Chapter 1-12 and Appendix A-B Commands

Commands:

Chapter 1: Selecting, Assembling, and Cabling WAN Components

There are no commands for this chapter.

Chapter 2: Configuring Asynchronous Connections with Modems

2.2.2 Asynchronous Interfaces – Line Numbering

router(config-line)#transport input protocol
router(config-line)#transport input all
router(config-line)#modem inout

 

2.2.3 EXEC Connection Commands

Router#Telnet host [port] [/debug]
Router#disconnect [session-number]
ctrl-shift-6 x

 

2.2.4 Line Types and Numbering

router#show line

 

2.2.5 Interface Async and Line Configuration

(config)#line x
(config-line)#login
(config-line)#password password
(config-line)#flowcontrol hardware
(config-line)#speed 115200
(config-line)#transport input all
(config-line)#stopbits 1
(config-line)#modem inout

OR

(config-line)#modem dialin

 

2.3.2 Manual Configuration of Modems with Standard Commands

modem commands
AT&F
ATS0=1
AT&C1&D3
ATS2=255
ATE0
ATM0

 

2.3.6 Modem Capability Database

Router#modemcap entry modem_name
Router#show modemcap modem_name

 

2.3.7 Modem Autodiscovery

Router(config-line)#modem autoconfigure discovery

 

2.3.8 Modem Autoconfiguration

Router(config)#line line-number
Router(config-line)#modem autoconfigure type type

 

2.3.9 Fine-tuning Modem Autoconfiguration

Router#modemcap edit new_modem_name

 

2.3.10 Chat-Scripts for Async Lines

Router(config)#chat-script script-name expect-string send-string
Router#start-chat regexp [line-number [dialer-string]]

 

2.4.1 Verifying and Debugging Modem Autoconfiguration

Router#debug confmodem
Router#show line
Router#clear line

 

Chapter 3: Configuring Point-to-Point Protocol and Controlling Network Access

3.1.3 Configuring Cisco Access Servers

Router(config)#line line-number
Router(config-line)#autoselect {arap | ppp | slip | during-login}

 

3.1.4 Enabling PPP

router(config-if)#encapsulation ppp
or
router(config-if)#encapsulation slip

 

3.1.5 Configuring Dedicated or Interactive PPP Sessions

router(config-if)# async mode dedicated
Router(config-if)# async mode interactive

 

3.1.6 Configuring the Interface Addressing Method for Local Devices

router(config-if)#ip address address mask
router(config-if)#ip unnumbered type number

 

3.1.7 Configuring the Interface-Addressing Method for Remote Devices

router(config-if)#peer default ip address [address | pool pool-name | dhcp]
router(config-if)#async dynamic address

 

3.2.3 Configuring PAP Authentication

router(config-if)#ppp authentication pap

 

3.2.4 Configuring CHAP Authentication

router(config-if)#ppp authentication chap

 

3.2.5 Interface Commands for PAP and CHAP Authentication

Default PAP
router(config-if)#ppp authentication pap chap

or

Default CHAP
router(config-if)#ppp authentication chap pap

 

3.3.1 Callback Implementation

router(config)#dialer hold-queue number of packets timeout seconds

 

3.3.2 Callback: how does it work?

router(config-if)#dialer callback-secure
router(config-if)#ppp callback accept
router(config-if)#ppp authentication pap

or 

router(config-if)#b

 

3.3.3 Configuring Async Callback

Router(config)#username username password password [callback-dialstring telephone-number][callback-line line-number][callback-rotary rotary-group-number]
Router(config-if)#ppp callback accept
Router(config-if)#ppp callback initiate
Router(config)#line line-number
Router(config-line)#callback forced-wait seconds
Router(config-line)#script callback script-name

 

3.4.2 Configuring Compression

Router(config-if)#compress [predictor|stac|mppc]
Router(config-int)#ip tcp header-compression

 

3.4.4 Multilink Operation and Configuration

Router(config-if)#ppp multilink
Router#show ppp multilink

 

3.4.5 Verifying and Troubleshooting PPP

router#show dialer
router#debug ppp negotiation

 

Chapter 4: Accessing the Central Site with Windows 9X

There are no commands in this chapter.

Chapter 5: OSPF with Multiple Areas

5.3.3 Configuring an ISDN BRI

Selecting the ISDN Switch Type
Router(config)#isdn switch-type switch type
Router(config-if)#isdn switch-type switch type

Configuring the Interface

Setting the Service Profile Identifiers (SPID), If Necessary
Router(config-if)#isdn spid1 spid-number [ldn]
Router(config-if)#isdn spid2 spid-number [ldn]

Setting the Encapsulation Protocol
Router(config-if)#encapsulation [ppp | hdlc]
Router(config-if)#ppp authentication [chap | pap]

 

5.4.2 Initiating Connections

Defining what Constitutes Interesting Traffic
Router(config)#dialer-list dialer-group-number protocol protocol-name {permit | deny}
Router(config)#access-list access-list-number [permit | deny]{protocol | protocol- keyword}{source source-wildcard | any}{destination destination-wildcard | any}[protocol-specific-options] [log]
Router(config)#dialer-list dialer-group list access-list-number

 

5.4.3 Assigning the Dialer-List to an Interface

Router(config-if)#dialer-group group-number

Defining Destination Parameters
Router(config-if)#dialer map protocol next-hop-address [name hostname] [broadcast] dial-string

 

5.4.4 Defining Optional Call Parameter

Router(config-if)#dialer idle-timeout seconds
Router(config-if)#dialer fast-idle seconds
Router(config-if)#dialer load-threshold load [outbound | inbound | either]

 

5.5.2 -
5.5.3
Static Route -
Default Route

router(config)#ip route dest.-network dest.-mask next-hop-address
router(config)#ip default-network network-address
router(config)#ip default-gateway

 

5.5.4 Setting Route Redistribution

router(config-router)#redistribute static

 

5.5.5 Deactivating Routing Updates 

router(config-if)#passive-interface interface interface-number

 

5.6.2 Cisco Proprietary BOD

Router(config-if)#dialer load-threshold load

 

5.6.4 Multilink PPP

Router(config-if)#dialer load-threshold load [inbound | outbound | either
Router(config-if)#ppp multilink
Router(config)#isdn caller

 

5.6.5 Called-Party Number Answering

Router(config-if)#isdn answer1 [called-party-number][:subaddress]
Router(config-if)#isdn answer2 [called-party-number][:subaddress]

 

5.6.6 ISDN Rate Adaptation

Router(config-if)#dialer map protocol next-hop-address[name name] [speed speed] [broadcast] dial-string

 

5.7 Monitoring the ISDN Interface

router#show interface interface interface-number
router#show isdn status status {memory | timers | services}
router#show ppp multilink
router#debug dialer

 

5.7.4 Troubleshooting Multilink PPP

router#debug ppp multilink
router#debug ppp negotiation
router#debug ppp authentication
router#debug isdn events

 

5.7.5 ISDN debug Commands

router#debug isdn q921
router#debug isdn q931
router#debug isdn event
router#debug isdn active
router#debug isdn history

 

5.8.2 Selecting the PRI Switch

Router(config)#isdn switch-type [switch type]

 

5.8.3 Selecting the ISDN PRI Controller for Configuration

Router(config)#controller {t1 | e1} {slot/port | unit number}

 

5.8.4 Configuring the Framing, Linecoding, and Clocking of the Controller

Router(config-controller)#framing {sf | esf | crc4 | no-crc4}
Router(config-controller)#linecode {ami | b8zs| hdb3}
Router(config-controller)#clock source {line [primary | secondary] | internal}

 

5.8.5 Additional ISDN PRI Configuration Parameters 

Router(config-controller)#pri-group [timeslots range]
Router(config)#interface serial { slot/port: | unit:}{23 | 15}
Router(config-if)#isdn incoming-voice modem

 

Chapter 6: Optimizing the Use of DDR Interface - Dialer Profiles and Rotary Groups

6.1.1 Creating and Configuring a Rotary Group

Router(config)#interface dialer group-number
Router(config-if)#dialer rotary-group rotary-number

 

6.1.2 Configuring the Interface Dialer

Router(config-if)#dialer string dial-string
Router(config-if)#dialer hold-queue number

 

6.1.3 Dealing with Dialer Timers

router(config-if)#dialer idle-timeout seconds
Router(config-if)#dialer fast-idle seconds
Router(config-if)#dialer wait-for-carrier-time seconds
Router(config-if)#dialer in-band
Router(config-if)#isdn incoming-voice modem
Router(config)#interface group-async 1
Router(config-if)#group-range 65 70 

 

6.2.3 Dialer Interface

router(config-if)#dialer string number class map-class-name
router(config-if)#dialer pool number
router(config-if)#dialer pool-member number
router(config-if)#ip address address mask
router(config-if)#dialer remote-name name
router(config-if)#dialer string string class map-class-name
router(config-if)#dialer load-threshold load
router(config-if)#dialer hold-queue number–of-packets
router(config-if)#dialer-group group-number
router(config-if)#ppp multilink

 

6.2.4 Dialer Map Class 

router(config-if)#dialer isdn [speed 56|spc]
router(config-if)#dialer idle-timeout seconds
router(config-if)#dialer fast-idle seconds
router(config-if)#dialer wait-for-carrier-time seconds
router(config-if)#dialer map class
router(config-if)#map-class dialer class-name

 

6.2.5 Dialer Pool and Physical Interfaces

router(config-if)#dialer pool-member number
router(config-if)#priority priority
router(config-if)#min-link minimum
router(config-if)#max-link maximum
router(config-if)#dialer pool-member

 

6.2.6 Verifying a Dialer Profile Configuration

router#show dialer interface interface-type interface-number

 

Chapter 7: Using X.25 for Remote Access

7.2.1 Interface Tasks

router(config-if)#encapsulation x25 [dte | dce]
router(config-if)#x25 address x.121-address

 

7.2.2 Configuring the X.121 address

router(config-if)#x25 map protocol address x.121-address [options]
router(config-if)#x25 map protocol address [protocol2 address2] x.121-address [options]
Router(config-if)#x25 address x.121-address
Router(config-if)#x25 map protocol address x.121-address [options]
Router(config-if)#x25 map protocol address [protocol2 address2]* x.121-address [options]

 

7.2.4 Configuring X.25 PVCs 

Router(config-if)#x25 pvc circuit protocol address [protocol2 address2]* x.121-address [options]

 

7.2.5 Configuring X.25 VC Ranges

Router(config-if)#x25 pvc circuit
Router(config-if)#x25 lic circuit
Router(config-if)#x25 hic circuit
Router(config-if)#x25 ltc circuit
Router(config-if)#x25 htc circuit
Router(config-if)#x25 loc circuit
Router(config-if)#x25 hoc circuit

 

7.2.6 Configuring X.25 Packet Sizes

Router(config-if)#x25 ips bytes
Router(config-if)#x25 ops bytes

 

7.2.7 Configuring Window Parameters

Router(config-if)#x25 win packets
Router(config-if)#x25 wout packets
Router(config-if)#x25 modulo modulus

 

7.2.8 Additional X.25 Configuration Options Example

Router(config-if)#x25 default

 

7.2.9 Verifying X.25 Configuration 

router#show interface interface-type interface-number
router#show interfaces

 

Chapter 8: Frame Relay Connection and Traffic Flow Control

8.2.1 Steps to Enable Frame Relay

router(config-if)#encapsulation frame-relay [cisco | ietf]
router(config-if)#frame-relay lmi-type {ansi | cisco | q933i}
Router(config-ig)#frame-relay map protocol protocol-address dlci [broadcast] [ietf | cisco]

 

8.2.3 – 8.2.6 show Commands

router#show interface interface-type interface-number
router#show frame-relay pvc
router#show frame-relay map
router#show frame-relay lmi

 

8.3.4 Configuring Frame Relay Subinterfaces

Router(config-if)#interface serial number subinterface-number
{multipoint | point-to-point}

Router(config-if)#ip unnumbered interface
Router(config-if)#frame-relay interface-dlci dlci-number

 

8.4.4 Configuring Frame Relay Traffic Shaping

Router(config)#map-class frame-relay map-class-name
Router(config-if)#encapsulation frame-relay
Router(config-if)#frame-relay traffic-shaping
Router(config-if)#frame-relay class map-class-name

 

8.4.5 Ways to Define a Map Class

Router(config-map-class)#frame-relay traffic-rate average [ peak]
frame-relay custom-queue-list number
frame-relay priority-group number

 

8.4.8 Dynamic Enforcement Example

Router(config-map-class)#frame-relay adaptive-shaping becn

 

8.4.10 Verifying Frame Relay Traffic Shaping

Router#show frame-relay pvc number

 

Chapter 9: Enabling Backup to a Permanent Connection

9.1.1 Configuring Dial Backup

Router(config)#interface serial 0
Router(config-if)#backup interface interface-type number
Router(config-if)#backup delay {enable-delay | never} {disable-delay | never}

 

9.1.3 Activating a Dial Backup to Support Primary Line Traffic

Router(config)#interface serial 0
Router(config-if)#backup interface interface-type number
Router(config-if)#backup load {enable-threshold | never} {disable-threshold | never}

 

9.2.3 Configuring Dial Backup with Dialer Profiles 

Router(config)#interface type number
Router(config-if)#encapsulation ppp
Router(config-if)#ppp authentication chap
Router(config-if)#dialer pool member number
Router(config-if)#backup interface interface-type number

 

9.3.1 Load Backup with IGRP and EIGRP

router(config-router)#variance multiplier
router(config-router)#traffic-share {balanced | min}

 

9.4 Verifying Dial Backup Configuration

router#show interface type number

 

Chapter 10: Managing Network Performance with Queuing and Compression

10.2.3 Weighted Fair Queing

Router(config-if)# fair-queue [congestive-discard-threshold [dynamic-queues [reservable-queues]]]

Monitor Fair Queueing

Router# show interfaces [interface] fair-queue
Router# show queueing fair

 

10.2.5 Priority Queueing

Define the Priority List
Router(config)# priority-list list-number protocol protocol-name {high | medium | normal | low} queue-keyword keyword-value
Router(config)# priority-list list-number interface  
interface-type interface-number {high | medium | normal | low}
Router(config)# priority-list list-number default  
{high | medium | normal | low}

Specify the Maximum Size of the Priority Queues
Router(config)# priority-list list-number queue-limit [high-limit [medium-limit [normal-limit [low-limit]]]

Assign the Priority List to an Interface
Router(config)# interface interface-type interface-number
Router(config-if)# priority-group list-number

Monitor Priority Queueing Lists
Router# show queueing priority

 

10.2.8 Custom Queueing

Define the Custom Queue List
Router(config)#interface interface-type interface-number
Router(config-if)#custom-queue-list list
Router(config)#queue-list list-number default
queue-number

Specify the Maximum Size and Service Threshold of the Custom Queues
Router(config)#queue-list list-number queue queue-number limit limit-number
Router(config)#queue-list list-number queue queue-number byte-count byte-count-number

Assign Packets to Custom Queues
Router(config)#queue-list list-number protocol protocol-name queue-number queue-keyword keyword-value
Router(config)#queue-list list-number interface interface-type interface-number queue-number

Monitor Custom Queue Lists
Router#show queueing custom
Router#show interface interface-type interface-number

 

10.3.7 Configuring data compression

Router(config-if)#compress [predictor|stac|mppc]
Router(config-if)#frame-relay payload-compress
Router(config-if)#x25 map compressdtcp
Router(config-if)#ip tcp header-compression [passive]

 

Chapter 11: Scaling IP Addresses with Network Address Translation

11.3.1 Static NAT

Router(config)# ip nat inside source static ip-add-local ip-add-global { private-ip public-ip}

LAN interface
Router(config-if)# ip nat inside

WAN interface
Router(config-if)# ip nat outside

 

11.3.2 Dynamic NAT

Router(config)# ip nat pool pool-name start-ip-add end-ip-add netmask mask
Router(config)# access-list number permit network-address wildcard-mask
Router(config)# ip nat inside source list number pool pool-name

LAN interface
Router(config-if)# ip nat inside

WAN interface
Router(config-if)# ip nat outside

 

11.3.3 NAT Overloading

Router(config)# ip nat pool pool-name start-ip-add end-ip-add netmask mask
Router(config)# access-list number permit network-address wildcard-mask
Router(config)# ip nat inside source list number pool pool-name
overload

LAN interface
Router(config-if)# ip nat inside

WAN interface
Router(config-if)# ip nat outside

 

11.3.4 TCP Load Distribution (Round-Robin or Rotary)

Router(config)#ip nat pool pool-name start-ip-add end-ip-add prefix-length bits type rotary
Router(config)# access-list acl-number permit ip-add-virtual-host {ip-add-virtual-host is the address another host will use to access this server}
Router(config)# ip nat inside destination list acl-number pool
pool-name

LAN interface
Router(config-if)# ip nat inside

WAN interface
Router(config-if)# ip nat outside

 

11.3.5 Overlapping Addresses Configuration

Inside pool
ip nat pool
name start-ip end-ip {netmask netmask | prefix-length prefix-length}

Outside pool
ip nat pool
name start-ip end-ip {netmask netmask | prefix-length prefix-length}

mapping for the acl and inside global pool
ip nat inside source list
access-list-number pool name [overload]

mapping for the acl and outside global pool
ip nat inside source list
access-list-number pool name [overload]

LAN interface
Router(config-if)# ip nat inside

WAN interface
Router(config-if)# ip nat outside

 

11.3.6 Verifying NAT

Router# show ip nat translations
Router#
show ip nat statistics

 

11.3.7 Troubleshooting NAT

Router#debug ip nat

 

11.3.8 Clearing NAT Translation

router#clear ip nat trans *

Miscellaneous commands
Router(config)# ip nat translation timeout seconds
Router(config)# ip nat translation [tcp, udp, dns]-timeout
seconds

 

11.4.3 Configuring PAT

7xx:Cisco1>Set IP PAT ON
7xx> SEt IP PAT POrt FTP 10.0.0.108

 

11.4.4 Monitoring PAT

7xx:Cisco1>show ip pat

 

Chapter 12: Using AAA to Scale Access Control in an Expanding Network

12.1.1 Enabling AAA and Identifying the Server

router(config)#aaa new-model
router(config)#tacacs-server host ip address single-connection
router(config)#tacacs-server key key
router(config)#radius-server host ip address
router(config)#radius-server key key

 

12.2.2 AAA Authentication Commands

router(config)#aaa authentication login default tacacs+ local
router(config)#aaa authentication login Callers tacacs+ local
router(config)#line con 0
router(config-line)#login authentication Callers
router(config)#line 1 48
router(config-line)#login authentication Callers
router(config)#
line vty 0 4

Miscellaneous commands
router(config)#aaa authentication arap
router(config)#aaa authentication enable default
router(config)#aaa authentication local-override
router(config)#aaa authentication login
router(config)#aaa authentication nasi
router(config)#aaa authentication password-prompt
router(config)#aaa authentication ppp
router(config)#aaa authentication username-prompt
Router(config)#aaa authentication login {default | list-name} method1 [...[method4]]
Router(config)#aaa authentication enable default method1 [...[method4]]
Router(config)#aaa authentication ppp {default | list-name} method1 [...[method4]]

 

12.2.3 AAA Authorization Commands

Authorization options
network
exec
commands
level
config-commands
reverse-access
if-authenticated
local
none
radius
tacacs+
krb5-instance

AAA Authentication and Authorization Commands
router(config)#aaa authentication enable default tacacs+ enable
router(config)#aaa authorization exec tacacs+ local
router(config)#
aaa authorization command n tacacs+ local

AAA Authentication and Authorization Commands for PPP
router(config)#username admin password password
router(config)#aaa authentication ppp Callers if-needed tacacs+
router(config)#aaa authorization network tacacs+ if-authenticated
Router(config)#aaa authorization {network | exec | commands level | config-commands | reverse-access} {if-authenticated | local | none | radius | tacacs+ | krb5-instance}

 

12.2.4 AAA Accounting Commands

Accounting options
command
level
connection
exec
network
system
start-stop
stop-only
wait-start

{tacacs+ | radius}

AAA accounting Commands
router(config)#aaa accounting network start-stop tacacs+
router(config)#aaa accounting exec start-stop tacacs+
router(config)#aaa accounting command 15 start-stop tacacs+
router(config)#aaa accounting connection start-stop tacacs+
router(config)#aaa accounting system start-stop tacacs+
Router(config)#aaa accounting {command level | connection | exec | network | system} {start-stop | stop-only | wait-start} {tacacs+ | radius}

 

Appendix A: Emerging Remote Access Technologies

There are no commands for this chapter.

Appendix B: Configuring a Cisco 700 Series Router

B.1.7 Profile Overview

router-700>set profile
router-700>show profile
router-700>set
router-700>cd
router-700>reset
router-700>set default
router-700>erase start
router-700>reload
router-700>show

 

B.2.2 System Level Configuration

router-700>set switch switch-type
router-700>set 1 spid spid-number [ldn]
router-700>set 2 spid spid-number [ldn]
router-700>set 1 dir number
router-700>set 2 dir number

 

B.2.3 LAN Profile Configuration

router-700>cd lan
router-700:LAN>set ip address ip-address
router-700:LAN>set ip netmask network-mask
router-700:LAN>
set ip routing on
router-700:LAN>
set bridging off

 

B.2.4 User Profile Configuration

router-700>set user username
router-700:username >set number number
router-700:username
> set ip routing on
router-700:username >
set rip update off
router-700:username >
set ip route destination 0.0.0.0/0 gateway 0.0.0.0 prop on
router-700:username >
set bridging off
router-700:username >
cd
router-700> set active
username

 

B.2.5 Cisco 700-Configuration Example

>SEt SYStem router-name
router-name >SEt SWitch switch-type
router-name >SEt ENCapsulation encapsulation-type
router-name >SEt PPp AUthentication INcoming [pap/Chap]
router-name >SEt PPp AUthentication OUtgoing [pap/Chap]
router-name >SEt PPp SEcret name
-------------------------------------
router-name >cd LAN
router-name:LAN>SEt BRidging ON
-------------------------------------
router-name >cd Internal
router-name:INTERNAL>SEt BRidging ON
router-name:INTERNAL>SEt IP ROuting ON
router-name:INTERNAL>SEt IP address
router-name:INTERNAL>SEt IP BRidging OFf
router-name:INTERNAL>SEt USer username
-------------------------------------
router-name:username>SEt BRidging OFf
router-name:username>SEt IP ROUTING ON
router-name:username>SEt IP ROUTE DEstination 0.0.0.0/0 GAteway0.0.0.0
router-name:username>SEt NUmber number
router-name:username>SEt ACtive
router-name:username>SEt PPp SEcret name

 

B.2.6 Caller ID

router-700>set caller id on
router-700>set callidreceive number

 

B.2.7 PPP Callback-No Authorization

router-700>set ringback number
router-700>
set callback on

 

B.3.1 Cisco 700 Series Router-Additional Commands

router-700>set ip rip update periodic
router-700>set bridging off
router-700>set user username
router-700>set number number
router-700>set compression stac
router-700>set ip rip version 1
router-700>set ip rip update snapshot
router-700>set bridging off

 

B.3.5 Monitoring IP Routing

router-700:username>show ip configuration all
router-700:username>show ip route all
router-700>call 1 <phone number>
router-700>disconnect <connection number or channel number or all>
router-700>log calls
router-700>log messages ver time
router-700>show status
router-700>show negotiation

 

B.3.7 700 Series-DHCP Functionality

router-700>ip helper interface

 

B.3.8 DHCP Server Configuration

router-700>SEt DHcp SERver
router-700>SEt DHcp ADdress address
router-700>SEt DHcp NETmask network-mask
router-700>SEt DHcp GAteway PRImary address
router-700>SEt DHcp DNS PRImary address
router-700>SEt DHcp WINS PRImary address
router-700>Set DHcp Domain domain-name

 

B.3.9 DHCP Relay Agent Configuration

router-700>SEt DHcp RElay ip-address-of-DHCP-server
router-700>
SHow DHcp Config