clear Reset functions

clock Manage the system clock

configure Enter configuration mode
debug Debugging functions (see also 'undebug')
disable Turn off privileged commands
enable Turn on privileged commands
erase Erase flash or configuration memory
exit Exit from the EXEC
help Description of the interactive help system
login Log in as a particular user
logout Exit from the EXEC
no Disable debugging functions
ping Send echo messages
reload Halt and perform a cold restart
setup Run the SETUP command facility
show Show running system information
telnet Open a telnet connection
terminal Set terminal line parameters
test Test subsystems, memory, and interfaces
traceroute Trace route to destination
tunnel Open a tunnel connection
undebug Disable debugging functions (see also 'debug')
verify Verify checksum of a Flash file
write Write running configuration to memory, network, or terminal

show  
access-lists List access lists
arp ARP table
buffers Buffer pool statistics
configuration Contents of Non-Volatile memory
controllers Interface controller status
debugging State of each debugging option
dialer Dialer parameters and statistics
extended Extended Interface Information
flash System Flash information
flh-log Flash Load Helper log buffer
history Display the session command history
hosts IP domain-name, lookup style, name servers, and host table
interfaces Interface status and configuration
ip IP information
isdn ISDN information
line TTY line information
logging Show the contents of logging buffers
memory Memory statistics
privilege Show current privilege level
processes Active process statistics
protocols Active network routing protocols
queue Show queue contents
queueing Show queueing configuration
reload Scheduled reload information
route-map route-map information
running-config Current operating configuration
sessions Information about Telnet connections
smf Software MAC filter
stacks Process stack utilization
startup-config Contents of startup configuration
subsys Show subsystem information
tcp Status of TCP connections
terminal Display terminal configuration parameters
users Display information about terminal lines
version System hardware and software status

Other Useful Commands

View the Software Version

View the Ethernet IP
View the Serial IP
View the Default Route
View the Filters
View the Bandwidth
Add a Static Route
Change the Dial Number
Turn Filters On and Off
Ping from the Router
Traceroute from the Router

View the Software Version

Cisco>en
Cisco#wr term <--- Shows the running configuration
Building configuration...
Current configuration:
!
version 11.2
no service udp-small-servers
no service tcp-small-servers
!
hostname Cisco
!
interface Ethernet0
ip address 192.168.1.1 255.255.255.0
!
interface Serial0
ip address 192.168.6.1 255.255.255.0
encapsulation frame-relay
frame-relay lmi-type ansi
!
interface Serial1
ip address 192.168.4.2 255.255.255.0
encapsulation frame-relay
bandwidth 1536
keepalive 5
 frame-relay map ip 192.168.4.1 101 IETF
!
router rip
version 2
network 192.168.4.0
network 192.168.6.0
neighbor 192.168.6.2
neighbor 192.168.4.1
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.6.2
ip route 0.0.0.0 0.0.0.0 192.168.4.1
!
line con 0
line aux 0
line vty 0 4
login
!
end

View the Ethernet IP

Router#wr term

This will show the running configuration.

Within the configuration, you will see an interface ethernet 0 section:

interface Ethernet0
ip address 38.150.93.1 255.255.255.0
no ip directed-broadcast

View the Serial IP

Router#wr term

Within the configuration, you will see an interface serial 0 section:

interface Serial0
ip address 38.21.10.100 255.255.255.0
ip broadcast-address 38.21.10.255
ip access-group 106 in
encapsulation frame-relay
bandwidth 56
no fair-queue
frame-relay map ip 38.21.10.1 500 IETF

View the Default Route

Router#wr term
Within the configuration, you will see an ip route section.

In the ip route section, look for a route:

ip route 0.0.0.0 0.0.0.0 38.167.29.1
The last ip address is the POP ip.

View the Filters

Router#wr term

Under interface serial 0, look for:

ip access-group 104 in
ip access-group 105 out

This means that access-group 104 is the inbound filter set and
access-group 105 is the outbound filter set.
Then, continue to look in the configuration for the access-list statements:

(Example access-list statements)

access-list 104 deny ip 38.166.101.0 0.0.0.255 any
access-list 104 permit tcp any any established
access-list 104 permit tcp any eq ftp-data any gt 1023
access-list 104 permit udp any eq domain any gt 1023
access-list 104 permit udp any eq domain any eq domain
access-list 104 permit icmp any any
access-list 104 permit udp any eq snmp any gt 1023
access-list 105 deny ip any 38.166.101.0 0.0.0.255
access-list 105 permit tcp any any established
access-list 105 permit tcp any any eq ftp
access-list 105 deny udp any eq netbios-ns any
access-list 105 deny udp any eq netbios-dgm any
access-list 105 permit ip any any

View the Bandwidth

Router#wr term

Within the config, you will see an interface serial 0 section:

interface Serial0
ip address 38.21.10.100 255.255.255.0
ip broadcast-address 38.21.10.255
ip access-group 106 in
encapsulation frame-relay
bandwidth 56
no fair-queue
frame-relay map ip 38.21.10.1 500 IETF

Add a Static Route

Cisco#config t
Enter configuration commands, one per line. End with CNTL/Z.
Cisco(config)#ip route DEST.DEST.DEST.DEST MASK.MASK.MASK.MASK GATE.GATE.GATE.GATE
where: DEST.DEST.DEST.DEST = The destination network the static route is for
MASK.MASK.MASK.MASK = The subnet mask of the destination network
GATE.GATE.GATE.GATE = The gateway of the static route
Example route statement:
ip route 38.222.75.0 255.255.255.0 38.20.5.1
Cisco(config)#^Z (hit <control> z)

Write the entry to memory:

Cisco#wr mem
Building configuration...
[OK]

Change the Dial Number

Type en to put the router in enable mode:

test.com>en

The password should be the same as the one used to telnet in.

Password:

To view the router's configuration, type:

test.com#show config

There will be a line in the configuration that says:

dialer map IP 38.1.1.1 speed 64 name LD3330 2707000

The 2707000 is the dial number.

NOTE: Record what interface the dialer map IP line is under because you will need to
use that interface when changing the number.

Type config t to configure from terminal.

test.com#config t

Enter configuration commands, one per line. End with CNTL/Z.

Enter the interface that the dialer map IP line is under:

test.com(config)#interface BRI0

Add in the new dialer map IP line with the new phone number:

test.com(config)#dialer map IP 38.1.1.1 speed 64 name LD3330 [new number]

Now, remove the old dialer map IP line.

To remove a line, type no and then the line.
For example, to remove the old dialer map IP, type:

test.com(config)#no dialer map IP 38.1.1.1 speed 64 name LD3330 2707020

Now leave config mode:

test.com(config)# [control] z

Save changes:

test.com# write mem

Building configuration...
[OK]

Verify the new number is in the config:

test.com#show config

The new number should be in the dialer map IP line.

Turn Filters On and Off

To turn the filters off:

Router#configure terminal
Router(config)#interface Serial0
Router(config-if)#no ip access-group 104 in
Router(config-if)#no ip access-group 105 out
Router(config-if)# Hit CTRL-Z
Router#wr mem
Building configuration...
[OK]
Router#

To turn the filters on:

Router#configure terminal
Router(config)#interface Serial0
Router(config-if)#ip access-group 104 in
Router(config-if)#ip access-group 105 out
Router(config-if)# Hit CTRL-Z
Router#wr mem
Building configuration...
[OK]
Router#

Ping from the Router

Cisco#ping <hostname>
Example:
Cisco#ping 38.8.14.2

no shutdown - (enables the interface)

reload - restarts the router
sh ver - Cisco IOS version, uptime of router, how the router started, where system was loaded
from, the interfaces the POST found, and the configuration register
sh clock - shows date and time on router
sh history - shows the history of your commands
sh debug - shows all debugging that is currently enabled
no debug all - turns off all debugging
sh users - shows users connected to router
sh protocols - shows which protocols are configured
banner motd # Your customized message here # - Set/change banner
hostname <give router name> - use to configure the hostname of the router
clear counters - clear interface counters

Privileged Mode commands of a router

Learn how to work in the privileged mode of a router.
enable - get to privileged mode
disable - get to user mode
enable password <give password here> - sets privileged mode password
enable secret <give password here> - sets encrypted privileged mode password
Setting Passwords on router
Here you will be able to learn how to set the password on a router.
enable secret <give password here> - set encrypted password for privileged access
enable password <give password here> - set password for privileged access (used when there is
no enable secret and when using older software)
Setting the password for console access:
(config)#line console 0
(config-line)#login
(config-line)#password <put password here>
Set password for virtual terminal (telnet) access (password must be set to access router through
telnet):
(config)#line vty 0 4
(config-line)#login
(config-line)#password <put password here>
Set password for auxiliary (modem) access:
(config)#line aux 0
(config-line)#login
(config-line)#password <put password here>

Router Processes & Statistics

By these command you can see the statistics and different processes of the router.
sh processes - shows active processes running on router
sh process cpu - shows cpu statistics
sh mem - shows memory statistics
sh flash - describes the flash memory and displays the size of files and the amount of free flash
memory
sh buffers - displays statistics for router buffer pools; shows the size of the Small, Middle, Big,
Very Big, Large and Huge Buffers
sh stacks - shows reason for last reboot, monitors the stack use of processes and interrupts
routines

IP Commands

Here is a list of the IP Commands

Configure IP on an interface:
int serial 0
ip address 157.89.1.3 255.255.0.0
int eth 0
ip address 2008.1.1.4 255.255.255.0
Other IP Commands:

sh ip route - view ip routing table

ip route <remote_network> <mask> <default_gateway> [administrative_distance] - configure a
static IP route
ip route 0.0.0.0 0.0.0.0 <put gateway of the last resort here> - sets default gateway
ip classless - use with static routing to allow packets destined for unrecognized subnets to use the
best possible route
sh arp - view arp cache; shows MAC address of connected routers
ip address 2.2.2.2 255.255.255.0 secondary - configure a 2nd ip address on an interface
sh ip protocol

CDP Commands (Cisco Discovery Protocol uses layer 2 multicast over a SNAP-capable link to
send data):

sh cdp neighbor - shows directly connected neighbors

sh cdp int - shows which interfaces are running CDP
sh cdp int eth 0/0 - show CDP info for specific interface
sh cdp entry <cdp neighbor here> - shows CDP neighbor detail
cdp timer 120 - change how often CDP info is sent (default cdp timer is 60)
cp holdtime 240 - how long to wait before removing a CDP neighbor (default CDP holdtime is
180)
sh cdp run - shows if CDP turned on
no cdp run - turns off CDP for entire router (global config)
no cdp enable - turns off CDP on specific interface

IPX Commands

Enable IPX on router:

ipx routing
Configure IPX + IPX-RIP on an int:
int ser 0
ipx network 4A

Other Commands:

sh ipx route - shows IPX routing table

sh ipx int e0 - shows ipx address on int
sh ipx servers - shows SAP table
sh ipx traffic - view traffic statistics
debug ipx routing activity - debugs IPS RIP packets
debug ipx sap - debugs SAP packets

Routing Protocols
RIP, IGPR and OSPF are the routing protocols and here is a list of the commands for the
working on the routing protocols.
Configure RIP:
router rip
network 157.89.0.0
network 208.1.1.0
Other RIP Commands:
debug ip rip - view RIP debugging info
Configure IGRP:
router IGRP 200
network 157.89.0.0
network 208.1.1.0
Other IGRP Commands:
debug ip igrp events - view IGRP debugging info
debug ip igrp transactions - view IGRP debugging info
Access Lists
Here is a list of the Access list command of a router.
sh ip int ser 0 - use to view which IP access lists are applies to which int
sh ipx int ser 0 - use to view which IPX access lists are applies to which int
sh appletalk int ser 0 - use to view which AppleTalk access lists are applies to which int
View access lists:
sh access-lists
sh ip access-lists
sh ipx access-lists
sh appletalk access-lists
Apply standard IP access list to int eth 0:
access-list 1 deny 200.1.1.0 0.0.0.255
access-list 1 permit any
int eth 0
ip access-group 1 in
Apply Extended IP access list to int eth 0:
access-list 100 deny tcp host 1.1.1.1 host 2.2.2.2 eq 23
access-list 100 deny tcp 3.3.3.0 0.0.0.255 any eq 80
int eth 0
ip access-group 100 out
Apply Standard IPX access list to int eth 0:
access-list 800 deny 7a 8000
access-list 800 permit -1
int eth 0
ipx access-group 800 out
Apply Standard IPX access list to int eth 0:
access-list 900 deny sap any 3378 -1
access-list 900 permit sap any all -1
int eth 0
ipx access-group 900 out
WAN Configurations Commands

Networking over WAN is the main functionality of a router. The most common use of a router is
for the WAN connectivity. Here is a list of the commands for the different methods of the WAN
connectivity.

PPP Configuration

Point to point protocol is a method for the WAN connectivity and you will find here some
commands of PPP.
encapsulation pppppp authentication <chap or pap here>
ppp chap hostname <put router name here>
ppp pap sent-username <put user name here>
sh int ser 0 - use to view encapsulation on the interface

Frame-Relay Configuration

One of the methods for the WAN connectivity is the Frame Relay. Find here some basic
commands for the WAN connectivity through Frame Relay.
encapsulation frame-relay ietf - use IETF when setting up a frame-relay network between a
Ciscorouter and a non-Cisco router
frame-relay lmi-type ansi - LMI types are Cisco, ANSI, Q933A; Cisco is the default; LMI type is
auto-sensed in IOS v11.2 and up
frame-relay map ip 3.3.3.3 100 broadcast - if inverse ARP won't work, map Other IP to Your
DLCI # (local)
keep alive 10 - use to set keep alive
sh int ser 0 - use to show DLCI, LMI, and encapsulation info
sh frame-relay pvc - shows the configured DLCI's; shows PVC traffic stats
sh frame-relay map - shows route mapssh frame-relay lmi - shows LMI info

Miscellaneous Commands

In the last but not least here is a list of the some miscellaneous and useful commands
sh controller t1 - shows status of T1 lines
sh controller serial 1 - use to determine if DCE or DTE device
(config-if)#clock rate 6400 - set clock on DCE (bits per second)
(config-if)#bandwidth 64 - set bandwidth (kilobits)

Cisco IOS Software Exec

There are two main EXEC modes for entering the Cisco switch commands:

User Mode

 Limited examination of switch

  Command prompt on the switch is switch

Privileged Mode

 Detailed examination of switch

 Enables configuration and debugging

 Prerequisites for other configuration modes

 Command prompt on the router is switches#

Cisco Telnet Commands

There are two primary methods for accessing a Cisco manageable switch to use command line
interface.

 Out of band Console connection

 Via Ethernet through Telnet

Telnet is a utility used for remotely login to a device. To telnet a Cisco IOS switch from your
computer, you have to type the following command on the CMD terminal of your computer:

Telnet ip address of the switch

Just like:

Telnet 192.168.0.253

Cisco Catalyst 1900 Switch Commands

Followings are some basic commands of Cisco Catalyst 1900 switch commands:

 Show running-config: This command displays the memory status of the Cisco Catalyst
1900 switch

 Show interfaces: This command displays the detailed information about all the
interfaces of Cisco Catalyst 1900 switch.

 Show interfaces Ethernet 0/1: This command displays the detailed information
about a specific 10baseT Ethernet interface of the Cisco Catalyst 1900 switch
  Show interfaces Fast Ethernet 0/26: This command displays the detailed information
about a specific 100baseT Fast Ethernet interface of the Cisco Catalyst 1900 switch

 Show ip: This command displays the ip configuration of the Cisco Catalyst 1900
switch

 Show Mac-address-table: This command displays the Mac addresses of the

devices that are currently connected to the Cisco Catalyst 1900 switch.

 Show Mac-address-table security: This command displays the address table size and
the addressing security of each interface of the Cisco Catalyst 1900 switch.

 Show VLAN: This command displays the status of current VLANs enabled on the Cisco
Catalyst 1900 switch.

 Show VLAN-membership: This command displays the VLAN membership of all the
ports on the Cisco Catalyst 1900 switch.

 Show Spantree 1: This command displays the complete information about the spanning

tree protocol 1 that is by default enabled on the Cisco Catalyst 1900 switch.

 Copy nvram tftp: //host/dst_file: This command is used to send the configuration to a
TFTP server.

 Copy tftp: //host/src_file nvram: This command is used to download the configuration
from a TFTP server.

 Delete nvram: This command is used to reset the system configuration to factory
defaults.

Show Cisco Switch Commands

Here are some show commands of Cisco switches:

 Show version: This command displays the hardware and software status of the Cisco
switch

 Show flash: This command displays the files and directories in the flash of the Cisco
switch

 Show interfaces: This command displays the detailed information about all the
interfaces of the Cisco switch
  Show interfaces fast Ethernet 0/x: This command displays the detailed information
about the specific interface of the Cisco switch

 Show interfaces VLAN 1: This command displays the ip address configuration of

VLAN 1

 Show running-config:This command displays the status of RAM

 Show startup-config:This command displays the status of NVRAM

 Show-mac-address-table: This command displays the MAC address of the devices that
are directly connected with any port of the switch.

 Show port-security: [interface] [address]: This command displays the port security
options on the interface

 Show history: This command displays the last ten commands that are executed in the
switch configuration

 Show line: This command is used to view the brief information about all the lines of the
Cisco switch

 Show line console 0: This command is used to view the detailed information about the
specific line of the Cisco switch

 Erase startup-config: This command is used to erase the nvram of the Cisco switch

Cisco Switch Configuration Commands

 Configure terminal: This command is used to enter in the global configuration mode of
the Cisco switch

 Hostname: This command is used to assign the hostname of the Cisco switch

 Enable password: This command is used to set the enable password of the Cisco switch

 Enable secret: This command is used to set the encrypted password of the Cisco switch
that is used for entering in the privileged mode

 Interface VLAN 1: This is a global configuration command used to configure the VLAN
interface of the Cisco switch

 Interface fast Ethernet 0/x: This command is used to configure the specific interface of
the Cisco switch
 IP address: This command is used to configure the ip address of any interface of the
Cisco switch

 IP default- gateway: This is an interface configuration command to set the

default gateway

 Speed: This command is used to set the speed for the interface of the Cisco switch

 Duplex: This command is used to set the duplex setting for the interface of the Cisco
switch

 Line console 0: This command is used to enter in the specific line configuration mode of
the Cisco switch

 Password: This command is used to set the password of any line of the Cisco switch