my pocket https://getpocket.

com/a/queue/

MultiPOInt FR
ESW3(config)#int s2/0 ESW3(config-if)#encapsulation frame-relay
ESW3(config)#int seria 2/0.1 multipoint ESW3(config-subif)#ip add 192.168.1.1
255.255.255.0
ESW3(config-subif)#frame-relay interface-dlci 101

ESW1(config)#int s2/0 ESW1(config-if)#encapsulation frame-relay

ESW1(config-if)#no sh ESW1(config)#int s2/0.1 multipoint no sh
ESW1(config-subif)#ip address 192.168.1.2 255.255.255.0
ESW1(config-subif)#no sh
ESW1(config-subif)#frame-relay interface-dlci 200

ESW4(config)#int s2/0 ESW4(config-if)#encapsulation frame-relay (no sh)

ESW4(config)#int s2/0.1 multipoint
ESW4(config-subif)#ip address 192.168.1.3 255.255.255.0
ESW4(config-subif)#frame-relay interface-dlci 200

ISP(config)#int s2/0 ISP(config-if)#no sh ISP(config)#frame-relay switching

ISP(config-if)#encapsulation frame-relay ISP(config-if)#frame-relay intf-type dce
ISP(config-if)#frame-relay route 100 interface s2/0 200
ISP(config-if)#frame-relay route 200 interface s2/1 200

ESW4(config)#ip name-server 192.168.137.1

ESW4(config)#ip default-gateway 192.168.5.1

HUB SPOK:::::::
Point To Point FR
VNs(config)#int s0/2/0 VNs(config)#no sh
VNs(config-if)#encapsulation frame-relay ( then exit)
VNs(config)#int s0/2/0.1 point-to-point (no sh)
VNs(config-subif)#frame-relay interface-dlci 100
VNs(config-subif)#ip address 192.168.1.1 255.255.255.0 VNs(config-subif)#no sh

Lco(config-if)#int s0/2/1
Lco(config-if)#encapsulation frame-relay
Lco(config-if)#ip address 192.168.1.2 255.255.255.0
Lco(config-if)#frame-relay interface-dlci 200

Isp(config)#fram-relay switching
ISP(config)#int s2/0 clock rate 64000
ISP(config-if)#encapsulation frame-relay
ISP(config-if)#frame-relay intf-type dce
ISP(config-if)#frame-relay route 100 interface se2/1 200
ISP(config)#int s2/1 clockrate 64000
ISP(config-if)#encapsulation frame-relay
ISP(config-if)#frame-relay intf-type dce
ISP(config-if)#frame-relay route 200 interface se2/0 100

eigrp chalana hai

ESW2#sh run | begin int

VNS#sh frame-relay pvc

LOC(config)#ip routing LOC(config)#router eigrp 10 LOC(config-router)#network

192.168.1.0

ESW3(config-if)#encapsulation frame-relay
ESW3(config-if)#no sh ESW3(config-subif)#frame-relay interface-dlci 400

ESW3(config)#int s2/0.2 point-to-point

ESW3(config-subif)#frame-relay interface-dlci 401
ESW3(config-subif)#ip add 192.168.2.2 255.255.255.0
ESW4(config)#int s2/0
ESW4(config-if)#encapsulation frame-relay (no sh)
ESW4(config)#int s2/0.1 point-to-point
ESW4(config-subif)#frame-relay interface-dlci 500

ACL STANDERT
Router(config)#ip access-list standard 1
Router(config-std-nacl)#deny 11.0.0.2 (other net ip)
Router(config-std-nacl)#permit any
Router(config-if)#ip access-group 1 out (jo eth ka hai group out)
Router(config)#ip access-list standard 1 (fpr permit us host ko)
Router(config-std-nacl)#permit any
Router(config-std-nacl)#1 deny host 172.17.1.1
Router(config)#ip access-list standard 2
Router(config-std-nacl)#1 deny 10.0.0.2
Router(config)#ip access-list standard 1
Router(config-std-nacl)#no 20
Router(config-std-nacl)#no 10

ACL EXTENDED
Router#sh running-config | begin int
Router(config-ext-nacl)#deny tcp host 11.0.0.2 host 12.0.0.2 eq telnet
Router(config-ext-nacl)#permit ip any any exit
Router(config)#int g0/0 Router(config-if)#ip access-group block in
 STP CONFIGURATION
Switch#show sp
1ST METHOD
Switch(config)#sp vlan 1 PRiority 4096
2ND METHOD
Switch(config)#SP Vlan 1 ROot Primary
Switch(config)#spanning-tree mode pvst
Switch(config)#spanning-tree mode rapid-pvst
Switch(config)#sp portfast default Switch#sh sp active Switch#sh cdp neighbors

(inse hi etherchannel link aggregation (lacp-activ passiv) pagp hoga)

SW1 SW2 Result
ON ON ON
Activ Activ ON
Activ Passiv ON
Activ desirable ON
Auto desirable ON
desirable desirable ON

#####sh ip ospf neighbor#### dynamic nat

router(config)#router ospf 1
router(config-router)#default-information originate
router(config)#ip route 0.0.0.0 0.0.0.0 192.168.137.1
router#ping 8.8.8.8 source e0/0
router(config)#access-list 1 permit 200.200.200.0
router(config)#access-list 1 permit 192.168.4.0
router(config)#access-list 1 permit 192.168.5.0
router(config)#$ musa 192.168.137.100 192.168.137.110 netmask 255.255.255.0
router(config)#ip nat inside source list 1 pool musa
router(config)#int e0/1 router(config-if)#ip nat inside
router(config-if)#int e0/0 router(config-if)#ip nat outside

router(config-router)#no default-information originate

router(config-router)#default-information originate

Dynamic pat overload

router(config)#access-list 1 permit 192.168.5.0 255.255.255.0
router(config)#$ musa 192.168.137.10 192.168.137.20 netmask 255.255.255.0
router(config)#ip nat inside source list 1 interface e0/0 overload

###router eigrp###satic nat

router(config-router)#default-information allowed in
ESW1(config)#ip route 0.0.0.0 0.0.0.0 192.168.137.203

Switch(config)#int range f0/1 -5 (dono switch pe)

Switch(config-if-range)#channel-group 1 mode on
Switch#sh etherchannel Switch#sh etherchannel summary
Switch#sh etherchannel port-channel Switch#sh etherchannel protocol
 NAT CONFIGURATION

satic nat:
Router#sh ip nat translations
Router(config)#ip nat inside source static 10.0.0.2 122.1.1.1
Router(config)#ip nat inside source static 10.0.0.3 122.1.1.2
(jo bahar world ko dikhega inside global and mre net ins local
web srv kalocal privat ip outsid local uska world ip outsid gl)

Router(config)#int fa0/0
Router(config-if)#ip nat inside
Router(config-if)#int se0/0/0
Router(config-if)#ip nat outside

dynamic Nat
Router(config)#no ip nat inside source static 10.0.0.2 122.1.1.1
Router(config)#no ip nat inside source static 10.0.0.3 122.1.1.2
Router(config)#access-list 1 permit 10.0.0.0 0.255.255.255
Router(config)#ip nat pool kingpool 122.1.1.1 122.1.1.4 netmask 255.255.255.0

Router(config)#ip nat inside source list 1 pool kingpool

Router(config)#int fa0/0
Router(config-if)#ip nat inside
Router(config-if)#int se0/0/0
Router(config-if)#ip nat outside

Remove nat
Router(config)#no ip nat inside source list 1
Router(config)#no ip nat pool kingpool
Router(config)#no access-list 1

Overload(Nat Pat)
Router(config)#access-list 1 permit 10.0.0.0 0.255.255.255
Router(config)#ip nat pool kingpool 122.1.1.1 122.1.1.1 netmask 255.255.255.0
Router(config)#ip nat inside source list 1 pool kingpool (overload mtlb natpant ke
liye)
Router(config)#int fa0/0
Router(config-if)#ip nat inside
Router(config-if)#int se0/0/0
Router(config-if)#ip nat outside
PC SEserv ko chk karke dekhe ya pc se ping karke dekhe web server ko
Router#sh ip nat translations

nat overload config anather method

Router(config)#access-list 1 permit 10.0.0.0 0.255.255.255
Router(config)#ip nat inside source list 1 interface se0/0/0
Router(config)#int fa0/0
Router(config-if)#ip nat inside
Router(config-if)#int se0/0/0
Router(config-if)#ip nat outside
Router#clear ip nat translation * (for nat trans clear)

Access control list (std) near to dest 1 to 99

Router(config)#access-list 1 deny host 10.0.0.1
Router(config)#access-list 1 permit any
Router#sh access-lists
(acl ko inbound pkt and outbound jo fa hote hai in par lagate h)
Router(config)#int fa0/0
Router(config-if)#ip access-group 1 out
 For network block
Router(config)#access-list 1 deny 10.0.0.0 0.255.255.255

Access control list (Extend) near to source 100 to 199 (For telnet
block&access)
Router(config)#line vty 0 15
Router(config-line)#password musa
Router(config-line)#login (then exit cmd)
(Router par ya pc par telnet 192.168.5.2 then en pass then sec pass access mi
gaya)
(block the telnet near to source)
Router(config)#access-list 100 deny tcp host 10.0.0.1 host 192.168.5.2 eq telnet
Router(config)#access-list 100 deny tcp host 192.168.1.1 host 192.168.5.2 eq 23
Router(config)#access-list 100 permit ip any any (2 time any source &dest trafic ke
liye)
Router#sh access-lists
Router(config)#int se0/0/0
Router(config-if)#ip access-group 100 inbound
(web services block)
Router(config)#access-list 100 deny tcp 192.168.1.0 0.0.0.255 host 192.168.6.2 eq
80
Router(config)#access-list 100 permit ip any any
Router(config)#int fa0/0
Route
r(config-if)#ip access-group 100 in

Router(config)#access-list 100 deny tcp host 10.0.0.1 host 192.168.5.2 eq www

Router(config)#do sh ip access-list
Router(config)#no access-list 100

Vlan creat vlan

Switch(config)#vlan 2
Switch(config-vlan)#name account (then exit
Switch(config)#vlan 3 Switch(config-vlan)#name research (exit)
Switch(config)#int range fa0/1 - 2
Switch(config-if-range)#switchport access vlan 2
Switch(config-if-range)#switchport mode access
Switch(config)#int range fa0/3 -4 Switch(config-if-range)#switchport access
vlan 3
Switch(config-if-range)#switchport mode access (this cmds 2nd sw parbhi kare)
Switch#sh vlan
Switch(config-if)#switchport mode trunk (sw to sw for trunk)

(Router se diffrent vlan ko jodna router on stick method)

Router(config)#int fa0/0
Router(config-if)#no shut (exit)
Switch(config)#int fa0/5 (router connect hai)
Switch(config-if)#switchport mode trunk
Switch#sh int fa0/5 switchport
Switch>sh interfaces trunk
Switch>sh interfaces access

Router(config)#int fa0/0.1
Router(config-subif)#encapsulation dot1Q 1 nativ
Router(config-subif)#ip address 192.168.1.1 255.255.255.0
Router(config-subif)#exit
Router(config)#int fa0/0.2
Router(config-subif)#encapsulation dot1Q
Router(config-subif)#ip address 192.168.2.1 255.255.255.0

Router(config)#int fa0/0.3
Router(config-subif)#encapsulation dot1Q
Router(config-subif)#ip address 192.168.3.1 255.255.255.0 (then exit)
(pc ko gatways routerk dena hai fir ok)

VTP(Server clint transfer)

Switch#sh vtp status
Switch(config)#vtp mode client
Switch(config)#vtp domain musa (all sw dalna hai)
Switch(config)#vtp domain password ccna (all sw dalna hai)
Switch(config)#vtp mode server

Switch(config)#no vlan 2
Switch(config)#no vlan 3

Switch(config)#vlan 4
Switch(config)#shutdown

(int se ya jis trunk se block karna hai vo int de)

Router(config)#int fa0/24
Switch(config-if)#switchport trunk allowed vlan remove 5
Switch(config-if)#switchport trunk allowed vlan except 2

Rip configuration
Router(config)#router rip
Router(config-router)#version 2
Router(config-router)#network 192.168.1.0
Router(config-router)#network 10.0.0.0 (each router pe yahi inf)
Router(config-router)#timers basic 200 200 200 200

Eigrp configuration
Router(config)#router eigrp 10
Router(config-router)#network 192.168.1.0 0.0.0.255
Router(config-router)#network 10.0.0.0 0.255.255.255 (each router pe yahi inf)

Ospf configuration (sINGLE&mULTI AREA ONOTHER 1 ROUTER PE KARTE)

Router(config)#router ospf 1
Router(config-router)#network 192.168.1.0 0.0.0.255 area 5
Router(config-router)#network 10.0.0.0 0.255.255.255 area 5
Router#SH IP OSPF INT
Router#SH IP OSPF DATABASE
Router(config)#INT LOOPBACK 0 (THEN IP GIV LOOPBCK)
(OSPF AUTHENTICATION MUST BE PRACTICAL)

PPP CONFIGURATION
Router#SH IP INTerface SErial 0/0/0
Router#SH INT SE0/0/0
R2(config)#username R1 password musa (us R ka name&common pass)
Router(config-if)#ENcapsulation PPP
Router(config-if)#PPP Authentication chap
Telnet Config
R2(config)#enable secret ccna
R2(config)#Line vty 0 10
R2(config-line)#Password musa
R2(config-line)#login
R2(config-line)#exit

SSH CONFIGURATION
R2(config)#line vty 0 15
R2(config-line)#password musa
R2(config-line)#login local
R2(config-line)#transport input ssh R2(config-line)#transport input telnet ssh
(bydefault telnet hota hai)
R2(config-line)#exit R2(config)#username musa password musa
R2(config)#ip domain-name king.com
R2(config)#crypto key generate rsa (yaha size de sakte ya nahi bhi)

(pc ya router se -L KO SMAL ME DALE)

R1#ssh -l musa 10.0.0.2
Open
Password: THEN SECRET PASS

(Datalink pe work karta without ip)

CDP (DO SW KO R SE CONNECT KARKE INT NO SHUT)
Router#SH CDP
Router#SH CDP NEighbors
(CHANGE R NAME

Router(config)#hostname R1
Switch(config)#hostname SW2
Router#SH CDP NEighbors
R1#copy running-config startup-config (sw pw se purani entry remov ho jati)
R1#sh cdp interface
R1#sh cdp entry SW2
SW2#sh cdp entry R1 (R ka hstname change karke entry dekhe)

Extra commands
R1#sh history
R1#sh flash: R1#sh controllers
R1#mkdir musa
Create directory filename [musa]?
R1#clear cdp table reset func (use clear cmd more servise ko)
R1#sh ver R1#sh int R1#sh ip int R1#sh ip int br R1#sh protocols
R1#sh startup-config R1#erase startup-config

R1#sh run
R1(config)#banner motd /
Enter TEXT message. End with the character '/'.

Console password:
R1(config)#line console 0 R1(config-line)#password musa

Telnet Password:
R1(config)#line vty 05 R1(config-line)#password musa R1(config-line)#login
R1(config-line)#exit
Auxillary Password:
R1(config)#line aux 0 R1(config-line)#password musa

Router#debug ip ospf adj

Router#debug ip rip
Router#sh debugging
Router#traceroute 20.0.0.2

RAM To NVRAM : R1#copy running-config startup-config

RAM TO TFTP : R1#COPy Running-config tftp:
Address or name of remote host []? 192.168.1.1
Destination filename [R1-confg]? ?
To NVRAM RAM : R1#copy startup-config running-config
Destination filename [running-config]? musa
NVRAM TO TFTP : R1#copy startup-config tftp:
Address or name of remote host [ ]
TFTP TO RAM : R1#copy tftp: running-config
: Address or name of remote host []?
TFTP TO NVRAM : R1#copy tftp: startup-config
CLI TO RAM : R1#configure terminal

CONFIGURE BGP :
R1
Router(config)#int se0/0/0
Router(config-if)#ip address 10.10.10.1 255.255.255.0
Router(config-if)#no shut
Router(config-if)#clock rate 64000
Router(config-if)#exit
Router(config)#interface loopback 0
Router(config-if)#ip address 100.100.100.1 255.255.255.0 (then exit)
Router(config)#int loopback 1
Router(config-if)#ip address 101.101.101.1 255.255.255.0 (then exit)
Router(config)#router bgp 100
Router(config-router)#bgp router-id 1.1.1.1
Router(config-router)#^Z
R2
Router(config)#int se0/0/0
Router(config-if)#ip address 10.10.10.2 255.255.255.0
Router(config-if)#no shut
Router(config-if)#exit
Router(config)#int se0/0/1
Router(config-if)#ip address 20.20.20.1 255.255.255.0
Router(config-if)#no shut
Router(config-if)#clock rate 64000 then exit
Router(config)#router bgp 200
Router(config-router)#bgp router-id 2.2.2.2
R3
Router(config)#int se0/0/0
Router(config-if)#ip address 20.20.20.2 255.255.255.0
Router(config-if)#no shut Router(config-if)#clock rate 64000 exit
Router(config)#router bgp 300
Router(config-router)#bgp router-id 3.3.3.3 (then exit)

BGP Network Learning

R1(config)#router bgp 100
R1(config-router)#neighbor 10.10.10.2 remote-as 200
R1(config-router)#network 100.100.100.0 mask 255.255.255.0
R1(config-router)#network 101.101.101.0 mask 255.255.255.0
R1(config-router)#^Z R1#sh ip route R1#sh ip bgp

R2(config)#router bgp 200

R2(config-router)#neighbor 10.10.10.1 remote-as 100
R2(config-router)#neighbor 20.20.20.2 remote-as 300 R2#sh ip bgp

R3(config)#router bgp 300

R3(config-router)#neighbor 20.20.20.1 remote-as 200

C:\Users\Musa>arp d
C:\Users\Musa>arp -d
C:\Users\Musa>arp -a