omurillo
asked on
Need help cleaning up switch config
Hi! I would like to clean up my config and remove all appletalk since I do not need it. Below is a sample of my config... do I just remove the statements and reload the config? newbie here..
Current configuration:
!
version 11.3
service timestamps debug uptime
service timestamps log uptime
service password-encryption
service udp-small-servers
service tcp-small-servers
!
hostname switch2500
!
enable password 7 051B142F605E0F4A
!
ip subnet-zero
no ip domain-lookup
appletalk routing
!
!
!
interface Ethernet0
description connected to EthernetLAN
ip address 10.18.32.1 255.255.248.0
no ip mroute-cache
no keepalive
appletalk cable-range 3000-3100 3040.36
appletalk zone switch2500
!
interface Serial0
description connected to Cisco2501
ip unnumbered Ethernet0
no ip mroute-cache
appletalk cable-range 300-300 300.222
appletalk zone ADMIN
!
interface Serial1
no ip address
shutdown
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
ip classless
ip route 0.0.0.0 0.0.0.0 10.18.8.2
!
snmp-server community public RO
!
line con 0
exec-timeout 0 0
password 7 113A3A2D383D27
login
line aux 0
line vty 0 4
password 7 105E1B3944055348
login
!
end
Current configuration:
!
version 11.3
service timestamps debug uptime
service timestamps log uptime
service password-encryption
service udp-small-servers
service tcp-small-servers
!
hostname switch2500
!
enable password 7 051B142F605E0F4A
!
ip subnet-zero
no ip domain-lookup
appletalk routing
!
!
!
interface Ethernet0
description connected to EthernetLAN
ip address 10.18.32.1 255.255.248.0
no ip mroute-cache
no keepalive
appletalk cable-range 3000-3100 3040.36
appletalk zone switch2500
!
interface Serial0
description connected to Cisco2501
ip unnumbered Ethernet0
no ip mroute-cache
appletalk cable-range 300-300 300.222
appletalk zone ADMIN
!
interface Serial1
no ip address
shutdown
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
ip classless
ip route 0.0.0.0 0.0.0.0 10.18.8.2
!
snmp-server community public RO
!
line con 0
exec-timeout 0 0
password 7 113A3A2D383D27
login
line aux 0
line vty 0 4
password 7 105E1B3944055348
login
!
end
I'm not sure about the removing appletalk part as I'm not versed heavily in switch configurations. One thing I *do* know from a security standpoint is that those "password 7" lines are extremely easy to decode. You should never post those anywhere. I found something in literally 10 seconds via google that decrypted them.
I strongly recommend changing your switch passwords.
I strongly recommend changing your switch passwords.
sysreq2000 beat me to it...
ASKER
Thanks guys! Good note! Lucky this is a test equipment that will only be use in a test lab. Password will be replaced as well. I new at posting here... did I posted it in the correct area?
yes dude, you posted in correct area.
For Cisco IOS devices, if you want to cleanup the config,
#write erase
# reload
after rebooting, you can see that everything is gone.
HTH,
nayan
For Cisco IOS devices, if you want to cleanup the config,
#write erase
# reload
after rebooting, you can see that everything is gone.
HTH,
nayan
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I'm sure an expert will follow with better info. One tip I can give you though, is don't ever show anyone your cisco type 7 crypto passwords as they are trivial to decrypt. I already know your passwords.