Solved

Which commands are disabled by default on Cisco routers/switches ?

Posted on 2012-03-15
4
288 Views
Last Modified: 2012-03-16
But don't show in the configuration when using the command
'show run all'

I know ftp,tftp, ntp, small services ,snmp , finger , icmp mask-replies / directed broadcast , keepalives , logging ,etc are disabled by default -- but does any one know which commands DONT show in the config (unless you enable them ) --we are looking at images from 2011 (15.1)
This is from a security hardening perspective .

I cant find any documentation pertaing to this on Cisco's gargantuan site .
0
Comment
Question by:benthomas
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 18

Expert Comment

by:Garry Glendown
ID: 37726747
To view the current config with all defaults also listed, do "show run all" ... maybe this is what you're looking for ...
0
 

Author Comment

by:benthomas
ID: 37728286
Apologies for the late reply - what I require is a link to a Cisco document that details commands that are NOT in the configuration (unless enabled ) as stated in the original question .
An example is 'no icmp broadcast' which will not show in the configuration file --unless it is implicitly enabled - from an evidence point of view I require a document detailing that the listed commands are not enabled .
All points to anyone who can send the link please
0
 
LVL 15

Accepted Solution

by:
Nayyar HH (CCIE RS) earned 500 total points
ID: 37728741
You might find this useful - Cisco Guide to Harden Cisco IOS Devices

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml
0
 

Author Closing Comment

by:benthomas
ID: 37728759
I already have the document given in the link - but thanks anyway .
0

Featured Post

Get Actionable Data from Your Monitoring Solution

Your communication platform is only as good as the relevance of the information you send. Ensure your alerts get to the right people every time with actionable responses. Create escalation rules that ensure everyone follows the process and nothing is left to chance.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We've been using the Cisco/Linksys RV042 for years as: - an internet Gateway - a site-to-site VPN device - a leased line site-to-site subnet-to-subnet interface (And, here I'm assuming that any RV0xx behaves the same way as an RV042.  So that's …
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question