Packet Tracer: Initial Configurations
[Adapted from Cisco Networking Academy Network Fundamentals and Intro to Networking]
Overview:
Packet Tracer (PT) is a network simulator that allows you to create a simulated network, configure the devices in the network, test the network, and examine the traffic in the network. The first step in creating a simulated network in Packet Tracer is to place the devices in the Logical Workplace and connect them together.
When Packet Tracer starts, it presents a logical view of the network in Realtime mode. The main part of the Packet Tracer interface is the Logical Workspace. This is the large blank area where devices can be placed and connected.
The lower left portion of the PT interface, below the yellow bar, is the portion of the interface that you use to select and place devices into the Logical Workplace. The first box in the lower left contains symbols that represent groups of devices. As you move the mouse pointer over these symbols, the name of the group appears in the text box in the center. When you click on one of these symbols, the specific devices in the group appear in the box to the right. As you point to the specific devices, a description of the device appears in the text box below the specific devices.
![]()
Adding a Device or Connection:
To add a device to the Logical Workplace, click on the specific device symbol in the center toolbox, point to where you want to place the device in the Logical Workplace (the pointer becomes a crosshair), and click. You can also drag and drop devices and connections from this toolbox into the Logical Workplace.
![]()
Deleting a Device:
To delete a device from the Logical Workplace, select the device by left-clicking on it. Then, click the “X” button on the toolbox that appears on the right-hand side of the screen.
![]()
Note: When you click on the device to initially select it, a dialog box like the one below may appear.
![]()
Close this dialog box and proceed to click the “X” (Delete) button on the toolbox. The pointer becomes an “X”, and you are prompted to delete the selected device. Click “Yes.”
After you click the “X” (Delete) button on the toolbox, you remain in Delete mode. That is, while in this mode, every subsequent device you click will be deleted. It is therefore important that after you perform a deletion, you click the Select button on the toolbox. This action takes you out of Delete mode. Pressing the [Esc] key also takes you out of Delete mode.
![]()
Configuring Initial Switch Settings
Background
In this activity, you will perform basic switch configurations. You will secure access to the command-line interface (CLI) and console ports using encrypted and plain text passwords. You will also learn how to configure messages for users logging into the switch. These banners are also used to warn unauthorized users that access is prohibited.
![]()
Part 1: Verify the Default Switch Configuration
Step 1: Enter privileged EXEC mode.
You can access all switch commands from privileged EXEC mode. However, because many of the privileged commands configure operating parameters, privileged access should be password-protected to prevent unauthorized use. The privileged EXEC command set includes those commands contained in user EXEC mode, as well as the configure command through which access to the remaining command modes are gained.
a. Double Click the Packet Tracer file to open the Lab. You will two windows. The second window is the activity listed below. Do not answer the questions. Follow the activity to complete the configurations. Click S1 and then the CLI tab. Press Enter.
![]()
b. Enter privileged EXEC mode by entering the enable command:
Switch> enable
Switch#
Notice that the prompt changed in the configuration to reflect privileged EXEC mode.
Step 2: Examine the current switch configuration.
a. Enter the show running-config command.
Switch# show running-config
Part 2: Create a Basic Switch Configuration
Step 1: Assign a name to a switch.
To configure parameters on a switch, you may be required to move between various configuration modes. Notice how the prompt changes as you navigate through the switch. Type all commands in bold pressing Enter when complete.
Switch# configure terminal
Switch(config)# hostname S1
S1(config)# exit
S1#
Step 2: Secure access to the console line. To secure access to the console line, access config-line mode and set the console password to letmein. Type all commands in bold pressing Enter when complete.
S1# configure terminal
S1(config)# line console 0
S1(config-line)# password letmein
S1(config-line)# login
S1(config-line)# exit
S1(config)# exit
%SYS-5-CONFIG_I: Configured from console by console
S1#
Step 3: Verify that console access is secured.
Exit privileged mode to verify that the console port password is in effect.
S1# exit
Switch con0 is now available
Press RETURN to get started.
User Access Verification Packet
Password:
S1>
Note: If the switch did not prompt you for a password, then you did not configure the login parameter in Step 2.
Step 4: Secure privileged mode access.
Set the enable password to c1$c0. This password protects access to privileged mode. Type all commands in bold and then press enter.
Note: The 0 in c1$c0 is a zero, not a capital O. This password will not grade as correct until after you encrypt it in Step 8.
S1> enable
S1# configure terminal
S1(config)# enable password c1$c0
S1(config)# exit
%SYS-5-CONFIG_I: Configured from console by console
S1#
Step 5: Verify that privileged mode access is secure.
a. Enter the exit command again to log out of the switch.
b. Press Enter key and you will now be asked for a password:
User Access Verification
Password:
c. The first password is the console password you configured for line con 0. Enter this password to return to user EXEC mode.
d. Enter the command to access privileged mode.
e. Enter the second password you configured to protect privileged EXEC mode.
f. Verify your configurations by examining the contents of the running-configuration file by typing the command in bold below and pressing Enter key:
S1# show running-config
Notice how the console and enable passwords are both in plain text. This could pose a security risk if someone is looking over your shoulder.
Step 6: Configure an encrypted password to secure access to privileged mode.
The enable password should be replaced with the newer encrypted secret password using the enable secret command. Set the enable secret password to itsasecret. Type all commands in bold and then press enter.
S1# config t
S1(config)# enable secret itsasecret
S1(config)# exit
S1#
Note: The enable secret password overrides the enable password. If both are configured on the switch, you must enter the enable secret password to enter privileged EXEC mode.
Step 7: Verify that the enable secret password is added to the configuration file.
a. Verify the new enable secret password is configured by examining the contents of the running-configuration file by typing the command in bold below and pressing Enter key:
S1# show running-config
Note: You can abbreviate show running-config as S1# show run
Step 8: Encrypt the enable and console passwords.
As you noticed in Step 7, the enable secret password was encrypted, but the enable and console passwords were still in plain text. We will now encrypt these plain text passwords using the service password-encryption command. Type all commands in bold below and pressing Enter key.
S1# config t
S1(config)# service password-encryption
S1(config)# exit
Part 3: Configure a MOTD Banner
Step 1: Configure a message of the day (MOTD) banner.
The Cisco IOS command set includes a feature that allows you to configure messages that anyone logging onto the switch sees. These messages are called message of the day, or MOTD banners. Enclose the banner text in quotations or use a delimiter different from any character appearing in the MOTD string.
S1# config t
S1(config)# banner motd "This is a secure system. Authorized Access Only!"
S1(config)# exit
%SYS-5-CONFIG_I: Configured from console by console
S1#
Part 4: Save Configuration Files to NVRAM
Step 1: Verify that the configuration is accurate using the show run command.
Step 2: Save the configuration file.
You have completed the basic configuration of the switch. Now back up the running configuration file to NVRAM to ensure that the changes made are not lost if the system is rebooted or loses power.
S1# copy running-config startup-config
Destination filename [startup-config]?[Enter]
Building configuration... [OK]
Step 3: Examine the startup configuration file from Part 4 Step 2. Copy and paste it into your Lab 1 Answer Sheet
Part 5: Configure S2
You have completed the configuration on S1. You will now configure S2. If you cannot remember the commands, refer to Parts 1 to 4 for assistance.
Configure S2 with the following parameters:
a. Name device: S2
b. Protect access to the console using the letmein password.
c. Configure an enable password of c1$c0 and an enable secret password of itsasecret.
d. Configure a message to those logging into the switch with the following message: Authorized access only. Unauthorized access is prohibited and violators will be prosecuted to the full extent of the law.
e. Encrypt all plain text passwords.
f. Ensure that the configuration is correct.
g. Save the configuration file to avoid loss if the switch is powered down.
Afterward you have completed the configurations click on the Check Results Button in the second window. . Then click the Assessment Items Tab and ensure you have all GREEN CHECK MARKS
![]()
Part 6: Save your Packet Tracer configuration.
On the File menu, select Save. You will be prompted to save your configuration as a Packet Tracer Network file (*.pkt). The naming convention used in this class will be:
[your first initial + your last name] + “_Lab” (do not include the quotation marks) + the number of the lab]
For example, Joe Smith will save his file for Lab 1 using the filename “JSmith_Lab1”. Packet Tracer will automatically append the .pkt file extension to the file name if “Packet Tracer Network File” is selected from the “Save as type” dropdown list.
![]()
Note that when you exit Packet Tracer, you will likely be prompted to save your changes again (even if you have made no additional changes). Click “Yes” to save changes again, and Packet Tracer will close.
To re-open an existing Packet Tracer file that you have created, you can double-click the file name in Windows Explorer. This will automatically launch Packet Tracer, and your PKT file will be opened. Alternately, you can launch Packet Tracer, select File | Open…, and navigate to the Packet Tracer File you want to open.
Deliverables:
Submit your assignment by attaching your PKT file and Lab Answer Sheet to the appropriate assignment link in Blackboard.
Page 1 of 14
FamilyGuy007
Lab1Instructions-1.docx
0
