CCNABRAINDUMP2(3)
添加时间: 2007-9-6 1:39:56 作者: Cisco考试认证 阅读次数:42 来源: http://www.d9soft.com
This is all I remember, but can give you some important information on Cisco IOS 11.2 commands.
Steps of Data Encapsulation:
1.User information is converted to data
2.Data converted to segments
3.Segments converted to packets or datagrams
4.Packets and datagrams are converted to frames
5.Frames are converted to bits
Frame Types:
802.3 – novell-ether – default
802.2 – sap
Ethernet_II – arpa
Ethernet_snap – snap
Switching – examines MAC address.
Store-and-Forward – copies entire frame into buffer, checks for CRC
errors. Higher latency. Used by Catalyst 5000 switches
Cut-Through – reads only the destination address into buffer, and
forwards immediately. Low latency
Virtual LAN's – have different ports on a switch be parts of different subnetworks. Some benefits: Simplify moves, adds, changes. Reduce administrative costs, better control of broadcasts, tighten security, and distribute load. Relocate server into secured locations.
Cisco IOS (operating system) is stored in flash memory (EEPROM)
IOS configuration is stored in NVRAM
User Mode – ordinary tasks – checking status, etc. Need password depending on how you're entering (Virtual Terminal pw for telnet session, Auxiliary pw for aux port, Console pw for console port)
conf t
line vty 0 {line aux 0} {line con 0}
login
password letmein
Privileged Mode – router configuration mode. Need enable password
conf t
enable password letmein
Banner:
conf t
banner motd #
Hostname:
conf t
hostname new host name
Editing:
CTRL+A – beginning of line
CTRL+E – end of line
show history
TAB completes command
Router Elements/Configuration:
show startup-config – contents of NVRAM
show running-config – contents of RAM
copy running-conifg startup-config – commit changes to permanent
memory
erase startup-config
setup – initiate automatic setup program (the one you get the first time you boot the router)
reload – reboot the router (will load the startup-config into running memory)
boot system {flash / tftp} – tftp boot commonly used to load a new copy of IOS
copy flash tftp (backup IOS software to tftp server) OR
copy tftp flash (restore it)
copy run tftp (backup configuration to tftp server) OR
copy tftp run (restore it)
Static Routing:
ip route {destination network} {mask} {port, on remote side, to get there}
ip route 172.16.10.0 255.255.255.0 172.16.40.1
Dynamic Routing:
router rip
network 172.16.0.0
router igrp {autonomous system #}
network 172.16.0.0
To monitor, use sh ip route {rip / igrp}
Network Security / Access Lists
Standard IP access list:
access-list {number} {permit / deny} {source address}
access-list 10 permit 172.16.30.2
Extended IP access list:
access-list {number} {permit / deny} {protocol} {source}{destination} {port}
access-list 110 permit tcp host 172.16.50.2 host 172.16.10.2 eq 8080
Wildcard masks – use masks to identify insignificant bits, e.g.
access-list 11 permit 172.16.30.0 0.0.0.255 (permits anybody with 72.16.30.x)
note: you can use 0.0.0.0 as the mask to limit to that specific host, or prefix it with 'host'
Applying the list to an interface (use access-group on the interface):
int e0
ip access-group 110 out
IPX Access lists:
Standard: access-list {number} {permit/deny} {source} {destination}
Extended: access-list {number} {permit/deny} {protocol} {source}
{socket} {destination} {socket}
access-list 810 permit 30 10
int e0
ipx access-group 810 out
IPX SAP Filters:
access-list {number} {permit/deny} {source} {service type}
To apply – on interface: ipx input-sap-filter {number}
access-list 1010 permit 11.0000.0000.0001 0
int e0
ipx input-sap-filter 1010
Access list Numbers allowed:
1-99 IP Standard
100-199 IP Extended
800-899 IPX Standard
900-999 IPX Extended
1000-1099 IPX SAP
To Monitor Access Lists:
Show access-list
WAN Protocols
HDLC – modified sdlc by ISO, default on Cisco routers
PPP – runs on async (dial-up) or sync (ISDN) lines. Supports multi-protocols
Frame Relay – shared bandwidth over public network. Virtual circuits are identified by DLCI's.
(Data Link Connection identifiers). LMI, co-developed in 1990 by
Cisco, provides message information about current DLCI values (global
or local significance), and the status of virtual circuits. Subinterfaces
allow you to have multiple virtual circuits on a single serial interface.
You must map an IP device to the DLCI (using the frame-relay map
command or the inverse-arp function)
int s0
encapsulation frame-relay {ietf}
note: if you don's specify ietf, it uses Cisco by default
frame-relay interface-dlci {#}
frame-relay lmi-type {Cisco, ansi, q933a}
Subinterfaces:
int s0.x {multipoint / point-to-point}
Mapping:
int s0
inverse-arp or
frame-relay map ip x.x.x.x #
Monitoring:
show frame {pvc / ip / lmi / traffic / etc.}
ISDN Terminal equipment types:
TE1 – understand ISDN standards
TE2 – predate ISDN standards, require a TA (terminal adapter)
Reference Points describe the point between:
R – non-ISDN and TA
S – user terminals and NT2
T – NT1 and NT2 devices
U – NT1 and line termination
ISDN Protocols:
E – on existing telephone network
I – concepts, terminology, and services
Q – switching and signaling
ISDN BRI: 2 64K B channels, plus 1 16K D channel
ISDN PRI: 23 64K B channels, plus 1 64K D channel
上一篇文章: CCNABRAINDUMP2(2) 下一篇文章: CCNABRAINDUMP4(1)
相关软件: