1. Numbered Extended ACLs
  2. Named standard IPv4 ACLs
  3. router and switch security
  4. NAT
  5. Config
    1. ip access-list standard name
    2. {deny | permit} source [source wildcard] [log]
    3. remark text
  6. Exec
    1. Same as Numbered
  7. Exec
    1. show ip nat statistics
    2. show ip nat translations [verbose]
    3. clear ip nat translation {* | [inside global-ip local-ip] [outside local-ip global-ip]}
    4. debug ip nat
  8. Config
    1. access-list access-list-number {deny | permit} protocol source source-wildcard destination destination-wildcard [log]
    2. access-list access-list-number {deny | permit} {tcp | udp} source source-wildcard [source_port] destination destination-wildcard [destination_port] [log]
    3. access-list access-list-number remark text
    4. ip access-group {number | name [in | out]}
  9. Show
    1. show access-lists [access-list-number | access-list-name]
    2. show ip access-list [access-list-number | access-list-name]
    3. show ip interface [type number]
  10. Named Extended ACLs
  11. Config
    1. clear ip nat translation protocol inside global-ip global-port local-ip local-port [outside local-ip global-ip]
    2. ip access-list extended name
    3. ip access-group name [in | out]
    4. {deny | permit} protocol source source-wildcard destination destination-wildcard [log]
    5. {deny | permit} tcp source source-wildcard [operator [port]] destination destination-wildcard [operator [port]] [log]
  12. Show
    1. same as other types
  13. Numbered Standard ACLs
  14. NTP
  15. Config
    1. ntp server address version 1..4
  16. show
    1. show ntp associations
    2. show ntp status
  17. Config
    1. access-list access-list-number {deny | permit} source [source-wildcard] [log]
    2. access-list access-list-number {deny | permit} host source [log]
    3. access-list access-list-number remark text
    4. ip access-group {number | name [in | out]}
  18. Exec
    1. show access-lists [access-list-number | access-list-name]
    2. show ip access-list [access-list-number | access-list-name]
    3. show ip interface [type number]
  19. Config
    1. enable secret pass-value
    2. enable password pass-value
    3. login local
    4. service password-encryption
    5. username name password pass-value
    6. username name secret pass-value
    7. crypto key generate rsa
    8. transport input {telnet | ssh | all | none}
    9. [no] ip http server
    10. [no] service tcp-small-servers
    11. [no] cdp run
    12. [no] cdp enable
  20. Config
    1. ip nat {inside | outside}
    2. ip nat inside source {list {access-list-number | access-list-name}} {interface type number | pool pool-name} [overload]
    3. ip nat pool name start-ip end-ip {netmask netmask | prefix-length prefix-length}
    4. ip nat source static inside-ip {outside-ip | interface-id}