CCNA 200-125 MODULE 2 COMMANDS

Router Commands :
1. The ipv6 enable interface command is used to automatically create an IPv6 link-local
address whether or not an IPv6 global unicast address has been assigned

2. Enabling and assigning a loopback address is simple:

• Router(config)# interface loopbacknumber

• Router(config-if)# ip address ip-address subnet-mask

• Router(config-if)# exit.

3. show ip interface brief - Displays a summary for all interfaces including the IPv4 address of the
interface and current operational statu

4. show ip route - Displays the contents of the IPv4 routing table stored in RAM

5. show ip interface brief command. The output reveals that the LAN interfaces and the WAN

6. show interfaces - Displays interface information and packet flow count for all interfaces on the device.

7. show ip interface - Displays the IPv4 related information for all interfaces on a router

8. show ipv6 interface brief command displays a summary for each of the interfaces.

Static Routing Protocol Commands:

1. Ip route 192.168.1.0 255.255.255.0 192.168.1.2

• Ip route network-address of destination , subnet mask of destination network address , next

hop/port address

2. Along with ping and traceroute, useful commands to verify static routes include:

• show ip route -show all networks path

• show ip route static --show all networks path
• show ip route network -show specific static network path

3. IPv6 route 2001:DB8:ACAD:3::/64 fe80::0

• Along with ping and traceroute, useful commands to verify static routes include:

• show ipv6 route -show all networks path

• show ipv6 route static -show all networks path
• show ipv6 route network -show specific static network path

Default Routing Protocol Command:

1. Ip route 0.0.0.0 0.0.0.0 (ip address / exit interface)

MUZAMMIL ALI
[email protected]
www.facebook.com/muzammilalifuuastian
RIPv2 Routing Protocol Commands:
1. Router Rip -enable rip protocol version 1 . if we want to enable rip version 2 so we enter the version
command.

2. Version 2 -enable rip version 2 on router .

3. Network 192.168.1.0 -enter the all network address which want to add in rip.

4. show ip protocols - command displays the IPv4 routing protocol settings currently configured on
the router.

5. show ip route - command displays the RIP routes installed in the routing table.

6. no auto-summary

Switch Boot Sequence:

1. Boot system flash :/c2960-lanbasek9-mz.150-2.SE/ c2960-lanbasek9-mz.150-2.SE.bin.

2. Show boot.

3. Dir flash. –directory command of operation system

Configuring SSH Commands :

1. ip domain-name cisco.com

2. crypto key generate rsa 1024

3. username muzammil secret ali

• line vty 0 15

• transport input ssh

• login local

• exit

4. ip ssh version 2.

5. show ip ssh.

MUZAMMIL ALI
[email protected]
www.facebook.com/muzammilalifuuastian
Secure Unused Port:
Disable Unused Ports

1. interface range type module/first-number – last-number.

• The process of enabling and disabling ports can be time-consuming,

but it enhances security on the network and is well worth the
effort.

2. Shutdown.

Port Security Commands:

1. switchport port-security.

2. switchport port-security maximum 1.

3. switchport port-security mac-address jk45k3j4h5k3.

4. switchport port-security mac-address sticky .

5. switchport port-security violation {protect | restrict | shutdown}.

6. show port-security interface.

7. show port-security address .

8. show port-security interface.

Vlan Commands:
1. Vlan 2. -vlan number

2. Name IT . - vlan name

3. EXIT.

4. Show vlan brief - command displays the VLAN assignment and membership type
for all switch ports.

5. no vlan 20.

6. delete flash:vlan.dat .

7. show vlan.

8. show vlan name student

9. show vlan summary -command displays the count of all configured VLANs.

10. show interfaces switchport access vlan vlan.

11. show mac address-table.

MUZAMMIL ALI
[email protected]
www.facebook.com/muzammilalifuuastian
Ports Add In Vlan:
1. Interface fa 0/0

2. Switchport mode access

3. Switchport access vlan (id)

Trunk Configuration Commands:

1. switchport mode trunk.

2. switchport trunk native vlan (id).

3. switchport trunk allowed vlan (id).

4. end.

Access List Commands;

1. access-list 10 permit host 192.168.10.10.

2. access-list 10 permit 192.168.10.0 0.0.0.255.

3. ip access-group {access- access-list 1 deny 0.0.0.0

255.255.255.255 or access-list deny anylist-number | access-list-name }
{ in | out }.

4. ip access-group 1 out interface configuration command links and ties ACL 1

to the Serial 0/0/0 interface as an outbound filter.

5. show access-lists .

6. access-class access-list-number { in [ vrf-also ] |out }

• The parameter in restricts incoming connections between the addresses in the access list
and the Cisco device, while the parameter out restricts outgoing connections between a
particular Cisco device and the addresses in the access list..

• Line vty 0 4

• Login local

• Transport input ssh

• Access-class 21 in

• Exit

• Access-list 21 permit 192.168.10.0 0.0.0.255

• Access –list 21 deny any

7. show access-lists.

MUZAMMIL ALI
[email protected]
www.facebook.com/muzammilalifuuastian
 8. The clear access-list counters command resets the output to only show new
matches.

DHCP Commands:
1. show ip dhcp binding command. This command displays a list of all IPv4
address to MAC address bindings that have been provided by the DHCPv4
service.

2. show ip dhcp server statistics, is used to verify that messages are being
received or sent by the router.

3. ip helper-address command is configured on the correct interface.

4. Ip dhcp excluded-address 192.168.10.1 192.168.10.9

• Ip dhcp excluded-address 192.168.10.254

• Ip dhcp pool abcd

• Network 192.168.10.0 255.255.255.0

• Default-router 192.168.10.1

• Domain0-name example.com

• end

5. debug ip dhcp server events command. This command reports server events,
like address assignments and database updates.

6. ipv6 nd other-config-flag .

• To modify the RA message sent on the interface of a router to

indicate stateless DHCPv6, use the following command

7. ipv6 nd managed-config-flag

• The M flag indicates whether or not to use stateful DHCPv6. The O

flag is not involved. The following command is used to change the M
flag from 0 to 1 to signify stateful DHCPv6.

8. ipv6 address autoconfig command enables automatic configuration of IPv6

addressing using SLAAC.

9. show ipv6 dhcp pool command verifies the name of the DHCPv6 pool and its
parameters.

10. show ipv6 interface.

MUZAMMIL ALI
[email protected]
www.facebook.com/muzammilalifuuastian
 11. debug ipv6 dhcp detail command shows the DHCPv6 messages exchanged between
the client and the server.

12. debug ipv6 dhcp detail command is useful to verify the receipt and
transmission of DHCPv6 messages.

13. Ipv6 unicast-routing

• Ipv6 dhcp pool mz

• Dns-server (dns-server-address)

• Domain-name example.com

• Interface fa0/0

• Ipv6 dhcp server pool-name

• Ipv6 nd other-config-flag

IP NAT Static Commands:

1. Ip nat inside source static 192.168.11.99 209.168.201.15

2. Interface fa0/0

• Ip nat inside.

3. Interface fa0/1

• Ip nat ouside.

4. show ip nat translations

5. show ip nat statistics command displays information about the total number
of active translations.

Dynamic NAT Commands:

1. Ip nat pool IT 209.168.200.241 209.168.200.250 255.255.255.0

2. Access-list 2 permit 192.168.10.0 0.0.0.255

3. Ip nat inside source list 2 pool IT

4. Interface fa0/0

• Ip nat inside

5. Interace fa0/1

• Ip nat outside

6. show ip nat translations

7. ip nat translation timeout

MUZAMMIL ALI
[email protected]
www.facebook.com/muzammilalifuuastian
 8. verbose keyword displays additional information about each translation,
including how long ago the entry was created and used

9. clear ip nat translation

NAT PAT Commands:

1. ip nat pool IT 209.168.200.241 209.168.200.250 255.255.255.224

2. access-list 3 permit 10.0.0.0 0.255.255.255

3. ip nat inside source list 3 pool IT overload

4. Interface fa0/0

• Ip nat inside

5. Interface fa0/1

• Ip nat outside

6. show ip nat translations

7. show ip nat statistics

8. debug ip net

9. debug ip nat detailed

CDP Commands:
1. show cdp

2. cdp run

3. interface fa0/0

• no cdp enable

• end

4. show cdp neighbors

5. show cdp neighbors detail

LLDP Commands:
1. lldp run

2. no lldp run

3. show lldp

4. show lldp neighbors

5. show lldp neighbors detail

MUZAMMIL ALI
[email protected]
www.facebook.com/muzammilalifuuastian
NTP Commands
1. ntp server

2. show clock detail

3. show ntp associations

4. show ntp status

5. Clock timezone pst -8

6. Clock summer-time pdt recurring

SYSLOG Operation Commands:

1. service timestamps log datetime

2. logging console

3. logging buffered

4. show logging

5. logging trap

6. show file systems

Backup Configurations with TFTP

1. copy running-config tftp

2. copy startup-config tftp

Backup Configu copy run usbflash0:/ rations with a USB Flash Drive

1. copy running-config usbflash0:

boot system :
1. show license udi

2. license install

3. show license

4. license accept end user agreement

5. license boot module (module-name) technology-package (package-name)

6. show flash0:

7. Clear the license no license boot module module-name technology-package package-

name disable.

8. license boot module

MUZAMMIL ALI
[email protected]
www.facebook.com/muzammilalifuuastian