Cisco Device Basics Flashcards
What is a rollover cable?
Has an ethernet RJ-45 on one end and a serial port on the other. Also called a console cable. Some newer rollover cables have a USB instead of a serial port
What is a straight-through ethernet cable?
Ethernet RJ-45 connecters on each end. Used to connect routers to hubs/switches as well as workstations to switches. Enables you to access router from a PC on the same network via VTY connection.
What is a crossover ethernet cable?
Used to connect an Ethernet port on a router directly to the NIC in a PC. Requires VTY session. Also used to connect other devices.
What type of cable do you use to connect a workstation to a switch?
Ethernet straight-through cable
What type of cable do you use to connect a workstation to the console port on a Cisco device?
Rollover cable
What type of cable do you use to connect a hub to a switch?
Ethernet crossover cable
What type of cable do you use to connect a router to a switch?
Ethernet straight-through cable
What type of cable do you use to connect a switch to a switch?
Ethernet crossover cable
What type of cable do you use to connect workstation to a router?
Ethernet crossover cable
What type of cable do you use to connect a hub to a workstation?
Ethernet straight-through cable
What are the (2) ways to connect a PC directly to a router?
Laptop ethernet port > crossover cable > router’s ethernet port
Laptop COM port > (RJ-45) rollover cable > router’s console port
What are the required settings to establish a console connection through a serial port? (Baud rate, data, parity, stop, flow control.)
Baud rate (9600), Data (8 bit), Parity (none), Stop (1 bit), Flow control (none)
To make a console connection on a router using the serial port on a PC you need what (3) things?
Console port, rollover cable, terminal emulation program
Explain ROM storage and what is kept there.
Read-only memory is pre-programmed, non-writable memory that holds a limited version of the IOS software to be used if the full IOS image can’t be found.
Explain flash memory and what is kept there.
Non-volatile programmable memory that contains the Cisco IOS images.
Explain RAM memory and what is kept there.
Random-access memory is volatile memory that clears when the device is powered off. Contains the running OS and current (unsaved) running config file as well as all dynamic tables such as ARP, routing, and so on.
Explain NVRAM and what is kept there.
Non-Volatile RAM is persistent memory that contains the backup copy of the startup-config file and virtual configuration register. Sometimes it also holds the full IOS image.
When the router boots it looks for the IOS image in the following locations and order:
(1) boot system statements
(2) flash
(3) TFTP server
(4) ROM
If a router can’t find a startup-config file, it…
starts in default unconfigured state and enters setup mode.
Within a Cisco Router, how do you show the IOS version on the terminal?
[enter] > enable > show version
Within a Cisco Router, how do you show how much NVRAM is available via the terminal?
[enter] > enable > show version > [enter] > ____ bytes of NVRAM
Within a Cisco Router, how do you show how much DRAM a router has?
[enter] > enable > show version > [enter] > _____/_____ > [add two values together for total DRAM]
If the router can’t find a valid IOS image to load during startup, it…
enters ROM monitor mode (limited IOS version with a limited set of commands to help you remediate IOS image issue.
What commands allow you to save the configuration file in NVRAM to a TFTP server?
copy start tftp
What (2) commands can you use to copy files from a TFTP server to a router?
copy tftp run
copy tftp start
You will be prompted for the file name after entering the command.
The currently-used config file is called the…
running-config file
The configuration file saved in NVRAM is…
startup-config file
What command allows you to load the current config saved in NVRAM into memory?
copy start run
What command allows you to save the current configuration into NVRAM?
copy run start
What command allows you to save the current config to a network server?
copy run tftp
What command allows you to copy a config file from a network server into NVRAM?
copy tftp start
What command allows you to copy the IOS image to the tftp server?
copy flash tftp
The factory-default setting for the configuration register is…
0x2102
How do you display a list of commands available in a current mode?
?
How do you display commands that begin with a specific letter(s)?
[xx]?
How do you display keywords for a command?
[command] ?
How do you get the full command from a partial command?
[partial command]+TAB
How do you turn command history on or off?
ON: terminal history
OFF: terminal no history
What does the error “%ambiguous command” mean?
There’s more than one command that starts with [xx] letter(s)
What does the error “%incomplete command” mean?
The command is valid as entered but is missing parameters to execute
How do you configure passwords on a Cisco router by line?
enable config t line [con or vty] [# #] password [password] login exit copy run start
How do you prevent logins on certain Cisco router lines?
enable config t line [con or vty] [# #] enable secret [password] login exit copy run start
How do you set the “enable secret” password?
enable config t enable secret [password] exit copy run start
How do you set the “enable” password?
enable config t enable password [password] exit copy run start
Is the “enable password” or the “enable secret” password in plain text?
The “enable password” is plaintext, the “enable secret” is encrypted.
Steps to require a Telnet session password.
enable config t line vty [# #] password [desired password] login
You want to prevent users from accessing a router through a Telnet session. What should you do?
For the VTY lines, add the login parameter and remove any passwords.
Describe the “enable secret” password.
Configures a password to switch to privileged EXEC mode, and saves the password using MD5 encryption.
How do you encrypt the CHAP password in the config file?
service password-encryption
What can you implement to help secure access to a router through the con 0 line?
Set a password and use the login command, keep the router in a locked room
Why would you get the following error?
Router > enable
% Error in authentication
If you try to move from enable mode to privileged mode with no enable password secret set. You can resolve the error by entering: (config)#enable secret [password]
Is the “service password-encryption” command a secure way to encrypt passwords?
Not really, passwords can be easily broken. But, it’s useful for shoulder surfing.
If you’ve established a session, what password would you use to enter privileged EXEC mode?
The enable secret password, the enable password if previous is not set.
What are cisco device log messages?
Syslog messages. Will contain a timestamp, the facility(source of message)-severity level-mnemonic (nature of message) and then the text of the message itself.
What are the 8 severity levels for a cisco device?
0: Emergency
1: Alert
2: Critical
3: Error
4: Warning
5: Notice
6: Information
7: Debug
Where will cisco log messages be sent by default?
A memory buffer (RAM) and then console. Impractical for large network.
How do you configure cisco log messages to go to a syslog server?
logging on
logging host [ip address that you want to send things to]
logging trap [severity level # or name. # gives you it and everything below it, name gives you just that one level]
logging source-interface [where the logs show as coming from]
show logging
0: Emergency means…
System unusable
1: Alert means…
Immediate action needed
2: Critical means…
Critical conditions
3: Errors means…
Error conditions
4: Warnings means…
Warning conditions
5: Notifications means…
Normal but significant conditions
6: Informational means…
Informational messages only
7: Debugging means…
Debugging messages
What does “arp -a” show?
Lists the ARP cache for a workstation
What utility gives you the most info about the operational status of a router?
Telnet, because Telnet tells you that Layers 1, 2, 3, and 7 are operational.
When troubleshooting a router remotely, what CLI commands do you need to issue to see the debug output?
terminal monitor
debug ip rip
What does this show?
C:\tracert 166.77.11.1
Tracing route to 166.77.11.1 over a maximum of 30 hops
1 2 ms 1 ms 1 ms a.abc.net [209.63.168.50] 2 2 ms 1 ms 1 ms c.xyz.net [209.60.11.1] 3 * * * Request timed out. 4 * * * Request timed out. --additional output omitted
The destination network can be reached but the host does not respond, and a router in the path does not have a router to the destination network.
What does this show?
C:\tracert 166.77.11.1
Tracing route to 166.77.11.1 over a maximum of 30 hops
1 * * * Request timed out. 2 * * * Request timed out. 3 * * * Request timed out. 4 * * * Request timed out. --additional output omitted
The local workstation is configured with an incorrect default gateway address and your local router is down.
