CISCO – IOS Commands

Removing VLAN database

switch# delete flash:vlan.dat

Checking VLAN database

switch# show vlan or show vlan brief


switch(config)# vlan <number>

switch(config-vlan)# name <name>

switch(config-vlan)# exit

switch(config)# interface vlan <number>

switch(config-f)# ip address <address> <subnet mask>

switch(config-if)# no shutdown

(Need to assign vlan to an interface)

switch (config)# interface <interface>

switch(config-f)# switchport mode access

switch(conf-if)# switchport access vlan <number>

switch(config-if)# exit


switch# show interface vlan <number>

Port speed and Duplex

switch(config-if)# speed 100

switch(config-if)# duplex full

Map a static MAC address

mac-address-table startc <address> vlan 99 interface fa 0/18

Port Security

switch(config)# interface fa 0/18

switch(config-if)# swithport mode access

switch(config-if)# switchport port-security

switch(config-if)# switchport port-sec max<number of MAC addresses allowed through interface>

switch(config-if)# switchport port-security mac-address sticky (first mac address detected on interface will stay)

switchport port-security violation protect     or

switchport violation shutdown (shuts down interface need to be shutdown and no shutdown to reenable port) or


