Monday 12 November 2012

Specify ACL to interface


Standard ACLs can filter traffic based on source IP address only. In this task, you are configuring a standard ACL that blocks traffic from the 192.168.11.0 /24 network. This ACL will be applied inbound on the R3 serial interface. Remember that every ACL has an implicit “deny all” that causes all traffic that has not matched a statement in the ACL to be blocked. For this reason, add the permit any statement to the end of the ACL.

Step 1. Create the ACL.

In global configuration mode, create a standard named ACL called std-1.


R3(config)#ip access-list standard std-1






In standard ACL configuration mode, add a statement that denies any packets with a source address of 192.168.11.0 /24 and prints a message to the console for each matched packet.




R3(config-std-nacl)#deny 192.168.11.0 0.0.0.255






Permit all other traffic.




R3(config-std-nacl)#permit any




Step 2. Apply the ACL.

Apply the ACL std-1 as a filter on packets entering R3 through serial interface 0/0/1.




R3(config)#interface serial 0/0/1
R3(config-if)#ip access-group std-1 in










Posted by



at





No comments:
  










































Assign default gateway to switch










S1#(config) ip default-gateway [IP ADDRESS]









Posted by



at





No comments:
  










































Assign Management VLAN 










Assigning IP address to VLAN interface 






SW1>enable
SW1>configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
SW1(config)#vlan 10
SW1(config-vlan)#name Management
SW1(config-vlan)#end
SW1


#SW1#configure terminal


Enter configuration commands, one per line.  End with CNTL/Z.
SW1(config)#interface vlan10
SW1(config-if)#ip address 10.1.1.10 255.255.255.0
SW1(config-if)#no shut
SW1(config-if)#


SW1(config-if)#interface FastEthernet0/1
SW1(config-if)#switchport access vlan 10
SW1(config-if)#no shut
SW1(config-if)#end
SW1#












Posted by



at





No comments:
  


































          

        

          

        

Thursday 18 October 2012


          

        









Restart Cisco Router 1841










hard reset router



Ctrl+Backspace+Pause





rommon 1 > confreg 2142


rommon 2 > reset


 


Router>en


Router#show version









Posted by



at





No comments:
  


































          

        

          

        

Saturday 18 August 2012


          

        









Cisco network design documents










Cisco offers a whole bunch of design guides for deploying and optimizing networks from branch size all the way up to data center and ISP  level.



[LINK] Cisco Validated Design documentation














Posted by



at





No comments:
  
























Location:
Antarctica










          

        

          

        

Saturday 28 July 2012


          

        









VLAN'S SWITCH SIDE










Create and Name VLAN



S1(config)#vlan {VLAN NUMBER}

S1(config-vlan)#name {VLAN NAME}

S1(config -vlan)# exit





Trunk VLAN



S1(config)#int range {INT RANGE E.G fa0/0 - fa0/24}  

NOTE: int range command doesn't work in packet tracer, use int {INT}

S1(config-if)#switchport mode trunk

S1(config-if)#switchport trunk native vlan {VLAN NUMBER}



Access VLAN



S1(config)#int range {INT RANGE E.G fa0/0 - fa0/24}  

NOTE: int range command doesn't work in packet tracer, use int {INT}



S1(config-if)#switchport mode access

S1(config-if)#switchport access vlan {VLAN NUMBER}









Posted by



at





No comments:
  










































VLAN'S ROUTER SIDE










Sub interface configuration as Native VLAN



R1(config)int fa0/0.99 

R1(config-subif) encap dot1q 99 native

R1(config-subif) ip address {IPADDRESS} {MASK}





VLAN Sub interface configuration



R1(config)int fa0/0.99 

R1(config-subif) encap dot1q 99

R1(config-subif) ip address {IPADDRESS} {MASK}


















Posted by



at





No comments:
  










































VTP (Vlan Trunking Protocol) Switch










VTP a service that automates the process of updating trunk link, 2 Modes CLIENT Receives Updates and SERVER sends updates.



VTP mode syntax



S1(config)#vtp mode{CLIENT/SERVER}

S1(config)#vtp domain {DOMAIN NAME}

S1(config)#vtp password  {PASSWORD}












Posted by



at





No comments:
  










































STP (Spanning Tree Protocol) Switch










Set spanning tree priority.



S1(config)# spanning-tree vlan {vlan range e.g 1-255} priority {Priority Number}



Note: Priority range is between 1-65536 1 being the highest priority,

the highest priority will be elected as the root bridge.



View spanning tree priority and status



S1#show spanning-tree









Posted by



at





No comments:
  










































OSPF(Open Shortest Path First) Router










OSPF



Router Syntax for ospf network



R1(config)ospf {process-id} ## or for PK R1(config)router ospf {proccess-id}



R1(config-router) network {X.X.X.X} {Y.Y.Y.Y} area {Z}  Note: {Y.Y.Y.Y} wild card mask



To inject new command



R1(config-router)default-information originate 







Router Syntax for passive interface.



R1(config)ospf {process-id} 



R1(config-router)passive-interface {interface}



Reinstate interface



R1(config-router)no passive-interface {interface}









Posted by



at





No comments:
  











































Great Subnetting cheat sheet




























Posted by



at





No comments:
  










































Static and Defualt route (Router)










Static Route Syntax 



R1(config) ip route {IP ADDRES} {MASK} {INTERFACE}



Default static route syntax 



R1(config) ip route 0.0.0.0 0.0.0.0 (INTERFACE)









Posted by



at





No comments:
  


































        

      









Subscribe to:
Posts (Atom)