Abstract]
Cisco Route configuration statement summary startup interface, IP Address Allocation
Address: Router> router> enablerouter # router # configureterminalrouter (config) # router (config) # interfacetypeportrouter (config-
If) # noshutdownrouter (config-If) # ipaddressip-addresssubnet-
Maskrouter (config-If) # ^ Z configure the rip route protocol: updated once every 30 seconds
Router (config) # routerriprouter (config-If )#......
-----------------------------------------------------------------------------
Summary of Cisco Route configuration statements
Start the interface and assign an IP Address:
Router>
Router> enable
Router #
Router # configure Terminal
Router (config )#
Router (config) # interface type Port
Router (config-If) # No Shutdown
Router (config-If) # IP address IP-address subnet-Mask
Router (config-If) # ^ Z
Configure the rip route protocol: Once every 30 seconds
Router (config) # router rip
Router (config-If) # network-number <-- advertise standard A, B, and C Networks -->
Router (config-If) # ^ Z
Configure the IGRP route protocol: updated every 90 seconds
Router (config) # router IGRP as-number <-- As-number range: 1 ~ 65535 -->
Router (config-If) # network-number <-- advertise standard A, B, and C Networks -->
Router (config-If) # ^ Z
Configure the Novell IPX Routing Protocol: The Novell rip is updated once every 60 seconds.
Router (config) # IPX routing [node address]
Router (config) # IPX maximum-paths <-- set load balancing, range: 1 ~ 512 -->
Router (config) # interface type Port
Router (config-If) # IPX network-number [encapsulation-type] [secondary] <-- advertise standard A, B, and C Networks -->
Router (config-If) # ^ Z
Configure DDR:
Router (config) # dialer-List Group-number protocol-type permit [list ACL-number]
Router (config) # interface Bri 0
Router (config-If) # dialer-group-Number
Router (config-If) # dialer MAP protocol-type next-hop-address name hostname telphone-Number
Router (config-If) # ^ Z
Configure ISDN:
Router (config) # isdnth-typeth-type <-- configure the ISDN Switch
Type, China use basic-net3 -->
Router (config-If) # ^ Z
Configure Frame Relay:
Router (config-If) # encapsulation frame-relay [Cisco | IETF]
Router (config-If) # frame-relay LR-type [ANSI | Cisco | q933a]
Router (config-If) # bandwidth kilobits
Router (config-If) # frame-relay invers-ARP [Protocol] [dlci]
<-- Configure the static invers ARP table:
Router (config) # frame-relay protocol-address dlci [
Broadcast] [IETF | Cisco] [payload-compress | packet-by-packet]
-->
<-- Set the keepalive interval:
Router (config-If) # keepalive number
-->
<-- Specify dlci for the Local interface:
Router (config-If) # frame-lelay local-dlci number
-->
<-- Sub-interface configuration:
Router (config-If) # interface type port. subininterface-number [multipoint | point-to-point]
Router (config-subif) # IP unnumbered Interface
Router (config-subif) # frame-lelay local-dlci number
-->
Router (config-If) # ^ Z
Configure the standard ACL:
Router (config) # access-list-number [permit | deny] Source
[Source-mask] <-- access-list-Number
Range: 1 ~ 99 standard ACLs; 100 ~ 199 extend the ACL; 800 ~ 899 standard ipx acl; 900 ~ 999 extend ipx acl; 1000 ~ 1099
IPX sap ACL; 600 ~ 699 Apple Talk ACL -->
Router (config) # interface type Port
Router (config-If) # IP Access-group access-list-number [in | out]
Router (config-If) # ^ Z
Configure the extended ACL:
Router (config) # access-list-number [permit | deny] [
Protocol | Protocol-number] source-Wildcard [Source-port]
Destination destination-Wildcard [destination-port] [established]
Router (config) # interface type Port
Router (config-If) # IP Access-group access-list-number [in | out]
Router (config-If) # ^ Z
Configure the name ACL:
Router (config) # IP Access-list [standard | extended] ACL-name
Router (config [STD-| ext-] NaCl) # [permit | deny] [IP-access-list-test-conditions]
Router (config [STD-| ext-] NaCl) # No [permit | deny] [IP-access-list-test-conditions]
Router (config [STD-| ext-] NaCl) # ^ Z
Router (config) # interface type Port
Router (config-If) # IP Access-group [ACL-name | 1 ~ 199] [In | out]
Router (config-If) # ^ Z
Configure the DCE clock:
Router # Show controllers type port <-- confirm DCE interface -->
Router (confin-If) # clock rate 64000 <-- enter the DCE interface to set the clock rate -->
Router (config-If) # ^ Z
Configure the PPP protocol:
Router (config) # username name password set-password-Here <-- the validator creates a database -->
Router (config) # interface type Port
Router (config-If) # encapsulation PPP <-- start the PPP protocol -->
Router (config-If) # PPP outhentication [chap | chap pap | pap chap | pap] <-- select PPP authentication -->
Router (config-If) # PPP pap sent-username name Password <-- send verification information -->
Router (config-If) # ^ Z
PAP one-way authentication configuration instance:
Validators:
Router-server (config) # username client password 12345 <-- the validator creates a database -->
Router-server (config) # interface serial 0
Router-server (config-If) # encapsulation PPP
Router-server (config-If) # PPP authentication pap <-- select to use PAP for PPP authentication -->
Router-server (config-If) # ^ Z
Verified:
Router-client (config-If) # encapsulation PPP
Router-client (config-If) # PPP pap sent-username client password 12345 <-- send verification information -->
Router-client (config-If) # ^ Z
PAP two-way authentication configuration instance:
Vro
A:
Routeconfig # username B password 12345
Routeconfig # interface serial 0
Roupid (config-If) # encapsulation PPP
Roupid (config-If) # PPP authentication pap
Routeconfig-If # PPP pap sent-username a password 54321
Routeconfig-If # ^ Z
Vro
B:
Routerb (config) # username a password 54321
Routerb (config) # interface Serial 1
Routerb (config-If) # encapsulation PPP
Routerb (config-If) # PPP authentication pap
Routerb (config-If) # PPP pap sent-username B password 12345
Routerb (config-If) # ^ Z
Chap one-way authentication configuration instance:
Validators:
Router-server (config) # username router-client password 12345
Router-server (config) # interface serial 0
Router-server (config-If) # encapsulation PPP
Router-server (config-If) # PPP authentication chap
Router-server (config-If) # ^ Z
Verified:
Router-client (config-If) # encapsulation PPP
Router-client (config-If) # PPP authentication chap
Router-client (config-If) # ppp chap hostname router-Client
Router-client (config-If) # ppp chap password 12345
Router-client (config-If) # ^ Z chap bidirectional authentication configuration instance:
Vro
A:
Routerbandwidth (config) # username routerb password 12345
Routeconfig # interface serial 0
Roupid (config-If) # encapsulation PPP
Roupid (config-If) # PPP authentication chap
Roupid (config-If) # ppp chap hostname roupid
Routeconfig-If # ppp chap password 54321
Routeconfig-If # ^ Z
Vro
B:
Routerb (config) # username routerpassword 54321
Routerb (config) # interface Serial 1
Routerb (config-If) # encapsulation PPP
Routerb (config-If) # PPP authentication chap
Routerb (config-If) # ppp chap hostname routerb
Routerb (config-If) # ppp chap password 12345
Routerb (config-If) # ^ Z
TELNET:
Roupid # Terminal Monitor <-- return the result of executing the DEBUG command on the remote host -->
Route# Telnet IP-Address [router-name] <-- telnet to the host with the specified address or name -->
Routerb # [exit | logout] <-- exit Telnet -->
Routerb # ++ <6> press <-- suspend Telnet -->
Route# show sessions <-- display all current Telnet information, including connect-number -->
Route# connect-number <-- return the specified Telnet connection -->
Routera # Disconnect IP-Address [router-name] <-- disconnect the host with the specified address or name -->
Roupid # Show user <-- display the connection information from telnet to the local machine -->
Router # clear line [0 | 1 | 2 | 3 | 4] <-- disconnect the connection from the specified Telnet instance to the local machine -->
Disable Telnet to the local machine:
Router (config) # Line vty 0 4
Router (config-line) # access-class ACL-Number
Router (config) # ^ Z
Set the Host Name:
Router (config) # hostname set-hostname
Router (config) # ^ Z
Router (config) # ^ Z
Set User mode password:
Router (config) # Line console 0
Router (config-line) # Login
Router (config-line) # password set-Password
Router (config-line) # ^ Z
Set the Telnet password:
Router (config) # Line vty 0 4
Router (config-line) # Login
Router (config-line) # password set-Password
Router (config-line) # ^ Z
Set the privileged mode password:
Router (config) # enable password set-Password <-- Unencrypted Password, plaintext -->
Router (config) # enable secret set-Password <-- encrypted password -->
Router (config) # ^ Z
Encrypt all passwords:
Router (config) # service password-ancryption set-password-Here
Router (config) # No service password-ancryption <-- Cancel encryption -->
Router (config) # ^ Z
Set logon banner:
Router (config) # Banner motd separator set-banner-information-Here separator <-- the front and back separators must be consistent -->
Set the interface description:
Router (config-If) # description set-Port-information-Here
Router (config) # ^ Z
CDP control:
Router (config-If) # CDP enable <-- enable CDP on the specified port; default -->
Router (config-If) # No CDP enable <-- disable CDP on the specified port -->
Router (config) # CDP run <-- enable CDP for all ports -->
Router (config) # No CDP run <-- disable CDP for all ports -->
Ping usage:
Router # Ping IP-address
Router # Ping <-- extend the ping command -->
Protocol [IP]: [Protocol-type] <-- select protocol type -->
Target IP Address: IP-address <-- enter the test address -->
Repeat count [5]: <-- select the number of ICMP packets sent -->
Datemedisize [100]: <-- select the size of each package -->
Timeout in seconds [2]: <-- set the timeout value for each packet -->
Extended commands [N]: y <-- use the extended ping command -->
Sweep range of sizes [N]:
Tracke usage:
Router # trace IP-Address [host-name]
Is a Cisco 4000 vro
Specify media type:
Router (config-If) # media-type 10 BaseT <-- invalidate AuI (default), change to use RJ-45 -->
Router (config-If) # ^ Z
Change vro
Startup sequence:
Router (config) # boot system flash iOS-filename
Router (config) # boot system TFTP iOS-filename TFTP-IP-address
Router (config) # boot system ROM
Router (config) # ^ Z
Modify the register value:
Roister (config) # config-register value
<-- Cisco factory default value = 0x2102, value range: 0x2100 (go to Rom Monitor), 0x2101 (enable the system to start from Rom
), 0x2102 ~ 0x210f (enable the system to start from NVRAM ). 0x1 = 0x2101, starting from the minimum bit -->
Change the register value in the ROM monitor:
> O/R Value
Vro
Password Recovery:
Shut down the instance, start the instance again, and press <Ctrl> + within 60 seconds to enter the ROM monitor mode.
> O/R 0x2142 <-- 25xx type Router
--> Or> confreg 0x2142 <-- 16xx type Router
-->
Router> I
Router> N
Router> enable
Router # copy startup-config running-config
Router # configure Terminal
Router (config) # enable secret New-Password
Machine (config) # config-register 0x2102
Router (config) # ^ Z
Router # copy running-config startup-config
Router # reload
Configuration name-host entry:
Router (config) # IP host set-name [TCP-Port-number] IP-Address [IP-address 2] ..
Router (config) # ^ Z
Define DNS host:
Router (config) # IP name-server-Address [server-address 2] ..
Router (config) # ^ Z
Disable DNS:
Router (config) # No IP domain-Lookup
Router (config) # ^ Z configuration horizontal segmentation:
Router (config-If) # IP split-horizon
Router (config-If) # No IP split-horizon
Router (config-If) # ^ Z
Configure Static Routing:
Router (config) # IP Route IP-address subnet-mask [next-hop-address | Local-out-port] [distace]
<-- Distance range: 1 ~ 255 is equivalent to priority. The smaller the value, the better. Rip = 120; dspf = 110; IGRP = 100; VPN = 90 -->
Router (config) # ^ Z
Configure the default route:
Router (config) # IP defoult-network IP-address <-- Dynamic default route -->
Router (config) # IP Route 0.0.0.0 0.0.0.0 [next-hop-address | Local-out-port] [distace] <-- Static default route -->
Router (config) # ^ Z
Other commands:
Router # Show version
Router # Show running-config
Router # Show startup-config
Router # Show flash
Router # Show interface [type port]
Router # Show Buffers
Router # Show Protocol
Router # Show mem
Router # Show stacks
Router # Show Processes
Router # Show CDP entry [device-name] <-- display layer-3 information of a specified neighbor -->
Router # Show CDP neighbors
Router # Show CDP neighbors detail <-- display layer-3 information of all neighbors->
Router # Show IP router
Router # Show IPX router
Router # Show host
Router # Show IP protocol
Router # Show IP interface type Port
Router # Show IPX interface type Port
Router # Show IPX servers
Router # Show IPX traffic
Router # Show access-lists [ACL-number]
Router # Show ISDN status
Router # Show dialer <-- View ISDN dialing information -->
Router # Show ISDN active
Router # Show frame-relay PVC
Router # Show frame-relay Map
Router # Show frame-relay LMS
Router # erase startup-config
Router # reload
Router # setup
Router # copy running-config startup-config
Router # copy startup-config running-config
Router # copy TFTP running-config
Router # copy running-config TFTP
Router # debug IPX routing Activity
Router # debug IPX SAP
Router # debug ISDN q921
Router # debug ISDN q931
Router # debug dialer
Router # debug IP rip
Router # clear interface BRI