subject: Clearing The Config Is A Must On Used Network Gear [print this page] Clearing The Config Is A Must On Used Network Gear
As you grow and expand your network, you'll find at times that you have excess inventory that you've decided to sell to NetworkEquipment.net - the biggest concern is that now we need to wipe them so we don't accidentally pass on corporate privileged data. This is usually something that we think of when it comes to PC hard drives, but not always on our network hardware.
Wiping the configuration of your network devices is the best way to keep anyone from gaining access to your network infrastructure. Let's take a quick look at how you can do this for both Cisco routers and Cisco switches.
When it comes to clearing your Cisco ROUTER, you have two options. Most network administrators are familiar with both methods, they typically use them for different tasks.
The first method involves setting the configuration register to 0x2142. Most admins use this method to recover a password, but you can recover a password and wipe the configuration at the same time.
Follow these steps:
1. Log on to the router, and enter the privileged EXEC mode by enteringenableand then entering theenable password command.
2. Enterconfigure terminal to go to Global Configuration Mode.
3. Enterconfig-register 0x2142. (This causes the router to ignore the startup configuration on the next reload.)
4. Enterend, and reload the router by enteringreload at the Router# prompt.
5. The system will ask whether you want to save the configuration. Enterno, and confirm the reload at the next prompt.
6. After the router has reloaded, the system will ask whether you want to enter the initial configuration dialog. Enterno.
7. Change the configuration register setting to 0x2102 by enteringenable andconfigure terminal to go back to Global Configuration Mode and then enteringconfig-register 0x2102.
8. Enterend, and then enterwrite memory to overwrite the existing startup configuration with the current blank running configuration.
9. Enterreload to reload the router and complete the wiping operation.
However, if you already know the password to the router, you can use the second method. Follow these steps:
1. Log on to your router, and enter the privileged EXEC mode by enteringenableand then entering theenable password command.
2. Enterconfigure terminal to go to Global Configuration Mode.
3. Enterconfig-register 0x2102.
4. Enterend, and then enter thewrite erase command to delete the current startup configuration on the router.
5. Enterreload to reload the router. When the system asks whether you want to save the configuration, enterno.
When the router reloads, it will reset back to the original factory defaults. Thus clearing your corporate data and making your corner of the world a little safer.
If your Cisco SWITCH runs the CatOS, the procedure to wipe the configuration is relatively quick. Follow these steps:
1. Log on to your switch, and enter the privileged EXEC mode by enteringenableand then entering theenable password command.
2. Enterclear config all to reset the entire system. You don't need to reload the switch because processing the command wipes the switch. If you've set a boot option, you need to change that option using theset boot command.
If your SWITCH runs Cisco IOS, it maintains a running configuration file and a startup configuration file, both of which you need to clear. Follow these steps:
1. Log on to your switch, and enter the privileged EXEC mode by enteringenableand then entering theenable password command.
2. Enterwrite erase, which erases the NVRAM file system and removes all files.
3. At the prompt, confirm that you want to erase all files.
4. Enterreload, and enterno when prompted whether to save the configuration. (Otherwise, the switch will reload the current running configuration.)
5. Confirm that you want to reload the switch, and your switch configuration is almost clean.
We are ALMOST done, but not quite. Let's not forget to clear any VLAN information you've created for your switches. Depending on the hardware version of your switch and the software version of your OS, the command for this varies.
Now that the equipment has been cleared of any data that could be a potential risk, the final step is by FAR the most important.
