|
general/passwords |
rom/boot |
| show version
show running-config
show hosts
#hostname word
#ip host hostname ip
enable secret *****
service password-encryption
#line
-login
-password *****
|
confreg
tftpdnld
boot
show bootvar
show reload
boot bootldr file-url
boot bootstrap file-url
boot system file-url
config-register
|
| interfaces |
cdp |
show interface
show ip interface (brief)
show controllers
#interface
-ip address ip netmask
-clock rate
-encapsulation
-no shutdown
|
show cdp
show cdp interface
show cdp neighbors
show cdp detail
#cdp enable
#interface
-cdp run |
| debugging |
acces
lists |
terminal monitor
show debugging
debug ip proto
no debug ip proto
debug all
no debug all
undebug all
|
show access-lists
interface
-ip access-group name in|out
line
-ip access-class name in|out
#access-list name deny|permit
#ip acces-list extended name
-deny|permit proto source destination bolean port log
|
| routing |
RIP |
| show protocol
show ip protocol
show ip protocols
show ip route
(config)#ip default-network netblock
(config)#ip route netblock mask hop
(config)#ip route 0.0.0.0 0.0.0.0 [interface | next-hop
address ] |
(config)#router rip
(config-router)# version #
(config-router)# network netblock
debug ip rip
|
| OSPF |
IGRP |
|
(config)#interface loopback #
(config-if)#ip address ip-address subnet-mask
(config)#router ospf process-id
(config-router)#network address wildcard-mask
area area-id
(config-router)#default-information originate
(config-router)#area area-id authentication
(config-router)#area area-id authentication message-digest
#show ip ospf interface type #
(config)#interface type #
(config-if)#bandwidth 56
(config-if)#ip ospf priority #
(config-if)#ip ospf cost #
(config-if)#ip ospf hello-interval seconds
(config-if)#ip ospf dead-interval seconds
(config-if)#ip ospf authentication-key password
(config-if)#ip ospf message-digest-key key-id encryption-type
md5 key
show ip ospf neighbor
debug ip ospf packet
debug ip ospf events
|
(config)#router eigrp AS#
(config-router)#network netblock
(config-router)#eigrp log-neighbor-changes
(config-router)#no auto-summary
(config)#interface type #
(config-if)#bandwidth kbps
(config-if)#ip summary-address eigrp AS# ip mask [adm-dist]
show ip eigrp neighbors
debug ip igrp transactions
debug ip igrp events |
| NAT/PAT |
DHCP |
|
(config)#interface type #
(config-if)#ip nat inside
(config)#interface type #
(config-if)#ip nat outside
^needed for dynamic ?
[static]
(config)#ip nat inside source static privateip publicip
overload?
[dynamic]
(config)#access-list accl# permit ip wildmask
(config)#ip nat pool pname
start-ip end-ip netmask mask
(config)#ip nat inside source list accl# pool
pname overload
[dynamic]
(config)#access-list accl# permit ip wildmask
(config)#ip nat
inside source list accl# interface type #
overload
show ip nat statistics verbose
show ip nat translations
clear ip nat translation {* | [inside g-ip l-ip] [outside l-ip g-ip]}
debug ip nat detailed
|
(config-if)#ip helper-address ip
(config)# ip dhcp excluded-address ip ip
(config)# ip dhcp pool poolname
(dhcp-config)# network ip mask
(dhcp-config)# default-router ip
(dhcp-config)# dns-server ip
(dhcp-config)# lease day hour min
show ip dhcp binding
show ip dhcp server statistics
show dhcp server
show dhcp lease
debug ip dhcp server events |
| PPP |
ISDN |
|
(config)# username word password word
(config-if)# encapsulation ppp
(config-if)# ppp chap hostname str
(config-if)#ppp authentication chap/pap
(config-if)#compress stac/predictor
(config-if)#ppp quality int
(config-if)#ppp multilink
(config-if)# ppp pap sent-username word password pass
debug ppp
debug ppp authentication
debug ppp negociation
debug ppp error
|
(config)/(config-if)#isdn switch-type type
[BRI]
(config-if)#isdn spid1 # [ldn]
(config-if)#isdn spid2 # [ldn]
[PRI]
(config)#controller {t1 | e1} {slot/port}
(config-controller)#framing {sf | esf} [USA]
(config-controller)#framing {crc4 | no-crc4} [EU]
(config-controller)#linecode {ami | b8zs| hdb3}
(config-controller)#pri-group [timeslotsrange]
(config)#interface serial{slot/port: | unit:}{23 | 15}
show isdn [status / active]
show dialer
show interface bri0/0:1
debug isdn
debug dialer [events/packets]
isdn call interface int phone#
clear interface bri
|
| DDR |
Frame
Relay |
(config)#ip route net-prefix mask {address | interface
}
(config)#interface dialer
(config-if)#dialer idle-timeout sec
(config-if)#dialer-map ip nexthop name hopword
phone#
(config-if)#dialer string phone#
(config-if)#dialer remote-name word
(config-if)#dialer pool pool#
(config-if)#dialer-group dial#
(config-if)#int phys
(config-if)#dialer pool-member pool# priority #
(config)#dialer-list dial# protocol proto
permit/deny
(config)#dialer-list dial# protocol proto
list acl#
(config)#access-list acl# deny proto
any any eq ftp
(config)#access-list acl# deny proto
any any eq telnet
(config)#access-list acl# permit proto
any any
|
[SW]
(config)#frame-relay switching
(config-if)#no ip address
(config-if)#encapsulation frame-relay
(config-if)#frame-relay intf-type dce
(config-if)#clock rate 56000
(config-if)#frame-relay route indlc interface
int outdlc
[CLI]
(config-if)#ip address ip netmask
(config-if)#bandwidth 64
(config-if)#encapsulation frame-relay [cisco|ietf]
(config-if)#frame-relay lmi-type [ansi|cisco|q933a]
(config-if)#frame-relay map protol proto-addr dlci# [broadcast]
(config-if)#interface serial 0/0.dlci# point-to-point
(config-subif)#frame-relay interface-dlci dlci#
show frame-relay pvc
show frame-relay lmi
show frame-relay map
clear frame-relay-inarp
debug frame-relay lmi |
| SNMP |
Syslog |
(config)#snmp-server community string
ro
(config)#snmp-server community string rw
(config)#snmp-server location text
(config)#snmp-server contact text
(config)#snmp-server user username groupname v3 [auth]
[md5]
|
(config)#logging on
(config)#logging hostname | ip address
(config)#logging trap/history informational
(config)#logging facility string
(config)#logging source-interface loopback0
(config)#logging timestamps log datetime
(config)#service timestamps log datetime ??
|
| |
|
| SWITCH
|
| #hostname word
#show mac-address-table
#clear mac-address-table [dynamic]
#show port security
#show interface status
(config)#ip default-gateway ip
(config)#interface VLAN 1
(config-if)#ip address ip mask
(config)#mac-address-table static mac-address of host
interface FastEthernet # vlan vlan name |
(config)#enable secret class
(config)#line con 0
(config-line)#password cisco
(config-line)#login
(config-line)#line vty 0 15
(config-line)#password cisco
(config-line)#login
|
| port
security |
VLAN |
| (config)#interface fastethernet #
(config-if)#switchport mode access
(config-if)#switchport port-security
(config-if)#switchport port-security mac-address sticky
(config-if)#switchport port-security maximum 1
(config-if)#port secure
(config-if)#port secure max-mac-count 1 |
#show vlan [brief]
#show vlan id #
#show vlan-membership
#vlan database
(vlan)#vlan vlan# name name
(config)#interface type #[.subport]
(config-if)#switchport mode access
(config-if)#switchport access vlan vlan#
Switch(config-if)# switchport mode trunk
Switch(config-if)# switchport trunk encapsulation dot1q
#debug sw-vlan packets |
| STP |
VTP |
| #show spanning-tree [brief]
(config)#spanning-tree priority 1
(config)#spanning-tree vlan 1 priority 4096
(config)# spanning-tree vlan vlan# hello-time
hello_time
(config)# spanning-tree vlan vlan# max-age
40
(config)#interface type #
(config-if)#spanning-tree cost port_cost
(config-if)#spanning-tree vlan vlan# cost
port_cost |
#show interfaces type 0/port_num
#show interfaces trunk
#show vtp status
#show vtp counters
#vlan database
(vlan)#vtp v2-mode
(vlan)#vtp domain cisco
(vlan)#vtp {client | server | transparent}
(config)#interface type #
(config-if)#switchport mode trunk
(config-if)#switchport trunk encapsulation dot1q
(config-if)#ip address ip-address subnet-mask
|
| |
|