1. Bringing up a router
   1. POST
      1. Power On Self Test
   2. Load Cisco IOS from flash memory
   3. Looks for Config file
      1. Found in NVRAM
         1. Non Volatile Random Access Memory
      2. Not found
         1. Enters Setup mode
            1. provides minimum amount configuration for newbies to IOS and CLI
            2. Can also be entered by typing
            3. setup
2. User mode & Privileged mode
   1. User mode
      1. provides CLI with very few available commands by default
      2. Does not allow the configuration to be viewed or changed
   2. Privileged mode
      1. allows viewing and changing of configuration
      2. Command
         1. enable
            1. enter enable password of secret if set
            2. enable password
            3. un-encrypted password by default
            4. used on legacy routers before IOS 12.3
            5. cannot be the same as enable secret
            6. Command
            7. (set from config t mode)
            8. enable password [password]
            9. Enable Secret
            10. encrypted password
            11. supersedes enable password from IOS 12.3
            12. Command
            13. (set from config t mode)
            14. enable secret [password]
         2. disable, exit, logout
            1. exit privileged mode
3. Commands
   1. show version
      1. provides basic system configuration details
      2. provides software version
      3. names and sources of config files
      4. config-register settings
      5. boot images
   2. hostname
      1. set from global config mode
      2. allows user to name device to ease ID
         1. Location is recommended
   3. show interface [interface type] [slot number/port number]
      1. displays line up/down status & protocol status
         1. down, line protocol down
            1. Considered Physical layer problem
         2. up, line protocol is down
            1. considered a data link layer problem
            2. clocking not set (for serials), keep alives different, etc
         3. administratively down, line protocol is down
            1. administrator not open line. use
            2. no shutdown
      2. stats for each interface
      3. IP addresses
   4. ?
      1. gives information about next possible command
      2. <cr> means no more options left
   5. description
      1. sets a discription for an interface
         1. useful to describe an interfaces use and destination
      2. must be in interface config mode (Router (config-if)#)
      3. similar to hostname, but for interfaces
   6. shutdown
      1. used to administratively close an interface
         1. use no command to open
   7. |
      1. pipe command or Output modifier
         1. modifies the output
         2. can shorten a long list to just one area
         3. use ? command to view options
   8. erase
      1. allows user to erase files
         1. use to erase startup-config or running-config
   9. copy
      1. save files to other location
         1. can be used to save running-config to startup-config
         2. can also save to ftp, tftp, etc
   10. show protocols
       1. used to verify layers 1 & 2 of each interface
   11. show controllers
       1. displays information about physical interface
       2. details what kind of cable is plugged into serial interface
          1. DTE
          2. DCE
   12. ip address
       1. sets an IP address for an interface
       2. use secondary to add another IP address to the same interface
   13. show ip interface
       1. shows layer 3 details of an interface
       2. show ip interface brief
          1. simplified layer 3 details
4. Line passwords
   1. Console password
      1. line console [port]
         1. used from global config mode
         2. use ? to ID port number (usually 0)
      2. login
      3. exec timeout [minutes] [seconds]
         1. will log user out if no activity detected in time limit
      4. logging synchronous
         1. stops console messages interrupting input
   2. Auxiliary password
      1. used to log in to device using modem
      2. line aux [port]
         1. use from global config mode
      3. login
   3. vty (telnet) password
      1. from global config mode
         1. line vty [port] [port]
            1. use ? command to find ports
            2. line vty 0 4 will configure all ports the same
         2. login
   4. ssh (secure shell)
      1. similar to telnet, more secure
      2. more complicated setup
         1. set hostname
            1. hostname [host name]
         2. set ip domain name
            1. ip domain-name [domain name]
         3. generate encryption keys
            1. crypto key generate rsa general-keys mudulus ?
         4. set max idle timer for ssh session
            1. ip ssh time-out ?
         5. set max failled attempts to login
            1. ip ssh authentication-retries ?
         6. connect to the vty line
            1. line vty [port] [port]
         7. configure ssh then telnet to access protocols
            1. transport input ssh telnet
   5. encrypt passwords
      1. service password-encryption
         1. revoke with no command
      2. encrypts passwords in show running-config
      3. secret password automatically encrypted
5. banners
   1. motd (message of the day)
      1. used to show information to all users when logging on to the router
      2. type from global config mode
         1. banner motd ?
   2. Exec banner
      1. banner exec ?
      2. shows a banner everytime an exec process is activated
   3. incoming banner
      1. banner incoming ?
      2. used to show banner when connected to reverse terminals
   4. login banner
      1. banner login ?
      2. shows banner after motd banner but before login
      3. must use no login banner to deactivate