cc/td/doc/product/aggr/vpn5000/5000sw/conc52x
hometocprevnextglossaryfeedbacksearchhelp
PDF

Table of Contents

Getting Started

Getting Started

This chapter describes how to connect to the VPN 5002 and 5008 concentrators to access the command line interface. When you use the command line interface to configure the concentrator, your commands edit a text configuration file that you save to Flash memory.

To edit the text configuration files with a text editor, see the "Text File Formatting" section for formatting information, and the "Using a Text Configuration File" section for downloading information.

You might want to create text configuration files if you use a similar configuration across multiple systems. You can then download the customized configuration files to each system, accomplishing the entire configuration immediately.

To use a GUI interface instead of the command line, install the VPN 5000 Manager on a Windows PC. See the Cisco VPN 5000 Manager Software Reference Guide for more information.

Connecting to the Concentrator

To use the command line interface, you can either attach a console directly, or you can use Telnet.

Only one person can modify a configuration at a time, although up to two users can log in using Telnet while one user can use the Console port. The system allows modification from the first user to enter a configure or edit config command.

Using a Console Directly

To use the Console port, follow these steps:


Step 1   Connect the provided console cable from your terminal or PC to the Console port on the module in slot 0.

Only the module in slot 0 controls the entire system.

Step 2   Set the terminal or a PC equipped with VT100 terminal emulation to the following settings:

Step 3   Press the Return key one or two times.

Step 4   At the password prompt, enter the default password letmein.

The command line interface prompt displays.



Note   Be sure to set a permanent password according to the "Setting the Password and Device Name" section.

Using Telnet

Telnet is a TCP/IP-based remote terminal communications protocol. With Telnet you can log into and manage the VPN 5002 or 5008 concentrator from anywhere on your IP network, including across the Internet if your security setup allows.

To manage the system with Telnet, first set the IP address settings of the port you want to use. To set the IP address, connect a terminal to the Console port, or Telnet to the default IP address of the Ethernet port in slot 0. If you do not have an Ethernet port, you must use a direct console. To set the IP address settings, follow these steps:


Step 1   Connect to the VPN 5002 or 5008 concentrator system:

Step 2   Enter the default password letmein at the password prompt.

The command line interface prompt displays.

Step 3   Enter the following commands:


Command
Purpose

      a.

configure IP {Ethernet | 
WAN} slot:port

  • slot is the module slot

  • port is the port you want to configure. If your module has only one port, the port is 0.


Note   When you configure a new section, the system prompts you to confirm the creation of the new section in the configuration.


IPAddress = IP_address

Sets the port IP address.

      c.

SubnetMask = subnet_mask

Sets the port subnet mask.

      d.

IPBroadcast = 
broadcast_address

(Optional) Sets the port broadcast address. If you do not enter a broadcast address, the system derives one automatically from the IP address and subnet mask.

      e.

write

Writes the configuration changes to the Flash memory.

      f.

apply

Applies the changes. After entering apply, the concentrator disconnects your Telnet session.

Step 4   If you are using Telnet, change the PC IP settings back to its original settings.

Step 5   To continue configuring the system, Telnet to the address you set in Step 3b.


Saving the Configuration

After making changes to the configuration using the commands described in this guide, apply and save your changes without disrupting the system by entering:

write

apply

 

The following table describes the save, write, and apply commands:


Table 2-1: Save Configuration Commands
Command Purpose
sav_(_IREFOBJ:1022231_
)_e

Saves the configuration changes to Flash memory and restarts the system.

write

Saves the changes to Flash memory, but does not restart the system or apply your changes to the current running configuration. Your changes take effect only after you restart or apply them.

apply [flash]

Applies a configuration immediately without restarting.

  • If you make a change, the command applies the configuration you just changed, but does not save it to Flash memory. If you restart the system, your changes are lost unless you use the save or write command.

  • If you make a change and write it to flash memory, the command applies the change from flash memory.

  • flash applies the existing configuration from Flash memory, overwriting your runtime changes.

Turning off a device in the middle of a save might cause corruption or complete loss of the configuration. Wait at least 2 minutes before determining that the save command failed. Times can vary depending on the software and hardware configuration. To determine a successful save:

See "Recovering from a Software Failure," to erase the corrupted configuration and download a backup version.

Deleting a Keyword

If you enter a keyword incorrectly during configuration, delete it and its value by entering at the section prompt:

[section]# delete keyword


hometocprevnextglossaryfeedbacksearchhelp
Posted: Wed Sep 27 10:23:57 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.