//Configure basic switch settings.
//switch name, password
switch# show startup-config
switch(config)# hostname S1
S1(config)# no ip domain-lookup
S1(config)# enable secret class
S1(config)# line console 0
S1(config-line)# password cisco
S1(config-line)# login
end
//switch encryption
S1# config terminal
S1(config)# service password-encryption
S1(config)# end
//create vlan
S1# config terminal
S1(config)#vlan 99
S1(config-vlan)#name managment
S1(config-vlan)#end
S1#show vlan brief
S1#show flash:
//
S1#config terminal
Enter configuration commands, one per line. End with CNTL/Z.
S1(config)#int vlan 99
S1(config-if)#ip add 192.168.1.2 255.255.255.0
S1(config-if)#no shut
S1(config-if)#end
//Interface IP-Address OK? Method Status Protocol
// Vlan99 192.168.1.2 YES manual up down
//
S1#config t
S1(config)#int range f0/1-24
S1(config-if-range)#switchport access vlan 99
S1(config-if-range)# end
// Configure SSH access on S1
S1#config t
S1(config)#line vty 0 15
S1(config-line)#password cisco
S1(config-line)#login
S1(config-line)#exit
S1(config)#ip domain-name cisco.com
S1(config)#username admin privilege 15 secret sshadmin
S1(config)#username user1 password user1pass
S1(config)#line vty 0 15
S1(config-line)#transport input ssh
S1(config-line)#login local
S1(config-line)#exit
S1(config)#crypto key generat rsa
The name for the keys will be: S1.cisco.com Choose the size of the key modulus in the range of 360 to 2048 for your General Purpose Keys. Choosing a key modulus greater than 512 may take a few minutes.
How many bits in the modulus [512]: 1024
S1(config)# end
//
S1#show ip ssh
SSH Enabled - version 1.99
S1(config)#ip ssh version 2
S1(config)#end
S1#show ip ssh
SSH Enabled - version 2.0
//Modify the SSH configuration on S1
S1(config)#ip ssh authentication-retries 2
S1(config)#ip ssh time-out 75
S1(config)#end
S1#show ip ssh
SSH Enabled - version 2.0
Authentication timeout: 75 secs; Authentication retries: 2