Editing Cisco IOS
Jump to navigation
Jump to search
Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 2: | Line 2: | ||
− | = Basic commands = | + | == Basic commands == |
* <code>[[show version]]</code> or <code>sh ver</code> (includes [[uptime]] information) | * <code>[[show version]]</code> or <code>sh ver</code> (includes [[uptime]] information) | ||
− | |||
− | * <code>[[ | + | Interfaces: |
− | * <code>[[show | + | * <code>show interfaces</code> |
− | * <code>[[show | + | * <code>[[show interface link]]</code> |
− | + | * <code>[[show interface status]]</code> | |
− | + | * <code>[[show interface trunk]]</code> | |
− | + | * <code>[[show interfaces switchport]]</code>. To display the administrative and operational status of a switching (nonrouting) port | |
* <code>[[show configuration]]</code> or <code>sh conf</code> | * <code>[[show configuration]]</code> or <code>sh conf</code> | ||
Line 21: | Line 20: | ||
* interface Te1/0/1 | * interface Te1/0/1 | ||
− | |||
* <code>show ip [OPTION]</code> | * <code>show ip [OPTION]</code> | ||
* <code>[[show ip interface]]</code> | * <code>[[show ip interface]]</code> | ||
** <code>show ip interface brief</code> or <code>sh ip int br</code> | ** <code>show ip interface brief</code> or <code>sh ip int br</code> | ||
− | * <code> | + | * <code>enable</code> Logs into enable mode. Also known as user exec mode or privileged mode. See also: <code>show privilege</code> |
** <code>enable 5</code> Change to level 5 | ** <code>enable 5</code> Change to level 5 | ||
** <code>no enable password</code> | ** <code>no enable password</code> | ||
* <code>show ip traffic</code> | * <code>show ip traffic</code> | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
* <code>[[show logging]]</code> | * <code>[[show logging]]</code> | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
* <code>[[no shutdown]]</code>. Enables an interface (brings it up). | * <code>[[no shutdown]]</code>. Enables an interface (brings it up). | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
* <code>ip host HOSTNAME xx.xx.xx.xx</code> (Similar to <code>/etc/[[hosts]]</code>) | * <code>ip host HOSTNAME xx.xx.xx.xx</code> (Similar to <code>/etc/[[hosts]]</code>) | ||
− | |||
− | |||
− | |||
− | |||
* <code>ip route-cache</code> | * <code>ip route-cache</code> | ||
* <code>no ip route-cache</code> | * <code>no ip route-cache</code> | ||
Line 72: | Line 41: | ||
* <code>include</code>, similar to <code>[[linux/Basic commands/grep|grep]]</code> linux command | * <code>include</code>, similar to <code>[[linux/Basic commands/grep|grep]]</code> linux command | ||
− | + | * <code>show vlan [brief | id <vlan-id> | name <name> [ifindex] | <ifindex>]</code> | |
− | * <code> | ||
** <code>[[show vlan]]</code> | ** <code>[[show vlan]]</code> | ||
** <code>[[show vlan brief]]</code> or <code>[[sh vlan br]]</code> | ** <code>[[show vlan brief]]</code> or <code>[[sh vlan br]]</code> | ||
** <code>show vlan summary</code> or <code>[[sh vlan s]]</code> | ** <code>show vlan summary</code> or <code>[[sh vlan s]]</code> | ||
− | |||
− | * [[ | + | * <code>[[aaa new model]]</code> |
− | + | * <code>[[show ip route]]</code> or <code>[[show ip ro]]</code> | |
− | * <code>[[show ip route]]</code> or <code>[[show | ||
* <code>[[show ip arp]]</code> | * <code>[[show ip arp]]</code> | ||
* <code>[[show ip ssh]]</code> | * <code>[[show ip ssh]]</code> | ||
− | + | * <code>show privilege</code> | |
− | |||
− | * <code> | ||
− | |||
− | |||
− | |||
* <code>[[username]]</code> Create and delete users | * <code>[[username]]</code> Create and delete users | ||
− | * <code>[[ | + | * <code>[[show users]]</code> |
* <code>[[write]]</code> | * <code>[[write]]</code> | ||
Line 100: | Line 61: | ||
* <code>[[show crypto ca certificates]]</code> | * <code>[[show crypto ca certificates]]</code> | ||
+ | * <code>[[show vtp status]]</code> | ||
+ | |||
+ | === Access List === | ||
+ | Configuring IP Access Lists: https://www.cisco.com/c/en/us/support/docs/security/ios-firewall/23602-confaccesslists.html#acltypes | ||
+ | |||
+ | Types of ACLs: Standard ACLs, Extended ACLs, Lock and Key (Dynamic ACLs), IP Named ACLs, Reflexive ACLs, Time-Based ACLs Using Time Ranges, Commented IP ACL Entries, Context-Based Access Control, Authentication Proxy, Turbo ACLs, Distributed Time-Based ACLs, Receive ACLs, Infrastructure Protection ACLs, Transit ACLs. | ||
− | * <code> | + | * <code>show access-list</code> |
− | [[ | + | * <code>show ip access-list</code> |
+ | * <code>router(config)#access-list 101 deny icmp any any</code> | ||
+ | * <code>router(config)#access-list 101 permit ip any any</code> | ||
+ | |||
+ | |||
+ | * <code>router(config)#ip access-list extended test</code> | ||
+ | * <code>router(config-ext-nacl)#permit ip host 2.2.2.2 host 3.3.3.3</code> | ||
+ | * <code>router(config-ext-nacl)#permit tcp host 1.1.1.1 host 5.5.5.5 eq www</code> | ||
+ | * <code>router(config-ext-nacl)#permit icmp any any</code> | ||
+ | * <code>router(config-ext-nacl)#permit udp host 6.6.6.6 10.10.10.0 0.0.0.255 eq domain</code> | ||
+ | |||
+ | |||
+ | * <code>ip access-group</code> | ||
+ | |||
+ | * <code>[[copy running-config startup-config]]</code> | ||
− | == HTTP Server == | + | === HTTP Server === |
* <code>sh ip http server all</code> | * <code>sh ip http server all</code> | ||
Line 110: | Line 91: | ||
* <code>R1(config)#ip http authentication local</code> | * <code>R1(config)#ip http authentication local</code> | ||
* <code>R1(config)#ip http secure-server</code> | * <code>R1(config)#ip http secure-server</code> | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
== Configuration Guides == | == Configuration Guides == | ||
− | + | * [[Cisco IOS DHCP Server configuration]] | |
+ | * [[Configure public RSA key authentication]]: <code>[[Cisco IOS/Configure public RSA key authentication|ip ssh pubkey-chain]]</code> | ||
== Activities == | == Activities == | ||
+ | # Read wikipedia article about [[w:Cisco IOS|Cisco Internetwork Operating System]] | ||
# Read Cisco IOS command reference: https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/fundamentals/command/Cisco_IOS_Configuration_Fundamentals_Command_Reference.pdf | # Read Cisco IOS command reference: https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/fundamentals/command/Cisco_IOS_Configuration_Fundamentals_Command_Reference.pdf | ||
# Read Cisco IOS Cheat Sheet: https://www.netwrix.com/cisco_commands_cheat_sheet.html | # Read Cisco IOS Cheat Sheet: https://www.netwrix.com/cisco_commands_cheat_sheet.html | ||
− | # Configure a user with public key access [[Configure public RSA key authentication]] | + | # Configure a user with public key access [[/Configure public RSA key authentication/]] |
− | # [[Associate a user with default higher privileges]] using <code>[[username]]</code> command | + | # [[/Associate a user with default higher privileges/]] using <code>[[/username/]]</code> command |
− | + | ||
− | |||
− | |||
− | |||
− | |||
− | |||
== See also == | == See also == | ||
− | |||
* {{Networking}} | * {{Networking}} | ||
* {{Networking OS}} | * {{Networking OS}} |
Advertising: