You have been tasked with creating a looking-glass server for your enterprise. The NOC team have requirements that junior network engineers cannot access commands that could cause outages. To give them the tools to diagnose issues you are going to create an option based menu. The requirements are the following.
- Menu needs to be named L1_NOC_ROUTE_TABLE View Menu
- Define a username of VIEW password MENU for testing
- Only access for account is this menu
- Include the following commands
- – show ip route
- – show ip route eigrp
- – show ip interface brief
- – logout
This will allow the right information to be quickly gleaned and established for use by the juniors before a ticket is escalated to a Senior Engineer.
*Disclaimer: Show ip route can cause hangs and or outages on routers with a full internet feed. Overload of control plane = bad!. Thanks to @laptop006
** Note that this can be performed on a myriad of devices. I have chosen a single router and tested it on itself.
[dropdown_box expand_text=”Lab Answers” show_more=”Show” show_less=”Hide” start=”hide”]
menu L1_NOC_ROUTE_TABLE title # L1_NOC_ROUTE_TABLE View Menu #
We enter the menu mode, name the menu and then give it a title.
menu L1_NOC_ROUTE_TABLE text 1 Show Routing Table menu L1_NOC_ROUTE_TABLE command 1 show ip route menu L1_NOC_ROUTE_TABLE text 2 Show EIGRP Routing Table menu L1_NOC_ROUTE_TABLE command 2 show ip route eigrp menu L1_NOC_ROUTE_TABLE text 3 Show IP Interface brief menu L1_NOC_ROUTE_TABLE command 3 show ip interface brief menu L1_NOC_ROUTE_TABLE text 4 Logout menu L1_NOC_ROUTE_TABLE command 4 exit
The commands above set the title of the menu and map option name to show command. This is repeated for all requirements.
username cisco password cisco enable secret cisco username VIEW password 0 MENU username VIEW autocommand menu L1_NOC_ROUTE_TABLE username VIEW priv 15
The most important line here is auto command menu L1_NOC_ROUTE_TABLE. This executes the command upon login of user VIEW.
Username: VIEW Password: MENUL1_NOC_ROUTE_TABLE VIEW MENU1 Show Routing Table2 Show EIGRP Routing Table3 Show IP Interface brief4 Logout
Now L1 tasks can be done quickly and efficiently. This will allow the right information to be generated with simple commands!