Download Cisco IOS Quick Reference Cheat Sheet and more Cheat Sheet Operating Systems in PDF only on Docsity! Cisco IOS Quick Reference Cheat Sheet 2.1 1 of 4 Cisco IOS Quick Reference Cheat Sheet 2.1 CISCO IOS QUICK REFERENCE CHEAT SHEET 2.1 .............. 1 ROUTER MODES ...................................................................... 1 QUICK START .......................................................................... 1 RESTRICT ACCESS TO ROUTER .................................................... 1 PERFORM PASSWORD ENCRYPTION SERVICE................................. 1 SETUP SSH AND DISABLE TELNET ............................................... 1 DOING THE DO COMMAND ........................................................ 1 CONFIGURATIONS: VIEW, SAVE, ERASE ....................................... 1 SDM BASIC SETUP FOR HTTP, HTTPS ........................................... 1 CONFIGURE AN INTERFACE ........................................................ 2 CONNECTIVITY ......................................................................... 2 TELNET ................................................................................... 2 DEFAULT AND STATIC ROUTES .................................................... 2 DHCP SERVER ........................................................................ 2 NAT / PAT ............................................................................ 2 PRIVILEGE LEVEL ACCOUNT ........................................................ 2 SWITCH: BASICS ....................................................................... 2 SWITCH: PORT SECURITY ........................................................... 2 SWITCH: VLAN ........................................................................ 3 SWITCH: CONFIGURE PORT AS A TRUNK PORT ............................... 3 SWITCH: VTP (VERSION 1) ........................................................ 3 INTER-VLAN ROUTING ............................................................. 3 RIP ........................................................................................ 3 BGP ....................................................................................... 3 EIGRP .................................................................................... 3 OSPF: .................................................................................... 3 ACCESS LIST: ............................................................................ 4 SEND LOGGING TO SYSLOG SERVER............................................... 4 SET CLOCK ............................................................................... 4 Router Modes R> (User-mode prompt) R# (Privileged-mode prompt) R(config)# (Global configuration mode) R(config-if)# (Interface mode) R(config-subif)# (Sub interface mode) R(config-line)# (Line mode) R(config-router)# (Router configuration mode) Quick Start R> enable R# config terminal R(config)# hostname [Router1] R(config)# exit R# R# ? (Help with commands) Restrict Access to Router Privileged-mode R(config)# enable password [password] (Plain Text) R(config)# enable secret [password] (Hashed) User-mode (Select a line) R(config)# line console 0 R(config)# line vty 0 4 R(config)# line aux 0 R(config)# password [password] R(config)# login R(config)# exec-timeout [10] [0] (M, S) Perform Password Encryption Service R(config)# service password-encryption Setup SSH and Disable Telnet R(config)# ip domain-name [R1.MrCambron.com] R(config)# crypto key generate rsa general-keys modulus [1024] R(config)# ip ssh time-out [180] R(config)# ip ssh authentication-retries [2] R(config)# line vty 0 4 R(config-line)# transport input ssh Doing the do Command (No need to be in R#) R(config)# do show run R(config)# do show int fa0/0 R(config)# do ping [172.16.0.1] Configurations: View, Save, Erase R# show running-config R# show startup-config R# copy run start (Copies run as startup-config) R# write R# erase start R# reload (Reboots the router) SDM Basic Setup for http, https R(config)# int fa0/0 R(config-if)# ip address [10.10.10.1] [255.255.255.248] R(config-if)# no shutdown R(config)# ip http server R(config)# ip http secure-server R(config)# ip http authentication local Cisco IOS Quick Reference Cheat Sheet 2.1 2 of 4 R(config)# username [cisco] privilege 15 password 0 [cisco] R(config)# line console 0 R(config-line)# login local R(config)# line vty 0 4 R(config-line)# privilege level 15 R(config-line)# login local R(config-line)# transport input ssh Configure an Interface R(config)# interface [fa0/0] R(config-if)# description [Sales VLAN] R(config-if)# ip address [192.168.1.10 255.255.255.0] R(config-if)# no shutdown R(config-if)# clock rate [64000] (only for Serial DCE) PPP Encapsulation (Phases: LCP, Authentication, NCP) R(config-if)# encapsulation ppp PPP Authentication Using chap R(config)# hostname RA RA(config)# username RB password cisco RA(config-if)# ppp authentication chap Troubleshooting and Viewing Information R# show controllers serial 0/0/0 (layer 1 and layer 2 info) R# show ip interface brief R# show interface (View LCP is open) R# debug ppp negotiations (PPP packets during startup phase) R# debug ppp packet (real-time PPP packet flow) Connectivity R# ping [172.16.0.1] R# traceroute [172.16.0.1] R# telnet [172.16.0.1] R# show interface [fa0/0] R# show ip interface [fa0/0] (layer 3) Telnet R> telnet 172.16.0.1 R1# terminal monitor (Displays console messages) R1# terminal no monitor Default and Static Routes R(config)# ip route [0.0.0.0 0.0.0.0 172.17.0.2] R(config)# ip route [172.18.0.0 255.255.0.0] [172.17.0.2] R# show ip route DHCP Server R(config)# ip dhcp pool [Pool_Name] R(dhcp-config)# network [172.16.0.0 255.255.0.0] R(dhcp-config)# dns-server [172.16.0.1 172.16.0.2] R(dhcp-config)# default-router [172.16.0.1] R(config)# ip dhcp excluded-address [172.16.0.1 172.16.1.99] NAT / PAT NAT R(config)# ip nat inside source static [10.10.10.2 209.165.200.224] R(config)# int [fa0/0] (Inside interface) R(config-if)# ip nat inside R(config)# int [serial0/0] (Outside interface) R(config-if)# ip nat outside Dynamic NAT R(config)# access-list 1 permit 172.17.0.0 0.0.0.255 R(config)# ip nat pool pub-addr 209.165.202.131 209.165.202.140 R(config)# ip nate inside source list 1 pool pud-addr R(config)# int fa0/0 R(config)# ip address 172.17.0.1 255.255.255.0 R(config)# ip nat inside R(config)# int ser0/0/0 R(config)# ip address 209.165.202.1 255.255.255.0 R(config)# ip nat outside PAT R(config)# access-list 1 permit 172.17.0.0 0.0.0.255 R(config)# ip nat inside source list 1 int ser0/0/0 overload R(config)# int fa0/0 (inside) R(config)# ip nat inside R(config)# int ser0/0/0 (outside) R(config)# ip nat outside R# show ip nat translations (Verify NAT translation) Privilege Level Account R(config)# username [admin] privilege 15 password 0 [cisco] Switch: Basics S# erase start S# delete vlan.dat S# reload S# show run S# show ip interface Switch: Port Security S(config)# interface fa0/18 (use this or next line) S(config)# interface range fa0/1 - 24 S(config-if)# switch port-security Port Security Options S(config-if)# switchport port-security mac-address [MAC: MAC_Address | Sticky: (Last Source MAC)] S(config-if)# switchport port-security maximum [Max# MAC allowed] S(config-if)# Switchport port-security violation [shutdown | restrict | protect] Disable Port Security S(config)# interface fa0/18 S(config-if)# no switchport port-security Troubleshoot and View Status of Port Security