Monthly Archives: February 2018

Cisco IOS Packages and Licenses

Feature Sets/Technology Package
  1. IP Base (ipbasek9) – Entry level Cisco IOS functionality. Some of the key feature are AAA BGP, OSPF, EIGRP, ISIS, RIP, PBR, IGMP, Multicast, DHCP, HSRP, GLBP, NHRP, HTTP, HQF QoS ACL, NBAR GRE CDP, ARP NTP PPP PPPoA PPPoE RADIUS TACACS, RSVP, NTP, Flexible Netflow etc.
  2. DATA  (datak9) – Data features found in SP Services and Enterprise Services IOS image on ISR Routers. It support MPLS, ATM, and Multiprotocol support.
  3. Security (securityk9) – It support Cisco IOS Firewall , IPS , IPsec , 3DES, VPN etc.
  4. Unified Communications (uck9) – It support VOIP & IP Telephony

 

Universal IOS Packaging Overview

ISR Integrated Service Router comes with IPbase feature set and we need to get the license package to  run the other three technology packages.

License Types Available on ISR Routers
Permanent Licenses

Permanent licenses are valid for the life of the device on which it is installed. Some examples of permanent licenses are IOS Technology Packages (IPBase, UC, SEC, DATA), Feature Licenses such as SSL VPN etc.

Temporary Licenses

Temporary licenses are used for evaluating new capabilities or in emergency situations. A temporary license allows a feature set to be used for 60 days of actual usage. When the 60-day period expires, the device will continue to operate normally until reloaded. After the reload, the device will default to the original functionality before the temporary license was enabled. Only actual time that the temporary license is enabled counts towards the 60 day limit. The Cisco Technical Assistance Center (TAC) can provide an extension license for longer trials or other circumstances.

 

Cisco ISR4000 Series Router Securityk9 Evaluation License

Evaluation License

Your router comes with the evaluation license, also known as a temporary license, for most packages and features supported on your router. If you want to try a new software package or feature, activate the evaluation license for that package or feature.

We will install security evaluation license here. Let’s first verify existing license status.

Router#show license all 
License Store: Primary License Storage
StoreIndex: 0 Feature: uck9 Version: 1.0
 License Type: Permanent
 License State: Active, In Use
 License Count: Non-Counted
 License Priority: Medium
StoreIndex: 1 Feature: ipbasek9 Version: 1.0
 License Type: Permanent
 License State: Active, In Use
 License Count: Non-Counted
 License Priority: Medium
License Store: Built-In License Storage
StoreIndex: 0 Feature: appxk9 Version: 1.0
 License Type: EvalRightToUse
 License State: Active, Not in Use, EULA not accepted
 Evaluation total period: 8 weeks 4 days 
 Evaluation period left: 8 weeks 4 days 
 Period used: 0 minute 0 second 
 License Count: Non-Counted
 License Priority: None
StoreIndex: 1 Feature: uck9 Version: 1.0
 License Type: EvalRightToUse
 License State: Inactive
 Evaluation total period: 8 weeks 4 days 
 Evaluation period left: 8 weeks 4 days 
 Period used: 0 minute 0 second 
 License Count: Non-Counted
 License Priority: None
StoreIndex: 2 Feature: securityk9 Version: 1.0
 License Type: EvalRightToUse
 License State: Active, Not in Use, EULA accepted
 Evaluation total period: 8 weeks 4 days 
 Evaluation period left: 8 weeks 4 days 
 Period used: 0 minute 0 second 
 License Count: Non-Counted
 License Priority: Low
StoreIndex: 3 Feature: FoundationSuiteK9 Version: 1.0
 License Type: EvalRightToUse
 License State: Active, Not in Use, EULA not accepted
 Evaluation total period: 8 weeks 4 days 
 Evaluation period left: 8 weeks 4 days 
 Period used: 0 minute 0 second 
 License Count: Non-Counted
 License Priority: None
StoreIndex: 4 Feature: AdvUCSuiteK9 Version: 1.0
 License Type: EvalRightToUse
 License State: Active, Not in Use, EULA not accepted
 Evaluation total period: 8 weeks 4 days 
 Evaluation period left: 8 weeks 4 days 
 Period used: 0 minute 0 second 
 License Count: Non-Counted
 License Priority: None
StoreIndex: 5 Feature: cme-srst Version: 1.0
 License Type: EvalRightToUse
 License State: Active, Not in Use, EULA not accepted
 Evaluation total period: 8 weeks 4 days 
 Evaluation period left: 8 weeks 4 days 
 Period used: 0 minute 0 second 
 License Count: 0/0 (In-use/Violation)
 License Priority: None
StoreIndex: 6 Feature: throughput Version: 1.0
 License Type: EvalRightToUse
 License State: Active, Not in Use, EULA not accepted
 Evaluation total period: 8 weeks 4 days 
 Evaluation period left: 8 weeks 4 days 
 Period used: 0 minute 0 second 
 License Count: Non-Counted
 License Priority: None

Install evaluation security license.

Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#license boot level securityk9
PLEASE READ THE FOLLOWING TERMS CAREFULLY. INSTALLING THE LICENSE OR
LICENSE KEY PROVIDED FOR ANY CISCO PRODUCT FEATURE OR USING SUCH
PRODUCT FEATURE CONSTITUTES YOUR FULL ACCEPTANCE OF THE FOLLOWING
TERMS. YOU MUST NOT PROCEED FURTHER IF YOU ARE NOT WILLING TO BE BOUND
BY ALL THE TERMS SET FORTH HEREIN.

Use of this product feature requires an additional license from Cisco,
together with an additional payment. You may use this product feature
on an evaluation basis, without payment to Cisco, for 60 days. Your use
of the product, including during the 60 day evaluation period, is
subject to the Cisco end user license agreement
http://www.cisco.com/en/US/docs/general/warranty/English/EU1KEN_.html
If you use the product feature beyond the 60 day evaluation period, you
must submit the appropriate payment to Cisco for the license. After the
60 day evaluation period, your use of the product feature will be
governed solely by the Cisco end user license agreement (link above),
together with any supplements relating to such product feature. The
above applies even if the evaluation license is not automatically
terminated and you do not receive any notice of the expiration of the
evaluation period. It is your responsibility to determine when the
evaluation period is complete and you are required to make payment to
Cisco for your use of the product feature beyond the evaluation period.

Your acceptance of this agreement for the software features on one
product shall be deemed your acceptance with respect to all such
software on all Cisco products you purchase which includes the same
software. (The foregoing notwithstanding, you must purchase a license
for each software feature you use past the 60 days evaluation period,
so that if you enable a software feature on 1000 devices, you must
purchase 1000 licenses for use past the 60 day evaluation period.)

Activation of the software command line interface will be evidence of
your acceptance of this agreement.



ACCEPT? (yes/[no]): yes
% use 'write' command to make license boot config take effect on next boot

Router(config)#end
Router#wr
Building configuration...

[OK]
Router#

Router#reload
Proceed with reload? [confirm]

Verify license status now. Following output shows that evaluation license has been activated now.

Router#show license | beg securityk9
Index 3 Feature: securityk9 
 Period left: 8 weeks 3 days 
 Period Used: 1 minute 16 seconds 
 License Type: EvalRightToUse
 License State: Active, In Use
 License Count: Non-Counted
 License Priority: Low
Index 4 Feature: ipbasek9 
 Period left: Life time
 License Type: Permanent
 License State: Active, In Use
 License Count: Non-Counted
 License Priority: Medium

Fix Hard Disk Bad Sectors in Linux

Bad Sector in a Hard Drive is a physical problem.  If bad sectors start appearing, it’s time to change the hard drive. Every OS has its own tools to scan and fix bad sectors. For example Windows has chkdsk application. Here we will discuss how to fix bad sectors in Linux.

  1. Download Ubuntu ISO and burn it on CD, DVD or a USB drive. If you have any other Linux live CD, that would also work.
  2. Boot system with the CD or USB created in step-1.
  3. Open a terminal window.
  4. Run command fdisk -l to find out the hard drive and partition device names.
  5. Type following command to run fix bad sectors application. Note: This command requires sudo privileges. Replace sda1 with the partition device name found in step-4.

            sudo e2fsck -cfpv /dev/sda1

The parameters have the following meanings: “c” searches for bad blocks and adds them to the list, “f” forces a check on the file system, “p” repairs anything that can be safely repaired and “v” is verbose mode so you can see the command progress.

This command can take a long time to run, even several hours on a particularly large drive.

Example:

ubuntu@ubuntu:~$ sudo fdisk -l
Disk /dev/loop0: 1.4 GiB, 1532116992 bytes, 2992416 sectors
Units: sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes


Disk /dev/sda: 931.5 GiB, 1000204886016 bytes, 1953525168 sectors
Units: sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disklabel type: dos
Disk identifier: 0x032959e3

Device Boot Start End Sectors Size Id Type
/dev/sda1 * 2048 1945352191 1945350144 927.6G 83 Linux
/dev/sda2 1945354238 1953523711 8169474 3.9G 5 Extended
/dev/sda5 1945354240 1953523711 8169472 3.9G 82 Linux swap / Solaris


Disk /dev/sdb: 28.7 GiB, 30752000000 bytes, 60062500 sectors
Units: sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disklabel type: dos
Disk identifier: 0x05160d8f

Device Boot Start End Sectors Size Id Type
/dev/sdb1 * 2048 60062499 60060452 28.7G c W95 FAT32 (LBA)


ubuntu@ubuntu:~$ sudo e2fsck -cfpv /dev/sda1
/dev/sda1: Updating bad block inode.

191888 inodes used (0.32%, out of 60792832)
 60 non-contiguous files (0.0%)
 194 non-contiguous directories (0.1%)
 # of inodes with ind/dind/tind blocks: 0/0/0
 Extent depth histogram: 144736/6
 4952754 blocks used (2.04%, out of 243168768)
 11 bad blocks
 1 large file

110870 regular files
 16787 directories
 55 character device files
 25 block device files
 0 fifos
 2 links
 64140 symbolic links (47056 fast symbolic links)
 2 sockets
------------
 191881 files
ubuntu@ubuntu:~$

Remove the live Linux CD or bootable USB and reboot the system.