I want to send a 2901 pre-configured to a remote site. The issue is that there might be some settings I need to change once it gets there. I would like to make a un-used gig interface a management interface so I can attache it to the network and access it.
It doesn't look like I can do that, does any one know of a way?
The way that dedicated management ports are usually configured in Cisco equipment (routers and switches, at least) is generally placing said port into its own vrf and then applying ACL's and such as appropriate to limit access. The vrf serves as a completely separate routing table - which speaks to both requirement for potentially overlapping IP's as well as assuring that traffic cannot be forwarded through the isolated port. You can also associate various services (snmp, aaa, etc) with the vrf to follow its particular routing requirement.
Can you explain your requirements more?
The console port is the defacto management port. Is there someone onsite that can access the console port and make config changes? Will you be onsite with the box?
If not, what type of changes are you expecting to have to make? If you're not confident that basic functionality will be there when it's plugged in, then you probably don't want to rely on a LAN interface for management access. That said, yes you could telnet/ssh to the box, via a LAN port. You need to configure the vty section of the config for this type of access. Ensure it works before you ship it. Also, take into account whatever conditions you expect to encounter onsite - VLAN trunks being plugged in, connections that haven't been setup for routing back to your workstation in some other path, etc.
