CCNA Chapter 1

OSI 7 layer model

Application
File, Print, database, apps,web
Presentation
Encryption, compression, translations, ebdic etc.
Session
Dialog control - nfs, sql, rpc , Connection establishment, data transfer,
connection release
Transport
End to end connection, Flow control, Data integrity, Retransmissions
Segments re-ordered before delivery, Make / tear down virtual circuits
Network
Routing , Map of network (logical)
Data Link
Framing
Ensures messages delivered to correct device
MAC - Media Access Control
Framing with header & trailer. contains MAC address of source & destination
Media Access - method of communicating with Physical medium
Logical Topology - eg Star shaped "ring" in TR
error detection
LLC - Logical Link Control
Optional
Flow control with stop/start codes
error correction
Destination Service Access Point (DSAP) and Source SAP allow upper-layers to
work over different LANs by providing comms between Network & data/physical
layers regardless of physical/logical actually used

Physical
Physical topology
DTE - Data terminal equipment = router etc.
DCE - Data circuit terminating equipment @ service provider
DTE connects through modem or Channel / data service unit (C/DSU)
Connection oriented / Connectionless
Connectionless
Not guarenteed delivery
IPX or UDP
IP. TCP adds flow control & reliability at Transport layer
Connection oriented
Uses a virtual cicuit
Still not guarenteed but has flow control, relability, error checking
SPX,TCP
Data link addresses / network addresses
Data link = hardware = mac address
Network address = logical = IP or IPX address = Network layer
internetworks created with routers from logical addresses
Router places packet in frame with dest. mac address or next hop
Reasons for layered model
Divides complexity into sections
Uses standard interfaces to ease interoperability
Developers can change one layers features without others
It allows specialisation
Eases troubleshooting
5 conversion steps of data encapsulation
Each layer encapsulates layer above until full packet formed
Application produces data
Presentation encodes it
Session layer syncs the session with remote
Transport layer transports to remote host using: : Segment
Network layer to add routing info. : Packet / datagram
Data link layer frames packet : Frame
Physical puts the bits on the medium
Flow control /Buffering
Packets Q up in router buffers awaiting data link layer
Packets lost if buffer overflows
Source-Quench messages
Help prevent buffer overflow
Asks source to slow down
Receiving packets, gets too many so starts discarding.
Each time segment dropped send source quench message
source receives source-quench message and slows down sending until it no
longer receives them then starts increasing speed until it gets them again.
Windowing
Destination ack's every n segments having agreed a window of n
Sourcesends 3 packets
Dest. received 3 packets, sends ack.
source recvs ack so sends 3 more segments
if source does not get ack it sends 3 packets again after a timeout, sending at a
slower rate.
Internetworking functions of OSI model
Packets, frames, routing
Chapter 2, WAN Protocols
Differentiate between types

Frame Relay
High performance
Physical & Data link levels
Designed for ISDN
Error correction is for higher levels
Connection oriented PVC's
Frame Relay VCis 2x DTE with packet switched network inbetween, eah VC is
identified by a Data Link Connection Identifier (DCLI)
ISDN - Integrated Services Digital Network
Physical, Data Link, Network, Transport Layers
set of comms protocols
HDLC - ISO standard
Data Link Layer, bit based for sync. serial links
High Level Data Link control
Cisco HDLC Won't communicate with any other vendor's
PPP
Async or Sync
Uses Link Control Protocol to build data link connections
Compression
CHAP / PAP authentication
Uses NCP to support IPX, IP, Appletalk, Decnet etc.
Frame Relay Terms
CO - Central Office
CPE - Customer Premise Equipment
DCE
DTE - typically routers
DLCI
demarc - Termination point of service provider's cable
PSE - packet switch exchange
PVC SVC
local loop - demarc to CO
Frame Relay config

encapsulation type on ser int.

int s0
encapsulation frame-relay [IETF]
default is cisco encaps. IETF used if other equip. is not Cisco
frame-relay interface-dlci ## - maps dlci to an interface

LMI - Local management Interface = How to communicate setting

cisco, ansi, q933a.
IOS 11.2 up LMI is auto detected

Subinterfaces
int s0.## [multipoint] / [point-to-point]
as many as needed, 0 to 32 bit value
p-2-p are for single virtual circuit, multi are when router is at centre of star
Mapping
int s0.16 point-to-point
encap frame-rela ietf
no inverse-arp
ip address 172.16.30.1 255.255.255.0
frame-relay map ip 172.16.30.17 20 cisco broadcast
frame-relay map ip 172.16.30.18 30 broadcast
frame-relay map ip 172.16.30.19 40 broadcast

Maps 3VC's with their DLCI's

Inverse ARP maps VC'sdynamically
first vc uses cisco encap. others default (ietf)
Monitoring Frame Relay
sh frame-relay
ip, lapf, lmi, map, pvc, route, svc, traffic
pvc - stats on all fr int's
shows dlci usage=local = dte
alternative dlci usage=switch
show running config shows dlci nums
frame lmi - stats and type of lmi used
traffic - general traffic stats
interface s0 - lmi info, dlci type not dlci no.
PPP
config t
int s0
encapsulation ppp
^z
showinterface
ISDN
Cisco treats ISDN as high speed
Protocols are E - exising tel network
I - concepts, terminology, services
Q - protocols switching / signalling
Functions, TE1 and TE2. TE1=BRI standard
TE2= pre standard and needs a TA
Reference points: r,S,T,U:
R - non-isdn & TA
S - user terminal & nt2
T - NT1 / NT2
U - NT1 & line termination unit
B & D channels : 64 /16kbps
BRI
Each BRI has an Service Provider Identifiers - SPID
isdn switch-type xxxxx depending upon provider
config t
isdn switch-type xxxxx
int bri0
encap ppp
isdn spid1 775456721
isdn spid2 775456722
Chapter 3 - IOS
Login
Aux port with modem, console, or telnet
User / priveleged mode
exec= cisco ios command interpreter
Privelged needed to view config
Console
Enter to start
User password or straight to router> prompt
enable to get to priveleged mode .. enter password
disable to exit ...
n? shows all comands that start n etc.
clock set h:mmss dd mm yyyy
Advanced editing
terminal no editing to turn off, terminal editing to turn on
Control A = start of line
Control E = end of line
Control F or -> = right (forward
Control B or <- = left (back)
Control P or ^ = repeat last= previous command
Control N or v = repeat most recent command
Esc B = back 1 word
Esc F = Fwd 1 wors
show history - lists buffer
terminal history size - sets buffer size
tab key completes entry, eg sh run [tab] gives show running-config
Memory types
ROM, RAM, Flash, NVRAM
startup-config
in nvram. accessed on boot and copied to dram
show startup-config
sh start
running-config
copied from nvram on startup
config [t]erminal updates the file.
copy running-config startup-config
copy run start
show running-config
sh run
cisco ios
Held in flash
sh flash to see size & free flash mem
CDP - Cisco Discovery Protocol
Cisco proprietary protocol
If SNAP runs at data link layer then devices can communicate even if different
net layers as long as directly connected - SNAP does not route.
Starts as default in IOS 10.3+
Data link broadcast allows it to find neighbouring routers running CDP
Can display other router's stats about protocols, eg IP / IPX
show cdp to see update and holdtime frequency.
cdp timer sets frequency (secs)
cdp holdtime
sh cdp [entry],[interface],[neighbors],[traffic]
sh cdp entry xxxxx where xxxxx is other router name
 sh cdp int - encapsulation, timers etc.
sh cdp entry * shows all known cdp routers
sh cdp neighbor detail gives entry info. aswell as summary
sh cdp neighbor gives device id, local int, holdtime, capability, platform, port id.
EXEC mode
All run from router# prompt (not config t)
show startup-config
show running-config
copy run start
copy start run
erase startup-config - erase nvram settings to defaults!
reload - restarts router
setup - starts initial config. dialog
Continue with config dialog Y/N
control-c aborts config.
Passwords
enable secret
one way password for IOS 10.3 up.
precedence over enable password
set with enable secret within config t
enable
when no secret password or for older software
manually encrypted - setup in setup mode
set with enable password within config t
Keep different to secret - will warn not to set same but will not work if the same!
VTY - virtual terminal password
Telnet access
setup in setup mode
line vty 0 4 - specifies 0 - 4 are telnet sessions
to change pword:
config t
line vty 0 4
login
password xxxxxx
^z
no login means no password over telnet
line vty n to setup different password for line n
Auxilliary password
for Aux modem access.
Set manually
config t
line aux 0
login
password xxxxx
^z
Console password
used with direct access to console port
config t
line con 0
login
password xxxxx
^z
Banners
banner exec
 shown to user after login on telnet
banner incoming
Reverse telnet sessions show this but not exec
baner login
shows message before login command
banner motd # where # send character (choose any)
first message shown on connection to router
banner motd #
This is the banner text for router xyz
#
end
Router ID
hostname [routername]
interfaces
2500 : serial0, serial1, ethernet0,tokenring0,fddi0
in config mode can use s0,s1,e0,t0,f0
Catalyst 5000 / other modular
numbered as type slot/port, eg e4/2
7000 / 7500
Has Versatile Int Proc cards
1/2 slots per port
type slot/port number adaptor/port, eg w2/0/1

shutdown - changes amin state of int, down

no shutdown - turns admin back on
description - adds text description to an interface (eg circuit nums)
hosts table
Setting up hosts entries
config t
ip host [name] [ip] [port for telnet]
ip host feathers 10.0.0.5 23
sh hosts
shows default domain, list of hosts, dns servers
Router startup ios commands
sh interface
general, inc ip, subnet mask
eth is up, line protocol is down
hardware, logical addresses
encapsulations, stats, errors etc.
sh ip interface
ip paramaters on an int.
Usability status - if hardware is working then int is up
if both ends of comms link are up then line protocol is up
sh protocol
displays all protocols and addresses running
sh ip protocol
shows routing protocols, eg rip, igrp etc
filters, period of update, routing type, which routes known
Cisco autoinstall procedure
Gets Ip thrugh BootP or RARP
Another router available with helper address fowards UDP TFTP broadcast to a
TFTP server.
Helper also used to forward DHCP requests
 New sends out BootP request & gets first address it is given
Uses TFTP server or DNS to resolve ip to hostname
TFTP send file named network-confg containing new hostname
network-confg file contains commands for all routers???
Requests config file from TFTP server called hostname-confg
If file doesn't exist TFTP server send generic file router-config
This file is used as running-config by router
SETUP routine
Get to this with either:
setup command within priv mode
write erase, erase startup-config then reboot
nvram invalid. posibly due to write errors - if new router, erased, or corrupt
Use Ctrl C to abort, enter initial config [yes] = enter
Would you like to see current interface summary [yes]=enter
list of interfacs. OK? column =no if no valid config
this proves the post found all the interfaces
Router name
enable secret password
enable password
vty password
snmp network management [yes]
configure ip [yes]
configure igrp routing [yes]
configure rip routing [no]
configurin interface paramaters:
int eth0:, is this int in use? [yes]
config ip on this int [yes]
ip addr: x.x.x.x
no. of bits in subnet field [0]
depends upon class. eg class b, 8 bits = 255.255.255.0
int ser0:, is this in use? [yes]
config ip on this int.
ip addr x.x.x.x
bits in subnet field [0]
int ser1: is this in use [yes] : n
Use this configuration? [yes/no] :y - saves to nvram
Copy config files
config net - loads from tftp server to running ram only.
host or net config file [host]
ip addr of host
name of config file [router-confg]
confirm config [enter]
copy run tftp
backs up running config to tftp
enter ip addr
name of config file to write [host-confg]
confirm [enter]

copy tftp run

as above
copy tftp star
copy star tftp
Boot settings
Flash stores ios
copy flash tftp
lists files in flash
enter ip of tftp server
enter source filename
 enter dest filename [enter] = same name
copy to server [y/n]
copy tftp flash
warning - routing stops, telnet stops
proceed enter to confirm
lists flash memory files
enter IP of TFTP server
source filename
dest filename [enter] for same#
erase flash before writing [enter] to confirm
contains file. are you sure [enter] to confirm
copy xxx fom tfp into flash sure [y/n]
[e] erasing. [!] downloading. May take 20 mins or more.
Reboots system

Use this to upgrade ios

boot command to choose multiple boot images:
enter in config mode, notconfig-in
boot system TFTP ios_filename tftp_ip_address
boot system flash
boot system TFTP filename 10.0.0.5
boot system rom
Will drop down to next in list if first not available - eg if flash corrupt then try tftp, if
that fails try rom image.
IOS 11.3 oes not allow boot system rom, boot system flash bootflash
Manual config
config [network] or [terminal] or [memory]
config on own prompts for one of above
config mem
copies startup config to running config
config net
copies tftp image to running config
config t
(config)
int e0
(config-if)
description LAN link xyz etc.
ip address x.x.x.x subnet.s.s.s
no shutdown
int s0
description WAN link xyz
no shutdown
exit
(config)
hostname RouterABC
enable password xxxxx
enable secret yyyyy
line con 0
(config-line)
login
password vvvvvv
exit
(config)
line vty 0 4
(config-line)
login
password zzzzz
(config)
banner motd #
 login message
more message
#
^z
DTE / DCE cable
if two routers connected directly by ser. then need clock
config t
int s0
clock rate 56000 [300-8000000]
bandwidth 56
int s1
clock rate 56000
bandwidth 56 [kbitsps]
CHAPTER 4 - NETWORK PROTOCOLS
Monitoring ipx
show ipx servers = display servers - shows SAP table
show ipx route - lists directly connected px networks, then discovered
show ipx traffic - stats &types, inc rip/sap
show ipx interface - ipx address, hardware address, encapsulation type
NB show interface does not give ipx address, show protocol does show ipx
addresses
debug ipx - display ipx live - rip / sap updates etc.. undebug to stop
ping can ping ipx devices
ping
[ip] ipx
5200.0000.0c3f.1d86
repeat [5]
size [100]
timeout [2]
verbose [n]
IP
22 bit subnet mask means add 22 bits to class's mask, eg class a ->
255.255.255.252
ping results :
U unreachable
C congested
I interrupted
? unknown packet type
& ttl exceeded
tracert results
!h router received nut did not forward (access list)
P protocol unreachable
N network unreachable
U port unreachable
* timeout
IPX encapsulation
802.3 - novell_ether
802.2 - sap
eth_e - arpa
snap - snap
token ring - sap
tr_snap - snap
fddi_snap - snap
fddi_802.2 - sap
fddi_raw - novell-fddi
ipx config
config t
int e0
ipx network ######## encapsulation [type] [secondary]
adding secondary allows more than 1 frame type
alternative use sub interface : int e0.[0-32bit value]
ipx maximum-paths 2 [1 upto 64] to allow more than 1 ipx route to dest.
assumes 1
if more than 1 route it will roundrobin between unless IPX per-host-load-share is
on
Serial interfaces do not use these encap. types
TCP/IP TRANSPORT LAYER
tcp =connection oriented full duplex, reliable, accurate
 udp = no virt circuit, low overhed, connectionless, unsequenced, unreliable
TCP/IP INTERNET LAYER IN DD
ip
arp
rarp
boot
icmp - management protocol
dest unreachable
buffer full
hops exceeded
ping
trace [rt]
type 0x01h
IPX access lists

standard
access-list [number] [permit / deny] [source] [dest]
access-list ? gives list of numbers
800-899 = standard ipx
eg access-list 810 permit 30 10
access-list 810 deny 50 10
allows net 30 access to 10 but 50 not allowed access to 10
all other networks denied access to 10 too
other way:
access-list 811 deny 50 10
access-list 811 permit -1 -1
int e0
ipx access-group 811 out
^z
-1 in ipx list =ip "any"
extended
access-list [no.] permit / deny] [protocol] [source] [socket] [dest] [socket]
900-999 = ex ipx.
access-list 910 permit -1 -1 0 -1 0 log
can now filter on sap, ipx, spx, socket no. etc.
if any access list in usethen automatic deny any atend of lis
sap filters
access-list [#] [perm deny] [source] service type
1000-1099 = sap filter
config t
access-list 1010 permit [ipx no.].mac.mac.mac 0
0 matche all services
int e0
ipx input-sap-filter 1010
^z
Apply access list to port with
config t
int s0
ipx access-group # [in/out]
CHAPTER 5 - Routing!
RIP

config t, router rip, network 10.0.0.0, ^z

needs network x.x.x.x to tell it which net. to broadcast about, every 30 secs
RIP can only do classful routing, no subnet masks!
sh ip route shows rip entries with r next to them
sh ip route rip just shows rip...
debug ip rip shows lve rip updates
max 15 hops, not basedon cost etc.
IGRP

HANDLES LARGER NETWORKS

router irgp # command
network x.x.x.x
# autonmous network number (16 bit) -- all routers with same no. exchange info.
== as = autonomous system
delay, mtu, bandwidth, reliability, load (see sh int s0)
maximumtransmission unit, bandwidth default is 1544 kbit (t1)
I in sh ip route is irgp entry
every 90 secs by default
sh ip protocol shows routing protocols, as no. etc.
topology changes
hop count - over 15 with rip kills packet = counting to infinity / ttl exceeded
split horizon

enforces rule that says routing info. cannot be sentback the way it came.

rout poisoning
enter down network as 16 = unreachable = infinite
therefore router does not listen to other routers saying net is up until it can see it,
at which point it will tell it's neighbours
hold-downs
work with rout poisoning
prevents rapid change, allows downed route to come back up
triggered updates
hold down tme xpires
hold down timer receives update saying net status has changed
static routes
can also cause loop if bad!

ip route dest net subnet next hop addr metric

ip route 10.0.0.0 255.0.0.0 10.0.0.99 3
metric = weighting of link
benefits of usin routers to segment network
manageability
inceased functionality
multipleactive paths
broadcasts not forwarded
CHAPTER 6, SECURITY
accesslists
sequential order until match is made
deny any at end of list (implied)
standard ip access list only on source addr.

1-99
acc list # perm/deny 10.0.0.5 0.0.0.0
in and out are routers perspective, ie out of router
ip access-group ## [in/out] (witin config t, int e0)
wildcard matching: std, ext : reverse subnet mask, eg 0.0.0.255
extended on source, dest, ip, protocol
100-199
acc list # perm/deny protocol source dest port
access-list 110 permit tcp host 172.x.x.x host y.y.y.y eq 8080
access-list 110 permit tcp 172.x.x.0 host y.y.y.y eq 8080
access-list 110 permit tcp any any eq ww
host is same as x.x.x.x 0.0.0.0
any is 0.0.0.0 255.255.255.255
port is port no. or well known service name, www, smtp, pop3 etc.
protocol is udp, tcp, icmp when filtering by port.
monitoring access lists

show access-lists
shows all running
shows each line & no. of packets that matched!
sh ip access-list
shows only ip access lists
sh log
add log to end of command, will log:
acc list #, source addr/port, dest addr/port, no. of packets
can be redirected to syslog server
clear access-list counters [#]
show run conf and sh ip int e0 show which access lists on port
sh access-list ## shows just ##
CHAPTER 7 - LAN SWITCHING
port config switching
software based
frame switching
multiple simaltaneous
catalysts
cell switching
atm, 53 byte cells

full duplex
bridges

switches

100baseX
2 class ii repeaters
tx = 100m fx=412 metres h. duplex

store &forward
used by catalyst

stp, sta

vlans
cat 3000,5000
Inter switch link (ISL)
unique id header of each frame
id removed before exiting switch except via isl
data link layer
frame addresses change after each router
packet logical addresses do not change