List of ICND 2 640-816 Commands
EIGRP COMMANDS
router eigrp (autonomous number)
network x.x.x.x
(no class specified - autosummarises, but EIGRP can cope with discontig networks and VLSM but another command is needed to disabled autosummarisation)
no auto-summary
To display you EIGRP Configuration:
show ip route eigrp (shows EIGRP routing table entries)
show ip eigrp neighbors (detail)
show ip protocols (show details of current routing process)
show ip eigrp interfaces
show ip eigrp topology (ALL) show Successors and Feasibly Successors
show ip eigrp traffic
debug ip eigrp
no debug all
EIGRP Load Balances up to 4 routes by default. EIGRP works on bandwidth and delay.
But you can load balance over different metric.
variance multiplier
Authentication can be used so that two EIGRP routers authenticate each packet sent and recieved. Uses Keychains.
key chain (name)
key (key id) (drops into configuration mode for that key on that key chain)
key-string (text for password)
OPTIONAL:
accept-lifetime start-time (options - infinate/endtime/duration/seconds)
send-lifetime start-time (options - infinate/endtime/duration/seconds)
APPLYING TO INTERFACE
ip authentication mode eigrp (autonomous system) md5
ip authentication key-chain eigrp (autonomous system) (name of chain)
Access Control List Commands
Dynamic ACL
Reflexive ACL
Time Based ACL
access-list 1 permit 172.16.23.0 0.0.255.255
interface fast ethernet0/0
ip access-group 1 in
show ip access-list
access-class 12 in (apply to VTY)
access-list 101 permit tcp 192.168.160.0 0.0.0.255 10.0.0.0 0.255.255.255 eq telnet
interface - ip access-group 101 in
NAT (Network Address Translation)
3 Types of NAT
- Static
- Dynamic
- Overload (Port Translation)
ip nat inside source static 192.168.2.2 10.2.1.1
interface eth
nat inside
interface serial
nat outside
show ip nat translations
Dynamic requires an address pool which is controled via an ACL
ip nat pool (name) 10.2.1.1 10.2.1.5 (netmask) prefix length (prefix length)
access-list 1 permit 192.168.2.0 0.0.0.255 (class C internal)
ip nat inside source list (ACL Above) pool (NAME)
show ip nat translations
access-list 1 permit 192.168.2.0 0.0.0.255
ip nat inside source list (ACL Above) interface (se0/0) overload
clear ip nat translations *
debug ip nat
IP V6 Configuration
ipv6 unicast routing
interface
ipv6 address (address prefix length) (eui-64 = 64 bit address)
ipv6 is a 128 bit address by default
Host names for ipv6
ipv6 hostname router 1 3ff3.b00.etc
ipv6 router rip (global)
ipv6 rip enable
show ipv6 rip
show ipv6 route
WAN Encapsulation PPP
interface
encapsulation ppp
hostname newyork
username name password password
ppp authentication (pap, chap, pap-chap, chap-pap)
service password-encryption
debug ppp authentication
Frame Relay
interface se0/0
ip address x.x.x.x x.x.x.x
encapsulation frame-relay
frame-relay lmi-type (cisco, q933a, ansi)
bandwidth 64
frame-relay inverse-arp ip 16 - (thats the DLCI which can be diff at both ends for same VC)
Static Mapping
frame-relay map ip x.x.x.x (dlci) broadcast
Go into subinterface
frame-relay interfrace-dlci (number)
show frame-relay lmi (cisco)
show frame-relay pvc (type) dlci
show frame-relay map
clear frame-relay-inarp
clear frame-relay map
Summary of BASIC Commands from ICND 1
banner motd (LIME)
config term
copy run start
enable secret
enable password
ip default-address
line console 0
local login
login
reload
show cdp entry
show cdp neighbor details
switchport port-security
switchport port-security mac-address (sticky)
switchport port-security maximum
switchport port-security violation (protect)
show history
exec timeout
VLANs
vtp mode server transparent client
vtp domain (name)
vtp password password
vtp pruning
end
show vtp status
switchport mode access
switchport mode trunk
switchport mode dynamic desirable
switchport mode dynamic auto
config term
vlan (number)
(switches to vlan)
name (name of vlan)
shwo vlan brief
on an interface - switchport access vlan 2
or
interface range fa0/0 - 4
switchport access vlan 2
No comments:
Post a Comment