 | |
|
| ||||
|
|
Home | Reviews | Tools | Forums | FAQs | Find Service | ISP News | Maps | About |
|
how-to block ads |
20.3 Tips and Tricks
 got feedback?by Covenant lab_monkey#conf t Enter configuration commands, one per line. End with CNTL/Z. lab_monkey(config)#conf lab_monkey(config)#config-register 0x2101 lab_monkey(config)#end lab_monkey#sh ve Ascertain that it says this at the bottom of the "sh ve": Configuration register is 0x2102 (will be 0x2101 at next reload) Reload the router and it will ask you if you want to save the configuration settings, state YES, and it should boot in ROM memory (boot mode). lab_monkey(boot)#sh flash You should see something like this but in your case it will be 2 or more partitions with the IOS on one and possibly something else on the other partition(s). System flash directory: File Length Name/status 1 14598352 /c2500-ik8os-l.122-19a.bin [14598416 bytes used, 2178800 available, 16777216 total] 16384K bytes of processor board System flash (Read/Write) lab_monkey(boot)# Now, type this out: lab_monkey(boot)#erase flash It will ask you which partition to erase. Erase the one WITHOUT the IOS on it, usually its number 2. Repeat that for all the partitions except the one with the IOS on it. Then type: lab_monkey(boot)#config t lab_monkey(boot)(config)#no partition flash lab_monkey(boot)(config)#exit Afterwhich: lab_monkey(boot)#show version [verify flash partition has been eliminated] Once the flash paritition has been eliminated, change the config. register to 0x2102: lab_monkey(boot)#conf t Enter configuration commands, one per line. End with CNTL/Z. lab_monkey(boot)(config)#config lab_monkey(boot)(config)#config-register 0x2102 lab_monkey(boot)(config)#end lab_monkey(boot)#sh ve And again checking the last line to see if it states the config register will be 0x2102 at next reload by the sh ve command. Reboot and it should come online with no partitions: lab_monkey(boot)#reload It will ask you if you want to save the settings, state YES again.
got feedback?nice! googled for this tough job, found 5 pages i liked including cisco.com. I started with cisco.com and half way through the commands i switched over to the LAB_MoNkEy, Dang great job of making a tough job easy!!!
Thanks tons
shangxiajiu aka chiken & rice, ake esswok, aka incom.brigade, aka 2012-09-04 20:45:23 You are a freaking life saver! Thank You! 2013-04-18 17:03:15 by Covenant Cisco ConfigMaker is designed for resellers and network administrators of small to medium-sized businesses who are proficient in LAN and WAN fundamentals and basic network design. To Download ConfigMaker: Cisco ConfigMaker Software Download Note: Cisco no longer supports ConfigMaker software. Therefore the software might only work for older Cisco equipments. Fortunately, new Cisco equipments are built with GUI (Graphical User Interface) feature. This way, any average Joe should be able to configure Cisco equipments via their existing Internet browser (i.e. Internet Explorer, Netscape) just like configuring SOHO equipments from (let's say) Linksys or Netgear. When you have newer Cisco equipments with built-in GUI and still need assistance in configuring the equipment, there is Cisco Configuration Professional that provide more advanced feature than ConfigMaker or simple GUI.
got feedback?by nozero Just look for a line like
If you cut and paste the sample hash above, 1500020F0C into one of the following sites, and hit submit, you will see how easy it is to determine the correct password for hash 1500020F0C is rich. http://www2.tongzweb.com/tools/cisco.asp http://www.ibeast.com/content/tools/CiscoPassword/index.asp It is suggested to use the secret 5 instead that is based on MD5 (Message Digest 5). The secret 5 MD5 uses higher-bit encryption level which makes the secret is much more difficult to decrypt. In other words, using secret 5 is more secure than password 7.
got feedback?by nozero In some cases, you may want to have a Cisco router to enter ROMMON mode when boots up instead of the normal CLI mode. The most common cases entering the ROMMON mode are to perform password recovery or to revive router from corrupted or unavailable working IOS image. Another common case is to change or reset configuration register value back to default (which is 0x2102). With any one of these cases, you may have to issue commonly-used commands such as tftpdnld and reset. Check out the following FAQ for some illustration. »Cisco Forum FAQ »Corrupt image & router boots into rommon mode Following is some exploration of not-that-common ROMMON commands. The cookie command This command shows hardware info of the specific Cisco device such as PCB version, product identifier, and RMA. As a note, each Cisco hardware has his own cookie and if they are not the right ones there is a cookie check against hardware that need to be validated by the starting ROM. Issue of having incorrect cookie info is getting error message of something like bad software or like the following. Failed Authentication Test. This router may not be a genuine Cisco product. FAILED: Cookie signature verification failed, status = 540 To illustrate the cookie command, following is the command output comes from 877 router rommon 1 > cookie cookie: 04 ff c3 06 00 18 73 6d ad db 43 00 0a c1 8b 46 4f 43 31 30 32 35 30 39 43 57 40 04 b5 41 02 00 82 4a 0d ad 02 42 42 30 c0 46 03 20 00 68 a0 02 88 00 00 00 00 02 02 c6 8a 56 41 4d 46 37 31 30 45 52 41 03 00 81 00 00 00 00 04 00 cb 94 43 49 53 43 4f 38 37 37 2d 4b 39 20 20 20 20 20 20 20 20 20 89 56 30 31 20 d9 02 40 c1 09 94 c2 8b 46 48 4b 31 30 32 36 32 33 44 46 4a ff ff ff ff ff Description Router Cisco 877 K9 with IOS: c870-advsecurityk9-mz[1].124-15.T2.bin Processor board ID FHK095120BU MPC8272 CPU Rev: Part Number 0xC, Mask Number 0x10 byte 0x00 ID PROM Version (0x04): 04 byte 0x01 Compatibility Byte (0xff): ff byte 0x02 MAC Address Type (0xc3): c3 bytes 0x03 MAC Address Length (0x06): 06 bytes 0x04-0x09 MAC Address: 00 18 73 6d ad db bytes 0x0a MAC Address Block Size Type (0x43): 43 bytes 0x0b-0x0c MAC Address Block Size: 00 0a bytes 0x0d PCB Serial Number Type (0xc1): c1 bytes 0x0e PCB Serial Number Length (0x8b): 8b bytes 0x0f-0x19 PCB Serial Number: 46 4f 43 30 39 34 38 31 34 4c 53 > Label SN: FOC094814LS byte 0x1a Controller Type Type (0x40): 40 byte 0x1b Controller Type High Byte: 04 byte 0x1c Controller Type Low Byte: b5 byte 0x1d Hardware Version Type (0x41): 41 byte 0x1e Hardware Version High Byte (0x01): 01 byte 0x1f Hardware Version Low Byte (0x00): 00 byte 0x20 73-level PCB PN Type (0x82): 82 byte 0x21-0x24 73-level PCB PN: 4a 0d ad 02 bytes 0x25 PCB Revision Type (0x42): 42 bytes 0x26-0x27 PCB Revision (0x3031): 30 31 bytes 0x28 800 Level PCB PN Type (0xc0): c0 bytes 0x29 800 Level PCB PN Length (0x46): 46 bytes 0x2a-0x2f 800 Level PCB PN (0x032000303901): 03 20 00 30 39 01 bytes 0x30 Deviation Number Type (0x88): 88 bytes 0x31-0x34 Deviation Number (0x00000000): 00 00 00 00 bytes 0x35 PCB Fab Version type (0x02): 02 bytes 0x36 PCB Fab Version (0x01): 01 bytes 0x37 CLEI Code Type (0xc6): c6 bytes 0x38 CLEI Code Length (0x8a): 8a bytes 0x39-0x42 CLEI Code (0x49504d45443030425241): 49 50 4d 45 44 30 30 42 52 41 bytes 0x43 RMA Test History Type (0x03): 03 bytes 0x44 RMA Test History (0x00): 00 bytes 0x45 RMA Number Type (0x81): 81 bytes 0x46-0x49 RMA Number (0x00000000): 00 00 00 00 bytes 0x4a RMA History Type (0x04): 04 bytes 0x4b RMA History (0x00): 00 bytes 0x4c Product Identifier PID Type (0xcb): cb bytes 0x4d Product Identifier PID Length (0x94): 94 bytes 0x4e-0x61 Product Identifier PID: 43 49 53 43 4f 38 37 37 2d 4b 39 20 20 20 20 20 20 20 20 20 bytes 0x62 Version Identifier VID Type (0x89): 89 bytes 0x63-0x66 Version Identifier VID: 56 30 31 20 bytes 0x67 Digital Signature List Type: d9 bytes 0x68 Digital Signature List Length: 02 bytes 0x69-0x6a Digital Signature List: 40 c1 bytes 0x6b processor type type (0x09): 09 bytes 0x6c processor type cpu id: 94 bytes 0x6d Chassis Serial Number Type (0xc2): c2 bytes 0x6e Chassis Serial Number Length (0x8b): 8b bytes 0x6f-0x79 Chassis Serial Number: 46 48 4b 30 39 35 31 32 30 42 55 > Label FHK095120BU at the router back. bytes 0x7a Radio Country Code Type (0x4a): 4a bytes 0x7b-0x7c Radio Country Code: ff ff bytes 0x7d-0x7f: ff ff ff The priv command To enter the ROMMON priv mode on Cisco router, check out the following instruction. ROMMON priv command enable mode Saga about PRIV command in ROMMON The PRIV password depends from hardware cookie: password := (i1+...+i5) mod 2^16 where i1...i5 first five words in cookie Also this features working on 1600,3600,7500 P.S.: for 7500 password not need Cisco 3640: System Bootstrap, Version 11.1(20)AA2, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1) Copyright (c) 1999 by cisco Systems, Inc. rommon 1 > cookie cookie: 00 01 00 03 e3 bd 0d 40 0a ff ... rommon 2 > priv Password: fc00 You now have access to the full set of monitor commands. Warning: some commands will allow you to destroy your configuration and/or system images and could render the machine unbootable. rommon 3 > Cisco 7513: System Bootstrap, Version 11.1(2) [nitin 2], RELEASE SOFTWARE (fc1) Copyright (c) 1994 by cisco Systems, Inc. SLOT 6 RSP2 is system master RSP2 processor with 131072 Kbytes of main memory monitor: command "boot" aborted due to user interrupt rommon 1 > priv You now have access to the full set of monitor commands. Warning: some commands will allow you to destroy your configuration and/or system images and could render the machine unbootable. rommon 2 > This priv command is useful when you need to change the cookie info on the Cisco hardware due to some unexpected change during lightning storm or similar. Note that you need to have sufficient understanding of machine language (Assembler) and lots of leg work such as studying Cisco hardware info samples, checking PCB printed code and serial number labels. The passwd command Using passwd command, you can change or clear the enable password of the priv command usage. Following is illustration. boot> enable debug password: em gubed boot> [DANGER] passwd new: again: boot> [DANGER] enable boot# ROMMON priv Command Applications As mentioned previously, the priv command application is mostly commonly used to reset Cisco hardware cookie info that got changed unexpectedly due to lightning or dirty power issue. Here is other application that priv command is applicable. »[H/W] C850/870W WLAN card
got feedback?by PA23 Console cable should be available at any local computer store. You can also check for "Cisco console kit" on ebay to buy online. When it is not feasible to buy online or from local computer store, you can consider to make one on your own. Keep in mind that when you are not used to make your own cable, the result could be unexpected. If you are more of "make-your-own-cable person" and need to have specification, then this should be a good start. Following is the instruction to make your own console cable. You can make a custom serial cable with an RJ45 on one end to connect directly to a Cisco console port. This is done by cutting one end of the serial cable off, stripping about 2 of the shielding, and pinning the individual wires to their correct locations in an RJ45 connector as shown in this FAQ. Things that you will need: A continuity tester A knife A paper clip Wire strippers RJ45 crimping tool A standard serial cable One RJ45 A pen or pencil A piece of paper for notes.
Steps: 1. Cut one end of your serial cable off. 2. Strip about 2 of the shielding off exposing the individual wires. 3. Expose about 1 centimeter of the end of each wire by stripping it with a knife for continuity testing. 4. Unfold your paperclip. 5. Write the numbers 1-8 down each on their own line on your paper. 6. Insert the unfolded paperclip into pin 8 on the remaining DB9 connector of your serial cable. 7. Using the continuity tester find that wire and write the color down next to number one on your paper. 8. Once you find what wire pin 8 is connected to note that that wire will go into pin 1 on the RJ45. 9. Repeat this step for pins 6, 2, 5, 3, 4, 7 on the DB9. 10. You should have one wire that you havent identified. This is your 2nd ground wire. It will go to pin 5 on your RJ45 so put it next to number 5 on your paper ensuring you have noted them correctly. 11. Now you should have a list of colors next to their corresponding numbers. Make up the RJ45 using the pin out pattern. If it is done correctly you will have a serial cable that you can use to directly connect to most Cisco devices. Check out the following links for more info. Cabling Guide for Console and AUX Ports Auxiliary Port, Console Port, And Adapter Pinouts For Cisco 1000, 1600, 2500, 2600, And 3600 Series Routers Discussion: »Let's Build A Cisco Console Cable!! Fun!
got feedback?Well done and many thanks. Just what I was looking for. 2009-03-23 10:19:24 by yaplej Pin Number Signal Name 1 ----- RX ring 2 ----- RX tip 3 ----- RX Ground 4 ----- TX ring 5 ----- TX tip 6 ----- TX Ground 7 ----- Not used 8 ----- Not used Connect pin 1 to 4, 2 to 5, and 3 to 6. Check out the following link for more info CSU/DSU Hardware Loopback Courtesy of yaplej  .Some Discussions »[H/W] T1 cabling
got feedback?by yaplej The idea to fix it is basically match them back. Therefore in general you should try to change baud speed of your terminal emulator software into something that match current baud speed of the router console's baud speed. You may have to do some trial and error until you find the right baud speed. When the router in question is either 2600 and 3600 series model, you also can reposition the router's jumper. Following is the Cisco link for details. Cisco 2600 and 3600 Console Baud Reset Jumper Check out the following thread for discussion. »2600 issues with Hyperterminal When your router is neither 2600 nor 3600 series, then you might want to implement steps on the following FAQ. »Cisco Forum FAQ »Used wrong config-register and now the router does not boot!
got feedback?by aryoba »[H/W] 3550-12T Fan modification got feedback?by aryoba »experience with non-Cisco GBICS »[Config] Cisco Workaround Command-Third Party Optics got feedback?by aryoba got feedback?by aryoba TCP Optimizer Help Concerning Factors * Maximize MTU size In 1 Gbps or 10 Gbps environment, the use of Jumbo Frame is suggested. * Enable TCP Window Scaling option (refer to RFC 1323 for details) The key is to use the maximum window size possible and enable Selective Acknowledgment. * Ensure the NIC of hosts (such as servers, PC) support TSO (TCP Segmentation Offload) and RSO (Receive Segmentation Offload) and are enabled. There is some reading about such in TCP implementation - Linux manual Using TTCP to test throughput A ttcp (Test TCP) can be used as a test tool and use its UDP test to validate that the servers in question can achieve certain throughput number. Following is sample ttcp command to test 10 Gbps throughput. 1. UNIX/Linux machine On receiver use: ttcp -r -u -p55555 -l8192 -n640000 -b131072 -D -tm > /dev/null On sender use: dd if=/dev/zero bs=1M count=5000 | ttcp -t -u -p55555 -l8192 -n640000 -b131072 -D -tm (ip address of receiver) This will transfer 5000MB via UDP and if 10GbE is operating correctly, one would get a transfer rate close to 1000MB/s. If the rate is substantially lower than expected, look for errors on the server, switch ports etc. Then clear counters on interfaces and look at the counters after a test. Once its established that the rate is as expected, switch to TCP by removing the '-u' from the ttcp options to make it use TCP. 2. Windows machine Check out the following link for illustration. Using Test TCP (TTCP) to Test Throughput
got feedback?by aryoba got feedback?by aryoba got feedback?by aryoba | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Wednesday, 19-Jun 20:46:32 | Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo over 13.5 years online © 1999-2013 dslreports.com. |
