Cisco router: command configuration overview

[Abstract] Cisco router configuration statement summary startup interface, assigning IP

address:
router>router>enablerouter#router#configureterminalrouter (config) #router (config)#interf
acetypeportrouter (config-if) #noshutdownrouter (config-if) # ipaddressip-addresssubnetmaskrouter (config-if) rip routing protocol # ^ Z configuration: 30 seconds to update
a router(config) #routerriprouter (config-if) #......

Cisco router: commond configuration overview:

Start the interface, IP address allocation:
Router>
Router> enable
Router#
Router# configure terminal
Router (config) #
Router (config) interface type port #
Router (config-if no shutdown) #
Router (config-if) IP address IP-address subnet-mask #
Router (config-if) # ^ Z

Configure the rip routing protocol: 30 seconds to update once

Router (config router RIP) #
Router (config-if network network-number) # < -- notice the standard a, B, C network -- >
Router (config-if) # ^ Z

Configure the IGRP routing protocol: 90 seconds to update once

Router (config) router IGRP as-number # < -- as-number range of 1 to 65535 -- >
Router (config-if network network-number) # < -- notice the standard a, B, C network -- >
Router (config-if) # ^ Z

Configure the Novell IPX routing protocol: Novell rip 60 second to update once
Router (config) IPX routing [node address] #
Router (config) IPX maximum-paths paths # < -- set the load balance, the range of 1 to
512 -- >
Router (config) interface type port #
1

Router (config-if) IPX network network-number [encapsulation encapsulation-type] [secon

dary] #< -- notice the standard a, B, C network -- >
Router (config-if) # ^ Z

The configuration of ddr:

Router (config) dialer-list group-number protocol protocol-type permit [list # acl-number]
Router (config) Interface BRI 0 #
Router (config-if dialer-group group-number) #
Router (config-if) dialer map protocol-type next-hop-address name hostname # telphonenumber
Router (config-if) # ^ Z

The configuration of isdn:

Router (config) isdnth-typeth-type < -- # configuration ISDN switch type, Chinese using
basic-net3 -- >
Router (config-if) # ^ Z

Configure frame relay:

Router (config-if) encapsulation frame-relay [cisco IETF # |]
Router (config-if) frame-relay lmi-type [ansi Cisco # | | q933a]
Router (config-if bandwidth kilobits) #
Router (config-if) # frame-relay invers-arp [protocol] [dlci]
< -- Static invers ARP table:
Router (config) frame-relay protocol protocol-address DLCI # [broadcast] [Cisco] [payload
-compress IETF | | packet-by-packet]
-- >
< -- set the keepalive interval:
Router (config-if keepalive number) #
-- >
< -- the local interface with the specified dlci:
Router (config-if) frame-lelay local-dlci number #
-- >
< -- sub interface:
Router (config-if) interface type port.subininterface-number multipoint | # [point-to-point]
Router (config-subif) IP unnumbered interface #
2

Router (config-subif) frame-lelay local-dlci number #

-- >
Router (config-if) # ^ Z

Configuration the standard acl:

Router (config) access-list access-list-number permit | # [Deny] source [source-mask] < -access-list-number range: 1 to 99 standard ACL; 100 ~ 199 extended ACL; 800 to 899
standard IPX ACL; 900 ~ 999 expansion of IPX ACL; 1000~1099 IPX SAP ACL; 600 ~
699apple talk ACL -->
Router (config) interface type port #
Router (config-if) IP access-group access-list-number in | # [out]
Router (config-if) # ^ Z

Configure an extended acl:

Router (config) access-list access-list-number permit | # [Deny] [protocol protocolnumber]source source-wildcard | [source-port] destination destination-wildcard [destinatio
n-port][established]
Router (config) interface type port #
Router (config-if) IP access-group access-list-number in | # [out]
Router (config-if) # ^ Z

Configuration the naming acl:

Router (config) IP access-list standard | # [extended] acl-name
Router (config [std- NaCl ext-] |) | # [permit deny] [ip-access-list-test-conditions]
Router (config [std- NaCl ext-] |) # no [permit deny] [ip-access-list-test-conditions] |
Router (config [std- NaCl ext-] |) # ^ Z
Router (config) interface type port #
Router (config-if) IP access-group [acl-name 1~199 # | |] [in out]
Router (config-if) # ^ Z
Configure the DCE clock:
Router# show controllers type port < -- define DCE interface -- >
Router (confin-if) clock rate 64000 # < -- into the DCE interface to set the clock rate -- >
Router (config-if) # ^ Z

Configure the PPP protocol:

3

Router (config) username name password set-password-here # < -- Verification establish

database -- >
Router (config) interface type port #
Router (config-if encapsulation PPP) # -- start -- > < PPP protocol
Router (config-if PPP outhentication) # [chap chap PAP PAP chap | | | PAP] < -- choose
PPPauthentication -- >
Router (config-if) PPP Pap sent-username name password password # < -- send
verificationinformation -- >
Router (config-if) # ^ Z

PAP authentication configuration example:

The verifier:
Router-server (config) username client password
12345 # < -- Verification establish database -->
Router-server (config) interface serial 0 #
Router-server (config-if encapsulation PPP) #
Router-server (config-if) PPP authentication Pap # < -- choose to use PAP to achieve
PPP certification -- >
Router-server (config-if) # ^ Z

Attested party:
Router-client (config-if encapsulation PPP) #
Router-client (config-if) PPP Pap sent-username client password 12345 # < -- send
verificationinformation -- >
Router-client (config-if) # ^ Z

PAP bidirectional authentication configuration example:

Router a:
Routera (config) username B password 12345 #
Routera (config) interface serial 0 #
Routera (config-if encapsulation PPP) #
Routera (config-if) PPP authentication Pap #
Routera (config-if) PPP Pap sent-username a password 54321 #
Routera (config-if) # ^ Z
Router b:
Routerb (config) username a password 54321 #
4

Routerb (config) interface serial 1 #

Routerb (config-if encapsulation PPP) #
Routerb (config-if) PPP authentication Pap #
Routerb (config-if) PPP Pap sent-username B password 12345 #
Routerb (config-if) # ^ Z

Chap authentication configuration example:

The verifier:
Router-server (config) username router-client password 12345 #
Router-server (config) interface serial 0 #
Router-server (config-if encapsulation PPP) #
Router-server (config-if) PPP authentication chap #
Router-server (config-if) # ^ Z
Attested party:
Router-client (config-if encapsulation PPP) #
Router-client (config-if) PPP authentication chap #
Router-client (config-if) PPP chap hostname router-client #
Router-client (config-if) PPP chap password 12345 #
Router-client (config-if) # ^ Z chap bidirectional authentication configuration example:
Router a:
Routera (config) username routerb password 12345 #
Routera (config) interface serial 0 #
Routera (config-if encapsulation PPP) #
Routera (config-if) PPP authentication chap #
Routera (config-if) PPP chap hostname routera #
Routera (config-if) PPP chap password 54321 #
Routera (config-if) # ^ Z
Router b:
Routerb (config) username routera password 54321 #
Routerb (config) interface serial 1 #
Routerb (config-if encapsulation PPP) #
Routerb (config-if) PPP authentication chap #
Routerb (config-if) PPP chap hostname routerb #
Routerb (config-if) PPP chap password 12345 #
5

Routerb (config-if) # ^ Z

Telnet use:
Routera# terminal monitor < -- can back to execute the debug command on a remote
hostresults -- >
Routera# telnet IP-address [router-name] < -- the host telnet to the specified address
or name -->
Routerb# [exit logout] < -- | exit telnet -- >
Routerb# ++<6> then press < -- hang telnet -- >
Routera# show sessions < -- shows all current telnet information, including connectnumber -- >
Routera# connect-number < -- returns the specified telnet connection -- >
Connection -- > routera# disconnect IP-address [router-name] < -- disconnect the
specified address or name of the host
Routera# show user < -- show the telnet connection to the information -- > this machine
Routera# clear line [0 | 1 | 2 | 3 | 4] < -- disconnect connection to
the specified telnet -- > thismachine
No telnet to the machine:
Router (config) line vty 04 #
Router (config-line access-class acl-number) #
Router (config) # ^ Z
Set the host name:
Router (config hostname set-hostname) #
Router (config) # ^ Z
Router (config) # ^ Z

Set user mode code:

Router (config) line console 0 #
Router (config-line) # login
Router (config-line password set-password) #
Router (config-line) # ^ Z

Set the telnet password:

Router (config) line vty 04 #
Router (config-line) # login
6

Router (config-line password set-password) #

Router (config-line) # ^ Z

Set the privileged mode password:

Router (config) enable password set-password # < -- the password is
not encrypted, password -- >
Router (config) enable secret set-password # < -- the encrypted password -- >
Router (config) # ^ Z

For all the password encryption:

Router (config) service password-ancryption set-password-here #
Router (config) no service password-ancryption # < -- cancel encryption -- >
Router (config) # ^ Z

Set the login banner:

Router (config banner MOTD) # separator set-banner-information-here
delimiters < -- before and after the delimiter must agree -- >

Set interface description information:

Router (config-if description set-port-information-here) #
Router (config) # ^ Z

The control of cdp:

Router (config-if CDP enable) # < -- in the designated port enable CDP, default -- >
Router (config-if) no CDP enable # < -- close CDP -- > in the designated port
Router (config CDP run) # < -- that all ports enable CDP -- >
Router (config) no CDP run # < -- that all ports closed CDP -- >

The use of ping:

Router# Ping IP-address
Router# Ping < -- extended ping command -- >
Protocol [ip]:[protocol-type] < -- select the protocol type -- >
Target IP address:ip-address < -- input test address -- >
Repeat count [5]: < -- choose to send ICMP packet number -- >
Datagram size [100]: < -- choose the size of each package -- >
7

Timeout in seconds [2]: < -- set each packet timeout -- >

Extended commands [n]:y < -- using the extended ping command -- >
Sweep range of sizes [n]:

The use of tracke:

Router# trace IP-address [host-name]
Cisco 4000 router specified media type:
Router (config-if media-type 10baset) # < -- the AUI (the default) failure, modified to use
RJ-45 -->
Router (config-if) # ^ Z

Change the startup sequence of routers:

Router (config) boot system flash ios-filename #
Router (config) boot system TFTP ios-filename tftp-ip-address #
Router (config) boot system ROM #
Router (config) # ^ Z

Modify register values:

Router (config config-register value) # < -- Cisco default value = 0x2102, value range:
0x2100(enter ROM monitor), 0x2101 (the system boot from
ROM to 0x210f (0x2102), enables the system to boot from NVRAM). 0x1
= 0x2101, starting from the smallest bit change -- >
Change the register values in the ROM monitor:
> o/r value

Router password recovery:

Cold shutdown, then start again and in 60 seconds press ctrl>+ to enter the ROM monitor
mode
> o/r 0x2142 > > confreg <--25xx router or 0x2142 <--16xx router
Router> I
Router> n
Router> enable
Router# copy startup-config running-config
Router# configure terminal
Router (config) enable secret new-password #
8

Router (config config-register 0x2102) #

Router (config) # ^ Z
Router# copy running-config startup-config
Router# reload

Configuration name - main entrance:

Router (config) # IP host set-name [tcp-port-number] IP-address [IP-address 2..
Router (config) # ^ Z

The definition of the DNS host:

Router (config) IP name-server server-address # [server-address 2..
Router (config) # ^ Z

Disable dns:
Router (config) no IP domain-lookup #
Router (config) # ^ Z configuration level segmentation:
Router (config-if IP split-horizon) #
Router (config-if) no IP split-horizon #
Router (config-if) # ^ Z

Static router configuration:

Router (config) IP route IP-address subnet-mask # [next-hop-address [distace local-outport]] |
< -- distance range: 1 ~ 255, equivalent to the priority, the smaller the
better. Rip=120;dspf=110; igrp=100; eigrp=90 -- >
Router (config) # ^ Z

Configure a default router:

Router (config) IP defoult-network IP-address # < -- Dynamic default route -- >
Router (config) IP route 0.0.0.0 0.0.0.0 # [next-hop-address local-out-port [distace]] | < -Staticdefault route -- >
Router (config) # ^ Z

Other commands:
Router# show version
9

Router# show running-config

Router# show startup-config
Router# show flash
Router# show interface [type port]
Router# show buffers
Router# show protocol
Router# show mem
Router# show stacks
Router# show processes
Router# show CDP entry [device-name] < -- display the specified neighbor three layers of
information -- >
Router# show cdp neighbors
Router# show cdp neighbors detail < -- shows all the neighbors three layers of
information - >
Router# show IP router
Router# show IPX router
Router# show host
Router# show ip protocol
Router# show IP interface type port
Router# show IPX interface type port
Router# show IPX servers
Router# show IPX traffic
Router# show access-lists [acl-number]
Router# show ISDN status
Router# show dialer < -- Viewing the ISDN dial information -- >
Router# show ISDN active
Router# show frame-relay PVC
Router# show frame-relay map
Router# show frame-relay LMI
Router# erase startup-config
Router# reload
Router# setup
Router# copy running-config startup-config
Router# copy startup-config running-config
Router# copy TFTP running-config
10

Router# copy running-config TFTP

Router# debug IPX routing activity
Router# debug IPX SAP
Router# debug ISDN q921
Router# debug ISDN Q931
Router# debug dialer
Router# debug IP rip
Router# clear interface bri

More related:
How To Recover Cisco Router Password
The Difference of The Cisco Catalyst 2900 and Cisco Catalyst 1900
More Cisco products and Reviews you can visit: http://www.3anetwork.com/blog

3Anetwork.com is a world leading Cisco networking products wholesaler, we wholesale

original new Cisco networking equipments, including Cisco Catalyst switches, Cisco
routers, Cisco firewalls, Cisco wireless products, Cisco modules and interface cards
products at competitive price and ship to worldwide.
Our website: http://www.3anetwork.com
Telephone: +852-3069-7733
Email: info@3Anetwork.com
Address: 23/F Lucky Plaza, 315-321 Lockhart Road, Wanchai, Hongkong

11