Supported script types
The generator supports the most common day-to-day IOS configuration tasks:
- Interface — Layer 3 IP address, description, duplex/speed, shutdown state.
- OSPF — Single or multi-area OSPF process with router-ID, network statements, passive interfaces, and default route redistribution.
- Static routes — Standard and floating static routes with optional administrative distance for route redundancy.
- Extended ACL — Numbered (100–199) or named extended access lists with per-rule remarks and optional interface binding.
How to apply a generated script
All scripts start with configure terminal and end with end,
so they are designed to be pasted directly at the router or switch privileged exec prompt (Router#).
After pasting, verify with show running-config and save with
copy running-config startup-config (or wr).
Essential IOS verification commands
After applying a configuration, use these commands to verify the result:
| Command | What it shows |
|---|---|
show ip route | Full IPv4 routing table with protocol codes |
show ip route summary | Route count per protocol — fast sanity check |
show ip ospf neighbor | OSPF adjacency state (FULL = converged) |
show ip ospf database | LSDB — verify LSAs flooded across the area |
show interfaces | Full interface stats: errors, drops, MTU, encap |
show ip interface brief | One-line status per interface — line/protocol state |
show running-config | Active configuration in RAM |
show startup-config | Saved configuration in NVRAM |
show access-lists | All ACLs with hit counters per rule |
show ip access-lists | IP ACLs only — same hit counters |
show vlan brief | VLAN database: ID, name, active ports |
show ip dhcp binding | Active DHCP leases: MAC → IP mapping |
show ip dhcp pool | Pool utilisation: addresses available vs. in use |
show version | IOS version, uptime, hardware model, license |
ping target | ICMP echo test — 5 packets by default |
traceroute target | Hop-by-hop path with RTT per hop |
debug ip ospf events | Real-time OSPF event log (use with care in prod) |
no debug all | Disable all active debug output immediately |
copy running-config startup-config | Persist config to NVRAM (alias: wr) |
OSPF area design quick reference
OSPF divides the network into areas to limit LSA flooding. Area 0 (backbone) is required — all other areas must connect to it directly or via a virtual link. Common design patterns:
- Single-area OSPF — everything in area 0. Simplest; fine for small networks (<50 routers).
- Stub area — blocks external LSAs (Type 5). Add
area N stubto reduce LSDB size on branch routers. - NSSA — allows redistributed routes while blocking other externals. Add
area N nssa.
Extended ACL placement rules
Place extended ACLs as close to the source as possible to drop unwanted
traffic early. Named ACLs (recommended over numbered) support in-place editing
with no sequence-number and resequencing with
ip access-list resequence NAME 10 10.
Always end with an explicit deny ip any any with a remark so the
implicit deny is visible in show access-lists hit counters.