View history commands: display history-command
Display version Versions Query
Tracert viewing path
Ipconfig / release to release ip address
Ipconfig / renew regain address
LI: limited function SI: standard EI: Advanced HI: top with
① blue fiber port is, there are a variety of round, square head.
② MAC D of 8 bits compared to 0 unicast, multicast, compared to 1. Are all 1 (FF) broadcast.
③ A Class address 1.0.0.0 ~ 126.255.255.255
Class B addresses 128.0.0.0 ~ 191.255.255.255
Class C address 192.0.0.0 ~ 223.255.255.255
Which is a private address 10.0.0.0/8
172.16.0.0-172.31.0.0/16
192.168.0.0-192.168.255.0/24
④ tracert to an IP-to-IP address tracking.
⑤ TCP: Transmission speed is slow and stable. reliable
UDP: transmission speed, easily broken. Unreliable
Mode MS =
⑥ from user mode to system mode: system-viem
User mode returns from the system: quit (Return to previous q)
Returns from any user mode: return
Or ctrl + z
⑦ disposed name sy (abbreviated into the system MS) + sysname Name
⑧ configuration time (user MS): The first step - time zone clock datetime
The second step - the standard time clock datetime
Part III - query time display clock
⑨ Huawei query or display device are both : display mode and no defined beginning, any pattern can be used.
Display version display system version
.............. Users connected end user display
.............. this display of the current view configuration
⑩ all file operations are done in user mode
Operation | command
to view the saved router configuration display saved-configuration
View the current router configuration display current-configuration
save the current configuration | save
erasing the router configuration file storage device reset saved-configuration
compares the profile compare configuration
cd .. Return to the upper path
Find file:
drw- directory
-rw- file
dir / all to see deleted files
How to move files: move the file name Road King (flash: /) file renamed, do not change will not fill.
Display this view the current use ip (current view)
GE is connected to PC serial port
router
Display router
Display ip interface brief view the configuration of each router interface
Display ip routing-table routing table
Display rip view the dynamic routing configuration
Rip version = version preference = priority (the smaller the priority)
Update time = Updated receive long age time = cancellation time garbage-collect time = retention time (aging time)
Display rip route number can be added the dynamic routing table
Display int Interface
Display vrrp group number to view the virtual routing table
Master = Backup = main route backup route master ip = the main route IP
Priorityrun = general priority same two numbers the apparatus main
Static Routing
Interface to enter the interface and back as g0 / 0/0
Then ip address + ip + Subnet Mask
ip route-static configuration is used (such as the interface directly ip route-static segment + + + mask next hop without entering the system mode) hop Mask of the target
(Change the priority of preference hop back a space and a space and then the next priority attention: it will be the main priority of the small overhead, it will become a big priority backup overhead, overhead disconnect when the primary backup overhead is enabled) Default value 60
Command to delete the configured using configuration commands undo + command + configuration can be entered.
FTP connection (system interface)
ftp ftp server enable open configuration
aaa
local-user username password cipher password
local-user username service-type ftp user is used for the FTP service
local-user login user name ftp-directory directory (flash: /)
local-user name of the user privilege level 15 (0-15)
Dynamic Routing
Rip
Version 2 (second generation)
Undo summary (automatic cancellation polymerization)
(Automatic opening polymerization = summary always automatic ships polymerization)
Network segment must be a primary class network
Modify priority (generally does not modify rip priority)
Rip
Preference plus numbers
Modify line bandwidth (line two ports to be configured) lacks effects on other dynamic routing re-used, I wrote in a dynamic routing list Lai have to change
Enter interface
Undo negotiation auto
Speed plus Bandwidth
Duplex full
Undo shutdown off switch to open, let them renegotiate
Increasing the metric (two ports are arranged)
Enter interface
Two ways:
The first intake increases affect their interfaces: Those who are coming from this interface plus ** jump: rip metricin numbers 1-15
A second interface to a device under the influence of an increase: all opening out from this increase ** jump: rip metricout numbers 1-15
Manual aggregation
Incoming interface (which interface is the interface at which the polymerization finished in)
Rip summary-address address subnet mask (255 must begin with)
Lookback configuration (loopback interface: the virtual absence of physical network interfaces, as a most common interface used, the router can be configured to address identity management interfaces do not cut off)
Digital Interface loopback
Ip address address ...
Telnet configuration
Now configure the IP. There are two options:
Option One:
With a good ip address
(The number of simultaneous logons) User-interface + port name (usually vty) + 0 + 4
directly enter authentication-mode password, and the password.
User level user privilege level + (0 to 15)
These are the only configuration password
Option II:
With a good ip address
User-interface + port name (usually vty) + the number of simultaneous log (0-4)
authentication-mode aaa claim user to configure a three
local-user username password cipher password
local-user username service-type Telnet user for telnet service
local-user username privilege level permissions (0-15)
These are configured username + password
Single-arm routing
Access interface connected to the switch terminal configuration. Router configuration trunk (specific configuration ignored)
Router configuration:. Interface interface number (generally corresponding vlan ID No.)
Dotlq termination vid vlan号
Ip address Gateway
Arp broadcast enable (arp processing message)
vvrp virtual routing configuration
Enter interface
Configure an address (virtual IP again with the same subnet) mask
Under the current configuration mode virtual gateway:
vrrp vrid group number (random number) virtual-ip gateway
Configuring a Priority:
vrrp vrid group number (to keep up with the same numbers) priority numbers (big go)
Arranged in two or more devices configured with the same
Tracking upstream port (when the main router interfaces broken above, the backup route is switched immediately when the main route. Usually the main routes to do this configuration)
Vrrp vrid group number (random numbers) track interface ** (above the interface, not the gateway interface) reduced number (minus the priority number)
Aaa simple configuration (aaa says: authentication, authorization, accounting)
Two routers configuration: the first client to do client, router with a second user.
Two address configuration can ping each other
Client:
Define a template: authentication-scheme custom name
Certification: authentication-mode local (local authentication, there are many?)
Q Quit
Authorization: authorization-scheme name at random. The same can not
Authorization-mode local (本地)
Q Quit
Create a domain: domai can customize the name, you can do the same
Call authorization: authorization-scheme name
Calls Certification: authentication-scheme name
Route:
Aaa
Local-user name password cipher password
Local-user 名字 service-type telnet
Local-user name privilege level permissions 1-15
Q Quit
User-interface vty 0 4
Authentication-mode aaa
No specific explanation. telnet a note.
ACL
(You can define rules to allow or deny the traffic)
Basic ACL configuration:
System mode: acl 2000
Preparation rules: Rule number (may not be added) deny (deny = refuse, permit = allow) source ip wildcard (with the anti-mask, there is illustrated above)
Advanced ACL:
Specifically to see the advanced ACL (in) video
Enter the Interface: Interface ***
Call acl command in the outbound interface: traffic-filter outbound acl 2000
PPP in
CHAP, PAP verification
CHAP
[RTA]aaa
[RTA-aaa]local-user huawei password cipher huawei
|[RTA-aaa]local-user huawei service-type ppp
[RTA]interface Serial 1/0/0
|[RTA-Serial1/0/0]1ink-protocol ppp
|[RTA-Seria11/0/0]ppp authentication-mode chap
[RTB]interface serial 1/0/0
[RTB-Seria11/0/0]link-protocol ppp
[RTB-seria11/0/0]ppp chap user huawei
[RTB-Serial1/0/0]ppp chap password cipher huawei
PAP
[RTA]aaa
[RTA-aaa]local-user huawei password cipher huawei
[RTA-aaa]local-user huawei service-type ppp
|[RTA]interface serial 1/0/0
|[RTA-Serial1/0/0]link-protocol ppp
|[RTA-Serial1/0/0]ppp authentication-mode pap
|[RTA-serial1/0/0]ip address 10.1.1.130
|[RTB]interface serial 1/0/0
|[RTB-Serial1/0/0]link-protocol ppp
[RTB-Serial1/0/0lppp pap local-user huawei password cipher huawei
|[RTB-Seria11/0/0]ip address 10.1.1.230
switch
Vlan Configuration
Vlan batch (create a vlan, such as 20 ... 10 or 10 to 20 is 10 to 20 VLAN)
A switch connected to an interface Interface +
port link-type access (access interface configuration)
port default vlan vlan号
If you need to switch interconnect two ports configured trunk port:
Interface + interfaces connecting two switches
port link-type trunk (trunk interface configuration)
port trunk allow-pass vlan all (all: 1 to 4094 by vlan, if want to directly fill a vlan number 10 through 20)
When canceling Trunk (when the trunk, port trunk allow-pass vlan all, cancel Trunk, to undo port trunk allow-pass vlan all, will automatically generate an undo port trunk allow-pass vlan 1 a, then a port trunk allow- pass vlan 1, undo port link)
A key to clear port configuration: clear configuration interface Interface
Two PC figured need to be configured with a vlan
View vlan configuration: display port vlan active or display this
T = marking out
U = standard frame by not marking out (hybrid port can have two U)
Stp mode stp open spanning prevent loops
Configure multiple ports
Port-group group-member e0 / 0/0 e0 / 0/1 (sequential plurality of the interfaces e0 / 0/0 to e0 / 0/24 0 to 24 ports)
If you want multiple ports named the Port-group name spaces directly
Group-member port configuration spaces done directly start
To modify the priority
Stp priority 0 ~ 61440 (as a multiple of 4096)
Or may stp root primary (main root switch)
Secondary (minor, will be configured as the primary root switch after the secondary cold) generally used for the core switches bis
Display Switches
Display current-configuration global configuration can also be used to view the router
Display stp brief view port status
Display ip routing-table view switch table
View Display stp root switch, root port, etc.
ROOT: Root port DESI: designated port ALTE: port blocking
Config = current configuration value, if the mean for the auto port autoconfiguration
Active = mean current cost is much smaller overhead line through priority
Overhead configuration: enter the interface, stp cost 1-2 one hundred million own tune smaller the priority
When will it will also cost the same as a neighbor than with the original line ID
Some follows Display stp priority, etc. See FIG.
Compare the root switch: First priority than, the same as the ratio of the number of digits behind, who who is small root switch
Display interface eth-trunk 1 View link information polymerization
Display eth-trunk 1 View bundle link members
NORMAL: Hand bundled In trunk 2: There are currently two ports
Max ...... 8: Bundle up to 8 ports
Display ip pool name number to view the configuration of the current number of DHCP
Idle: There can be several current lease: Lease gateway: Gateway
used: the number of currently used total: total available
The difference is equal to idle and blocked total number
Layer Switch Configuration
Vlan method switcher configured with the same skip
Configure the gateway: interface vlanfi vlan No.
Ip ad mask Gateway
Link aggregation (bundling)
To increase the link speed of the device core with a plurality of lines, and regardless of their bundling several lines of data are not the average, two such lines 46 open. Configuration mode ends, the rate, the number of interfaces must be consistent. (Recommended by a factor of 2 bundles)
Interface eth-trunk 1 (a configuration)
Note: need to bundle line interface can not be configured in advance
Each bundle is required to enter a command interface beat eth-trunk 1
Port link-type trunk
Port trunk allow-pass vlan all
Re-port display this view there is no shutdown, there is the need to reply to cancel the configuration has been started on the prevailing line:
Binding Port: port-group group-member bound port (s)
Undo shutdown
DHCP (automatically get IP) configuration
First configured access (slightly)
Vlan configuration interface gateway (router can be omitted): interface vlanfi vlan number
Gateway ip address mask
Open system mode dhcp: dhcp enable
The establishment of an address pool: ip pool pool10 (name)
Network segment mask mask (think how much the mask configuration on the configuration can not be greater than 16 384 numbers)
Configuring the Gateway: gateway-list Gateway
Configuration dns: dns-list 202.202.202.202 8.8.8.8 configure itself
The primary backup
Configuration lease: Lease day 0 huor 3 minute 0
(0 days and 3 hours, 0 minutes)
Enter vlanif Interface (Layer Interface): interface vlanif vlan No.
Use the global address pool configuration: Dhcp select global