Session 5 Flashcards
Connecting cisco network devices
what mode are you in when you see > ?
user exec mode
what commands do you need to add to enable a password for line console 0?
config t
line console 0
password #####
login
what command do you add to change the timeout session for line console 0?
exec-timeout ## $$
# = is in minutes $ = is seconds
0 = do not time out
How do you enable password the moment from user exec to privilege mode?
configt t
password ###
Are we hashing or encrypting when adding a enable secret password?
hashing
how many default vty lines do you have?
5 (0-4)
when you remove the login from line console 0 or vty what does that mean?
you can still connect to the device but you will not be asked to be prompted for a password.
what command do you add an ACL to a VTY?
you use IP acess-class #
How do you set up a ssh connection
- You need a hostname
- You need a domain name (ip-domain-name)
config t
crypto key generate rsa modulus 1024 (higher # is better)
what command you you change in the line vty to change it to use the local account
loginlocal
What is transport input command ?
controls what is allowed to be utilize to connect.
ex: telnet / ssh
by default it is usually all but it can very by device platform.
Login banner what is it?
is a security feature.
ex: is a security sticker we put
what is a AAA server
Radius or tacacs+ used for authentication.
Login banner is used when?
when you need to provide username and password. you can put this up as a way to prevent unauthorized logins.
what is a MOTD
message of the day - just a message when you about something happening. nothing fancy.
what is one way to enable port security?
shutdown the port
switchport port-security mac-address sticky
what is mac address flooding?
malicious user and they broadcast a but of frames a different mac address.
mac off (program)
what are the options for switchport port-security?
protect - continue to allow traffic for the approved MAC address but those not allowed never show up in syslogs
restrict (continue to allow traffic only for frames that have an approved MAC address only)
shutdown (enable by default) puts port in err-disable
what command can you input to verify power security?
show port-security interface ####
Where is the clock set? and what time do you put
user exec mode? Universal time coordinated UTC
how to do you configure timezone and adjust it in a switch?
config t clock timezone (est,ast,pst)
how do you set up daylight savings time?
config t
clock summer-time (###) recurring $$$$ @@@@
\$\$$ - date when it starts (winter time) @@@ - date in summer when it stops # - timezone
what is NTP?
What is the format?
What port does it use?
is a protocol that network devices uses to synchronize their time
NTP uses a client/server model
Port 123
What is stratum level for NTP?
basically a pyramid scheme. The closer you are to the time device, the lower stratum # you will have.
Limit of 15 devices can be daisy chain
how to do you configure
config t
ntp server #.#.#.#
what does stratum 16 mean?
NTP server is not reachable.
NTP master command means?
you are the master of time. YOU DONT WANT TO USE THIS COMMAND.
Only use this as a demo.
what is syslog
automatic logging mechanism that is enable by default.
It facilitates monitoring and auditing.
what command do you use to see sys logs while connected via a VTY port?
and how do you turn it off?
terminal monitor
terminal no monitor
how to you configure a syslog server?
config t
logging host #.#.#.#
logging trap (will allow you to change the severity level)
what are the logging severity 1 - 7
0 = emergencies 1 = alert 2 = critical 3 = errors 4 = warnings 5 = notifications 6 = informational 7 = debugging
Benefits of a DHCP server?
Centralize IP address allocation
supports consistency across organization
IP address that automatically assigned with user vlans settings
1 stop shop.
what is the 4 way handshake of DHCP
Discovered (broadcast message)
Offer (unicast)
Request (broadcast)
Aacknowledge (unicast)
how do you configure a router as a DHCP server?
config t
ip dhcp pool (name it)
network (sets range )
network #.#.#.# $.$.$.$
# = ip address
$ = subnet mask
dns-server #.#.#.#
Default-router - #.#.#.#
how do find what ips have been leased out?
show ip dhcp binding
how do you configure dhcp lease time?
ip dhcp pool (name) lease (days) (hours) (minutes)
what does DHCP relay agent allow us to do?
forwards the DHCP discover message to the DHCP agent.
Also know as ip helper-address
how bits are in ipv4 and ipv6?
32 bits ivp4 and 128 bits ipv6
what can yo drop in a IPV6?
leading zero
what is a quartet in ipv6?
how man quartets in ipv6?
is 4 hexadecimal characters
8 total quartets = 32 hexadecimal.
in hex what does A = to?
10
in hex what does B = to?
11
in hex what does C= to?
12
in hex what does D = to?
13
in hex what does E = to?
14
in hex what does F = to?
15
how many times can you have a double colon?
just 1 time.
in a ipv6 header what does traffic class stand for?
quality of service.
in a ipv6 header what does hop limit?
same as hop count = is the time to live for that frame
source device take care of MTU
maximum transmission unit.
what is anycast addressing?
allows you to have the same address on mulitple addresses. Example top level domains servers have the same IP address.
Routers will decide where to send the packet to the nearest device.
in ipv6 how what protocol has replaced arp?
neighbor discovery
in ipv6 how does DHCP work
use ipv6 dhcp which uses specific multicast addresses associated with them.
in ipv6 what are the types of addresses you can have?
Unicast / Multicast and Anycast / Unique local (FC)
what is a global unicast?
its your public ip address
range 2000 thru ffff
what is the loopback address in ipv6?
::1 which means 31 0s and 1
what is unspecified address in ipv6?
example 0.0.0.0
::
(this is not default route)
default route is ::/0
what is the multicast address in ipv6?
anything that begins with FF
what is the link local in ipv6?
anything that starts with FE80
low level protocols use these for basic communications
the first 4 quartets of a /64 in ipv6 is what?
your network
the last 4 quartets of a /64 subnet in ipv64 is what?
your host
