Cisco Modes

Description Kevboard short cut

User mode Switch>
Enter Privilege mode Switch>enable
Privileged mode Switch#
Enter configuration mode Switch#configure terminal
Global Config mode
Switch(config) #
Enter Interface mode Switch(conf ig) #interface f a0/ 1
Interface mode Switch(config-i f)
Return to global
Switch(config-if ) exit
configuration
Exit Global Config mode Switch(config) #exit
Return to use mode Switch#disa.ble
Logout Switch>exi t
Keyboard Shortcuts
Description Keyboard shortcut
Recall Previous command Up arrow or <Ct r l > p
Recall Next command Down arrow or <Ctrl > n
Beginning of command <Ctrl> a
End of command <Ct r l> e
Delete input <Ctrl> d
Exit Configuration Mode <Ctrl> z
Complete command TAB
Description Commands
Configure device system Switch(config) #hostname swl
name
Sets the encrypted enabl e Switch(config) #enable s ec ret cisco
password
Sets the unencrypted enable Switch(config) #enable password c isco
password
Enable password encryption Switch(config) #service passwor d-encryption
on all clear text password
within the confi guration file
Confi gure a Message Of The Switch(config) #banner motd $
Banner, with an ending
character of $
Assign IP address to vlan Switch(config) #int vlan 1
Switch(config-if l #ip addr 172.22.1.11
255.255.255. 0
Assign Default gateway, note Switch(config) #i p defaul t -gateway 10. 1.1.1
the mode
Select one interface Switch(config) #i nt fa0/ 1
Select a range of interfaces Switch(config) #i nt range fa0/1 - 12
(version dependant)
.-.. ... . .
-
.. - . . -- .. -
Select a range of interfaces Switch(config) #int range fa0/1 - 12
(version dependant)
Set the interface descri ption Switch(config- ifl #description
Add vlan using config mode switch(config) #vl an 11
switch(config- vlan) #name test
Configure Interface fa0/1 @ Switch(config- if) #speed 100
speed 100 Mbps and ful l Switch(config-if ) #duplex full
duplex
Assign interface to vlan switch(config- if) #switchport access vl an 11
Enable Port Security Switch(config- if) #switchport mode access
Switch(config-if ) #switchport port-security
Switch(config- ifl #switchport port-security
mac - address sticky
Disable Interface Switch(config- ifl shutdown
Enable Interface
Switch(config-if ) no shutdown
Configures 5 Telnet sessions Switch(conf ig) #line vty O 4
each with a password of Switch(config-l ine) #login
'cisco Switch(config- line) #password cisco
Enable and define console
Switch(conf ig) #line con O
password of cisco' Switch(config- line) #login
Switch(config-l ine) #password cisco
Synchronise console Switch(config-line) #logging synchronous
messages (Keep what you
have typing on the screen)
Set the timezone and Switch(conf ig) #clock t i mezone gmt 0
automatically adjust Switch(conf ig) #clock summer-time gmt
recurring
Sets the switch priority for
Switch(conf ig) #spanning- tree vlan 1 priority
the vtan. This combined with 4096
the switch mac address
creates the switch BID
Enables portfast Switch(conf ig) #int fa0/1
Switch(config-if ) #spanning-tree portfast
Enables RSTP. other Switch(conf ig) #spanning-tree mode rapid-pvst
options are, PVST and MST
Creates a vlan. Note this Switch(conf ig) #vlan 2
now done in config mode Switch(config-vlan) #name sales
not vtan database. Also note
the 'int vlan' command does
NOT create vlans
. .
- -
Assign an interface to vlan 2 Switch(config-if ) #switchport
access v l an 2
unconditionally forces an Switch(config-if ) #switchport mode trunk
interface into trunKing. Other
options are access and
dynamic
Manually assign a switch to Switch(config) #vtp domain lab
a VTP domain. A switch will
automatically become part of
a VTP domain if it's currently
in the ' null' domain and
receives a VTP frame
Changes the VTP mode from Switch(conf ig) #vtp mode client
the default 'server' mode to
client mode. In client mode
no changes can be made
Enable the http server to
Router (config) #ip http server
SOM can be used
Defines a username and
Router (config) #username sue password cisco
password. The list can be
used for many things from
PPP authentication to user
access
Defines a local host file. Like Router (conf ig) #ip host mypc 10.1.1.3
/etdhosts in unix
Disables DNS lookup. Useful Router (config) #no ip domai n- lookup
when a command as been
miss typed
Sets the logical (not
Router (config) #int
so
physical) bandwidth of Router (config- if)#bandwidth
intertace. This is used by
routing protocols, SNMP
queuing etc
Sets the physical clock Router (config -if )#cl ock rate 64000
Set the serial intertace WAN Router (config-if )#encapsulation hdl c
encapsul ation. Other options
are PPP or frame-relay
Authentication on PPP is Router (config- if)#ppp authentication chap
optional. This command
enable chap on the intertace.
Other option PAP
Defines the type of LMI
Router (config -if )#frame- relay lmi-type cisco
being used. If len un-
configured the correct LMI
type should be automatically
detected
Defines a static route. Router (config) #ip route 50.0. 0.0 255.0.0.0
Renumber static routes have 10.1.2.1
an admin distance of 1.
Therefore will over ride any
dynamic routing.
Enables RIP version 1 on all Router (config) #router rip
LOCAL interfaces which Router (config-router) #network 10.0.0.0
have a 10.x.x.x address
Enables RIP version 2 Router (config- router) #version 2
Enable the router to provide Router (config) #ip dhcp pool MYPOOL
a DHCP service. Router (dhcp-config)#network 10.1.1.0
255. 255. 255. 0
Router (dhcp-config) #default-router 10.1.1.1
Router (dhcp-config) #exit
Router (config) #ip dhcp excl uded- address
10.1.1.1 10.1.1.99
Changes the config register Router (config) #config-register Ox2102
which controls what the
router does when the router
boots
Creates a logical sub
Router(config) #int faO/ O .1
intertace below the physical
intertace
Enables 802.1q trunking on
Router (config- subif )#encapsulation dotlQ 1
the intertace
Define the ip address Router (config- subif )#ip address 10.1.1.1
255.255.255.0
Enable OSPF on any local Router (config- ) #router ospf 1
intertace which start with the Router (config- router) #network 10.1.0.0
ip address 10. 1.x.x. Note the 0.0.255.255 area O
inverted mask
EIGRP can be configured in Router (config) #router eigrp 1
a similar way to RIP or the Router (config-router) #network 172.16.0.0
mask option could be used Or
Router (config-router) #network 172.16.2.0
0.0.0.255
Defines a standard ACL. Router (config) #access -list 1 permi t
Standard ACL use number 172.16.1.1
1-99
Defines an Extended ACL. Router (config) #access -l ist 101 deny tcp host
The first address is the
172.16.1.1 host 172.16.2.1 eq telnet
source IP address Router (config) #access -list 101 permit ip any
any
. . .. ..
-
- .
. .. .
- -
- . -
Use the group command to Router (conf ig) #interface f aO/ O
attach an ACL to an Router (config- if ) #ip access- group 1 out
interface.
is used under an interface if
the ACL is to filter traffic
An example using named Router (config) #ip access- list extended
ACL in stead of numbers
my_list
Router (config-ext- nacl ) # deny tcp host
172.16.1.1 host 172.16.2.1 eq ftp
Router (conf.ig-ext - nacl ) # permit i p any any
Attaching a named AGL to Router (config) #int faO/ O
an interface Router (config-i f ) #ip access- group my_list in
Configuring a static NAT to Router (config) #ip nat i nsi de source static
allow a server to be access 10.1.1.2 interface s0/ 0/ 1
via the Internet, using the IP
address on interface s0/0/1
Defining interface which NAT Router (config) #int faO/O . 1
takes place between Router (config- i f ) #ip nat i nside
Enables RIPng Router (conf.ig) #ipv6 unicast - routing
ROuter (config) #ipv6 router rip ccna
Descriction
Manually starts the setup
dialog which is automatically
invoked when the device
starts ~ no config
Displays the config held in
DRAM. Which i s lost if not
copy run start command is
not used
Displays the NVRAM (None
volatile) config.
Saves the config. Without
this command all
changes/configuration will be
lost.
Saves the running config to a
TFTP server
Copies IOS files to a TFTP
server
Copies files from a TFTP
server the device flash
..
-
.. .
Router (config) #int sO/ O/ O
Router (config- if)#ipv6 r i p ccna enable
Privi lege Commands
Commands
Switch#setu.p
Switch#show running- config
Switch#show startup- conf i g
Switch#copy running- conf i g startup- config
Switch#copy running- conf i g tftp
Switch#copy flash tftp
Switch#copy tftp flash
-
. . . ..
- .
Erase the config held in Switch#erase startup- conf ig
NVRAM. If this i s followed
with the reload command all
configuration is lost
Reboots the device Switch#reload
Abort sequence <Shift> <Ctrl > 6
Suspend Telnet Session <Shift> <Ctrl >
6 ( then let all keys go, then} x
Show the current sessions. Switch#show sessions
The one with a is your
active sessi on
Forcible closes a telnet Switch#disconnect
session
Set the device local clock. Switch#clock set 10 : 00 : 00 april 2 2008
Note this i s not done in
config mode
Display the IOS version Switch#show version
along with other useful info
e.g sys uptime. confi g
register etc
Displays the file contents of Switch#show flash
the flash
Di splays the clock Switch#show clock
Displays the users currently Switch#show users
logged on
By default displ ays the last Switch#show history
10 commands
Di splays the ARP cache Switch#show arp
Di splays the spanning tree Switch#show spanning- tree vlan 1
status on vlan 1
Lists all the confi gured vlans Switch#show vlan
Di splays VTP info such as Switch#sh vtp status
VTP mode, VTP domain,
VTP counter.
Ping selected address Switch#ping 10.1.1.1
Extended ping. Must be in Switch#ping
privilege mode
Di splay the interface status
Switch#show int fa0/1
-
"
. .
-
.. . ..
- - -
Displays the vlan status and Switch#show interfaces vlan 1
the IP address VLAN 1
(often the management v1an)
Displays a list of CDP Switch#show cdp neighbors
neighbours
Extended information on the Switch#show cdp neighbors details
above
Display CDP packets as they Switch#debug cdp packets
arrive
Display ping packets as they Switch#debug icmp packets
arrive
Display switch MAC Switch#show mac address- table
Addresses table. These
entries are learnt from the
source mac address in the
Ethernet frames
Displays the interface Router#show ip interface brief
operational status and IP
addresses for all router
interfaces
Displays all the confi gured Router#show ip protocols
routing protocols
Di splays the IP routeing Router#show ip route
table
Di splays the NAT Router#show ip nat translations
translations
Displays the physical cabl e Router#show controllers s O
DTE/DCE, x.21 , V.35,
RS232 configuration
Displays the end-to-end Router#show frame- rel ay pvc
status. Recall that 'show
interface' does not
Di splays the type of LMI and Router#show frame- rel ay lmi
the number LMI frames
Displays the frame relay Router#show frame- rel ay map
inverse ARP table
To be come neighbours both Router#show ip ospf nei ghbor
the local and remote
interface must be correctly
configured.
If adjacent routers don't Router#show ip ospf interf ace
become neighbours. Then
use the command to checK
the local router interface is
configured correctly
Same information as the Router#show ip eigrp neighbor
above OSPF commands but
with EIGRP. Rememberthat
AS numbers MUST match
Same information as the Router#show ip eigrp interface
above OSPF commands but
with EIGRP
1Pv6 ping. Recall that : Router#ping 2000:1000:500:3: :1
means all zero in between