Commands

Question 1

Get into Privileged Executive Mode

Answer 1

enable

Question 2

Get into Global Configuration Mode

Answer 2

configuration terminal

Question 3

Get into Interface Configuration Mode

Answer 3

interface s0/0

Question 4

Get into Line Configuration Mode

Answer 4

line console 0

Question 5

Get into Router Configuration Mode

Answer 5

router ospf 1

Question 6

Save configurations on the device

Answer 6

copy running-config startup-config

Question 7

Configure privileged executive mode password

Answer 7

enable secret cisco

Question 8

Configure telnet

Answer 8

line vty 0 15
login
password cisco

Question 9

Show information of nearby network devices

Answer 9

show cdp neighbors detail

Question 10

Set the hostname

Answer 10

hostname R1

Question 11

Set default gateway

Answer 11

ip default-gateway 192.168.1.1

Question 12

Configure VLAN interface

Answer 12

int vlan 1

ip address 192.168.1.200 255.255.255.0

Question 13

Set speed and duplex on an interface

Answer 13

speed 100

duplex full

Question 14

Encrypt passwords

Answer 14

service password-encryption

Question 15

Configure ssh

Answer 15

username jordan secret cisco
ip domain-name lab.local
crypto key generate rsa
line vty 0 15
transport input ssh

Question 16

enable port security

Answer 16

switchport port security

Question 17

Allow only one device at a time to access a port

Answer 17

switchport port-security max 1

Question 18

Allow only one unique device to access a port.

Answer 18

switchport port-security mac-address FFFFFFFFFFFF

Question 19

Change a port to an access port and a trunk port

Answer 19

switchport mode access

switchport mode trunk

Question 20

Display the security configurations of f0/0

Answer 20

show port-security interface f0/0

Question 21

Configure a static route

Answer 21

ip route 192.168.2.0 255.255.255.0 192.168.1.1

Question 22

Configure a default route

Answer 22

ip route 0.0.0.0 0.0.0.0 192.168.1.1

Question 23

Configure a default route for OSPF

Answer 23

default-information originate

Question 24

Configure router on a stick

Answer 24

interface f0/0
no ip address
interface f0/0.1
encapsulation dot1q 1 native
ip address 10.0.0.1 255.255.255.0
int f0/0.10
encapsulation dot1q 10
ip address 10.10.10.1 255.255.255.0

Question 25

Change the OSPF cost reference to 1GB

Answer 25

router ospf 1

auto-cast reference-bandwidth 1000

Question 26

Enable OSPFv2 and advertise a network

Answer 26

router ospf 1

network 192.168.1.1 0.0.0.0 area 0

Question 27

Change the priority number of f0/0 for DR/BDR to 5

Answer 27

int f0/0

ip ospf priority 5

Question 28

Change OSPFv2 cost of f0/0 to 20

Answer 28

int f0/0

ip ospf cost 20

Question 29

For OSPFv2, don’t send hello packets to interface f0/0

Answer 29

router ospf 1

passive-interface f0/0

Question 30

Inject configured default routes into OSPFv2

Answer 30

router ospf 1

default-information originate

Question 31

Enable IPv6 routing and OSPFv3 and give the router an ID of 1.1.1.1

Answer 31

ipv6 unicast-routing

ipv6 router osrouter-id 1.1.1.1

Question 32

Advertise f0/0 in OSPFv3

Answer 32

int f0/0

ipv6 ospf 1 area 0

Question 33

Display OSPFv2 and OSPFv3 area ID and DR/BDR info

Answer 33

show ip ospf interface

show ipv6 ospf interface

Question 34

Display nearby router OSPFv2 and OSPFv3 info

Answer 34

show ip ospf neighbor

show ipv6 ospf neighbor

Question 35

Display ipv4 and ipv6 routes

Answer 35

show ip route

show ipv6 route

Question 36

Display ARP table

Answer 36

show mac address-table dynamic

Question 37

Change OSPFv2 cost of f0/0 to 5

Answer 37

int f0/0

ip ospf cost 5

Question 38

Only send hello packets to f0/0 for OSPFv2

Answer 38

router ospf 1
passive-interface default
no passive-interface f0/0

Question 39

Create an access list that denies 10.0.0.1 from communicating with 10.0.1.1 in HTTP

Answer 39

access-list 100 deny tcp host 10.0.0.1 host 10.0.1.1 eq 80

access-list 100 permit ip any any

Question 40

Create an access list that denies 10.0.0.0 from echo requesting 11.0.0.0

Answer 40

access-list 100 deny icmp 10.0.0.0 0.255.255.255 11.0.0.0 0.255.255.255 echo
access-list 100 permit ip any any

Question 41

Run OSPFv3, add a router ID of 1.1.1.1 and advertise netowrk 192.168.1.0.

Answer 41

ipv6 router ospf 1
router-id 1.1.1.1
int f0/0
ipv6 ospf 1 area 0

Question 42

Display OSPFv2 area ID and DR/BDR information

Answer 42

show ip ospf interface

Question 43

Display OSPFv2 information of nearby routers

Answer 43

show ip ospf neighbor

Question 44

Display OSPFv3 area ID and DR/BDR information

Answer 44

show ipv6 ospf interface

Question 45

Display OSPFv3 information of nearby routers

Answer 45

show ipv6 ospf neighbor

Question 46

Display ipv4 and ipv6 routes

Answer 46

show ip route

show ipv6 route

Question 47

Display ARP table

Answer 47

show mac address-table dynamic

Question 48

Create an access list that denies 10.0.0.1 and permits 10.0.0.0

Answer 48

access-list 1 deny 10.0.0.1 0.0.0.0

access-list 1 permit 10.0.0.0 0.255.255.255

Question 49

Apply an access list to interface g0/0 in-bound

Answer 49

int g0/0

ip access-group 1 in

Question 50

Create an access list that denies 10.0.0.1 from communicating with 10.0.1.1 in HTTP

Answer 50

access-list 100 deny tcp host 10.0.0.1 host 10.0.1.1 eq 80

access-list 100 ip any any

Question 51

Create an access list that denies 10.0.0.0 from echo requesting 11.0.0.0

Answer 51

access-list 100 deny icmp 10.0.0.0 0.255.255.255 11.0.0.0 0.255.255.255 echo
access-list 100 permit ip any any

Question 52

Allow only 10.0.0.50 to SSH or Telnet to the router

Answer 52

access-list 1 permit host 10.0.0.50
line vty 0 15
access-class 1 in

Question 53

Deny 10.0.0.50 from sending http traffic to 11.0.0.11

Answer 53

ip access-list extended 100
deny tcp host 10.0.0.50 host 11.0.0.11 eq 80
permit any any
int g0/0
ip access-group 100 in

Question 54

Configure static NAT by setting 25.1.1.25 as the inside global IP for the inside private IP 192.168.1.2

Answer 54

ip nat inside source static 192.168.1.2 25.1.1.25
int g0/0
ip nat inside
int g0/1
ip nat outside

Question 55

Configure dynamic NAT by setting 25.1.1.25 - 30 as the inside global IP range for the inside private IP network 192.168.1.0

Answer 55

ip nat pool INSIDEPUBLIC 25.1.1.25 25.1.1.30 netmask 255.255.255.0
access-list 1 permit 192.168.1.0 0.0.0.255
ip nat inside source list 1 pool INSIDEGLOBAL
int g0/0
ip nat inside
int g0/1
ip nat outside

Question 56

Configure PAT by setting 25.1.1.25 as the inside global IP range for the inside private IP network 192.168.1.0

Answer 56

access-list 1 permit 192.168.1.0 0.0.0.255
ip nat inside source list 1 interface g0/1 overload
int g0/0
ip nat inside
int g0/1
ip nat outside

Question 57

Display NAT translation

Answer 57

show nat translations

Question 58

Display general overview of NAT configuration

Answer 58

show nat statistics

Question 59

Remove all nat translation translations

Answer 59

clear ip nat translation*

Question 60

Configure 25.1.1.25 as the NTP server

Answer 60

ntp server 25.1.1.25 version 4

Question 61

Display all NTP servers the router is configured to use.

Answer 61

show ntp associations

Question 62

Confirm that the router is receiving info from the NTP server

Answer 62

show ntp status

Question 63

Enable DHCP client

Answer 63

int g0/0

ip address dhcp

Question 64

Display which IP address have been leased to who

Answer 64

show ip dhcp binding

Question 65

Display details of a pool of IP’s used for DHCP

Answer 65

show ip dhcp pool POOLNAME

Question 66

Confirm trunking is functioning

Answer 66

show interface trunk