Ch. 6: Configuring Basic Switch Management

Question 1

local username

Answer 1

A username (with matching password), configured on a router or switch. It is considered local because it exists on the router or switch, and not on a remote server.

Question 2

AAA

Answer 2

Authentication, authorization, and accounting. Authentication confirms the identity of the user or device. Authorization determines what the user or device is allowed to do. Accounting records information about access attempts, including inappropriate requests.

Question 3

AAA server

Answer 3

A server that holds security information and provides services related to user login, particularly authentication (is the user who he says he is?), authorization (once authenticated, what do we allow the user to do?), and accounting (tracking the user).

Question 4

VLAN interface

Answer 4

A configuration concept inside Cisco switches, used as an interface between IOS running on the switch and a VLAN supported inside the switch, so that the switch can assign an IP address and send IP packets into that VLAN.

Question 5

history buffer

Answer 5

In a Cisco router or switch, the function by which IOS keeps a list of commands that the user has used in this login session, both in EXEC mode and configuration mode. The user can then recall these commands for easier repeating or making small edits and issuing similar commands.

Question 6

DNS

Answer 6

Domain Name System. An application layer protocol used throughout the Internet for translating hostnames into their associated IP addresses.

Question 7

name resolution

Answer 7

The process by which an IP host discovers the IP address associated with a hostname, often involving sending a DNS request to a DNS server, with the server supplying the IP address used by a host with the listed hostname.

Question 8

line console 0

Answer 8

Changes the context to console configuration mode.

Question 9

line vty (1st-vty last-vty)

Answer 9

Changes the context to vty configuration mode for the range of vty lines listed in the command.

Question 10

login

Answer 10

Console and vty configuration mode. Tells IOS to prompt for a password.

Question 11

password (pass-value)

Answer 11

Console and vty configuration mode. Lists the password required if the login command (with no other parameters) is configured.

Question 12

login local

Answer 12

Console and vty configuration mode. Tells IOS to prompt for a username and password, to be checked against locally configured username global configuration commands on this switch or router.

Question 13

username (name) secret (pass-value)

Answer 13

Global command. Defines one of possibly multiple usernames and associated passwords, used for user authentication. Used when the login local line configuration command has been used.

Question 14

crypto key generate rsa [modulus 360..2048]

Answer 14

Global command. Creates and stores (in a hidden location in flash memory) the keys required by SSH.

Question 15

transport input {telnet | ssh | all | none}

Answer 15

vty line configuration mode. Defines whether Telnet/SSH access is allowed into this switch. Both values can be configured on one command to allow both Telnet and SSH access (the default).

Question 16

interface vlan (number)

Answer 16

Changes the context to VLAN interface mode. For VLAN 1, allows the configuration of the switch’s IP address.

Question 17

ip address (ip-address subnet-mask)

Answer 17

VLAN interface mode. Statically configures the switch’s IP address and mask.

Question 18

ip address dhcp

Answer 18

VLAN interface mode. Configures the switch as a DHCP client to discover its IPv4 address, mask, and default gateway.

Question 19

ip default-gateway (address)

Answer 19

Global command. Configures the switch’s default gateway IPv4 address. Not required if the switch uses DHCP.

Question 20

ip name-server (server-ip-1 server-ip-2 …)

Answer 20

Global command. Configures the IPv4 addresses of DNS servers, so any commands when logged in to the switch will use the DNS for name resolution.

Question 21

hostname (name)

Answer 21

Global command. Sets this switch’s hostname, which is also used as the first part of the switch’s command prompt.

Question 22

enable secret (pass-value)

Answer 22

Global command. Sets this switch’s password that is required for any user to reach enable mode.

Question 23

history size (length)

Answer 23

Line config mode. Defines the number of commands held in the history buffer, for later recall, for users of those lines.

Question 24

logging synchronous

Answer 24

Console or vty mode. Tells IOS to send log messages to the user at natural break points between commands rather than in the middle of a line of output.

Question 25

[no] logging console

Answer 25

Global command that disables or enables the display of log messages to the console.

Question 26

exec-timeout (minutes [seconds])

Answer 26

Console or vty mode. Sets the inactivity timeout, so that after the defined period of no action, IOS closes the current user login session.

Question 27

show running-config

Answer 27

Lists the currently used configuration.

Question 28

show running-config | begin line vty

Answer 28

Pipes (sends) the command output to the begin command, which only lists output beginning with the first line that contains the text “line vty.

Question 29

show dhcp lease

Answer 29

Lists any information the switch acquires as a DHCP client. This includes IP address, subnet mask, and default gateway information.

Question 30

show crypto key mypubkey rsa

Answer 30

Lists the public and shared key created for use with SSH using the crypto key generate rsa global configuration command.

Question 31

show ip ssh

Answer 31

Lists status information for the SSH server, including the SSH version.

Question 32

show ssh

Answer 32

Lists status information for current SSH connections into and out of the local switch.

Question 33

show interfaces vlan (number)

Answer 33

Lists the interface status, the switch’s IPv4 address and mask, and much more.

Question 34

show ip default-gateway

Answer 34

Lists the switch’s setting for its IPv4 default gateway.

Question 35

terminal history size (x)

Answer 35

Changes the length of the history buffer for the current user only, only for the current login to the switch.

Question 36

show history

Answer 36

Lists the commands in the current history buffer.