Cisco Cisco Clean Access 3.5
3-7
Cisco Clean Access Server Installation and Administration Guide
OL-7045-01
Chapter 3 Install the Clean Access Server
Perform the Initial Configuration
Note that you can modify the values you enter in the installation script later by running the
service
perfigo config
command. See
for details.
Note
Many other settings can also be modified later from the web admin console.
Perform the Initial Configuration
When installing the Clean Access Server from CD-ROM, the
automatically
appears after the software packages install to prompt you for the initial server configuration.
Note
If necessary, you can always manually start the
as follows:
1.
Over a serial connection or working directly on the server machine, log onto the server as user
root
with default password
cisco123
.
2.
Run the initial configuration script (
ssconf
) by entering the following command:
service perfigo config
You can run the
service perfigo config
command to modify the configuration of the server if it cannot
be reached through the web admin console. For further details on CLI commands, see
Configuration Utility Script
1.
The configuration utility script suggests default values for particular parameters. To configure the
installation, either accept the default value or provide a new one, as described below.
installation, either accept the default value or provide a new one, as described below.
2.
After the software is installed from the CD and package installation is complete, the welcome script
for the configuration utility appears:
for the configuration utility appears:
Welcome to the Cisco Clean Access Server quick configuration utility.
Note that you need to be root to execute this utility.
The utility will now ask you a series of configuration questions.
Please answer them carefully.
3.
The script first asks for settings for the trusted interface (eth0). The trusted interface is the interface
to the protected, backend network.
to the protected, backend network.
>>> Configuring the wired (trusted) network interface eth0:
The IP address of the wired interface (eth0) is 192.168.1.1.
Would you like to change it? (y/n)
At the prompt, enter
n
to accept the default address, or
y
to specify another. If entering another, type
the address you want to use for the trusted network interface in dotted-decimal format. Confirm the
value when prompted.
value when prompted.
4.
Similarly specify the subnet mask of the trusted interface or accept the default of 255.255.255.0. A
network mask identifies the network and host portions of the IP address. The default is
255.255.255.0.
network mask identifies the network and host portions of the IP address. The default is
255.255.255.0.
5.
Specify the default gateway address for the trusted interface.