Odds & Ends
Sample Lab
Cisco Router Access Control Lists
sh controllers bri
sh dialer 1
debug isdn q921
debug isdn q931
sh process cpu
sh ISDN active
physical-layer sync (not in all IOS) configure the serial interface to support HDLC for a leased line. serial interface is normally in the async mode, switch to sync mode
DEFAULT Long Distance
dialer map ip 192.168.221.1 name SI_EDIT_WAN broadcast 12125826561
MCI
dialer map ip 192.168.221.1 name SI_EDIT_WAN broadcast 1022212125824190
router# config t
router(config)# service password-encryption
router(config)# enable secret [abcd] (User Access Verification)
router(config)#enable password [abcd]
router(config)#line con o
router(config-line)#password [abcd] (User Access Verification)
router(config-line)#exec-timeout 0 0
router(config-line)# line vty 0 4
router(config-line)#password [abcd] (User Access Verification)
router(config-line)#exec-timeout 0 0
router# end
router# copy run star
Switches
set vlan 3 4/4
set port duplex 2/12 h or f
show span
sh ver
set port speed 2/12 10 or 100
set spantree portfast 2/12 enable or disable
sh cdp nei
sh cdp nei detail
sh port
sh cam dyn
sh cam dyn 3/3
sh cam 00-00-00-00-00-00
receiving a dynamic ip address through isdn command is 'ip address negotiated', but you need at least 11.3 to use it. There is nothing special about it; just put it instead of 'ip address x.x.x.x command', and it will work. Also, you will probably need PAT to be configured, with private address space on ethernet.
sh isdn active
sh isdn history
sh ip int bri
show access-list
debug ip error detail
Here is a command that you might not use much, but really helps if you ever make
typos on routers when you are trying to telnet to stuff:
ip tcp syn-wait 5 (or whatever number of seconds you want to wait, 5 being the
minimum)
This happens if you miss type a IP address or don't have "no ip domain-lookup"
configured (and don't have dns setup on the router) and you mistype a command.
Normally the router will try connect to the bad IP address or host name for 30
seconds while you sit and wait. Unfortunately you can't break out of this
command if this happens at the first router you go to. Using this command will
cut the time down to 5 seconds. It's not much but when you are in a hurry every
second counts.
service timestamps debug datetime localtime
service timestamps log datetime localtime
service password-encryption
no ip domain-lookup (or configure the router for my DNS servers)
ip subnet-zero
ip classless
ip tcp syn-wait 5
ntp update-calendar
ntp server x.x.x.x (if you have an NTP server)
ctrl-shift-6 is the "escape sequence". When you hit it, the router
intercepts the sequence. If you have telnetted from router to router to
router, you have keep hitting it. The first router will pass the second
sequence, the second router will pass the third sequence, etc. You can
then hit "x" on the router you want to escape "back" to. The last router
will accept as many times as you hit the keys. You have to hit it over &
over without the "x" to escape a traceroute or ping or whatever.
|