed 100
Configure DHCP
enable
configure terminal
ip dhcp pool LAN_DHCP
import all
network 192.168.0.10 255.255.255.0
default-router 192.168.0.1
dns-server 192.168.0.1
Disable CDP Broadcasts
enable
configure terminal
no cdp run
Should you have any questions, comments or suggestions, please don’t hesitate to comment below. If you like what you have read, please share it on your favourite social media medium.
Leave a Reply