78701112.book page 504 monday, april 29, 2002 1:49...
TRANSCRIPT
78701112.BOOK Page 504 Monday, April 29, 2002 1:49 PM
I N D E X
Symbols? (question mark), context-sensitive help, 70, 76
Numerics100 Mbps Ethernet, 4310Base2 Ethernet, 1510Base5 Ethernet, 1510BaseT Ethernet, 15
connectivity recommendations in hierarchical model, 44
router interfaces, 4672500 series routers, 477700 series routers, 469–470
10BaseT Ethernet interface, 467commands, 465–468configuration, 466, 469–470configuring ISDN switches that interface with,
467ISDN interfaces, 468naming, 467profiles, 464–465
creating, 468displaying configuration for, 466moving between, 466
reloading with default configuration, 466service support, 463–464static routes, establishing, 468
AAARP (AppleTalk Address Resolution Protocol),
440access layer (hierarchical model for network
design), 8access lists
applying to router interfaces, 305applying to multiple router interfaces, 303blocking FTP traffic from a specific subnet,
319–320blocking Telnet traffic from a specific subnet,
320–321blocking traffic from a specific host, 313
blocking traffic from a specific subnet, 313–314blocking traffic from external networks,
311–312condition tests, 302–303, 305configuration
commands for, 304–306guidelines, 322–324
creating before applying to router interfaces, 304
defaults, 304displaying contents of, 324extended, 300
IP, 305, 317–321IPX, 305
functionality of, 299guidelines for implementing, 303–304inbound, 300–301IP, 298
displaying contents, 324extended, numbers for, 300extended, configuration, 317–321
IPX, 350–353displaying contents, 360–361extended, 305, 352, 355linking to router interfaces, 353SAP filters, 352, 356–360standard, 351, 353–355test conditions, 350verifying, 360–361
justification for, 298–300mechanics of, 300–302monitoring, 324–325named
IP, 305, 321–322IPX, 305
numbersfor IP/IPX access lists, 305guidelines for using, 303
outbound, 300–302, 312removing from router interfaces, 311standard, 300
IP, 305, 310–314IPX, 305
statementsadding, 304deny, 302, 305implicit deny any, 303
78701112.BOOK Page 505 Monday, April 29, 2002 1:49 PM
506
matching, 302numbering, 311order, 302organization for efficiency, 304permit, 302, 304–305
traffic filtering capabilities, 304verifying, 324–325
access-class command, 315–316, 325access-group command, 305, 307, 355access-list command, 304, 307, 310, 318, 325, 353,
355, 362ACLs (Access Control Lists). See access listsaddress mapping
Frame Relay connections, 414–418Address Resolution Protocol. See ARPaddress violation command, 176addresses
AppleTalk, 438–439dynamic assignment, 440–441extended, 439–440
BIA, 20dynamic MAC addresses (switch ports), 170IP addresses, 237
assigning host names to, 238–239assigning to router interfaces, 237broadcast addresses, 231–232calculating address space, 233classes, 222–224components, 25configuration, 237–241configuring for switches, 167denying router interface access with
access lists, 308displaying for hosts, 240–241dotted decimal format, 26format, 221Frame Relay VCs, mapping, 414host addresses, 224–226host number, 221identifying, 233–235mapping to MAC sublayer addresses with
ARP, 218network number, 221network schemes, 221permitting access to router interfaces with
access lists, 308subnet addresses, 226–227
subnet masks, 227–231verifying for switches, 168wildcard masking, 307–310
IPX addresses, 332–333logical addresses, 24–26MAC addresses, 19
in IPX addresses, 333MAC address table storage on Catalyst
1900 series switch, 171permanent MAC addresses (switch ports),
171–172static MAC addresses (switch ports),
172–173switches, learning, 146–148
addressing. See also addresses700 series routers
10BaseT Ethernet interfaces, 467ISDN interfaces, 468
end stations, 18IP addressing (switches), 83
address-violation command, 174administrative distance (routes), 256–259advertisements (VTP), 191all subnets broadcasts, 232American Registry of Internetwork Numbers
(ARIN), 222AND operation (Boolean), 230any keyword (access lists), 309AppleTalk
addresses, 438–439dynamic assignment, 440–441extended, 439–440
client/server environment, 438configuration, 443–453discovery mode, 447–450functionality, 438protocol stack versus OSI reference model,
437–438router global configuration parameters,
displaying, 452–453router interfaces, displaying information for,
451routing, enabling, 444routing table content displays, 451–452services, 441–443versions, 438
access lists
78701112.BOOK Page 506 Monday, April 29, 2002 1:49 PM
507
zone table information displays, 452zones, 441–443
AppleTalk Address Resolution Protocol, 440appletalk cable-range command, 445–447, 454appletalk discovery command, 448, 454appletalk protocol command, 444, 454appletalk routing command, 444, 454appletalk zone command, 445, 454application layer (OSI reference model Layer 7), 11ARIN (American Registry of Internetwork
Numbers), 222ARP (Address Resolution Protocol), 215, 218ASICs (application-specific integrated circuits), 21ATM (Asynchronous Transfer Mode), 373AUI (attachment unit interface), 16authentication
CHAP, 380–383PAP, 379–383
Autoinstall utility, 131autonomous systems, 256AUX ports, 65
Bb command, 476b flash command, 476backbone layer, 9backup IOS images, 137–139Backward Explicit Congestion Notification, 414balanced hybrid routing protocols, 276bandwidth, 26, 55, 105bandwidth command, 105, 420banner motd command, 102Basic Rate Interface. See BRIBECN (Backward Explicit Congestion
Notification), 414BGP (Border Gateway Protocol), 249BIA (burned-in-address), 20blocking state (Spanning Tree), 160Boolean operations, 230boot field, 130, 476Boot ROM mode (router initialization), 84boot sequence (routers), 124–125, 128boot system command, 127boot system flash command, 127, 479
boot system rom command, 127boot system tftp command, 127booting router configuration register from Flash
memory, 477, 479bootstrap code (routers), 126–128Border Gateway Protocol, see BGPBPDU (Bridge Protocol Data Unit), 156–158branch offices, 5BRI (Basic Rate Interface), ISDN, 387
call processing, 391–392components of, 390enabling, 395–397
bridge IDs (Spanning Tree), 157bridge loops, 150Bridge Protocol Data Unit, 249bridged/switched networks. See also VLANs
characteristics of, 22, 24bridges, 30. See also devices, switches
criteria for selecting, 32, 34filtering, 22flooding, 22forwarding tables, 22operation at the data link layer, 21–24source-route bridging, 22translational bridging, 22versus switches, 162
bridgingdefinition of, 145disabling over 700 series router ISDN
interfaces, 468broadcasts. See also VLANs
addresses (IP), 231–232domains, 16, 18
routers, 181switches, 181
frames, 150SAP broadcasts, 338storms (frames), eliminating, 151–152
burned-in-address, 20
burned-in address
78701112.BOOK Page 507 Monday, April 29, 2002 1:49 PM
508
Ccabling
console ports, 64crossover cable, 51–52DCE, 372DTE, 372Ethernet, 45–46LANs, 41
connection types, 46Ethernet implementations, 44–45Ethernet media/connector requirement
considerations, 45implementations, 43requirements based on media, 52–53UTP implementation, 47–52
rollover cables, 64standards, 15–16straight-through cable, 48–50variety in a network environment, 52WANs, 53, 55
call command, 470carrier sense multiple access collision detection, 17Catalyst switches. See switchesCategory 5 wiring, 53cd command, 466CDP (Cisco Discovery Protocol), 113
disabling on a device, 116displaying detailed CDP information about
neighboring devices, 118–119displaying general CDP information about
neighboring devices, 116–117displaying device CDP information, 115–116functionality, 113–115network device support, 114packets, 116preventing other devices from obtaining
information, 116re-enabling on a device, 116startup, 114
cdp command, 120cdp enable command, 116
CHAP (Challenge Handshake Authentication Protocol), 377, 380–383
CIR (committed information rate), Frame Relay, 414circuit switching (WANs), 369Cisco Discovery Protocol. See CDPClass A IP addresses, 222–224Class B IP addresses, 222–224Class C IP addresses, 222–224Class D IP addresses, 222–224Class E IP addresses, 222–224clear frame-relay-inarp command, 423clear line command, 123CLI (command-line interface), IOS, 67client mode (VTP), 189–190clock rate command, 105collision domains, 16, 18collisions, 16–18command history buffer
routers, 93–94switches, 77–78
command modesIOS, 69–70switches, changing between, 75
command scripts (router configuration), 88command-line interface, 67command-line mode (switch logon), 75commands
abbreviating, 77, 92access-class, 315–316, 325access-group, 305, 307, 355access-list, 304, 307, 310, 318, 325, 353, 355,
362address-violation, 174, 176appletalk cable-range, 445, 447, 454appletalk discovery, 448, 454appletalk protocol, 444, 454appletalk routing, 444, 454appletalk zone, 445, 454b, 476b flash, 476bandwidth, 105, 420banner motd, 102boot system, 127boot system flash, 127, 479boot system rom, 127boot system tftp, 127
cabling
78701112.BOOK Page 508 Monday, April 29, 2002 1:49 PM
509
call, 470cd, 466cdp, 120cdp enable, 116clear frame-relay-inarp, 423clear line, 123clock rate, 105config-register, 129–130, 474configure terminal, 100, 134, 474, 479connect, 120context-sensitive help, 70copy flash tftp, 138copy nvram tftp, 175, 177copy running-config tftp, 134copy running-configuration startup-
configuration, 101, 133copy running-configuration tftp, 133copy startup-configuration running-
configuration, 133copy tftp, 176copy tftp flash, 139–140copy tftp nvram, 175copy tftp running-config, 134debug apple routing, 454debug dialer, 406–407debug frame-relay lmi, 424, 432debug ip igrp events, 289, 294debug ip igrp transactions, 288, 294debug ip rip, 282, 294debug ipx routing, 345debug ipx routing activity, 348–349, 362debug ipx sap activity, 345, 349–350, 362debug isdn q391, 406debug isdn q921, 406–407debug isdn q931, 407debug ppp authentication, 384delete nvram, 176–177delete vtp, 191, 195, 200dialer idle-timeout, 406dialer list, 406dialer map, 403dialer map id, 406dialer-group, 402, 404, 406dialer-list, 401disconnect, 123duplex, 169enable, 474
enable password, 103enable secret, 103, 482encapsulation frame-relay, 431encapsulation hdlc, 374, 384encapsulation isl, 243, 245encapsulation ppp, 381, 384erase startup-configuration, 134exec-timeout 0 0, 104finding with context-sensitive help, 76frame-relay inverse-arp, 431frame-relay lmi-type, 431frame-relay map, 421, 431global commands (routers), 100hostname, 381initialize, 481interface, 104, 200, 342interface serial, 428, 432ip access-group, 304–305, 311, 319, 325ip access-list, 325ip address, 167, 176, 237, 245ip classless, 293–294ip default-gateway, 168, 176, 237, 245ip directed-broadcast, 232ip domain-lookup, 240ip host, 239, 245ip name-server, 239, 245ip netmask-format, 245ip route, 252, 294, 401ipx access-group, 353, 355, 362ipx input-sap-filter, 362ipx maximum-paths, 341ipx network, 336, 341–342, 361ipx output-sap-filter, 362ipx routing, 332, 340, 361isdn spid1, 397, 406isdn spid2, 397, 406isdn switch-type, 396isdn switch-type basic, 406line, 316line console 0, 102line vty, 325line vty 0 4, 103logging synchronous, 104mac-address-table permanent, 171, 176mac-address-table restricted static, 172, 176major commands, 100maximum-paths, 278
maximum-paths
78701112.BOOK Page 509 Monday, April 29, 2002 1:49 PM
510
net boot, 127network, 277, 279, 285, 294no access-list, 311no address-violation, 174no appletalk discovery, 450no cdp enable, 116no cdp run, 116no debug all, 294no ip access-group, 311no ip default-gateway, 168no ip domain-lookup, 240, 245no mac-address-table permanent, 171no mac-address-table restricted static, 172no port secure, 173no shutdown, 107, 407, 482options, displaying, 76ping, 124, 405, 470ping ipx, 345, 350port secure, 173, 176ppp authentication, 382ppp authentication chap, 384ppp authentication pap, 384privileged EXEC mode,
displaying, 91listing availability, 70
reboot, 470recalling, 77, 93–95reload, 474resume, 123router, 277, 294router igrp, 285router rip, 279service password-encryption, 103, 381set 1 spid, 467set bridging off, 468set default, 466set ip address, 467–468set ip netmask, 467–468set ip route destination 0.0.0.0/0 gateway
0.0.0.0, 468set ip routing on, 467–468set switch, 467set systemname, 467set user, 468show, displaying options for, 76show access-lists, 324show appletalk globals, 452–454
show appletalk interface, 454show appletalk route, 451, 454show appletalk zone, 452, 454show cdp, 115–116show cdp interface, 120show cdp neighbors, 116–117show cdp neighbors detail, 118–119, 334show cdp traffic, 119show config, 466show dialer, 405, 407show flash, 131, 137show frame-relay lmi, 422, 432show frame-relay map, 423, 432show frame-relay pvc, 422–423, 432show history, 94show hosts, 240show interface, 106, 169, 383–384, 421show interfaces, 80–81, 107–110, 169, 176show ip, 82, 168, 176show ip access-lists, 324–325show ip interface, 324–325show ip protocols, 279, 281, 287, 294show ip route, 280, 288, 294, 406–407show ipx access-list, 360, 362show ipx interface, 345–346, 360–361show ipx route, 345–347, 362show ipx servers, 345, 347–348show ipx traffic, 345, 348show isdn active, 405, 407show isdn status, 406–407show mac-address-table, 170, 172–173, 176show mac-address-table security, 174show run, 166show running-configshow running-configuration, 79–80, 98–99,
132, 281show sessions, 121show spantree, 167, 199–200show startup-configuration, 98–99, 132, 482show trunk, 196, 200show user, 122show version, 78–79, 98, 128, 175–176, 473show vlan, 197, 200show vlan-membership, 167, 199–200show vtp, 191, 195, 200shutdown, 107, 406–407telnet, 120, 405
net boot
78701112.BOOK Page 510 Monday, April 29, 2002 1:49 PM
511
term ip netmask-format, 238, 245terminal editing, 96terminal history size, 94trace, 124traffic-share, 286, 294trunk, 196upload, 466user EXEC mode
displaying, 90listing availability, 70
username, 381, 384variance, 294vlan, 197, 200vlan-membership, 198vtp, 195vtp domain, 200where (UNIX), 122who (UNIX), 122write, 101write memory, 101
committed information rate, 414condition testing (access lists), 302–305config-register command, 129–130, 474configuration, 469–470
access listscommands for, 304–306guidelines, 322–324
AppleTalk, 443–453CHAP, 382–383DDR over ISDN, 400–406default routes, 254dynamic routing, 276–277extended IP access lists, 317–321Frame Relay subinterfaces, 425, 428–431
Frame Relay multipoint subinterfaces, 430–431
Frame Relay point-to-point subinterfaces, 429–430
gateways for switches, 167HDLC encapsulation in WANs, 374IGRP, 285–286inter-VLAN routing, 243IP addresses, 167, 237–241IPX routing, 339–344named IP access lists, 321–322PAP, 382–383
PPP encapsulationin WANs, 379–383verifying, 383–384
RIP, 279routers
active, 132backup, 132CLI configuration method, 99–110command script, 88console passwords, 102copying into RAM, 133copying RAM configuration to TFTP
server, 133copying running configuration to
NVRAM, 133copying saved NVRAM configuration to
RAM, 133deleting NVRAM files, 134displaying current, 99displaying current configuration running
in RAM, 132displaying current configuration saved in
NVRAM, 132displaying saved configuration, 99displaying system information, 98downloading from TFTP server, 134Frame Relay, 418–424global parameters, 85initial configuration, 84–89initial protocol settings, 87IPX, 334interfaces, 104–110loading, 131–132loading parameters into RAM, 131message-of-the-day banner, 101modifying, 89–91moving between routers/router
components, 132moving configuration/system files, 136permissable access locations, 68–69ports on modular cards, 60remote terminal/console configuration
method, 134running, 131–132saving to NVRAM, 101setup mode, 84
configuration
78701112.BOOK Page 511 Monday, April 29, 2002 1:49 PM
512
system configuration, 85uploading to TFTP server, 134vty passwords, 103
Spanning Tree, displaying status of, 199–200standard IP access lists, 310–314static Frame Relay maps, 420–421static routes, 252subnet masks for switches, 167switches, 165
CLI configuration method, 82–83default, 68, 165–167displaying active configuration files,
79–80downloading from TFTP server, 175global configuration mode, 82interface configuration mode, 82interfaces (duplex mode), 168–170IP configuration, displaying current, 82permissable access locations, 68–69port security, 173–174resetting to factory defaults, 176trunk ports, 196–197uploading to TFTP server, 175
trunks, 196–197VLANs
default requirements, 194guidelines, 194overwriting, 192prerequisite steps, 194
VTP, 195–197configuration modes (switches), 167–168configuration register (routers), 126
bit meanings, 475boot field, 476boot field settings, 130booting from Flash memory, 477, 479contents, setting, 474default settings, changing, 129displaying, 128, 473, 481factory defaults, 473listing setting for, 129settings, changing, 473–479values, 127
configuration revision number (switches), resetting, 191–192
configure terminal command, 100, 134, 474, 479connect command, 120
connectionless protocols, 29, 207connection-oriented protocols, 29, 207connections (TCP), establishing, 211–213connectivity
devices, verifying, 124WAN options, 368–369
connectorsEthernet specifications, ??–4545jacks, 48RJ-45 connector, 46, 48wiring standards, 48
console connections (network devices), setup, 64–65console error messages
routers, 92–93switches, 77
console password (routers), configuring, 102console ports (routers), 64context-sensitive help (commands), 70
routers, 92, 94–96switches, 76–77
controller configuration mode (routers), 100convergence (Spanning Tree), 161–162copy flash tftp command, 138copy nvram tftp command, 175, 177copy running-config tftp command, 134copy running-configuration startup-
configuration command, 101, 133copy running-configuration tftp command, 133copy startup-configuration running-
configuration command, 133copy tftp command, 176copy tftp flash command, 139–140copy tftp nvram command, 175copy tftp running-config command, 134core layer (hierarchical model for network design), 9corporate networks. See internetworks, LANs,
WANscounting to infinity (routing loops), 266CPE (customer premises equipment), ISDN, 370,
392–394crossover cable, 51–52CSMA/CD (carrier sense multiple access collision
detection), 17cut-through mode switching, 162
configuration
78701112.BOOK Page 512 Monday, April 29, 2002 1:49 PM
513
Ddata circuit-terminating equipment, 57, 371-372Data Delivery Protocol, 438data encapsulation. See encapsulationdata link layer (OSI reference model Layer 2), 18,
437devices, 21–24, 30functionality of, 18–19functions of, 18–19LLC sublayer, 19–21MAC sublayer, 19–20
data terminal equipment, See DTEdata-link connection identifiers, See DLCIsDB-60 connectors (routers), 371DCE, (data circuit-terminating equipment), 57,
371–372DDP (Datagram Delivery Protocol), 438DDR (dial-on-demand routing), 299, 387
identifying interesting traffic with access lists, 299
ISDNcharacteristics of, 397–400configuration, 400–406connections, 398dialer information configuration for router
interfaces, 402–403operation, 399–400specifying interesting traffic, 401–402troubleshooting, 406verifying configuration/operation,
405–406setup, 397
debug apple routing command, 454debug dialer command, 406–407debug frame-relay lmi command, 424, 432debug ip igrp events command, 289, 294debug ip igrp transactions command, 288, 294debug ip rip command, 282, 294debug ipx routing activity command, 345,
348–349, 362debug ipx sap activity command, 345, 349–350,
362debug isdn q921 command, 406–407debug isdn q931 command, 406–407debug ppp authentication command, 384
de-encapsulation, 14default routes, configuration, 254delay, 26delete nvram command, 176–177delete vtp command, 191, 195, 200demarcation (WANs), 370deny statement (access lists), 302, 305designated port (Spanning Tree), 156desktop layer, 8devices. See also bridges, hubs, routers, switches
accessing via console port, 458–461AUX ports, 65CDP, re-enabling, 116CDP information
displaying, 115–116preventing other devices from obtaining,
116console connections, setup, 64–65criteria for selecting, 32, 34data link layer devices, 21–24, 30determining IP address components with subnet
masks, 227–231figure icons for, xxHyperTerminal terminal emulation session
components for enabling, 457creating, 458–461disconnecting, 461reconnecting, 461
interfacesdisplaying configuration about, 120displaying status information about, 120
IP addresses, 224ISL configuration, 186latency, 163neighboring
communication between, 115displaying detailed CDP information
about, 118–119displaying general CDP information
about, 116–117displaying general information about, 115
network connectivity, verifying, 124network layer devices, 31NT1 devices, 62physical layer devices, 30PPP connections, establishing, 378–379
devices
78701112.BOOK Page 513 Monday, April 29, 2002 1:49 PM
514
remote (Telnet sessions), 120–123routes, displaying, 124Telnet sessions, ending, 123traffic, displaying information about, 119URL prefixes, 135
DHCP (Dynamic Host Configuration Protocol), 215, 219-220
dialer idle-timeout command, 406dialer map command, 403dialer map ip command, 406dialer-group command, 402–406dialer-list command, 401, 406dial-on-demand routing, 299, 387directed broadcasts, 232disabling router interfaces, 107disconnect command, 123distance vector routing protocols
characteristics of, 260routes, 261–263
distribution layer (hierarchical model for network design), 9
DLCIs (data-link connection identifiers), 414DNS (Domain Name System), 239Domain Name System, 239domains
adding switches to, 195broadcast, 16–18broadcast domains, 179–181collision, 16–18segmentation by routers, 27VTP domains, 188
dotted decimal notation (IP addresses), 26, 221DTE (data terminal equipment), 57, 371–372duplex command, 169dynamic AppleTalk address assignment, 440–441Dynamic Host Configuration Protocol (DHCP), 215,
219-220dynamic MAC addresses (switch ports), 170dynamic membership mode (VLANs), 184–185dynamic routes, 251dynamic routing
configuration, 276–277protocols for, 254–276
EEGP (Exterior Gateway Protocol), 256EIGRP (Enhanced Interior Gateway Routing
Protocol), 249, 258, 276enable command, 474enable password (routers), 86enable password command, 103enable secret command, 103, 482enable secret password (routers), 86encapsulation, 13–14
HDLC, configuration in WANs, 374IPX packets, 334–337ISLs, 187–188Layer 2 (WANs), 372–374PPP (WANs)
characteristics of, 375–379configuration, 379–383verifying configuration, 383–384
SAP encapsulation, 337encapsulation frame-relay command, 431encapsulation hdlc command, 374, 384encapsulation isl command, 243, 245encapsulation ppp command, 381, 384encryption (MD5), 86end stations
communication between at the transportlayer, 29
physical addressing, 18Enhanced Interior Gateway Routing Protocol, 249,
258, 276enterprise services, 9erase startup-configuration command, 134error messages
routers, 92–93switches, 77
Ethernet100 Mbps Ethernet, 4310Base2 Ethernet, 1510Base5 Ethernet, 1510BaseT Ethernet, 15
connectivity recommendations in hierarchical model, 44
router interfaces, 467cabling, connector types, 46
connector/cabling specifications, 45–46considerations for LAN cabling, 44–45
devices
78701112.BOOK Page 514 Monday, April 29, 2002 1:49 PM
515
Ethernet (DIX), 43Fast Ethernet, 43–45full-duplex, 163–165Gigabit Ethernet, 43half-duplex, 163–165IEEE 802.3, 43interfaces (routers), media type settings, 106media, considerations for LAN cabling, 45switches, 145upgrading, 44
Ethernet_802.2 encapsulation type (IPX packet encapsulation), 335
Ethernet_802.3 encapsulation type (IPX packet encapsulation), 335
Ethernet_II encapsulation type (IPX packet encapsulation), 335
Ethernet_SNAP encapsulation type (IPX packet encapsulation), 335
EXEC mode (switch logon), 75EXEC sessions (routers), preventing timeouts, 104exec-timeout 0 0 command, 104extended access lists, 300extended AppleTalk addressing, 439–440extended IP access lists, 306
configuration, 317–321numbers for, 305
extended IPX access lists, 305, 352, 355Exterior Gateway Protocols, 256external networks (traffic), blocking with access
lists, 311–312
FFast Ethernet, 43
benefits in a campus LANs, 44–45connectivity recommendations in hierarchical
model, 44FastHub hub series, 34FCS (frame check sequence), 12FECN (Forward Explicit Congestion
Notification), 414filtering
bridging, 22frames to switch ports, 148–150packets with access lists, 298
finding commands with context-sensitive help, 76fixed ports (routers), 58Flash memory, 126, 131Flooded broadcasts, 232flooding
bridging, 22frames, 146
flow controlFrame Relay, 414TCP, 213–214UDP, 213–214
forward delay (Spanning Tree), 160Forward Delay timer (Spanning Tree), 160Forward Explicit Congestion Notification, 414forwarding
frames to switch ports, 148–150VLAN information, 183
forwarding state (Spanning Tree), 160forwarding tables, 22fragment-free mode switching, 163frame check sequence, 12Frame Relay, 373
BECN, 414CIR, 414Cisco router serial connection support, 412components, 412–414configuration on routers, 418–424connections
address mapping, 414–418displaying map entry information, 423displaying statistics, 422–423displaying status/information, 421–422LMI signaling, 414–418troubleshooting, 424verifying, 424
definition of, 411–412DLCIs, 414DTE, 411FECN, 414flow control, 414Inverse ARP, 414LMI, 414–415
types, 416traffic, displaying statistics, 422
local access rate, 413maps, clearing, 423
Frame Relay
78701112.BOOK Page 515 Monday, April 29, 2002 1:49 PM
516
multipoint subinterfaces, 428–431NBMA reachability, 426–429OSI functions, 412point-to-point subinterfaces, 428
configuration, 429–430PVCs, 413static mapping, configuration, 420–421subinterfaces, configuration, 425, 428–431SVCs, 413terminology, 412–414traffic, displaying statistics, 422–423VCs, 411, 413
design considerations, 427IP addresses, 414states, 416
frame-relay inverse-arp command, 431frame-relay lmi-type command, 431frame-relay map command, 421, 431frames, 13
broadcast, 150broadcast storms, eliminating, 151–152database instability, eliminating, 153–154duplicate nonbroadcast transmissions,
eliminating, 152–153filtering, 148–150flooding, 146forwarding, 148–150HDLC, format, 374LLC sublayer, 20–21MAC sublayer, 19–20multicast, 150switching, 162–163
FTP traffic, blocking from a specific subnet with access lists, 319–320
full-duplex transmission (switches), 163–165full-mesh topology (Frame Relay), 426
G-Hgateways (switches)
assigning defaults, 237default configuration, 167verifying, 168
Get Nearest Server. See GNSGigabit Ethernet, 43
global commands (routers), 100global configuration mode
routers, 99switches, 82, 167
global services, 9GNS (Get Nearest Server), 331
SAP queries, 339
half-duplex transmission (switches), 163–165HDLC (High-Level Data Link Control), 55, 373
encapsulation, configuration in WANs, 374frames, format, 374
hdlc keyword, 336headers, 12, 21Hello Time timer (Spanning Tree), 160help (context-sensitive help)
routers, 92, 94–96switches, 76–77
hierarchical model (network subdivision), 7, 10, 44High-Level Data Link Control. See HDLCholddown timers
pairing with triggered updates for route maintenance, 271–274
route maintenance with, 269–270hops, 26host addresses (IP), 224–226host names
assigning to IP addresses, 238–239routers, assigning, 381workstations, displaying, 240–241
host name-to-address mapping, 238–239hostname command, 381hosts
determining number of in a given network, 225IPX, testing reachability, 350traffic, blocking with access lists, 313
hubs, 30. See also devicesCisco product line, 34–35criteria for selecting, 32, 34–35FastHub series, 34functionality of, 17Micro Hub series, 34typical topology, 17
hybrid routing protocols, 274–276
Frame Relay
78701112.BOOK Page 516 Monday, April 29, 2002 1:49 PM
517
HyperTerminal terminal emulation sessions, 457components for enabling, 457creating, 458–461disconnecting, 461reconnecting, 461
IICMP (Internet Control Message Protocol), 215,
217–218IEEE 802.3 Ethernet, 43IFS (IOS File System), 135IGP (Interior Gateway Protocols), 256IGRP (Interior Gateway Routing Protocol), 249
administrative distance default, 258characteristics of, 282configuration, 285–286IP routing tables, displaying, 288load balancing/sharing, 286metrics, 283–284routes, assigning to unknown subnet of a
directly attached network, 293routing information
displaying summaries for, 289–290verifying, 287–288
routing process, 285–286routing transaction information displaying,
288–289routing updates, 290–293unequal-cost load balancing, 284–285
images (IOS)backup, 137–139displaying information about, 137loading from Flash into RAM, 130loading from network server, 139–140specifying source to load, 127
implicit deny any statement (access lists), 303implicit deny statement (access lists), 302inbound access lists, 300–301initial sequence numbers (ISNs), 211initialization (routers)
Boot ROM mode, 84setup mode, 84user mode, 84
initialize command, 481
Integrated Services Digital Network. See ISDNinterface command, 104, 200, 342interface configuration mode, 167
routers, 100switches, 82
interface serial command, 428, 432interfaces
routers, 26, 126access lists, activating, 304access lists, removing, 311AppleTalk, specifying a network number
range, 445AppleTalk information, displaying, 451AppleTalk routing, configuring, 443–453assigning to AppleTalk zones, 445bandwidth settings, 105clock rate settings, 105configuration, 104–110configuring a description, 102configuring dialer information for DDR
over ISDN BRI, 402–403disabling, 107displaying configuration information
about, 120displaying statistics for, 107–110displaying status of, 120IP addresses, assigning, 237IPX encapsulation types, 336IPX encapsulation types, selecting,
341–343IPX network numbers, assigning, 341–343IPX routing, enabling, 341–343IPX, displaying status/parameters,
345–346ISDN, 394linking IPX access lists to, 353media type settings, 106re-enabling, 107serial
connectors, 370IPX node addresses, 340
slot/port adapter schemes, 105slot/port number schemes, 105subinterfaces, 242traffic, displaying information about, 119type/number schemes, 104verifying configuration, 106
interfaces
78701112.BOOK Page 517 Monday, April 29, 2002 1:49 PM
518
switchesdisplaying configuration information
about, 120displaying statistics for, 80–81displaying status of, 120duplex mode configuration, 168–170
Interior Gateway Protocols, 256Interior Gateway Routing Protocol. See IGRPInternal profile (700 series routers), 465Internet Control Message Protocol, 215, 217-218Internet Protocol. See IPinternetwork operating system. See IOSInternetwork Packet Exchange. See IPXinternetworks
organization by user type, 5–6remote access connections, 5–6subdividing based on business/user needs, 6–10traffic patterns, 7–8
Inter-Switch Links. See ISLsInverse ARP, 414–415, 418inverted subnet mask, see wildcard maskingIOS (internetwork operating system), 67
CLI, accessing, 67command modes, 69–70images
backup, 137–139displaying information about, 137loading from Flash into RAM, 130loading from network server, 139–140specifying source to load, 127
network service support, 67privileged EXEC mode, 89switches, displaying information about,
174–175user EXEC mode, 89–90
IOS File System, 135IP (Internet Protocol), 215. See also IP addresses
access lists, 298activing on router interfaces, 304displaying contents, 324extended, 300, 306, 317–321named, configuration, 321–322numbers for, 305standard, 300, 306
applying to vty ports, 315configuration, 310–314
header format, 215–217packets, access list testing, 306
ip access-group command, 304–305, 311, 319, 325ip access-list command, 325ip address command, 167, 176, 237, 245IP addresses
assigning to switches, 237assigning host names to, 238–239assigning to router interfaces, 237broadcast addresses, 231–232calculating address space, 233classes, 222–224components, 25configuration, 237–241denying router interface access with access lists,
308dotted decimal format, 26format, 221Frame Relay VCs, mapping, 414host addresses, 224–226host number, 221identifying, 233–235mapping to MAC sublayer addresses with ARP,
218network number, 221network schemes, 221permitting access to router interfaces with
access lists, 308subnet addresses, 226–227subnet masks, 227–231subnets, filtering traffic from with access lists,
309–310switches, 83
configuration, 167verifying, 168
wildcard masking, 307–310workstations
discovering with RARP, 219–220displaying, 240–241
ip classless command, 293–294IP configuration mode (switch logon), 75ip default-gateway command, 168, 176, 237, 245ip directed-broadcast command, 232ip domain-lookup command, 240ip host command, 239, 245ip name-server command, 239, 245ip netmask-format command, 245
interfaces
78701112.BOOK Page 518 Monday, April 29, 2002 1:49 PM
519
IP RIP routing700 series router 10BaseT Ethernet interfaces,
enabling, 467700 series router ISDN interfaces, enabling, 468
ip route command, 252, 294, 401IPX
access lists, 350–353displaying, 360–361extended, 352, 355linking to router interfaces, 353SAP filters, 352, 356–360standard, 351, 353–355test conditions, 350verifying, 360–361
addresses, 332–333characteristics of, 331configuration on Cisco routers, 334hosts, testing reachability, 350networks
addresses in, 332assigning multiple logical networks to the
same physical wire, 341Cisco router features, 329–330connectivity, testing, 350load sharing, enabling, 341nondefault encapsulation types,
specifying, 336overhead, 352
packets, encapsulation, 334–337protocol stack, 330–332RIP, 331, 337RIP updates, displaying information about,
348–349router interfaces, displaying status/parameters,
345–346routing
configuration, 339–344enabling, 340monitoring, 345–350verifying, 345–350
routing tables, displaying contents, 346–347SAP updates, displaying information about,
349–350servers, displaying information for, 347–348traffic, displaying volume/type information,
348ipx access-group command, 353, 355, 362
ipx input-sap-filter command, 362ipx maximum-paths command, 341ipx network command, 336, 341–342, 361ipx output-sap-filter command, 362ipx routing command, 332, 340, 361IPX/SPX (Internet Packet Exchange/Sequenced
Packet Exchange), 330–332IPX-router configuration mode (routers), 100ISDN (Integrated Services Digital Network), 387
benefits of, 387–388BRI, 387
call processing, 391–392components of, 390connections, cabling routers for, 62–63enabling, 395–397
DDRcharacteristics of, 397–400configuration, 400–406connections, 398dialer information configuration for router
interfaces, 402–403operation, 399–400setup, 397specifying interesting traffic, 401–402troubleshooting, 406verifying configuration/operation,
405–406equipment, 392–394port types, 63PRI, 390protocols, 389reference points, 392–394router interfaces, 394
addressing, 468disabling bridging over, 468IP RIP routing, enabling, 468subnet masks, specifying, 468
services, components, 390–397SPIDs, 395, 397standards, 388switches, 389
configuring for use with 700 series routers, 467
types, 395isdn spid1 command, 397, 406isdn spid2 command, 397, 406isdn switch-type basic command, 406
isdn switch-type basic command
78701112.BOOK Page 519 Monday, April 29, 2002 1:49 PM
520
isdn switch-type command, 396ISLs (Inter-Switch Links), 185–188
encapsulation, 187–188router support, 242tagging, 186–187
ISNs (initial sequence numbers), 211
J-Kjacks (connectors), 48
keywordsany (access lists), 309hdlc, 336novell-ether, 335–336snap, 336
LLAN profile (700 series routers), 465, 467LAPB (Link Access Procedure, Balanced), 373latency (switches), 163Layer 1. See physical layerLayer 2 encapsulation (WANs), 372–374Layer 2. See data link layerLayer 3. See network layerLayer 4. See transport layerLayer 5. See session layerLayer 6. See presentation layerLayer 7. See application layerLCP (Link Control Protocol), PPP sublayer,
376–378leaf node, 251learning state (Spanning Tree), 160leased lines (WANs), 368LEDs (light-emitting diodes), Catalyst 1900 series
switches, 70–74line command, 316line configuration mode (routers), 100line console 0 command, 102line vty 0 4 command, 103line vty command, 325
link-state routing protocols, 274–276listening state (Spanning Tree), 160LLC sublayer (Logical Link Control), data link
layer, 19frames, 20–21header components, 21
LMI (Local Management Interface), Frame Relay, 414–416
LMI signaling (Frame Relay connections), 414–418load balancing/sharing
IGRP, 286IPX networks, 341RIP, 278
local access rate (Frame Relay), 413local loop (WANs), 370Local Management Interface, 414–418logging synchronous command, 104logical addresses, 24–26logical AND operation, 230logon (switches)
after setup, 74–75EXEC mode, 75
loop avoidance (switches), 150–155loops. See also routing loops
bridge loops, 150multiple in switched networks, 154switched networks, eliminating with Spanning
Tree, 155–161
MMAC (Media Access Control), 12MAC addresses, 19
dynamic MAC addresses (switch ports), 170in IPX addressses, 333MAC address table storage on Catalyst 1900
series switch, 171permanent MAC addresses (switch ports), 171–172static MAC addresses (switch ports), 172–173switches, learning, 146–148
MAC sublayer (data link layer), 19–20mac-address-table permanent command, 171, 176
isdn switch-type command
78701112.BOOK Page 520 Monday, April 29, 2002 1:49 PM
521
mac-address-table restricted static command, 172, 176
major commands, 100Max Age timer (Spanning Tree), 160maximum transmission units, 15maximum-paths command, 278MD5 (Message Digest 5) encryption, 86Media Access Control, 12memory
Flash, 126, 131NVRAM, 126RAM, 125ROM, 125routers, displaying information about, 137
Menu Console Logon Screen (switches), 74Menu mode (switch logon), 75message-of-the-day banner (routers), configuration,
101metrics
IGRP networks, 283–284networks, 26
Micro Hub hub series, 34mobile user connections, 6modular serial ports (routers), 58MTUs (maximum transmission units), 15multicast addresses, 222-224multicast frames, 150multipoint subinterfaces (Frame Relay), 428–431
NName Binding Protocol, 438name servers (IP networks), defining, 239–240named IP access lists
configuration, 321–322numbers for, 305
named IPX access lists, 305naming
700 series routers, 467routers, 86, 101switches, 83
NBP (Name Binding Protocol), 438NCP (NetWare Core Protocol), 331, 376–378
neighboring devicescommunication between, 115displaying detailed CDP information about,
118–119displaying general CDP information about,
116–117displaying general information about, 115
net boot command, 127NetWare, features of, 331–332NetWare Core Protocol, 331, 376–378NetWare Link Services Protocol, 331network command, 277, 279, 285, 294network layer (OSI reference model Layer 3), 24
devices, 31functions of, 24router operations, 26–28
network layer addresses, 24–26network numbers (IPX), 333–334networks
autonomous systems, 256bridged/switched, characteristics of, 22–24broadcasts, 231–232communication across, 12–14connections, figure icons for, xxidomains
broadcast domains, 16, 18collision domains, 16, 18
external, blocking traffic from with access lists, 311–312
figure icons for, xxihierarchical model for subdividing, 7, 10hosts, determining number of, 225IPX networks
addresses in, 332assigning multiple logical networks to the
same physical wire, 341Cisco router features in, 329–330connectivity, testing, 350load sharing, enabling, 341nondefault encapsulation types,
specifying, 336overhead, 352
metrics, 26name servers, defining, 239–240segmenting with subnet addresses, 226–227segmenting with subnet masks, 234stub networks, 251
networks
78701112.BOOK Page 521 Monday, April 29, 2002 1:49 PM
522
subnet masks, format, specifying, 238subnets
planning, 235–236traffic, blocking with access lists, 313–314
switched networksmultiple loops, 154redundancy in, 150
toll networks (WANs), 370traffic. See also internetworks, WANs
filtering, See access listsidentifying interesting traffic with access
lists, 299separating into queues with access lists,
299user connections at the access layer, 8
NICs (network interface cards), Novell file servers, 333
NLSP (NetWare Link Services Protocol), 331no access-list command, 311no address-violation command, 174no appletalk discovery command, 450no cdp enable command, 116no cdp run command, 116no debug all command, 294no ip access-group command, 311no ip default-gateway command, 168no ip domain-lookup command, 240, 245no mac-address-table permanent command, 171no mac-address-table restricted static command,
172no port secure command, 173no shutdown command, 107, 407, 482nonvolatile random-access memory. See NVRAMNovell file servers, 333Novell Internetwork Packet Exchange. See IPXnovell-ether keyword, 335–336NT1 (Network Termination 1), ISDN, 392NT1 devices, 62NT2 (Network Termination 2), ISDN, 392numbering SPIDs, 467NVRAM (nonvolatile random-access memory), 84,
126
Ooctets, 25, 221ODI (Open Data-Link Interface), 331Organizationally Unique Identifier, see OUIOSI (Open Systems Interface) reference model,
10–12advantages of, 10application layer, 11communication between layers, 12–14data link layer, 18functions of, 10lower layers, 11–12network layer, 24physical layer, 14–18presentation layer, 11session layer, 11transport layer, 28upper layers, 10–11
OSPF (Open Shortest Path First), 249, 258, 275OUI (Organizationally Unique Identifier), 20outbound access lists, 300–312
Ppacket switching (WANs), 369–372packets, 13
CDP, 116denying from router interfaces, 298filtering with access lists, 298IP, access list testing, 306IPX
displaying volume/type information, 348encapsulation, 334–337
permitting to router interfaces, 298routing. required information for, 250VLAN information, forwarding, 183
PAP (Password Authentication Protocol), 377–383partial-mesh topology (Frame Relay), 426passwords (routers)
changing, 482defining, 381disabling, 103enable, 86enable secret, 86recovering, 479–485
networks
78701112.BOOK Page 522 Monday, April 29, 2002 1:49 PM
523
path cost (Spanning Tree), 158–159PCs, serial communications ports, 459PDUs (protocol data units), 12peer layers, 13permanent MAC addresses (switch ports), 171–172permanent virtual circuit, 413permit statement (access lists), 302, 304–305physical layer (OSI reference model Layer 1), 14,
17–18, 437devices, 30functions of, 14–15wiring standards, 15–16
ping command, 124, 405, 470ping ipx command, 345, 350Point-to-Point Protocol. See PPPpoint-to-point subinterfaces (Frame Relay),
428–430poison reverse (routing loop prevention), 269port numbers, 29, 209–211port secure command, 173, 176ports
ISDN port types, 63PCs, 459routers
console ports, 64vty ports, filtering Telnet traffic, 298
switchesaddress violations, 174assigning to VLANs, 198–199designated ports, 156displaying VLAN assignments for, 199dynamic MAC addresses, 170MAC address table, displaying, 170permanent MAC addresses, 171–172port states (Spanning Tree), 157–158root ports, 156security configuration, 173–174static MAC addresses, 172–173trunk line configuration, 196–197trunk ports, 184VLAN assignments, 181VLAN membership, 194VLAN support, 187
POST (power-on self test), 68result displays, 74router booting sequence, 125
routers, 84switch port LED associations, 73
PPP (Point-to-Point Protocol), 55, 373benefits of, 377connections, establishing, 378–379encapsulation
characteristics of, 375–379compatible interfaces, 375configuration in WANs, 379–383verifying configuration in WANs,
383–384LCP sublayer, 376–378NCP sublayer, 376–378services, 376
ppp authentication chap command, 384ppp authentication command, 382ppp authentication pap command, 384presentation layer (OSI reference model Layer 6),
11PRI (Primary Rate Interface), ISDN
components of, 390privileged EXEC mode (IOS), 69
changing to, 70commands
displaying, 91listing availability, 70
restricting access to, 103profiles (700 series routers), 464–465, 468protocol data units, 12protocol stacks, 12protocols
AARP, 440AppleTalk, 438ARP, 215BGP, 249CDP, 113–120connectionless, 29, 207connection-oriented, 29, 207EIGRP, 249HDLC, 373ICMP, 215IGRP, 249initial router settings, 87IP, 215IPX, 330–332IPX RIP, 337ISDN, 389
protocols
78701112.BOOK Page 523 Monday, April 29, 2002 1:49 PM
524
OSPF, 249PPP, 373RARP, 215RIP, 249SAP, 337–339Spanning-Tree Protocol, 155transport layer protocols, 28VTP, 188
pruning (VTP), 192–193PVCs (permanent virtual circuits), 413
RR reference point (ISDN networks), 393RAM (random-access memory), 125RARP (Reverse Address Resolution Protocol), 215,
219–220read-only memory, 126reboot command, 470recovering router passwords, 479–485redundancy (switched networks), 150reference points (ISDN), 392–394reload command, 474reloading 700 series routers with default
configuration, 466remote access connections
branch offices, 5mobile users, 6telecommuters, 5
remote devices (Telnet sessions)displaying, 121–122ending, 123establishing, 120–121re-establishing, 122suspending, 122verifying, 121–122
resume command, 123Reverse Address Resolution Protocol (RARP), 215,
219–220RIP (Routing Information Protocol), 249
administrative distance default, 258characteristics of, 278configuration, 279IP routing table information, displaying,
280–281
IPX, 331, 337load balancing,enabling, 278routing information, verifying, 279–280routing updates, displaying, 282selecting as a routing protocol, 279
RIP-1 (RIP version 1), 278RIP-2 (RIP version 2), 278RIT (Route Information Table), IPX, 333RJ-45 connectors, 45–46, 48rollover cables, 64ROM (read-only memory), 126ROM microcode (routers), 126–131ROM monitor mode (routers), 129root bridge (Spanning Tree), electing, 156–157root port (Spanning Tree), 156Route Information Table, 333route maps, 299route poisoning, 268–269routed protocols versus routing protocols, 255router command, 277, 294router configuration mode, 100router igrp command, 285router rip command, 279routers, 31
2500 series, default boot filenames, 477700 series
addressing 10BaseT Ethernet interface for, 467
commands, 465–468configuration, 469–470configuring ISDN switches that interface
with, 467displaying configuration for, 466displaying profile configuration, 466enabling IP RIP routing for 10BaseT
Ethernet interfacesr, 467ISDN interfaces, disabling bridging, 468ISDN interfacs, enabling IP RIP routing
for, 468ISDN interfaces, IP addressing, 468ISDN interfaces, specifying subnet mask
for, 468moving between profiles, 466naming, 467profiles, 464–465, 468reloading with default configuration, 466
protocols
78701112.BOOK Page 524 Monday, April 29, 2002 1:49 PM
525
service support, 463–464static routes, establishing, 468subnet masks, specifying for 10BaseT
Ethernet interface for, 467AppleTalk global configuration parameters,
displaying, 452–453boot sequence, 128booting sequence, 124–125bootstrap code, 125–128cabling for WAN ISDN BRI connections,
62–63cabling for WAN serial connections, 57–62Cisco product line, 36, 38command history buffer, 93–94configuration
active, 132backup, 132CHAP, 382–383command script, 88copying into RAM, 133copying RAM configuration to TFTP
server, 133copying running configuration to
NVRAM, 133copying saved NVRAM configuration to
RAM, 133deleting NVRAM files, 134displaying current, 99displaying current configuration running
in RAM, 132displaying current configuration saved in
NVRAM, 132displaying saved configuration, 99displaying system information, 98downloading from TFTP server, 134Frame Relay, 418–424from CLI, 99–110from remote terminal/console, 134HDLC encapsulation, 374initial configuration, 84–89initial global parameters, 85initial protocol configurations, 87IPX, 334loading, 131–132loading parameters into RAM, 131
modifying, 89–91moving between routers/router
components, 132moving configuration/system files, 136PAP, 382–383permissable access locations, 68–69running, 131–132saving to NVRAM, 101setup mode, 84system configuration dialog, 85uploading to TFTP server, 134
configuration register, 126bit meanings, 475boot field, 476boot field settings, 130booting from Flash memory, 477–479contents, setting, 474default settings, changing, 129displaying, 128, 473, 481factory defaults, 473listing setting for, 129settings, changing, 473–479values, 127
console error messages, 92–93console input, redisplaying interrupted, 104console password, configuring, 102context-sensitive help, 92, 94–96controller configuration mode, 100criteria for selecting, 32–38DB-60 connectors, 371enhanced editing mode (terminal editing),
96–98EXEC sessions, preventing timeouts, 104fixed ports, 58Frame Relay subinterfaces, configuration, 428functions of, 27–28global configuration mode, 99host names, assigning, 381IFS, 135IGRP transaction information, displaying,
288–289initialization
Boot ROM mode, 84setup mode, 84user mode, 84
initializing
78701112.BOOK Page 525 Monday, April 29, 2002 1:49 PM
526
initializing, 481interface configuration mode, 100interfaces, 26, 126
access lists, activating, 304access lists, removing, 311AppleTalk information, displaying, 451AppleTalk routing, configuring, 443–453assigning IP addresses to, 237assigning to AppleTalk zones, 445bandwidth settings, 105clock rate settings, 105configuration, 104–110configuring a description, 102configuring dialer information for DDR
over ISDN BRI, 402–403disabling, 107displaying configuration information
about, 120displaying statistics for, 107–110displaying status of, 120IPX encapsulation types, 336, 341–343IPX network numbers, assigning, 341–343IPX routing, enabling, 341–343IPX, displaying status/parameters,
345–346ISDN, 394linking IPX access lists to, 353media type settings, 106re-enabling, 107serial
connectors, 370IPX node addresses, 340
slot/port adapter schemes, 105slot/port number schemes, 105specifying a network number range in
AppleTalk, 445subinterfaces, 242traffic, displaying information about, 119type/number schemes, 104verifying configuration, 106
inter-VLAN routing, 241–244IPX networks, 329–330IPX-router configuration mode, 100ISL configuration, 186ISL trunking support, 242line configuration mode, 100memory, displaying information about, 137
message-of-the-day banner, configuration, 101modular serial ports, 58multiple broadcast domains, 181naming, 86, 101neighboring devices, displaying CDP
information about, 116–117operation at the network layer, 26–28passwords
changing, 482defining, 381disabling, 103enable, 86enable secret, 86recovering, 479–485
portsconfiguration on modular cards, 60console ports, 64
POST, 84required information for routing packets, 250ROM microcode, 126–131ROM monitor mode, 129router configuration mode, 100RTMP routine output, displaying, 453seed routers (AppleTalk), 447–450setup, 68startup, 68, 83–84static maps (Frame Relay),configuration, 4,
20–421subinterface configuration mode, 100subnet addressing, 228usernames, defining, 381vty interfaces, controlling access to with access
lists, 314–316vty passwords, configuring, 103vty ports, filtering Telnet traffic, 298WANs, routing across, 244
routesadministrative distance, 256–259default, configuration, 254devices, displaying, 124discovering with distance vector routing
protocols, 261–263dynamic, 251
configuration, 276–277routing protocols for, 254–276
IGRP, assigning to unknown subnet of a directly attached network, 293
interface configuration mode
78701112.BOOK Page 526 Monday, April 29, 2002 1:49 PM
527
load sharing in IGRP, 286maintenance
with both holddown timers and triggered updates, 271–274
with distance vector routing protocols, 261–263
with holddown timers, 269–270with triggered updates, 270–271
multiple path support in IGRP, 284–285selecting with distance vector routing protocols,
261–263static, 251
configuration, 252defining for DDR over ISDN BRI,
400–401enabling, 251–254establishing for 700 series routers, 468
routingIGRP process, 285–286IP RIP routing
enabling for 700 series router 10BaseT Ethernet interfaces, 467
enabling for 700 series router ISDN interfaces, 468
IPXconfiguration, 339–344enabling, 340monitoring, 345–350RIP updates, displaying information
about, 348–349SAP updates, displaying information
about, 349–350verifying, 345–350
packets, required information for, 250process overview, 249–251
Routing Information Protocol. See RIProuting loops
causes, 263–266troubleshooting
with maximum metric settings, 266–267with route poisoning, 268–269with split horizon, 267–268
routing protocols. See also distance vector routing protocols, link-state routing protocols, hybrid routing protocols
characteristics of, 255
classes, 259EGP, 256IGP, 256versus routed protocols, 255
Routing Table Maintenance Protocol, 438routing tables, 250
components, 26displaying for RIP networks, 280–281IGRP networks, displaying, 288IPX, displaying contents of, 346–347populating, 251
routing updatesIGRP, 290–293RIP, displaying, 282
RPS LED (Catalyst 1900 series switch), 71RTMP (Routing Table Maintenance Protocol), 438
SS reference point (ISDN networks), 393SAP (Service Advertisement Protocol), 331,
337–339broadcasts, 338encapsulation, 337filters (IPX access lists), 305, 352, 356–360LLC frame type, 20services, enabling, 340types, 338
securityswitch ports, configuration, 173–174VLANs, 179
seed routers (AppleTalk), 447–450segments, 13Sequenced Packet Exchange, 331serial communications ports (PCs), 459serial connections (WANs), 55–62serial interfaces (routers)
connectors, 370IPX node addresses, 340
Serial Line Internet Protocol, 373serial lines (WANs), standards, 370–372server mode (VTP), 189–190servers
IPX, displaying information for, 347–348Novell file servers, NICs, 333
servers
78701112.BOOK Page 527 Monday, April 29, 2002 1:49 PM
528
TFTPdownloading router configuration from,
134downloading configuration files to
switches, 175uploading router configuration to, 134uploading switch running configuration,
175service access point identifier, 19Service Advertisement Protocol. See SAPService Information Table, 333service password-encryption command, 103, 381service provider IDs. See SPIDsservices
AppleTalk, 441–443SAP, enabling, 340
session layer (OSI reference model Layer 5), 11set 1 spid command, 467set bridging off command, 468set default command, 466set ip address command, 467–468set ip netmask command, 467–468set ip route destination 0.0.0.0/0 gateway 0.0.0.0
command, 468set ip routing on command, 467–468set switch command, 467set systemname command, 467set user command, 468setup, routers, 68setup mode (router initialization), 84Setup utility, 132show access-lists command, 324show appletalk globals command, 452, 454show appletalk interface command, 454show appletalk route command, 451, 454show appletalk zone command, 452, 454show cdp command, 115–116show cdp interface command, 120show cdp neighbors command, 116–117show cdp neighbors detail command, 118–119,
334show cdp traffic command, 119show command, displaying options for, 76show config command, 466show dialer command, 405, 407
show flash command, 131, 137show frame-relay lmi command, 422, 432show frame-relay map command, 423, 432show frame-relay pvc command, 422–423, 432show history command, 94show hosts command, 240show interface command, 106, 169, 383–384, 421show interfaces command, 80–81, 107–110, 169,
176show ip access-lists command, 324–325show ip command, 82, 168, 176show ip interface command, 324–325show ip protocols command, 279, 281, 287, 294show ip route command, 280, 288, 294, 406–407show ipx access-list command, 360, 362show ipx interface command, 345–346, 360–361show ipx route command, 345–347, 362show ipx servers command, 345, 347–348show ipx traffic command, 345, 348show isdn active command, 405, 407show isdn status command, 406–407show mac-address-table command, 170–173, 176show mac-address-table security command, 174show run command, 166show running-configuration command, 79–80,
98–99, 132, 281show sessions command, 121show spantree command, 167, 199–200show startup-configuration command, 98–99, 132,
482show trunk command, 196, 200show user command, 122show version command, 78–79, 98, 128, 175–176,
473show vlan command, 197, 200show vlan-membership command, 167, 199–200show vtp command, 191, 195, 200shutdown command, 107, 406–407SIT (Service Information Table), IPX, 333SLIP (Serial Line Internet Protocol), 373SNAP (Subnetwork Access Protocol), 20, 336SONET (Synchronous Optical Network), 373source-route bridging, 22Spanning Tree
BPDUs, 156–158bridge IDs, 157
servers
78701112.BOOK Page 528 Monday, April 29, 2002 1:49 PM
529
configuration, displaying status of, 199–200convergence, 161–162designated port, 156forward delay, 160functionality of, 155operations, 156path cost, 158–159port states, 157–158recalculation, 161root bridge, electing, 156–157root ports, 156Spanning-Tree Protocol, 155states, 159–160timers, 160
SPF (shortest path first) algorithms, 275SPIDs (service provider IDs), ISDN, 395
numbering, 467specifying, 397
split horizon (Frame Relay), 267–268, 427SPX (Sequenced Packet Exchange), 331SS7 (Signaling System 7), ISDN BRI call
processing, 391standard access lists, 300standard IP access lists, 306
applying to vty ports, 315configuration, 310–314numbers for, 305
standard IPX access lists, 305, 351, 353–355Standard profile (700 series routers), 465star topology (Frame Relay), 425startup
CDP, 114routers, 68, 83–84switches
operations, 68prerequisite checklist, 70procedures for, 70
static MAC addresses (switch ports), 172–173static mapping (Frame Relay), configuration,
420–421static membership mode(VLANs), 184–185static routes, 251
700 series routers, establishing, 468configuration, 252defining for DDR over ISDN BRI, 400–401enabling, 251–254
store-and-forward mode switching, 162straight-through cable, 48–50stub networks, 251subinterface configuration mode (routers), 100subinterfaces
inter-VLAN routers, 242Frame Relay, configuration, 428
subnet addresses, 226–227subnet masks, 25, 227–231
700 series routers, specifying for ISDN interfaces, 468
defaults, 230extending, 231format, specifying, 238patterns, 229specifying for 700 series router 10BaseT
Ethernet interfaces, 467switches
configuration, 167verifying, 168
subnetsfiltering traffic from with access lists, 309–310planning, 235–236traffic, blocking with access lists, 313–314
Subnetwork Access Protocol, 20, 336SVCs (switched virtual circuits), 413switched networks
loopseliminating with Spanning Tree, 155–161multiple, 154
redundancy, 150switches (Catalyst 1900 series), 30, 70, 167
adding to VTP domains, 195bridge IDs, 157bridging/switching between in VLANs, 183broadcast storms, eliminating, 151CDP information, displaying, 115–116Cisco product line, 35–36CO switch (WANs), 370command history buffer, 77–78command modes, changing between, 75communication with other network devices,
163–165configuration, 165
default, 68default settings, 165–167
switches
78701112.BOOK Page 529 Monday, April 29, 2002 1:49 PM
530
displaying active configuration files, 79–80
downloading from TFTP server, 175from CLI, 82–83global configuration mode, 82interface configuration mode, 82IP configuration, displaying current, 82permissable access locations, 68–69resetting to factory defaults, 176uploading to TFTP server, 175
configuration modes, 167–168configuration revision numbern resetting,
191–192console error messages, 77context-sensitive help, 76–77criteria for selecting, 32, 34–36cut-through mode, 162database instability from redundant frame
transmissions, eliminating, 153–154duplicate nonbroadcast frame transmissions,
eliminating, 152–153enterprise software, 79Ethernet switches, 145flooding, 146fragment-free mode, 163frame transmission, 162–163full-duplex transmission, 163–165functionality of, 145gateways
assigning defaults, 237default configuration, 167verifying, 168
global configuration mode, 167half-duplex transmission, 163–165interface configuration mode, 167interfaces
displaying configuration information about, 120
displaying statistics for, 80–81displaying status of, 120duplex mode configuration, 168–170
IOS, displaying information about, 174–175IP addresses, 83
assigning, 237configuration, 167verifying, 168
ISDN, 389configuring for use with 700 series
routers, 467
types, 395ISLs (Inter-Switch Links), 185–188latency, 163LEDs, 71–74logon
after setup, 74–75EXEC mode, 75
loop avoidance, 150–155MAC addresses, learning, 146–148Menu Console Logon Screen, 74multiple broadcast domains, 181naming, 83operation at Layer 3 and 4, 22operation at the data link layer, 21–24path cost (Spanning Tree), 158–159ports
address violations, 174assigning to VLANs, 198–199designated ports, 156displaying VLAN assignments for, 199dynamic MAC addresses, 170MAC address table, displaying, 170permanent MAC addresses, 171–172root ports, 156security configuration, 173–174static MAC addresses, 172–173trunk line configuration, 196–197trunk ports, 184VLAN assignments, 181VLAN membership, 194VLAN support, 187
root bridge, electing, 156–157Spanning Tree
configuration status, displaying, 199–200convergence, 161–162recalculation, 161
standard software, 79startup
initial configuration, 68operations, 68prerequisite checklist, 70procedures for, 70
store-and-forward mode, 162subnet masks. See also devices
configuration, 167verifying, 168
system information displays, 78–79versus bridges, 162VLAN information
switches
78701112.BOOK Page 530 Monday, April 29, 2002 1:49 PM
531
communicating with ISLs, 185–188communication with VTP, 188–193
VLANsadding, 197adding to bridged/switched networks, 189configuration, 193–200defaults, 194membership modes, 184–185operation, 183–184parameters, modifying/verifying, 198renaming, 198spanning multiple switches on a single
link, 194support limitations, 187
VTP, 188configuration, 195–197membership modes, 194modes, 189–190operations, 191–192overwriting VLAN configurations, 192pruning, 192–193setup precautions, 190
VTP domains, 188Synchronous Optical Network. See SONETSystem LED (Catalyst 1900 series switch), 71System profile (700 series routers), 466–467
TT reference point (ISDN networks), 393TA (Terminal Adapter), ISDN, 393TCP (Transmission Control Protocol), 206
connections, establishing, 211–213flow control, 213–214header format, 207–208port numbers, 209–211window size, 214
TCP/IP (Transmission Control Protocol/Internet Protocol), 205
access lists, 306–310application layer, 206development, 205
Internet layer, 215–220protocol stack, 205transport layer, 206–214
TE1 (Terminal Endpoint 1), ISDN, 392TE2 (Terminal Endpoint 2), ISDN, 393telecommuters, 5Telnet
sessionsdisplaying, 121–122ending, 123establishing to remote devices, 120–121re-establishing, 122suspending, 122verifying, 121–122
traffic, blocking from a specific subnet with access lists, 320–321
telnet command, 120, 405term ip netmask-format command, 238, 245terminal editing command, 96terminal history size command, 94TFTP (Trivial File Transfer Protcol) servers
downloading router configuration from, 134downloading to switches, 175uploading router configuration to, 134uploading switch running configuration to, 175
Thicknet, 15Thinnet, 15three-way handshake (communciation between
network end stations), 29, 211–213timers (Spanning Tree), 160toll networks (WANs), 370trace command, 124traffic
devices, displaying information about, 119filtering. See access listsFrame Relay, displaying statistics, 422–423FTP, blocking from a specific subnet with
access lists, 319–320impact on internetwork design, 7–8interesting, identifying with access lists, 299IPX, displaying volume/type information, 348separating into queues with access lists, 299Telnet, blocking from a specific subnet with
access lists, 320–321
traffic
78701112.BOOK Page 531 Monday, April 29, 2002 1:49 PM
532
VLANsmultiplexing on a single physical path,
186VTP pruning, 192
traffic-share command, 286, 294trailers, 12translational bridging, 22Transmission Control Protocol. See TCPTransmission Control Protocol/Internet Protocol.
See TCP/IPtransparent bridging, 22transparent mode (VTP), 189–190transport layer (OSI reference model Layer 4),
28–30triggered updates
pairing with holddown timers for route maintenance, 271–274
route maintenance with, 270–271troubleshooting
DDR over ISDN BRI, 406Frame Relay connections, 424routing loops
with maximum metric settings, 266–267with route poisoning, 268–269with split horizon, 267–268
trunk command, 196trunking (VLANs), 183–184, 196–197
UU reference point (ISDN networks), 393UDP (User Datagram Protocol), 206
flow control, 213–214header format, 208–209port numbers, 209–211
unequal-cost load balancing (IGRP), 284–285unshielded twisted pair, 47upgrading Ethernet, 44upload command, 466URL prefixes (Cisco network devices), 135user EXEC mode (IOS), 69–70, 89–90user mode (router initialization), 84User profile (700 series routers), 468username command, 381, 384usernames (routers), defining, 381users, grouping in broadcast domains, 179
UTP (unshielded twisted pair), 47LAN implementations, 47–52wiring standards, 47–48
Vvariance command, 294VCs (virtual circuits), 413
design considerations, 427IP addresses, mapping, 414states, 416
virtual terminal lines. See vtyVisual Switch Manager, 194vlan command, 197, 200VLAN Trunking Protocol. See VTPvlan-membership command, 198VLANs (virtual LANs), 179
adding, 197to bridged/switched networks, 189
assigning switch ports to, 198–199benefits of, 179broadcast domains, functionality of, 181characteristics, 183configuration
default requirements, 194guidelines, 194overwriting, 192prerequisite steps, 194
defaults, 194definition, 181functionality of, 182information
communicating with ISLs, 185–188communicating with VTP, 188–193forwarding, 183
inter-VLAN routing, 241–244membership modes, 184–185operation, 183–184parameters
modifying, 198verifying, 198
parameters in bridged/switched networks, 182port switch assignments, 181renaming, 198switches
bridging/switching between, 183port membership, 194
traffic
78701112.BOOK Page 532 Monday, April 29, 2002 1:49 PM
533
spanning on a single link, 194support limitations, 187
trafficmultiplexing on a single physical path,
186VTP pruning, 192
trunking, 183trunks, 184
VSM (Visual Switch Manager), 194VTP (VLAN Trunking Protocol), 188
advertisements, 191configuration, 195–197
defaults for Catalyst 1900 switches, 195domains, 188membership modes, 194modes, 189–190operations, 191–192overwriting VLAN configurations, 192pruning, 192–193setup precautions, 190
vtp command, 195vtp domain command, 200vty (virtual terminal lines), routers, 103
controlling access to with access lists, 314–316filtering Telnet traffic, 298
WWANs (wide-area networks)
cabling, 53, 55characteristics of, 367–368circuit switching, 369CO switch, 370connectivity options, 368–369CPE, 370DCE, 371demarcation, 370devices, criteria for selecting, 33–34DTE, 371encapsulation
HDLC, configuration in WANs, 374Layer 2, 372–374PPP
characteristics of, 375–379configuration, 379–383verifying configuration, 383–384
ISDN BRI connections, cabling routers for, 62–63
leased lines, 368local loop, 370packet switching, connection standards,
370–372PPP connections, establishing, 378–379routing across, 244serial connections, 55
cabling routers for, 57–62differentiating between, 55–57standards, 370–372
services, 367terminology, 369–370toll networks, 370versus LANs, 367
where command (UNIX), 122who command (UNIX), 122wide-area networks. See WANswildcard masking (IP addresses), 307–310window size (TCP), 214wiring
Category 5 wiring, 53EIA/TIA 568A/568B, 48standards, 15–16UTP standards, 47–48
workgroup layer, 9workstations
host names, displaying, 240–241IP addresses
discovering with RARP, 219–220displaying, 240–241
write command, 101write memory command, 101
X-ZX.25/LAPB (Link Access Procedure, Balanced),
373
ZIP (Zone Information Protocol), 438zones (AppleTalk), 441–443
zones
78701112.BOOK Page 533 Monday, April 29, 2002 1:49 PM