index_135
UNCLASSIFIED
Implementing Security on Cisco Routers
Version 1.0g
UNCLASSIFIED
135
Central# config t
Enter configuration commands, one per line. End with
CNTL/Z.
Central(config)# ip ftp password 0 r0ut3rQQ
Central(config)# ip ftp user rscg
Central(config)# exit
Central# copy running-config ftp
Address or name of remote host []? 14.2.9.1
Destination filename [central-confg]? central-config.txt
Writing central-config.txt !!
5699 bytes copied in 12.716 secs (474 bytes/sec)
Central#
In IOS 11.3 and earlier, FTP is not supported, but TFTP can be used for
making archive copies in a very similar manner (see Section 4.5.5).
Because TFTP is insecure, it should be used with care and disable d when
not in use. Another way to get an archive copy of the running
configuration is to use text logging features of Telnet and terminal
emulation applications.
11. Viewing currently running processes
Many IOS services and facilities run as separate IOS processes. Use the
command show process to list the running processes. The output is
usually quite long.
Router Throughput and Traffic Commands
The commands listed below display various traffic statistics that can be useful in
diagnosing router traffic flow. Understanding normal network and link traffic loads
can be critical for identifying anomalous conditions that are indications or warning of
attacks. Most of these commands produce voluminous but clearly formatted output.
1. Viewing the network traffic on a per-interface basis
To view the total traffic for each interface, use the command show
interface. This will display a comprehensive report on the traffic
through all the interfaces. To view the traffic for a single interface,
simply supply that interface name to the command. The example below
shows the output format for a single Ethernet interface.
Central# show interface eth 0/0
Ethernet0/0 is up, line protocol is up
Hardware is AmdP2, address is 0050.7357.cbe0
Internet address is 14.1.15.250/24
.
.
Last clearing of "show interface" counters 23:20:53
.
.
991606 packets input, 103806395 bytes, 0 no buffer
Received 800624 broadcasts,0 runts,0 giants,0 throttles