Professional Documents
Culture Documents
By aniloave
PASSWORD ENABLING
#conf t
#enable password CISCO
FOR SWITCH
# show vlan -> shows Vlan information
(config)# interface FastEthernet 0/1 -> Select Trunk port
(config)# interface range FastEthernet 0/1 - 5 -> Selects range
(config)# switchport mode trunk - declare it trunk
(config)# vlan 10
(config-vlan)# name xyz
(config-vlan)# end -> Comes to privilege mode
# conf terminal
Page 1
COMMAND NOTES
(config)# interface FastEthernet 0/2
(config-if)# switchport mode access - declare it access
(config-if)# switchport access vlan 10
******FROM BOARDS******
VLANS
TRUNK ENCAPSULATION
ISL ISL HEADER (26B) DMAC
(6B) SMAC (6B) TYPE (2B) FCS (4B)
UNTAGGED
DMAC (6B) SMAC (6B) TYPE (2B)
802.1Q
DMAC (6B) SMAC (6B) 802.1Q (4B) TYPE (2B)
VLAN Creation
(config)# vlan 100
(config-vlan)# name Engineering
VTP Configuration
(config)# vtp mode {server | client | transparent}
(config)# vtp domain <name>
(config)# vtp password <pwd>
(config)# vtp version {1 | 2}
(config)# vtp pruning
Page 2
COMMAND NOTES
Troubleshooting
show vlan
show interface [status | switchport]
show interface trunk
show vtp status
show vtp password
ROUTING
RIP V1 -> Broadcast, Classfull & V2 -> Multicast - 224.0.0.9, CLassless //
{AD = 120, Hop Max = 15, Distance Vector, Split Horizon Rule}
(config)# router rip
(config-router)# ver 2
(config-router)# network 10.0.0.0 -> IP Should be classful
(config-router)# network 20.0.0.0
SHOW CDP NEIGHBORS -> Shows all connected devices on switch port
VTP:
(config)# vtp mode server -> To enable server mode vtp
(config)# vtp mode client -> To enable client mode vtp
(config)# vtp domain CISCO -> Domain names flows to other connected switch
(config)# vtp version 2 -> For running version 2
(config)# vtp password cisco -> Set VTP Password
ETHER CHANNEL
Creates a virtual channel and bundles the ports
All ports to be trunk
Runs on 2 protocols:
LACP (Link Aggregation Control Protocol) -> Active and Passive Mode
PAGP (Port Aggregation Group Protocol) -> Auto and Desirable Mode
for Creating Ether channel
int range fa 0/1 - 2
channel-group 1 mode active/passive -> LACP
channel-group 1 mode auto/desirable -> PAGP
Route Type AD
Connected 0
Static 1
BGP (External Routes) 20
EIGRP (Internal Routes) 90
IGRP 100
OSPF 110
IS-IS 115
RIP 120
EIGRP (External Routes) 170
BGP (Internal Routes) 200
Unusable 255
EXCEPTIONS IN CLASS A
0.0.0.0 Represents default network
127.0.0.0 Represents loopback address
EXCEPTIONS IN CLASS B
169.254.X.X Reserved for APIPA (Automatic Private IP Address) - If no IP address
is allotted through DNS/DHCP server
EXCEPTIONS IN CLASS D
224.0.0.5 OSPF Routers send hello messages
224.0.0.6 OSPF D Routers send routing information to Designated Routers on a
n/w segment
224.0.0.9 RIPV2 send routing information
224.0.0.10 EIGRP send routing information
224.0.0.18 Virtual Router Redundancy Protocol (VRRP)
CLASSFULL
A 10.0.0.0 10.255.255.255
B 172.16.0.0 172.32.255.255
C 192.168.0.0 192.168.255.255
saurabhtyagi01@gmail.com
Page 5
COMMAND NOTES
amittyagi20@gmail.com
PORTFAST BPDU GUARD & BPDU FILTER (All for access ports)
Commands:
#spanning-tree portfast default
#spanning-tree portfast bpduguard default
#spanning-tree portfast bpdufilter default
ROUTING
STATIC
DYNAMIC - LINK STATE (Maintain complete cost table) & DISTANCE (doori - till
neighbour) VECTOR (Direction) - Link loss will take time to revert
TCN bit is sent to update the failure of link
DEFAULT
TERMS
ADMINISTRATIVE DISTANCE - Tells reliability of router is better
METRIC - Burden to reach a destination (Link Cost)
AUTONOMOUS SYSTEM (AS) - Group of devices under single admin
AS NO. - 1 - 65535 (1-64931 - Public & Remaining - Private)
NETWORK - Its a command that enables link in Routing protocol
ADJACENCY - Negotiation -> Adjacency forms
NEIBOURSHIP - Update exchanges -> Neighbourship forms
PROCESS ID - In OSPF
TCN - Topology Change Notification
BEST PATH - Depends on routing protocol
BACKUP PATH - Depends on routing protocol
RIPV2
Metric - Hop Count
Multicast - 224.0.0.9
AD Value - 120
Version - V1 & V2
Hop Support - 15
Type of protocol - Distance Vector
UDP - Port 510
Page 6
COMMAND NOTES
TIMERS
UPDATE Timer - 30 Seconds
HOLD DOWN Timer - 180 Seconds
FLUSHED OUT Timer - 240 Seconds
RIP ROUTING TABLE: Network ID, Next HOP, Outgoing Interface, AD Value, Metric
(config)# router rip
(config-router)# ver 2
(config-router)# no auto-summary
(config-router)# network 10.0.0.0 -> IP Should be classful
(config-router)# network 20.0.0.0
EIGRP
Enhanced Interior Gateway Routing Protocol
AD - 90/170
Metric - 5 Types
K1 Bandwidth
K2 Load
K3 Delay
K4 Reliability
K5 MTU
HOP Count - 255
Multicast - 224.0.0.10
IP Protocol RTP (Reliable Transport Protocol) - Protocol # 88
Tables:
Neighbour Table
Routing Table
Topology Table
5 Types of Packets
HELLO Unreliable
UPDATE Reliable
QUERY Reliable
REPLY Reliable
ACK Unreliable
Page 7
COMMAND NOTES
HELLO TIMER - 5 seconds
HOLD DOWN TIMER - 15 Seconds (3 Times HELLO TIMER)
FSM - Finite State Machine -> Utilizes all the Routed Protocols (IP, IPX, APPLETALK)
and keeps 3 tables for each routed protocols to keep compatibility
EIGRP selects backup path first. Its selected on the basis of lowest FEASIBLE
DISTANCE
Secondly Best path is selected on the basis of lowest REPORTED DISTANCE. If path
comes out to be same as Lowest FD, then next higher is selected
Hello Timer needs same network ID and Same Area ID, same MTU
In 40 seconds those available then only election happens
NAT
Source NAT
Destination NAT
Always hide internal IP
Static Natting - 1 to 1
Dynamic Natting - Pool to Pool mapping
Define Boundary
R2 will NATTING -> f0/0 Inside F0/1
R5(config)#ip nat inside source static 10.0.0.1 100.0.0.11 -> Bind internal IP to
external IP statically
Enabling Telnet
R3(config)#line vty 0 4
R3(config-line)#password cisco
R3(config-line)#login
R3(config-line)#end
DYNAMIC NAT
From Pool
#conf t
Sequence:
First declare interfaces as inside or outside
set default route accordingly
For static - Do Natting only
For Dynamic:
Create outside pool
Create Inside Access List
Map the pool and list using Source Inside NAT
To Block Telnet:
R3(config)#access-list 10 deny host 1.1.1.1 -> Create Standard access-list as only 1
IP to be blocked
R3(config)#line vt 0 4
R3(config-line)#access-class 10 in
R3(config-line)#end
FRAME RELAY
WAN Technology to communicate multi sites with each other
Purely layer 2 technology
DLCI - Data Link Connection Identifier
DELHI, BOMBAY, CHENNAI -> Through FR Cloud (3 Way connection)
-> PVC - Permanent Virtual Circuit
-> PVC0 -> DELHI-CHENNAI
-> PVC1 -> CHENNAI-BOMBAY
Page 11
COMMAND NOTES
-> PVC2 -> BOMBAY-DELHI
Only work on Serial link
Serial link has 2 ends viz DCE (Data Connection Equipment) @ SP end & DTE
(Data Terminal Equipment) @ Client end
@DCE clock-rate is defined (Eg: 128 kbps out of 1.5 mbps will be defined by
clock-rate)
Two Protocols:
FRAME RELAY ARP - IP -> DLCI
FRAME RELAY INVERSE ARP - DLCI -> IP
LMI - Local Management Interface - DLCI mappings from FR Switch to Client
AUTOMATIC DOWNLOAD - DYNAMIC MAPPING
STATIC DOWNLOAD - STATIC MAPPING (FRARP & FRIARP disabled)
#int s1/0
#encap frame-relay
#frame-relay interface-type DCE -> Now its SP end
#clock rate 128000 -> Out of 1.5 mbps
#frame-relay lmi-type NC -> NC - open standard &
CISCO - Cisco standard
#frame-relay route 103 int s1/2 301
interface Serial1/0
no ip address
encapsulation frame-relay
serial restart-delay 0
clock rate 128000
frame-relay lmi-type cisco
frame-relay intf-type dce
frame-relay route 102 interface Serial1/1 201
frame-relay route 103 interface Serial1/2 301
!
interface Serial1/1
no ip address
encapsulation frame-relay
serial restart-delay 0
clock rate 128000
frame-relay lmi-type cisco
frame-relay intf-type dce
frame-relay route 201 interface Serial1/0 102
frame-relay route 203 interface Serial1/2 302
!
interface Serial1/2
Page 12
COMMAND NOTES
no ip address
encapsulation frame-relay
serial restart-delay 0
clock rate 128000
frame-relay lmi-type cisco
frame-relay intf-type dce
frame-relay route 301 interface Serial1/0 103
frame-relay route 302 interface Serial1/1 203
REMAINING 2 RTRS
R5#conf terminal
R5(config)#int se 1/0
R5(config-if)#ip add 172.16.1.2 255.255.255.0
R5(config-if)#no shut
R5(config-if)#encapsulation frame-relay
R5(config-if)#^Z
R6#conf terminal
R6(config)#int se 1/0
R6(config-if)#ip add 172.16.2.2 255.255.255.0
R6(config-if)#no shut
R6(config-if)#encapsulation frame-relay
R6(config-if)#exit
R6(config)#^Z
BFD Feature enable - Immediately flushes out neighbour table - When neighbourship is
down.
Page 14