IOS Commands

Question 1

line console 0

Answer 1

Global command that changes the context to console configuration mode.

Question 2

line vty

Answer 2

Global command that changes the context to vty configuration mode for the range of vty lines listed in the command.

Question 3

login

Answer 3

Line (console and vty) configuration mode. Tells IOS to prompt for a password (no username).

Question 4

password

Answer 4

Line (console and vty) configuration mode. Lists the password required if the login command (with no other parameters) is configured.

Question 5

interface

Answer 5

Global command that changes the context to interface mode - for example, interface FastEthernet 0/1

Question 6

hostname

Answer 6

Global command that sets this switch’s host name, which is also used as the first part of the switch’s command prompt.

Question 7

exit

Answer 7

Moves back to the next higher mode and goes back to enable mode from any of the configuration submodes.

Question 8

Ctrl-Z

Answer 8

This is not a command, but rather a two-key combination that together do the same thing as the end command

Question 9

end

Answer 9

Exits configuration mode and goes back to enable mode from any of the configuration submodes.

Question 10

no debug all

undebug all

Answer 10

Enable mode EXEC command to disable all currently enabled debugs.

Question 11

terminal monitor

Answer 11

EXEC command that tells Cisco IOS to send a copy of all syslog messages, including debug messages, to the Telnet or SSH user who issues this command.

Question 12

reload

Answer 12

Enable mode EXEC command that reboots the switch or router.

Question 13

copy

Answer 13

Enable mode EXEC command that copies files from one file location to another. Locations include the startup config and running config in RAM, files TFTP and RCP servers, and flash memory.

Question 14

copy running-config startup-config

Answer 14

Enable mode EXEC command that saves the active config, replacing the startup config file used when the switch initializes.

Question 15

copy startup-config running-config

Answer 15

Enable mode EXEC command that merges the startup config file with the currently active running config file in RAM.

Question 16

show running-config

Answer 16

Lists the contents of the running config file.

Question 17

write erase

erase startup-config

Answer 17

These enable mode EXEC commands to erase the startup config file.

Question 18

quit

Answer 18

EXEC command that disconnects the user from the CLI session.

Question 19

show startup-config

Answer 19

Lists the contents of the startup config (initial config) file.

Question 20

enable

Answer 20

Moves the user from user mode to enable (privileged) mode and prompts for a password if one is configured.

Question 21

disable

Answer 21

Moves the user from enable mode to user mode.

Question 22

configure terminal

Answer 22

Enable mode command that moves the user into configuration mode.

Question 23

login local

Answer 23

Console and vty configuration mode. Tells IOS to prompt for a username and password, to be checked against locally configured username global configuration commands on this switch or router.

Question 24

username secret

Answer 24

Global command. Defines one of possibly multiple usernames and associated passwords, used for user authentication. Used when the login local line configuration command has been used.

Question 25

crypto key generate rsa

Answer 25

Global command. Creates and stores (in a hidden location in flash memory) the keys required by SSH.

Question 26

transport input {telnet | ssh | all | none}

Answer 26

vty line configuration mode. Defines whether Telnet and/or SSH access is allowed into this switch. both values can be configured on one command to allow both Telnet and SSH access (the default).

Question 27

service password-encryption

Answer 27

Global command that (weakly) encrypts passwords defined by the “username password”, “enable password”, and “login” commands.

Question 28

interface vlan

Answer 28

Changes the context to VLAN interface mode. For VLAN1, allows the configuration of the switch’s IP address.

Question 29

ip address

Answer 29

VLAN interface mode. Statically configures the switch’s IP address and mask.

Question 30

ip address dhcp

Answer 30

VLAN interface mode. Configures the switch as a DHCP client to discover its IP address, mask, and default gateway.

Question 31

ip default-gateway <address>

Answer 31

Global command, Configures the switch’s default gateway IP address. Not required if the switch uses DHCP.

Question 32

ip name-server

Answer 32

Global command. Configures the IP address(es) of DNS servers, so any commands when logged into the switch will use the DNS for name resolution.

Question 33

interface

Answer 33

Changes context to interface mode. The type is typically FastEthernet or GigabitEthernet. The possible port numbers vary depending on the model of switch - for example, Fa0/1, Fa0/2, and so on.

Question 34

interface range

Answer 34

Changes the context to interface mode for a range of consecutively numbered interfaces. The sub-commands that follow then apply to all interfaces in the range.

Question 35

shutdown

no shutdown

Answer 35

Interface mode. Disables or enables the interface, respectively.

Question 36

speed {10 | 100 | 1000 | auto}

Answer 36

Interface mode. Manually sets the speed to the listed speed or, with the auto setting, automatically negotiates the speed.

Question 37

duplex {auto | full | half}

Answer 37

Interface mode. Manually sets the duplex to half or full, or to auto-negotiate the duplex setting.

Question 38

description

Answer 38

Interface mode. Lists any information text that the engineer wants to track for the interface, such as the expected device on the other end of the cable.

Question 39

switchport mode {access | trunk | negotiate}

Answer 39

Interface configuration mode command that tells the switch to always be an access port, or always be a trunk port, or to negotiate which to be.

Question 40

switchport port-security mac-address

Answer 40

Interface configuration mode command that statically adds a specific Mac address as an allowed MAC address on the interface.

Question 41

switchport port-security mac-address sticky

Answer 41

Interface sub-command that tells the switch to learn MAC addresses on the interface and add them to the configuration for the interface as secure MAC addresses.

Question 42

switchport port-security maximum

Answer 42

Interface sub-command that sets the maximum number of static secure MAC addresses that can be assigned to a single interface.

Question 43

switchport port-security violation {protect | restrict | shutdown}

Answer 43

Interface sub-command that tells the switch what to do if an inappropriate MAC address tries to access the network through a secure switch port.

Question 44

hostname

Answer 44

Global command. Sets this switch’s host name, which is also used as the first part of the switch’s command prompt.

Question 45

enable secret

Answer 45

Global command. Sets this switch’s password that is required for any user to reach enable mode.

Question 46

history size

Answer 46

Line config mode. Defines the number of commands held in the history buffer, for later recall, for users of those lines.

Question 47

logging synchronous

Answer 47

Console or vty mode. Tells IOS to send log messages to the user at natural break points between commands, rather than in the middle of a line of output.

Question 48

[no] logging console

Answer 48

Global command that disables or enables the display of log messages to the console.

Question 49

exec-timeout

Answer 49

Consoles or vty mode. Sets the inactivity timeout, so that after the defined period of no action, IOS closes the current user login session.

Question 50

switchport access vlan

Answer 50

Interface sub-command that defines the VLAN in which the interface resides.

Question 51

banner [motd | exec | login]

Answer 51

Global command that defines a banner that is displayed at different times when users log in to the switch or router.

Question 52

show running-config

Answer 52

Lists the currently used configuration.

Question 53

show running-config | begin line vty

Answer 53

Pipes (sends) the command output to the begin command, which only lists output beginning with the first line that contains the text “line vty.”

Question 54

show mac address-table dynamic

Answer 54

Lists the dynamically learned entries in the switch’s address (forwarding) table.

Question 55

show dhcp lease

Answer 55

Lists any information the switch acquires as a DHCP client. This includes IP address, subnet mask, and default gateway information.

Question 56

show crypto key mypubkey rsa

Answer 56

Lists the public and shared key created for use with SSH using the crypto key generate rsa global configuration command.

Question 57

show ip ssh

Answer 57

Lists status information for the SSH server, including the SSH version.

Question 58

show ssh

Answer 58

Lists status information for current SSH connections into and out of the local switch.

Question 59

show interfaces status

Answer 59

Lists one output line per interface, noting the description, operating state, and settings for duplex and speed on each interface.

Question 60

show interfaces vlan 1

Answer 60

Lists the interface status, the switch’s IP address and mask, and much more.

Question 61

show ip default-gateway

Answer 61

Lists the default gateway.

Question 62

show port-security interface

Answer 62

Lists an interface’s port security configuration settings and security operation status.

Question 63

terminal history size

Answer 63

Changes the length of the history buffer for the current user only, only for the current login to the switch.

Question 64

show history

Answer 64

Lists the commands in the current history buffer.

Question 65

vlan

Answer 65

Global config command that both creates the VLAN and puts the CLI into VLAN configuration mode.

Question 66

name

Answer 66

VLAN sub-command that names the VLAN

Question 67

[no] shutdown

Answer 67

VLAN mode sub-command that enables (no shutdown) or disables (shutdown) the VLAN

Question 68

[no] shutdown vlan

Answer 68

Global config command that has the same effect as the [no] shutdown VLAN mode subcommands

Question 69

vtp mode {server | client | transparent | off}

Answer 69

Global config command that defines the VTP mode

Question 70

switchport mode {access | dynamic | auto | desirable | trunk}

Answer 70

Interface sub-command that configures the trunking administrative mode on the interface

Question 71

switchport access vlan

Answer 71

Interface sub-command that defines the list of allowed VLANs

Question 72

switchport trunk {dot1q | isl | negotiate}

Answer 72

Interface sub-command that defines which type of trunking to use, assuming that trunking is configured or negotiated

Question 73

switchport trunk native vlan

Answer 73

Interface sub-command that defines the native VLAN for a trunk port

Question 74

switchport nonegotiate

Answer 74

Interface sub-command that disables the negotiation of VLAN trunking

Question 75

show interfaces switchport

Answer 75

Lists information about any interface regarding administrative settings and operational state

Question 76

show interfaces trunk

Answer 76

Lists information about all operational trunks (but no other interfaces), including the list of VLANs that can be forwards over the trunk

Question 77

show vlan [brief | id | name | summary]

Answer 77

Lists information about the VLAN

Question 78

show vlan [vlan]

Answer 78

displays VLAN information

Question 79

show vtp status

Answer 79

Lists VTP configuration and status information

Question 80

shutdown

no shutdown

Answer 80

Interface sub-commands that administratively disable and enable an interface, respectively.

Question 81

switchport port-security violation {protect | restrict | shutdown}

Answer 81

Interface sub-command that tells the switch what to do if an inappropriate MAC address tries to access the network through a secure switch port.

Question 82

cdp run

no cdp run

Answer 82

Global commands that enable and disable, respectively, CDP for the entire switch or router.

Question 83

cdp enable

no cdp enable

Answer 83

Interface sub-commands that enable and disable, respectively, CDP for a particular interface.

Question 84

speed {auto | 10 | 100 | 1000}

Answer 84

Interface sub-command that manually sets the interface speed.

Question 85

duplex {auto | full | half}

Answer 85

Interface sub-command that manually sets the interface duplex.

Question 86

show mac address-table [dynamic | static] [address ] [interface ] [vlan ]

Answer 86

Displays the MAC address table. The security option displays information about the restricted or static settings.

Question 87

show port-security [interface ] [address]

Answer 87

Displays information about security options configured on an interface.

Question 88

show cdp neighbors []

Answer 88

Lists one summary line of information about each neighbor, or just the neighbor found on a specific interface if an interface was listed.

Question 89

show cdp neighbors detail

Answer 89

Lists one large set of information (approximately 15 liens) for every neighbor.

Question 90

show cdp entry

Answer 90

Displays the same information as the “show cdp neighbors detail” command, but only for the named neighbor.

Question 91

show cdp

Answer 91

States whether CDP is enabled globally, and lists the default update and holdtime timers.

Question 92

show cdp interface [type number]

Answer 92

States whether CDP is enabled on each interface, or a single interface if the interface is listed, and states update and holdtime timers on those interfaces.

Question 93

show cdp traffic

Answer 93

Displays global statistics for the number of CDP advertisements sent and received.

Question 94

show interfaces [type number]

Answer 94

Displays detailed information about interface status, settings, and counters.

Question 95

show interfaces description

Answer 95

Displays one line of information per interface, with a two-item status (similar to “show interfaces” command status), and includes any description that is configured on the interface.

Question 96

show interfaces [ ] status

Answer 96

Displays summary information about interface status and settings, including actual speed and duplex, a single-item status code, and whether the interface was auto-negotiated.

Question 97

show interfaces [ <number] switchport

Answer 97

Displays a large variety of configuration settings and current operational status, including VLAN trunking details, access and voice VLAN, and native VLAN.

Question 98

show interfaces [ ] trunk

Answer 98

Lists information bout the currently operational trunks (or just for the trunk listed in the command) and the VLANs supported on those trunks.

Question 99

show vlan brief,

show vlan

Answer 99

Lists each VLAN and all interfaces assigned to that VLAN but does not include trunks.

Question 100

show vlan id

Answer 100

Lists both access and trunk ports in the VLAN

Question 101

show vtp status

Answer 101

Lists the current VTP status, including the current mode.

Question 102

interface

Answer 102

Global command that moves the user into configuration mode of the named interface

Question 103

ip address <address>

Answer 103

Interface sub-command that sets the router’s IPv4 address and mask.

Question 104

[no] shutdown

Answer 104

Interface sub-command that enables (no shutdown) or disables (shutdown) the interface.

Question 105

duplex {full | half | auto}

Answer 105

Interface command that sets the duplex, or sets the use of IEEE autonegotiation, for router LAN interfaces that support multiple speeds.

Question 106

speed {10 | 100 | 1000}

Answer 106

Interface command for router Gigabit (10/100/1000) interfaces that sets the speed at which the routers interface sends and receives data.

Question 107

clock rate

Answer 107

interface command that sets the speed at which the router supplies a clocking signal, applicable only when the router has a DCE cable installed. the unit it bits/second.

Question 108

description

Answer 108

An interface sub-command with which you can type a string of text to document information about that particular interface.

Question 109

show interfaces [ ]

Answer 109

Lists a large set of informational messages about each interface, or about the one specifically listed interface.

Question 110

show ip interface brief

Answer 110

Lists a single line of information about each interface, including the IP address, line and protocol status, and the method with which the address was configured (manual or DHCP).

Question 111

show protocols

Answer 111

Lists information about the listed interface, including the IP address, mask, and line/protocol status.

Question 112

show controllers [ ]

Answer 112

Lists many lines of information per interface, or for one interface, for the hardware controller of the interface. On serial interfaces, this command identifies the cable as either a DCE or DTE cable.

Question 113

show version

Answer 113

Lists the version of IOS currently running in the router, plus a variety of other facts about the currently installed hardware and software in the router.

Question 114

ip address [secondary]

Answer 114

Interfaces sub-command that assigns the interface’s IP address and optionally makes the address a secondary address.

Question 115

interface

Answer 115

Global command to create a subinterface and to enter configuration mode for that subinterface

Question 116

encapsulation dot1q [native]

Answer 116

A subinterface sub-command that tells the router to use 802.1Q trunking, for a particular VLAN, and with the native keyword, to not encapsulate the header

Question 117

encapsulation isl

Answer 117

A subinterface subcommand that tells the router to use ISL trunking for a particular VLAN

Question 118

sdm prefer lanbase-routing

Answer 118

A command on Cisco switches that enables the switch to support IP routing if configured

Question 119

[no] ip routing

Answer 119

Global command that enables (ip routing) or disables (no ip routing) the routing of IPv4 packets on a router or Layer 3 switch

Question 120

interface vlan

Answer 120

Global command on a Layer 4 switch to create a VLAN interface and to enter configuration mode for that VLAN interface

Question 121

[no] ip subnet-zero

Answer 121

Global command that allows (ip subnet-zero) or disallows (no ip subnet-zero) the configuration of an interface IP address in a zero subnet

Question 122

ip route { } [] [permanent]

Answer 122

Global configuration command that creates a static route

Question 123

ip default-network

Answer 123

Global command that creates a default route based on the router’s route to reach the classful network listed in the command.

Question 124

show ip route

Answer 124

Lists the router’s entire routing table

Question 125

show ip route [connected | static | ospf]

Answer 125

Lists a subnet of the IP routing table

Question 126

show ip route

Answer 126

Lists detailed information about the route that a router matches for the listed IP address

Question 127

show vlans

Answer 127

Lists VLAN configuration and statistics for VLAN trunks configured on routers