CCNA 200-301 COURSE

CISCO CERTIFIED NETWORK ASSOCIATE

UNITS

• Unit 1:  Network Fundamentals

• Unit 2: Network Access
• Unit 3: IP Connectivity
• Unit 4: IP Services
• Unit 5: Security Fundamentals
• Unit 6: Automation and Programmability
 UNIT 1: NETWORK FUNDAMENTALS
•Router and its major Components
•Different Modes of a Router
•Cisco IOS Basic Commands
•Setting Passwords in a Router
•Layer 2 and Layer 3 Switches
•Next-Generation Firewall and IPS
•Cisco DNA controllers and WLC
•Endpoints and Servers •Verify and Configure IPv6
Address
•Cisco Network Topology Architecture
•Access Points and Wireless
•Physical Interfaces and Cabling Types Principles
•Optical Fiber Cable and its Types •Virtualization Fundamentals
•TCP and UDP Protocols in Transport
Layer
•IP v4 Addressing and Subnetting
•Introduction to IPv6 Addressing
ROUTER AND ITS MAJOR COMPONENTS

• What is a Router?
• A router is a network device that operates at the network layer of the OSI Model.
• Unlike an Ethernet switch, the router is a more complicated and expensive device. It requires a lot of initial
configuration before installing and deploying it to the IP network.
• The basic function of a router is to interconnect different networks and works in a WAN environment.
• It routes IP traffic from one network to another network on the basis of the destination IP address.
• The router maintains an IP routing table and makes a routing decision on the basis of the destination IP address
mentioned in the routing table to forward the packet from one interface to another interface of the router.
• It acts as a traffic cop and controls the  IP traffic congestion flowing in and out of the different interfaces of the router.
How does a Router work?
The function of the router is to route the IP packet from the source station to the destination station that belongs to the different
networks. Every data packet traveling through the router contains the source IP address and the destination IP address.

Booting Sequence of a Router

The router boots the same way as the computer does.
The sequence of steps during the booting process are as follows:
•When you power on the router, ROM comes into action immediately. It performs a POST (Power On Self Test) by which ROM
checks all the hardware that is working properly or not.
•After the POST is successfully performed, the Bootstrap loader stored inside the ROM executes and searches for the IOS image.
Bootstrap code is also called mini IOS.
•IOS images can be stored in many places. However, it is generally stored in flash memory.  The configuration register value
stored in NVRAM  determines the booting sequence of the router. The IOS image, if found in flash memory is then loaded into the
RAM.
• For some reason, if IOS is not found in flash, the router boots itself through mini IOS stored in ROM. This condition is called the
ROMMON mode.
•After that, startup configuration files stored in NVRAM is loaded into RAM.  Then, the configuration file is named as running
configuration.
•The router is then logged in and the User Exec prompt (>) is displayed on the screen.
•When the configuration file is not found in NVRAM, it searches for the TFTP server. If the TFTP server is also not found, the
router then displays  “System Configuration Dialog“.
Router Components

Processor
The routers are powered by high-performance multi-core processors that can support the high-speed multiple LAN or WAN connections and can
run multiple concurrent services. Generally, the CPU used in routers is based on RISC (Reduced Instruction Set Computing) architecture.
Memory
Just like a desktop computer, the router also employs different types of memory. These memories are ROM (Read Only Memory), RAM
(Random Access Memory), NVRAM (Non-Volatile RAM), and Flash memory. Each memory has its own specific function as described below:
Different Types of Memory
ROM
•It is a Read-Only Memory and is non-volatile in nature. That means its content does not get deleted if the router is turned off.
•ROM’s major function is to perform POST (Power On Self Test) operations. It checks all the system hardware and generates a
self-test report as soon as the router is powered on.
RAM
•RAM is the main memory and it is volatile in nature i.e. its content will be lost when the router is powered off.
•It temporarily stores the configuration of the router and is called the running configuration.
•It also stores routing tables, ARP cache, and buffered packets.
NVRAM
•It is a special type of RAM that is non-volatile in nature. Hence, it is called Non Volatile RAM because it can retain the
information even if the router is powered off.
•It provides the storage for the user-defined configuration for the router and is called the startup configuration.
•NVRAM also stores Configuration Register. It is a 16-bit register, the value of which decides the boot sequence of the router.
The hexadecimal value 0x2102 is the default configuration register value that boots the router in normal mode.  Sometimes,  the
router does not boot in normal mode, when the router does not find the valid IOS image. The router then boots from the mini IOS
and this time the configuration register value is set to 0x2142.
Flash memory
•Flash memory acts as a secondary memory of a router where the operating system image is stored.
•It is an electrically erasable ROM and can hold the content even if the router is shut down.
•It can store multiple versions of IOS images.
Types of Interfaces
Interfaces are the communication ports that are used for the connectivity of different networks and the management of the router.
Routers may have the following different types of LAN and WAN interfaces. LAN interface includes Standard Ethernet, Fast
Ethernet, Gigabit Ethernet, FDDI, Token Ring, etc. Whereas, WAN interfaces can be Serial ports, ISDN, etc. There are
Console and Auxiliary ports for router configuration and management.

- Standard Ethernet
It is the basic Ethernet type defined in IEEE 802.3 standard. Ethernet supports data speed up to 10 Mbps.  It is an old standard and
it is mostly replaced by the new Ethernet standard offering higher bandwidth. The transmission media supported for the Ethernet
is 10Base-T.

- Fast Ethernet
Fast Ethernet port, also called Fe port, provides a higher data transmission rate up to 100 Mbps. The IEEE standard for Fast 
Ethernet is 802.3u. The transmission media supported by Fast Ethernet are 100Base-T,  100Base-TX, 100Base-FX, etc.

- Gigabit Ethernet
Gigabit Ethernet is the next-level Ethernet technology offering ten times higher data rate than Fast Ethernet. It can have a speed of
up to 1000 Mbps and it is defined in IEEE 802.3z. The communication media defined in Gigabit Ethernet standards are
1000Base-T, 1000Base-LX, 1000Base-SX, etc.
- Serial Interface
The serial interface is used for WAN connectivity. The separate modules or cards are added to the router for serial connection.
Mostly, the serial connection is used for point-to-point links.  When we establish a serial connection between two routers, one end
is said to be DCE ( Data Communication Equipment) and the other end is DTE ( Data Terminating Equipment). The clock
rate or bandwidth is decided at the DCE end for channel bandwidth.

- Auxiliary Port
Auxiliary (Aux) port connects the router remotely in a non-network environment. The dial-up modem is used for end to end
connectivity between the Aux port of the router and the remote PC. This allows a network to access the router from a remote
location.
You can click on the link below to :
How to Access the Router through Aux Port

- Loopback Interface
The loopback interface is not a physically available port in the router. It is the virtual or logical port. It has many uses. It is used as
a router ID when we configure OSPF protocols in the routers. The loopback port is the “Always On” port. Hence, the router is
reachable on the network as long as its IP routing table is maintained in the router, even if the router’s physical ports are down.
The loopback interface plays a vital role for diagnostic and troubleshooting purposes.
Different Modes of a Cisco Router
The various command modes supported by a Cisco router are as follows:
Modes Prompts How to enter into a particular mode Exit from the mode
After, the router boots in default mode hit the Type EXIT in User Exec Mode
User Execution  Mode Router>
ENTER key. Router>EXIT
Type DISABLE to go back to User mode.
Type ENABLE command in user mode to
Privileged Execution Router#DISABLE
Router# enter into the privileged mode
Mode Type EXIT to log out of the router
Router>ENABLE
Router#EXIT
Type CONFIGURE TERMINAL  command
Type EXIT  to back to the previous mode i.e.
Global Configuration in privileged mode to enter into global config
Router(config)# privileged mode
Mode mode
Router(config)#EXIT
Router#CONFIGURE TERMINAL

For interface mode, type Interface <port ID>

in global config mode. For example:
•Router(Config-if)
Router(config)#INTERFACE Serial 0/0/0 Type  EXIT to go back to a previous mode or type
Specific Configuration •Router(config-line)#
Example for line mode: END to go directly into privileged mode.
Mode •Router(config-router)#
Router(config)#LINE CONSOLE  0  
& others
Example for router mode:
Router(config)# ROUTER RIP

Router Parameter <parameter Router enters into the set-up mode, when it Type NO to exit from the set-up mode to get back to
Set-up Mode
Value>: does not find the startup-config in NVRAM. the user mode.

When you are in privileged mode, type

RELOAD command and as the router starts Type RESET command to go back to the usual
ROMMON Mode rommon 1> rebooting, immediately press CONTROL +C mode
key to enter into the ROMMON mode rommon 1>RESET
Router#RELOAD
Cisco IOS Commands
Cisco IOS runs various commands on CLI ( Command Line Interface) mode. It supports a large number of commands that help
to configure the Router with networking features and other router parameters. The different working modes of router support
different levels of commands.
The user-mode command supports a few commands to change terminals, view the status of the network like ping, tracert, Enable
command to enter on to the privileged mode, etc. and other basic level commands. The following table shows the different CLI
commands supported by user mode.

Cisco IOS Basic Operation Command and Keys

Left Arrow or Ctrl+B Move the cursor by one character towards Left
Right Arrow or Ctrl+F Move the cursor by one character towards Right
Esc +B Move the Cursor Back by one Word
Esc + F Move the cursor Forward by one Word
Ctrl +A Move the cursor to the beginning of the command line
Ctrl +E Move the cursor to the end of the command line
Down Arrow or <Ctrl+N> Recall next command executed
Up Arrow or <Ctrl+P> Recalls the  last command executed
<Ctrl+R> Refresh screen output
TAB Complete the partial command typed
Logout or Exit or Quit Exit the Router
User Exec mode Command
The user-mode command supports a few commands to change terminals, view the status of the network like ping, tracert, Enable
command to enter on to the privileged mode, etc. and other basic level commands. The following table shows the different CLI
commands supported by user mode.

Router>ENABLE Enter the privileged exec mode.

Router>DISABLE To go back to the use exec mode form privileged mode.

Router>EXIT To Exit the router.
Router>LOGOUT To Exit the router.

Router>PING To test the connectivity of the network.

Router>RESUME Allow suspended telnet sessions.

Router>TELNET To connect the router through telnet.

Router>TRACERT To track the number hops from source to destination.

Privileged Exec mode command

The privileged mode command includes the commands supported by the user-mode as well as the other commands. The privileged
mode supports all the Show and Copy command.
Router# VERSION
Router#  SHOW RUNNING-CONFIG
Router# SHOW STARTUP-CONFIG
Router# SHOW FLASH
Router# SHOW INTERFACE
Router# SHOW IP INTERFACE BRIEF
Router# SHOW CONTROLLERS 0
Router# SHOW IP PROTOCOLS
Router# SHOW ACCESS-LISTS
Router# CDP NEIGHBOR
Router# IP ROUTE
Router# COPY RUNNING-CONFIG   
                STARTUP-CONFIG
Router# COPY STARTUP-CONFIG
                RUNNING-CONFIG
Router# COPY RUNNING-CONFIG TFTP
Router# COPY TFTP RUNNING-CONFIG
Router# COPY FLASH TFTP
Router# COPY TFTP FLASH
Displays the router IOS version and the internal components.
Displays the current configuration of the router.
Displays the configuration stored on NVRAM.
Shows the content of the flash memory.
Displays the status and the configuration of the router interface
Displays the status and overview of all the interfaces of the router
Displays the hardware-specific information about the router interfaces
Displays the information on routing protocols.
Shows the current access control list configured on the router.
Shows the details of CDP neighbors.
Displays the IP routing table entry on the router.
Copy the content of main memory i.e. current configuration into the NVRAM.
Copy the content of NVRAM into the main memory.
Copy current configuration into TFTP server.
Copy the content of TFTP server into the main memory.
Copy the IOS image into TFTP server.
Copy the IOS image into flash.
Global configuration command
When we type in the configure terminal, we move into the global configuration mode. The configuration command in this mode
will entirely change the router parameters. Global mode further classifies different specific configuration modes such as interface
configuration mode, line configuration mode, sub-interface mode, etc.
Router(config)# enable password
Sets Privileged Mode password.
1234
Router(config)# enable secret 12345 Sets privileged mode password. Enable secret password is encrypted by default

Router(config)# line con 0

Router(config-line)#login Sets console password for the router to access through the console port
Router(config-line)#password 123456

Router(config)# line aux 0

Router(config-line)#login Sets the auxiliary  password for the router to access through the auxiliary port
Router(config-line)#password 123456

Router(config)# line vty 0 4

Sets VTY password for the router to access through telnet. By default, the Cisco router support 5 telnet session
Router(config-line)#login
simultaneously
Router(config-line)#password 123456

Router(config)#router rip
Configures RIP protocol to the router.
Router(config-router)#network 172.20.0.0
Router(config)#no router rip Disable RIP protocol form the router.

Router(config)#router OSPF 1
Configures the OSPF routing protocol to the router.
Router(config-router)#network 172.20.0.0 0.0.255.255 Area 0

Router(config)#ip route 172.20.0.0 255.255.0.0 172.20.2.1 Configure static routing to the router
Router(config)#no cdp run To disable CDP protocol from the router.
Router(config)#cdp run To enable CDP on the router.
How to set  passwords in a Cisco  Router
Network security is a major concern, while we deploy the router in a data network. The router works uninterruptedly in a network,
thus it is more vulnerable to external threats and unauthorized access to the network.
In order to prevent and protect the network from unwanted threats and unauthorized access, the router must be password
protected.

Types of Password
The different levels of passwords are set to access the router.
There are five different passwords that can be set on a Cisco
Router.
•Enable Password
•Enable Secret Password
•Line Console Password
•Line Auxiliary Password
•Telnet or VTY Password
Enable and Enable Secret passwords are called the
Privileged mode password. These two passwords are set
to go from User Exec Mode to the Privileged Exec Mode.
The Enable Secret password is encrypted by default.
The other three passwords i.e. Line Console, Line Aux, and
VTY passwords are set to gain access to the router.
Enable Password
Enable password is set on the router in order to go from user exec mode to the privileged exec mode. The CLI command to set
enable password is:

Router>ENABLE
Router#CONFIGURE TERMINAL
Router(config)#ENABLE PASSWORD 1234

Enable Secret Password

Enable secret password is also set to go from user exec mode to the privileged mode. However, it has higher precedence than the
Enable password. Also, the Enable Secret password is encrypted by default with the MD5 Hash function. That means, Enable
Secret password is more secure than Enable password.
Passwords are part of configuration files. Hence, the enable password can be seen as plain text, whereas the enable secret password
is seen as the encrypted format.

Router>ENABLE
Router#CONFIGURE TERMINAL
Router(config)#ENABLE SECRET 12345

Line Console Password

Line console password is set to the router when it is accessed physically using the Console port. The command for configuring line
console password is:
Router>ENABLE
Router#CONFIGURE TERMINAL
Router(config)#LINE CONSOLE 0
Router(config-line)#LOGIN
Router(config-line)#PASSWORD 123456

Line Auxiliary Password

The auxiliary password is set on the router when it is required to be gained access from the remote location using the modem. The password for line
aux is :

Router>ENABLE
Router#CONFIGURE TERMINAL
Router(config)#LINE AUX 0
Router(config-line)#LOGIN
Router(config-line)#PASSWORD 123456

Telnet or VTY Password

VTY password is set on the router when it is accessed through remote login using telnet service. By default, the Cisco router supports 5 telnet
sessions simultaneously. The same password can be set for all the telnet sessions. The command for VTY password are as:

Router>ENABLE
Router#CONFIGURE TERMINAL
Router(config)#LINE VTY 0  4
Router(config-line)#LOGIN
Router(config-line)#PASSWORD 123456