熟練掌握cisco 3550的常用配置命令
設置設備的標示名,一般按設備型號+物理位置+管理IP地址
command:(config)#hostname machine_name
查看設備系統版本和信息
show version
show boot
show flash:
sh cpu
配置登錄的用戶名和密碼
username Cisco password cisco
關閉錯誤命令查詢:no ip domain-lookup
SSH登錄配置
在配置模式下:
line vty 0 15 //"(config)#"在配置遠程管理登錄
password cisco
login local //先設置密碼,開啓遠程的效果
transport input {ssh|telnet|none|all} //
access-class 1 in //字符"1"爲access-list 表名
no exec-timeout
enable 模式下:
enable password cisco
enable secret cisco1 //同時設置了secret密碼和password,enable密碼不生效
sh lacp sys-id
sh file system
sh hardware
dir or show flash
crypto key generate rsa //要先創建域名,使用命令ip domain name syx.com
AAA認證開啓,aaa new-module
鄰居發現協議
cdp run
cdp timer 10
cdp holdtime 30
cdp advertise-v2
int f0/1接口下開啓cdp協議
cdp enable
7.line con 0 配置// console 口配置
password cisco
login local
8.spanning-tree
sh spanning-tree active
sh spanning-tree vlan XX active
9.NTP
ntp peer 192.168.1.1 ver 3 key 2 source f0/10 prefer
ntp authenticate
ntp broadcastdelay 3000
ntp trustkey 2
ntp authentication-key 2 md5 cisco
10.VTP
vtp mode {client |server|transparent}
vtp password cisco
vtp domain domain_name
vtp version 2
vtp pruning
查看vtp配置信息
sh vtp password
sh vtp status
11.端口安全port-security
int f0/1
swithport port-security ?
ip dhcp snooping(arp 防止***)
全局開啓 ip dhcp snooping
int f0/1
ip dhcp snooping {limit rate |trust|vlan}
sh ip dhcp snooping
12.終端顯示緩衝的大小
terminal length 100
terminal width 100
sh mac address-table dy int f0/1
sh int counters
errdisable recovery {internal|cause}
13.dhcp配置,在cisco 3550設備上配置
ip dhcp pool 0
network 192.168.10.0 255.255.255.0
default-router 192.168.10.1
dns-server 192.168.1.254
domain-name cisco-china.com
lease 7 9
不被dhcp 地址池分配給用戶的地址設置
ip dhcp excluded-address 192.168.10.254
ip dhcp excluded-address 192.168.10.1 192.168.10.20