Cisco Systems, Inc.(R)    Cisco | Profile | Contacts & Feedback | Help
Cisco SMB Support Assistant
Modify Your Router Configuration with Security Device Manager
Home > Work With My Routers > Cisco Routers > Modify Your Router Configuration with Security Device Manager  
 

Modify Your Router Configuration with Security Device Manager

     Introduction
     Requirements
     Launch SDM
     Configure the Ethernet Interface
     Configure the Router Default Gateway
     Save Your Configuration
          Save Running Configuration to Startup Configuration
          Save the Running Configuration to Your PC
     Reset the Router to the Default Configuration
     Update Router Properties
          Set Router Host Name
          Set Domain Name
          Set Router Banner
          Set Time Server
     Update Router Access
          Set the Enable Secret Password
          Create or Modify a User Account
          Set VTY Password
          Prepare for SSH access
     Next Step
     Troubleshoot the Procedure
     Related Information

Download PDF


 		 Modify Your Router Configuration with Security Device Manager 


Introduction

This document explains how to update and manage your router configuration with Cisco Security Device Manager (SDM).

Note: If you need to configure your router for the first time, refer to Configure Your Router with Security Device Manager.


Back to Top


Requirements

To perform the steps described in this document, you need to have these items:

  • A crossover Ethernet cable

  • A console cable

  • A PC with a Pentium III or higher processor

  • Windows 2000 or XP

    Note: Windows 2000 Advanced Server is not supported.

  • One of these web browsers:

    • Netscape version 7.1 or later.

    • Internet Explorer version 5.5 or later.

      Note: If you are using the Java plugin, you need to use SUN Java Runtime Environment (JRE) version 1.4.2_05. For information about how to update your version of JRE, refer to Sun Microsystems leavingcisco.com.

  • Completed worksheets as instructed in the Site Survey, which includes the LAN Addressing worksheet.


Back to Top


Launch SDM

To start SDM, follow these steps:

Open a web browser and type http://router IP address in the Address field. The router's IP address is the IP address that you entered in the LAN Addressing Worksheet (L6A).

Note: For further information about how to launch SDM, refer to Configure Your Router with Security Device Manager.


Back to Top


Configure the Ethernet Interface

To configure the Ethernet interface on the router, follow these steps:

  1. Click Interfaces and Connections.

    modify_sdm-01.gif

  2. Click the Edit Interface/Connection tab.

    modify_sdm-02.gif

  3. Double-click the FastEthernet interface to edit the settings. Use this table to determine the correct Ethernet interface to open for your router.

    Router Model

    First Ethernet Interface

    SOHO

    Ethernet0

    800 Series

    Ethernet0

    1760

    FastEthernet0/0

    1700 Series

    FastEthernet0

    1800

    FastEthernet0/0

    2600 Series

    FastEthernet0/0

    2800

    FastEthernet0/0

  4. Enter the IP address and subnet mask for your router (from fields L6A and L1A on the LAN Addressing Worksheet). You can make other configuration changes in the Feature Edit window, if necessary.

    modify_sdm-03.gif

  5. Click OK to confirm the changes.

  6. Click File > Write to Startup Config to save your new configuration.


Back to Top


Configure the Router Default Gateway

To change the default gateway on your router, follow these steps:

  1. Click Routing.

    modify_sdm-04.gif

  2. Click Add.

  3. Check the Make this as the default route check box.

    modify_sdm-05.gif

  4. Choose the IP Address option and enter the IP address of your ISP default gateway (field B47).

  5. Click OK to confirm the route.

  6. Click File > Write to Startup Config to save your new configuration.


Back to Top


Save Your Configuration

Follow these steps to save your router configuration:

Save Running Configuration to Startup Configuration

If you make changes to your router configuration, you need to save the running configuration to the startup configuration. It is important to save your configuration to ensure that your router uses the new configuration when the router boots.

To save the running configuration to the startup configuration, click File > Write to Startup Config.

modify_sdm-06.gif

Note: You can also use the Save icon to save your configuration.

Save the Running Configuration to Your PC

If you want to make a backup copy of the running configuration on your router, you can save a copy of the configuration file to your PC.

To save a copy of your current router configuration to your PC, click File > Save Running Config to PC.

modify_sdm-07.gif

Note: You can also use the Save icon to save your configuration.


Back to Top


Reset the Router to the Default Configuration

If you want to remove a previous configuration and reconfigure your router, you can reset your router to a default configuration. To reset your router to a default configuration, follow these steps:

Note: This procedure will delete your current configuration and replace it with a factory default configuration.

  1. Click Additional Tasks.

    modify_sdm-08.gif

  2. Click Reset to Factory Default.

    modify_sdm-09.gif

  3. Under Step 1, enter the location on your computer where you want to store the current router configuration.

  4. Click Reset Router.

  5. Change your PC's IP address to 10.0.0.2 with a subnet mask of 255.255.255.248. For further information about how to configure an IP address on your PC, refer to Configure an IP Address on Your PC.

  6. Open a web browser and type http://10.10.10.1 in the Address field.

  7. Log into SDM with the username "cisco" and password "cisco".


Back to Top


Update Router Properties

Follow these steps to update the router properties:

Set Router Host Name

The host name is the unique name for your router. To set the router's host name, follow these steps:

  1. Click Additional Tasks.

    modify_sdm-08.gif

  2. Double-click Router Properties, and then double-click HostName.

    modify_sdm-10.gif

  3. Update the host name and click OK.

    Note: You can also update the domain and router banner from this screen.

  4. Click File > Write to Startup Config to save your new configuration.

Set Domain Name

The domain name specifies the domain name of your organization. To set the a domain name, follow these steps:

  1. Click Additional Tasks.

    modify_sdm-08.gif

  2. Double-click Router Properties, and then click Domain Name .

    modify_sdm-10.gif

  3. Enter the domain name for your organization. If your organization does not have a domain name, you can leave this field blank.

  4. Click File > Write to Startup Config to save your new configuration.

Set Router Banner

The router text banner displays a message to all users that log into the router. Cisco recommends a text banner with a message to indicate that unauthorized access is prohibited. To set a router banner, follow these steps:

  1. Click Additional Tasks.

    modify_sdm-08.gif

  2. Double-click Router Properties, and then click Banner.

    modify_sdm-10.gif

  3. Enter the banner text that you want the router to display.

  4. Click File > Write to Startup Config to save your new configuration.

Set Time Server

A time server ensures that your router has the correct time. To configure a time server, follow these steps:

  1. Click Additional Tasks.

    modify_sdm-08.gif

  2. Double-click Router Properties, and then click NTP/SNTP.

    modify_sdm-13.gif

  3. Click Add.

  4. Choose SNTP Server IP Address and enter 192.43.244.18.

    modify_sdm-14.gif

    Note: You can also choose SNTP Server Hostname and enter time.nist.gov. Your router must have an active Internet connection to use a host name.

  5. Click OK.

  6. Click File > Write to Startup Config to save your new configuration.


Back to Top


Update Router Access

Follow these steps to update access to the router:

Set the Enable Secret Password

The enable secret password allows you to control who can modify the configuration on your router. Cisco strongly recommends that you set an enable secret password. For recommendations on how to implement strong passwords, refer to Password Security.

Note: Be sure that you document your password for future reference.

To set an enable secret password, follow these steps:

  1. Click Additional Tasks.

    modify_sdm-08.gif

  2. Double-click Router Properties.

    modify_sdm-10.gif

  3. Click Enable Secret Password.

  4. Enter the new password and click OK.

  5. Click File > Write to Startup Config to save your new configuration.

Create or Modify a User Account

You can create user accounts with different privilege levels to manage the router. Use one of these privilege levels:

  • Privilege level 1: Non-privileged access. Level 1 users can view information about the router but cannot modify the router configuration.

  • Privilege level 15: Privileged access. Level 15 users can modify the router configuration.

To create or modify a user account, follow these steps:

  1. Click Configure and choose Additional Tasks.

    modify_sdm-08.gif

  2. Double-click Router Access, and then click User Account/View.

    modify_sdm-11.gif

  3. Click Add to add a new user. To edit or remove a user, select the user and click Remove or Delete.

  4. Click File > Write to Startup Config to save your new configuration.

Set VTY Password

Virtual Terminal (VTY) settings allow external access to the router with Telnet and Secure Shell (SSH). To set a VTY password, follow these steps:

  1. Click Configure and choose Additional Tasks.

    modify_sdm-08.gif

  2. Double-click Router Access, and then click VTY.

    modify_sdm-11.gif

  3. Click Edit to modify the VTY settings.

  4. Check the input and output properties that you want to enable.

    modify_sdm-12.gif

  5. Click OK to complete the changes.

  6. Click File > Write to Startup Config to save your new configuration.

Prepare for SSH access

SSH provides a secure connection to the device. To enable SSH access follow these steps

  1. Click Configure > Additional Tasks.

    modify_sdm-08.gif

  2. Click Router Access > SSH.

    modify_sdm-15c.gif

  3. Click Generate RSA Key

    modify_sdm-16c.gif

  4. Enter the key modulus size eg. 512, 1024 etc (more is better), and click OK.

    modify_sdm-17.gif

  5. Enter SSH username and password and click OK.

    modify_sdm-18.gif

  6. Click File > Write to Startup Config to save your new configuration.


Back to Top


Next Step

You have now modified your router configuration.

To make further changes to your router, refer to the Router Support Page.

To configure other devices in your network, refer to the Configuration Overview Page.


Back to Top


Troubleshoot the Procedure

This section provides information about common problems that you may encounter. If this information does not solve your problem, contact the SMB Technical Assistance Center (SMB TAC) for assistance.

Problem

Cause(s) and Suggested Solution(s)

I do not see a login prompt.

I cannot log in with the default username and password.

If you are unable to log in, you need to create a privileged username and password for your router. Refer to Download and Install Security Device Manager for further assistance.


Back to Top


Related Information
Service Requests

  Open a service request
  Update a service request

Feedback

Please rate this site:
++ + +/- - --

Suggestions for improvement:




If Cisco may contact you for more details
or for future feedback opportunities,
please enter your contact information:
Full Name:
Email:



© 1992-2006 Cisco Systems, Inc. All rights reserved. Terms and Conditions, Privacy Statement, Cookie Policy and Trademarks of Cisco Systems, Inc.