Category: Cisco

Clear Access Control List (ACL) Counters in Cisco IOS
When troubleshooting a problem with Access Control lists, one of the things you would want to do is to clear the counters on the ACL matches.
In Cisco IOS, you can clear the ACL Matches counters as follows:
(more…)
May 7, 2008
Logging Synchronous while working in Cisco Router/Switch Console
Another beginner tip that can be useful!
When you work on the Cisco Router or Catalyst Switch console, it would be annoying to have the console or terminal (telnet/ssh) logs to pop in between your commands. This can be even more irritating when it is busy switch or a router spitting messages continuously.
(more…)
April 25, 2008
Default Link/Port costs for Spanning Tree Protocol (STP)
With Spanning Tree Protocol, messages from a connected device always takes the least cost path to the Root Bridge. The least cost path also called as Link Cost or Port cost is the lowest cost path of the one or more paths available from the device to the root bridge. Each link type has its own default costs which is used by the Spanning Tree Protocol (STP) to calculate the least cost path.
(more…)
April 21, 2008
Configure Access/trunk/Dynamic modes in Catalyst switches unconditionally
In Cisco Catalyst switches, each switchport can be set to different VLAN Membership modes using the "switchport mode" command. This sets the port unconditionally.
The different modes include
(more…)
April 20, 2008
Configure Named Acces Control Lists (ACL) in Cisco Routers
With Cisco IOS version 11.2, Cisco introduced the Named ACLs. Named ACLs are Standard or Extended ACLs which are give names instead of a ACL number. Technically, other than giving a name to the ACL there isn't any other difference when it comes to the functionality as in Standard or Extended ACL.
(more…)
April 18, 2008
Configure Extended Access Control Lists(ACL) in Cisco Routers
Extended ACLs are advanced than the Standard ACLs. Unlike the Standard Access Lists where it checks only the Source IP Address to control the flow of the packets, Extended ACLs can check the
Source & Destination Address
Protocols (IP,ICMP,TCP,UDP)
Source & Destination ports
(more…)
April 18, 2008
How to prevent VLAN Hopping in Cisco Switches
A malicious user can easily gain access to data on another VLAN to which he is not authorised to access using VLAN hopping. A VLAN Hoping attack can be launched by using a Switch Spoofing or Double Tagging of 802.1q trunking protocol. To have a quick insight into VLAN Hopping, click here.
You can prevent VLAN Hopping in Cisco Switches as follows:
(more…)
April 17, 2008