Task
Create a login banner to make any attempted associations with the device more palatable with Legal data and Security data
Create an EXEC banner so that the system displays the hostname of the user when they create an exec session with their computer and the current line in which the session was created.
To view the most recent scheduled downtime for system maintenance, configure the Message of the Day Banner
Initial Configuration
This lab does not have an initial configuration.
ExplanationBanner can be used to send a security alert to someone who wants to telnet into the internetwork. You can personalize the message or security warning and it will be displayed on your router whenever someone attempts to access your computer. These are the three types you should be aware of:
Exec banner – An exec banner (line activation) can be set up to display when EXEC processes are in place, such as line activation and an incoming link to VTY lines. A console port can initiate a user exec session to trigger an exec banner.
Login banner – This banner will appear after the MOTD banner, but before the login prompts. This login banner cannot be disabled per-line. To disable it globally, you must uninstall it using the No Banner Login command.
Message of the Day banner – These banners are the most popular because they send a message to anyone who connects via Telnet, an auxiliary port, or even via a console port to the router.
Configuration
To achieve goal 1, you will need to create a login banner that warns about the legal details and privacy information for the incoming session. When configuring a banner, you will need to use a delimiting characters. This is a character that appears only at both the beginning and the end of the banner. The most common use of a is in the Internet.
To create a banner, you will use the “banner command” followed by the type of banner, rather than “login, executec, motd” or the delimiting character
As you can see, a basic Login banner has been configured.
By re-establishing an exec session, configuration is confirmed
R1(config)#banner login ^######################################################## ## PROPERTY OF UNINETS PVT. LTD. ## AUTHORISED ACCESS ONLY ## UNAUTHORISED ACCESS STRICTLY PROHIBITED ########################################################^Router> As shown below is the login banner configuration verification
Router con0 now available
To get started, press RETURN
######################################################## # # PROPERTY OF UNINETS PVT. LTD. ## AUTHORISED ACCESS ONLY ## UNAUTHORISED ACCESS STRICTLY PROHIBITED ########################################################
Router> Requests you to create an exec banner that displays the hostname of your system and the line where the session is built for authenticated exec sessions. To create this type of banner, you will need to know the banner tokens. These banner tokens are $(hostname), $(line) with hostname and line numbers displayed.
The following text Session is set to $ (hostname) at line $(line). To configure the exec banner to meet objective 3, use the following text: Session is set to $ (hostname) at line $(line). You can also execute the same command in global mode but instead of banner login.
R1(config)#banner exec ^Enter TEXT message. End with the character ‘^’.session establish to $(hostname)via line $(line)^R1(config)#exit After configuring the exec banner, check your setup by terminating the exec session and resetting the system to an exec session, as shown below.
######################################################## ## PROPERTY OF UNINETS PVT. LTD. ####################################################################################################################### ## PROPERTY OF UNINETS PVT.
How to Configure Palo Alto Banner Login, EXEC, and MOTD Banner