Docsity
Docsity

Prepare for your exams
Prepare for your exams

Study with the several resources on Docsity


Earn points to download
Earn points to download

Earn points by helping other students or get them with a premium plan


Guidelines and tips
Guidelines and tips

Cisco IOS Quick Reference Cheat Sheet, Cheat Sheet of Operating Systems

Quick Reference Cheat Sheet on the Cisco IOS Operating Systems

Typology: Cheat Sheet

2019/2020

Uploaded on 10/09/2020

eekanath
eekanath 🇺🇸

4.7

(18)

271 documents

1 / 4

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Cisco IOS Quick Reference Cheat Sheet 2.1
1 of 4
Cisco IOS Quick Reference Cheat Sheet 2.1
CISCO IOS QUICK REFERENCE CHEAT SHEET 2.1 .............. 1
ROUTER MODES ...................................................................... 1
QUICK START .......................................................................... 1
RESTRICT ACCESS TO ROUTER .................................................... 1
PERFORM PASSWORD ENCRYPTION SERVICE................................. 1
SETUP SSH AND DISABLE TELNET ............................................... 1
DOING THE DO COMMAND ........................................................ 1
CONFIGURATIONS: VIEW, SAVE, ERASE ....................................... 1
SDM BASIC SETUP FOR HTTP, HTTPS ........................................... 1
CONFIGURE AN INTERFACE ........................................................ 2
CONNECTIVITY ......................................................................... 2
TELNET ................................................................................... 2
DEFAULT AND STATIC ROUTES .................................................... 2
DHCP SERVER ........................................................................ 2
NAT / PAT ............................................................................ 2
PRIVILEGE LEVEL ACCOUNT ........................................................ 2
SWITCH: BASICS ....................................................................... 2
SWITCH: PORT SECURITY ........................................................... 2
SWITCH: VLAN ........................................................................ 3
SWITCH: CONFIGURE PORT AS A TRUNK PORT ............................... 3
SWITCH: VTP (VERSION 1) ........................................................ 3
INTER-VLAN ROUTING ............................................................. 3
RIP ........................................................................................ 3
BGP ....................................................................................... 3
EIGRP .................................................................................... 3
OSPF: .................................................................................... 3
ACCESS LIST: ............................................................................ 4
SEND LOGGING TO SYSLOG SERVER............................................... 4
SET CLOCK ............................................................................... 4
Router Modes
R> (User-mode prompt)
R# (Privileged-mode prompt)
R(config)# (Global configuration mode)
R(config-if)# (Interface mode)
R(config-subif)# (Sub interface mode)
R(config-line)# (Line mode)
R(config-router)# (Router configuration mode)
Quick Start
R> enable
R# config terminal
R(config)# hostname [Router1]
R(config)# exit
R#
R# ? (Help with commands)
Restrict Access to Router
Privileged-mode
R(config)# enable password [password] (Plain Text)
R(config)# enable secret [password] (Hashed)
User-mode
(Select a line)
R(config)# line console 0
R(config)# line vty 0 4
R(config)# line aux 0
R(config)# password [password]
R(config)# login
R(config)# exec-timeout [10] [0] (M, S)
Perform Password Encryption Service
R(config)# service password-encryption
Setup SSH and Disable Telnet
R(config)# ip domain-name [R1.MrCambron.com]
R(config)# crypto key generate rsa general-keys modulus
[1024]
R(config)# ip ssh time-out [180]
R(config)# ip ssh authentication-retries [2]
R(config)# line vty 0 4
R(config-line)# transport input ssh
Doing the do Command
(No need to be in R#)
R(config)# do show run
R(config)# do show int fa0/0
R(config)# do ping [172.16.0.1]
Configurations: View, Save, Erase
R# show running-config
R# show startup-config
R# copy run start (Copies run as startup-config)
R# write
R# erase start
R# reload (Reboots the router)
SDM Basic Setup for http, https
R(config)# int fa0/0
R(config-if)# ip address [10.10.10.1] [255.255.255.248]
R(config-if)# no shutdown
R(config)# ip http server
R(config)# ip http secure-server
R(config)# ip http authentication local
pf3
pf4

Partial preview of the text

Download Cisco IOS Quick Reference Cheat Sheet and more Cheat Sheet Operating Systems in PDF only on Docsity!

Cisco IOS Quick Reference Cheat Sheet 2.

CISCO IOS QUICK REFERENCE CHEAT SHEET 2.1 ..............

ROUTER MODES ...................................................................... 1

QUICK START .......................................................................... 1

RESTRICT ACCESS TO ROUTER .................................................... 1

PERFORM PASSWORD ENCRYPTION SERVICE................................. 1

SETUP SSH AND DISABLE TELNET ............................................... 1

DOING THE DO COMMAND ........................................................ 1

CONFIGURATIONS: VIEW, SAVE, ERASE ....................................... 1

SDM BASIC SETUP FOR HTTP, HTTPS ........................................... 1

CONFIGURE AN INTERFACE ........................................................ 2

CONNECTIVITY ......................................................................... 2

TELNET ................................................................................... 2

DEFAULT AND STATIC ROUTES.................................................... 2

DHCP SERVER ........................................................................ 2

NAT / PAT ............................................................................ 2

PRIVILEGE LEVEL ACCOUNT ........................................................

SWITCH: BASICS .......................................................................

SWITCH: PORT SECURITY ...........................................................

SWITCH: VLAN ........................................................................

SWITCH: CONFIGURE PORT AS A TRUNK PORT ...............................

SWITCH: VTP (VERSION 1) ........................................................

INTER-VLAN ROUTING .............................................................

RIP ........................................................................................

BGP.......................................................................................

EIGRP....................................................................................

OSPF: ....................................................................................

ACCESS LIST: ............................................................................

SEND LOGGING TO SYSLOG SERVER...............................................

SET CLOCK ...............................................................................

Router Modes

R> (User-mode prompt) R# (Privileged-mode prompt)

R(config)# (Global configuration mode) R(config-if)# (Interface mode) R(config-subif)# (Sub interface mode) R(config-line)# (Line mode) R(config-router)# (Router configuration mode)

Quick Start

R> enable R# config terminal R(config)# hostname [Router1] R(config)# exit R# R#? (Help with commands)

Restrict Access to Router

Privileged-mode

R(config)# enable password [password] (Plain Text) R(config)# enable secret [password] (Hashed)

User-mode

(Select a line) R(config)# line console 0 R(config)# line vty 0 4 R(config)# line aux 0

R(config)# password [password] R(config)# login R(config)# exec-timeout [10] [0] (M, S)

Perform Password Encryption Service

R(config)# service password-encryption

Setup SSH and Disable Telnet

R(config)# ip domain-name [R1.MrCambron.com] R(config)# crypto key generate rsa general-keys modulus [1024] R(config)# ip ssh time-out [180] R(config)# ip ssh authentication-retries [2] R(config)# line vty 0 4 R(config-line)# transport input ssh

Doing the do Command

(No need to be in R#) R(config)# do show run R(config)# do show int fa0/ R(config)# do ping [172.16.0.1]

Configurations: View, Save, Erase

R# show running-config R# show startup-config R# copy run start (Copies run as startup-config) R# write R# erase start R# reload (Reboots the router)

SDM Basic Setup for http, https

R(config)# int fa0/ R(config-if)# ip address [10.10.10.1] [255.255.255.248] R(config-if)# no shutdown R(config)# ip http server R(config)# ip http secure-server R(config)# ip http authentication local

R(config)# username [cisco] privilege 15 password 0 [cisco] R(config)# line console 0 R(config-line)# login local R(config)# line vty 0 4 R(config-line)# privilege level 15 R(config-line)# login local R(config-line)# transport input ssh

Configure an Interface

R(config)# interface [fa0/0] R(config-if)# description [Sales VLAN] R(config-if)# ip address [192.168.1.10 255.255.255.0] R(config-if)# no shutdown R(config-if)# clock rate [64000] (only for Serial DCE)

PPP Encapsulation (Phases: LCP, Authentication, NCP)

R(config-if)# encapsulation ppp

PPP Authentication Using chap

R(config)# hostname RA RA(config)# username RB password cisco RA(config-if)# ppp authentication chap

Troubleshooting and Viewing Information

R# show controllers serial 0/0/0 (layer 1 and layer 2 info) R# show ip interface brief R# show interface (View LCP is open) R# debug ppp negotiations (PPP packets during startup phase) R# debug ppp packet (real-time PPP packet flow)

Connectivity

R# ping [172.16.0.1] R# traceroute [172.16.0.1] R# telnet [172.16.0.1] R# show interface [fa0/0] R# show ip interface [fa0/0] (layer 3)

Telnet

R> telnet 172.16.0. R1# terminal monitor (Displays console messages) R1# terminal no monitor

Default and Static Routes

R(config)# ip route [0.0.0.0 0.0.0.0 172.17.0.2] R(config)# ip route [172.18.0.0 255.255.0.0] [172.17.0.2] R# show ip route

DHCP Server

R(config)# ip dhcp pool [Pool_Name] R(dhcp-config)# network [172.16.0.0 255.255.0.0] R(dhcp-config)# dns-server [172.16.0.1 172.16.0.2] R(dhcp-config)# default-router [172.16.0.1] R(config)# ip dhcp excluded-address [172.16.0. 172.16.1.99]

NAT / PAT

NAT

R(config)# ip nat inside source static [10.10.10. 209.165.200.224] R(config)# int [fa0/0] (Inside interface) R(config-if)# ip nat inside R(config)# int [serial0/0] (Outside interface) R(config-if)# ip nat outside

Dynamic NAT

R(config)# access-list 1 permit 172.17.0.0 0.0.0. R(config)# ip nat pool pub-addr 209.165.202. 209.165.202. R(config)# ip nate inside source list 1 pool pud-addr R(config)# int fa0/ R(config)# ip address 172.17.0.1 255.255.255. R(config)# ip nat inside R(config)# int ser0/0/ R(config)# ip address 209.165.202.1 255.255.255. R(config)# ip nat outside

PAT

R(config)# access-list 1 permit 172.17.0.0 0.0.0. R(config)# ip nat inside source list 1 int ser0/0/0 overload R(config)# int fa0/0 (inside) R(config)# ip nat inside R(config)# int ser0/0/0 (outside) R(config)# ip nat outside R# show ip nat translations (Verify NAT translation)

Privilege Level Account

R(config)# username [admin] privilege 15 password 0 [cisco]

Switch: Basics

S# erase start S# delete vlan.dat S# reload S# show run S# show ip interface

Switch: Port Security

S(config)# interface fa0/18 (use this or next line) S(config)# interface range fa0/1 - 24 S(config-if)# switch port-security

Port Security Options

S(config-if)# switchport port-security mac-address [MAC: MAC_Address | Sticky: (Last Source MAC)] S(config-if)# switchport port-security maximum [Max# MAC allowed] S(config-if)# Switchport port-security violation [shutdown | restrict | protect]

Disable Port Security

S(config)# interface fa0/ S(config-if)# no switchport port-security

Troubleshoot and View Status of Port Security

R(config-if)# ip address 10.0.1.1 255.255.255. R(config-if)# ip ospf message-digest-key 10 md [area_password] R# show ip ospf? R# debug ip ospf?

Tuning Priority

R(config-if)# ip ospf priority [1-255]

Tune Router ID, Loopback Address, Int Address

R(config-router)# router-id 10.1.1.1 (Router ID) R(config-if)# ip address 10.1.1.1 255.255.255. (Loopback Address) R(config-if)# ip address 192.168.1.0 255.255.255. (Interface Address) (After changing int priority or router ID use next line) R# clear ip ospf process

Tune Reference Bandwidth

R(config-router)# auto-cost reference-bandwidth [10000] (Mbit)

Configure Interface Cost Value

R(config)# ip ospf cost

Propagating a Default Router

R(config)# ip router 0.0.0.0 0.0.0.0 serial0/0/ R(config-router)# default0information originate

Configuring OSPF Summarization

R# area 0 range 192.168.0.0 255.255.252.

Verify and Troubleshoot

R# show ip protocols R# show ip ospf? R# show ip route R# debug ip ospf?

Access List:

Standard (Place close to destination)

R(config)# access-list [1-99|1300-1999] remark [To servers] R(config)# access-list 1 [deny|permit] [source] [mask] R(config)# access-list 1 permit any R(config)# no access-list 1

Extended (Place close to source)

R(config)# access-list [100-199|2000-2699] remark [to servers] R(config)# access-list 100 [permit|deny] [tcp|ip|ospf] [source] [mask] host [destination] [mask] [eq|gt|lt] [tcp_port] R(config)# access-list 100 permit ip host 192.168.1. host 192.168.5. R(config)# access-list 100 permit tcp any host 10.10.10.250 eq 80 R(config)# access-list 101 permit tcp any any established R(config)# access-list 123 tcp host 172.16.1.2 any range ftp-data ftp

Named

R(config)# access-list [standard|extended] SALES-ONLY R(config-ext-nacl)# permit 192.168.20.0 0.0.0. R(config-ext-nacl)# permit host 192.168.10. R(config-ext-nacl)# deny any

Assign ACL to an Interface

R(config-if)# ip access-group [100] [in|out]

Assign ACL to vty

R(config-line)# access-class 1 in

Default ACL Match Tracking

R# show access-list [1|100|name] (how many matches)

ACL Console Logging

R(config)# no access-list 100 R(config)# access-list 100 permit ip host 192.168.1. 0.0.0.255 any log R(config)# access-list 100 deny ip any any log R# no logging console (turns off)

Configuring an ACL with NAT

R1(config)# int fa0/ R1(config-if)# ip address 192.168.1. R1(config-if)# ip access-group 10 in R1(config-if)# ip nat inside

R1(config)# int Ser0/0/ R1(config-if)# ip address 209.165.201. R1(config-if)# ip nat outside

R(config)# ip nat inside source list 1 int ser0/0/0 overload R(config)# access-list 10 permit 192.168.1.0 0.0.0.

Troubleshooting and Viewing ACLs

R# show access-lists (Displays all ACLs) R# clear access-list counters R# debug ip packet

Send logging to syslog server

R1# clock set 15:22:00 may 17 2007 R1(config)# clock timezone cst - R1(config)# service timestampts R1(config)# logging 192.168.1. R1(config)# no logging console

Set Clock

R# clock set 18:30:00 sep 17 2008 R# clock timezone EST -