Skip navigation
Cisco Learning Home > Certifications > Routing & Switching (CCNA) > Discussions

_Communities

This Question is Answered
57127 Views 11 Replies Latest reply: Jul 17, 2012 3:35 AM by ampdeck RSS

Currently Being Moderated

ip http server

Apr 27, 2009 9:39 AM

Harris 104 posts since
Mar 17, 2009

Hello,

 

I'm confused about the use of a router as an http server.

 

First of all, is the http server available in both cisco routers and switches ? I'm trying to test this in Packet Tracer and it seems that the command "ip http ..." is not available in any router/switch. Is there anything else you have to configure first before being able to enable the http server ?

 

also, is the http server usually enabled so the router can be configured through a web interface ? Or is it used as a normal web server and contain any website?

 

So, as soon as you enter the command "ip http server" you can open a web browser, enter the ip for the router and connect to a web interface which you can use to configure the router ? or you have manually place the files for the website / management site on the router ?

 

Thanks

 

Harris

  • Currently Being Moderated
    1. Apr 27, 2009 10:05 AM (in response to Harris)
    Re: ip http server

    The http server is not actually a full blown web server to host any site you want - it's intended for web interface/GUI management.  It is typically utilized by the SDM, Cisco Network Assistant, and the ASDM is used with the CIsco Adaptive Security Appliance.

     

    However, I don't recommend HTTP servers unless you absolutely need them.  I use HTTPS on ASAs due to the extensive capabilities of the ASDM, however on routers and switches if you can stick to CLI access only, it's recommended.  Unfortunately there are bugs out there that affect HTTP/S servers, introducing vulnerabilities that otherwise are avoided entirely.

  • Jared 5,502 posts since
    Jul 27, 2008
    Currently Being Moderated
    2. Apr 27, 2009 12:32 PM (in response to Harris)
    Re: ip http server

    In addition to what Travis has said, make sure your IOS supports crypto so you can generate a certificate and use https.  The only time I have really used the http interface on IOS devices has been to use SDM or the CNA (Cisco Network Assistant), which is a gui for 3750, 3560 and 4500 series switches.

     

    Depending on the version of IOS, the ip http server may or may not be available.  But I have seen it with shipped IOS version in the last 4 to 5 years.

  • Kerry LeBlanc 333 posts since
    Jul 29, 2008
    Currently Being Moderated
    3. Apr 27, 2009 1:14 PM (in response to Harris)
    Re: ip http server

    These are the basic steps:

     

    To enable the Cisco Web browser interface on a router or access server, use the ip http server global configuration command. To disable this feature, use the no form of this command.

    ip http server

    no ip http server

    Syntax Description

    This command has no arguments or keywords.

     

    It may be that this command is not supported on Packet Tracer. You can check it using the following:

     

    To determine if the HTTP server is running on your device, issue the show ip http server status and show ip http server secure status commands at the prompt and look for output similar to:

    Router>show ip http server status
    HTTP server status: Enabled
    

    If the device is not running the HTTP server, you should see output similar to:

    Router>show ip http server status
    HTTP server status: Disabled
    
  • Conwyn 7,907 posts since
    Sep 10, 2008
    Currently Being Moderated
    4. Apr 27, 2009 2:40 PM (in response to Kerry LeBlanc)
    Re: ip http server

    Hi

     

    Call Manager Express also runs http server on the router to provide telephone administration.

     

    Regards Conwyn

  • Paul Stewart  -  CCIE Security, CCSI 6,993 posts since
    Jul 18, 2008
    Currently Being Moderated
    5. Apr 27, 2009 3:04 PM (in response to Harris)
    Re: ip http server

    Believe it or not, there are several answers.  On most routers, there is the ip http server command that allows a very basic access to commands and not much configuration (like show commands).  On some routers, you can add the files through an installer that allows you to use what is called the SDM (Security Device Manager).  This is more robust and is similar in some respect to the ASA's ASDM.  It uses java.  Switches will vary with what you get from just enabling http server.  Some have a java based management console. In all honesty, most of Cisco's router and switch GUIs are getting better, but IMHO are not as good as the CLI.  Basically, I feel like you can use them if you understand the CLI.  I usually just disable the http server and configure through what I know and understand best.

  • Adrian Soh 228 posts since
    Jan 4, 2009
    Currently Being Moderated
    6. Apr 27, 2009 5:35 PM (in response to Harris)
    Re: ip http server

    Hi Harris,

     

    Another case of Cisco Feature Set Navigator time!  http://tools.cisco.com/ITDIT/CFN/Dispatch

     

    Thanks

    A

  • jj 100 posts since
    Apr 26, 2009
    Currently Being Moderated
    7. Apr 28, 2009 3:34 PM (in response to Harris)
    Re: ip http server

    The main perpose of enabling http-server is to use SDM, which is used to configure router via gui mode and which is easy to use but it's not recommended for advanced level, but for beginner its useful because they r not familier with all IOS commands but dont just make it habit.

  • Paul Stewart  -  CCIE Security, CCSI 6,993 posts since
    Jul 18, 2008
    Currently Being Moderated
    8. Apr 28, 2009 4:07 PM (in response to jj)
    Re: ip http server

    The ip http-server actually predates the SDM by many years.  It is used to serve various administrative tools to administrators such as CME Admin.

  • chintu 6 posts since
    Dec 14, 2010
    Currently Being Moderated
    9. Feb 2, 2012 6:40 AM (in response to Harris)
    Re: ip http server

    Do we use ip http server command on routers/swtches in packet tracer.?

  • Currently Being Moderated
    10. Feb 2, 2012 7:39 PM (in response to chintu)
    Re: ip http server

    that command is not supported in any PT routers.

  • Currently Being Moderated
    11. Jul 17, 2012 3:35 AM (in response to Harris)
    Re: ip http server

    do I need to issue this command "no ip http authentication local" if im doing this "no ip http server"?

Actions

More Like This

  • Retrieving data ...

Bookmarked By (0)