Solved: No Default Vlan 1 showing on 2811 Router

pbiggs · ‎12-14-2021

Hello,

I am sure this is a rookie mistake but your assistance would be greatly appreciated. I am an admin working on Cisco Routers and Switches. Throughout our network I am noticing Telnet not SSH is enabled. I want to enable SSH and I connected to one of our Cisco 2811 Routers and noticed it had no default vlan 1. When I attempt to add it going through the normal steps the router will not allow me to indicating the commands are not recognized? Has anyone seen this before?

Thank you in advance!

Pete

Reza Sharifi · ‎12-15-2021

So, below is the IOS that is installed on this router and as you can see there is no "k9" in the image name.

c2800nm-ipbase-mz.151-1.T.bin

So, if your other router has a similar IOS with K9 in it, you can copy that IOS to this router's flash, change the boot variable to point to the new IOS, save the config, and reboot.

HTH

View solution in original post

Reza Sharifi · ‎12-14-2021

Hi,

2811 by default is a router with all layer-3 interfaces (no layer-2 vlan). So, not sure why you are trying to create a vlan.

What are you trying to accomplish?

HTH

pbiggs · ‎12-14-2021

Hello!

Thank you for getting back to me. The default vlan is usually present even on routers. I was not entirely sure if it was needed to manage the device because when I attempt the crypto key generate rsa command it is not recognized and the only difference I can see is that there is no default vlan 1 which is present on other routers. When I issue conf t the ? crypto isn't even available. Any idea as to why this could be?

Reza Sharifi · ‎12-14-2021

Hi Pete,

Default vlan has nothing to do with SSH key. Make sure your IOS has "K9" in the name. Use the "show version" to find out.

here is an example:

universalk9-tar.122-35.SE5.bin

If your IOS has K9, follow this link to enable SSH.

https://networklessons.com/cisco/ccna-200-301/configure-ssh-cisco-ios

HTH

pbiggs · ‎12-14-2021

Okay, thank you! I will check that. I was not entirely sure why the vlan was not showing and in the configuration steps to enable ssh it mentions the vlan so that is why I asked about it. I will check this in the morning and post the version. Thank you very much for your help with this.

pbiggs · ‎12-15-2021

Here is my version info

Cisco IOS Software, 2800 Software (C2800NM-IPBASE-M), Version 15.1(1)T, RELEASE SOFTWARE (fc1)

ROM: System Bootstrap, Version 12.4(13r)T11, RELEASE SOFTWARE (fc1)

Karsten Iwen · ‎12-14-2021

The default vlan is available on routers if the device has a build in switch. But this is only optional with the 2811. For setting up SSH, you can follow my guide for some security-recommendations (after you install the k9 image):

https://community.cisco.com/t5/security-documents/guide-to-better-ssh-security/ta-p/3133344

pbiggs · ‎12-14-2021

Thanks so much! I thought so and that would explain why we have a few with vlan1. I’ll definitely check it out. I really appreciate the help.

pbiggs · ‎12-15-2021

Found out the router has an older version of ios:

Here is my version info

Cisco IOS Software, 2800 Software (C2800NM-IPBASE-M), Version 15.1(1)T, RELEASE SOFTWARE (fc1)

ROM: System Bootstrap, Version 12.4(13r)T11, RELEASE SOFTWARE (fc1)

Karsten Iwen · ‎12-15-2021

As Reza already mentioned, you need to get a "k9" image. As these devices are End of Support for a very long time, the images are not available from Cisco any more. You probably find an image on one of the major malware-sites on the internet ... Good luck with that.

pbiggs · ‎12-15-2021

Yes, that's what I figured. I would not want to trust it. Thank you for your help.

Reza Sharifi · ‎12-15-2021

If you have another router with a "k9" image installed, you can copy the image from that router to the one that does not have it.

HTH

pbiggs · ‎12-15-2021

Hi Reza!

Thank you and when I use the show flash command I see this file securedesktop-ios-3.1.1.45-k9.pkg. I'm new so possibly someone before me downloaded this but never installed it. Is this an option? Also, I am unsure if it will cause any issues with the router being as old as it is.

Thank you for your help.

Pete

Reza Sharifi · ‎12-15-2021

Hi,

securedesktop-ios-3.1.1.45-k9.pkg does not look right. Do a "dir" or "show flash" and you should see something like the below file ending with .bin

c2800nm-advipservicesk9-mz.151-4.M12a.bin

if you see a .bin file you can install that.

Can you post the output of sh ver?

HTH

pbiggs · ‎12-15-2021

Reza,

Here is the output I see from both commands:

2811#show ver
Cisco IOS Software, 2800 Software (C2800NM-IPBASE-M), Version 15.1(1)T, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2010 by Cisco Systems, Inc.
Compiled Mon 22-Mar-10 01:25 by prod_rel_team

ROM: System Bootstrap, Version 12.4(13r)T11, RELEASE SOFTWARE (fc1)

System returned to ROM by power-on
System restarted at 17:24:58 EDT Thu Aug 26 2021
System image file is "flash:/c2800nm-ipbase-mz.151-1.T.bin"
Last reload type: Normal Reload

Cisco 2811 (revision 53.51) with 514048K/10240K bytes of memory.
Processor board ID
2 FastEthernet interfaces
DRAM configuration is 64 bits wide with parity enabled.
191K bytes of non-volatile configuration memory.
126000K bytes of ATA CompactFlash (Read/Write)

_______________________________________________________________________________________________________________________________

2811#show flash
-#- --length-- -----date/time------ path
1 29095352 Jan 14 2010 17:15:46 c2800nm-ipbase-mz.124-24.T2.bin
2 2900 Jan 14 2010 17:25:02 cpconfig-2811.cfg
3 2324992 Jan 14 2010 17:25:22 cpexpress.tar
4 1038 Jan 14 2010 17:25:36 home.shtml
5 115712 Jan 14 2010 17:25:46 home.tar
6 527849 Jan 14 2010 17:25:56 128MB.sdf
7 1697952 Jan 14 2010 17:26:14 securedesktop-ios-3.1.1.45-k9.pkg
8 415956 Jan 14 2010 17:26:30 sslclient-win-1.1.4.176.pkg
9 33676536 May 24 2010 14:16:06 c2800nm-ipbase-mz.151-1.T.bin
10 5544 May 18 2013 19:26:10 startup-config
11 38406292 Aug 18 2016 22:42:44 c2800nm-ipbasek9-mz.151-4.M10.bin

22446080 bytes available (106291200 bytes used)