Building configuration...

Current configuration : 33691 bytes
!
! Last configuration change at 14:01:53 MSK Thu Jul 28 2022 by adm_kapustinal
! NVRAM config last updated at 14:02:01 MSK Thu Jul 28 2022 by adm_kapustinal
!
version 15.2
service nagle
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
service password-encryption
service sequence-numbers
service unsupported-transceiver
!
hostname IZH-KG-P11-SW-1-2
!
boot-start-marker
boot-end-marker
!
logging buffered 512000 informational
enable secret 5 $1$2FeC$QhM7w0PTjFz.zdlz0/S/W.
!
username netadmin privilege 15 secret 5 $1$ybme$5dIntAsp.oORGR16Ri0rs0
aaa new-model
!
!
aaa group server radius NPS
 server name IZH-RDS002
 server name P11-RDS003
 ip radius source-interface Vlan100
 load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated 
!
!
!
!
!
!
aaa session-id common
clock timezone MSK 4 0
switch 1 provision ws-c3750x-48
switch 2 provision ws-c3750x-48
system mtu routing 1500
!
!
!
!
no ip source-route
no ip gratuitous-arps
!
!
no ip domain-lookup
ip domain-name komos.ru
ip host VM-KG-NET 10.1.12.70
ip host tftp 10.4.0.214
login on-failure log
login on-success log
vtp mode transparent
!
!
!
!
!
!
crypto pki trustpoint TP-self-signed-2803842944
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-2803842944
 revocation-check none
 rsakeypair TP-self-signed-2803842944
!
!
crypto pki certificate chain TP-self-signed-2803842944
 certificate self-signed 01
  30820252 308201BB A0030201 02020101 300D0609 2A864886 F70D0101 04050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 32383033 38343239 3434301E 170D3933 30333031 30303032 
  32375A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 38303338 
  34323934 3430819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  8100B623 2B22066D A99D90BB C7E4E016 2A6F7838 002AF0BF 2B92DD6D F6700B0A 
  C69C9C2F 674582AE D178E342 8C8B2FD6 C488FE42 63BF1A7C 1EACE527 A4E950A5 
  BAEA6BB7 46E68CE7 041A148B 699952E8 55CD145D 64D21F49 AB708562 71B7D7D6 
  2CD9E671 54C80227 386093B6 EB75C1F6 5BFD0D2A 06A92053 634C27C3 4ADBFC4E 
  055B0203 010001A3 7A307830 0F060355 1D130101 FF040530 030101FF 30250603 
  551D1104 1E301C82 1A495A48 2D4B472D 5031312D 53572D31 2D322E6B 6F6D6F73 
  2E727530 1F060355 1D230418 30168014 E33CF9B2 01729C9E 247AB119 F7BDED51 
  39BE53E8 301D0603 551D0E04 160414E3 3CF9B201 729C9E24 7AB119F7 BDED5139 
  BE53E830 0D06092A 864886F7 0D010104 05000381 8100A7A5 F20748F3 C96B6B2D 
  235793B3 1C522E4A 6FC5F630 31F021D6 DAE46BB6 B7807E14 AF34109A 5D86DC57 
  8A3699D0 D61FF9CD 5DAA7125 6A72AB50 9E9F8ECB 79B870F4 8CF94744 614B1689 
  89BF297F 4CEF015B 8A59EB90 ACBD0A56 7E0644FD 202A76FB F98D301A 1B418E02 
  A73A58AF 80282CD5 6A815E1F 7C5D8D85 5A0049C8 94EF
  	quit
archive
 log config
  logging enable
  logging size 900
  notify syslog contenttype plaintext
  hidekeys
 path tftp://tftp/IZH/KG/P11-SW_L3/$H.$T.conf
 write-memory
 time-period 10080
!
!
!
!
spanning-tree mode rapid-pvst
spanning-tree logging
spanning-tree portfast edge bpduguard default
spanning-tree portfast edge bpdufilter default
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
errdisable recovery cause bpduguard
errdisable recovery cause channel-misconfig
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause psecure-violation
errdisable recovery cause port-mode-failure
errdisable recovery cause loopback
errdisable recovery interval 600
!
vlan internal allocation policy ascending
!
vlan 2
 name KG_LAN-USER
!
vlan 4
 name KG_LAN-VDI
!
vlan 5
 name KG_LAN-ADMIN
!
vlan 6
 name IMP-LAN
!
vlan 11
 name KG_LAN-AS199014
!
vlan 12
 name UNIFI_NETWORK
!
vlan 19 
!
vlan 20
 name DMZ-1
!
vlan 22 
!
vlan 25
 name VoIP
!
vlan 50
 name MS_DYN_AX_SQL
!
vlan 100
 name Inbound_management
!
vlan 101
 name WDS
!
vlan 149
 name -KG-MGMT-INT-10.1.254.0/24-
!
vlan 150
 name KG_WIFI-USER
!
vlan 152
 name KG_ARUBA_USERS
!
vlan 200
 name KG_MGMT-SRV
!
vlan 201
 name KG_LAN-SRV
!
vlan 202
 name KG_LAN-SRV-DMZ
!
vlan 249
 name --KG-SRV-BKP-10.1.249.0/26--
!
vlan 253
 name exchange_komos-group
!
vlan 289
 name --OCOD_VLAN_1--
!
vlan 297 
!
vlan 298
 name -KG-COD-Transit-Core-
!
vlan 300
 name KG_MGMT-NET
!
vlan 301
 name KG_MGMT-WIFI
!
vlan 302
 name WiFi_MGM_Aruba_test
!
vlan 351
 name KG_VOIP
!
vlan 500
 name KG_WIFI-GUEST
!
vlan 551
 name --TRANSIT_HSRP--
!
vlan 556
 name P2P_iBGP_KOMOS_AS_over_ER_Tel
!
vlan 557
 name P2P_iBGP_KOMOS_AS_over_MTS
!
vlan 558
 name -L2VPN-PVE_HA_ERTLC-
!
vlan 559
 name -L2VPN-PVE_HA_MTS-
!
vlan 596
 name P2P_RCOD-OCOD_ER_Telecom
!
vlan 598
 name --BGP_KG_COD_TRANSIT--
!
vlan 599
 name -MLK-KCOD-Trunk_172.30.30.0/27-
!
vlan 1113
 name PI_RT-1-3
!
vlan 2020 
!
vlan 3074
 name --RT_DMVPN--
!
vlan 4000
 name KG_TRN-DAX-SRV-SQL
!
vlan 4030
 name -MLK-KCOD-Native-
!
vlan 4031
 name -MLK-KCOD-VeamRepl_172.31.31.0/2
!
vlan 4032
 name -MLK-KCOD-SQLRepl_172.31.33.0/24
!
vlan 4033
 name -MLK-KCOD-SrvVCHA_172.31.33.0/24
!
vlan 4034
 name -MLK-KCOD-ExchRepl_172.31.34.0/2
!
vlan 4035
 name -MLK-KCOD-Reserv_172.31.35.0/2
!
vlan 4040
 name KG_LAN-SZB
!
vlan 4050
 name Cisco-IronPort-VLAN
!
vlan 4093
 name --ISP-IMP_ERTEL--
!
!
!
!
!
!
interface Loopback7777
 description TK5745m - TK5172m
 no ip address
 shutdown
!
interface Port-channel1
 description [CORE] SW-1-1
!
interface Port-channel2
 description [CORE] RT-1-1
 switchport trunk allowed vlan 100,102,551,556,557,598,3073
 switchport trunk encapsulation dot1q
 switchport mode trunk
!
interface Port-channel3
 description [SRV] Flex_Block1
 switchport trunk encapsulation dot1q
 switchport mode trunk
!
interface Port-channel4
 description [SRV] Flex_Block2
 switchport trunk encapsulation dot1q
 switchport mode trunk
!
interface Port-channel5
 description [CORE] SW-1-3
 switchport trunk allowed vlan 4030-4034
 switchport trunk encapsulation dot1q
 logging event trunk-status
 logging event spanning-tree
!
interface Port-channel6
 description --Po6_LINK_TO_3850X--
 switchport trunk allowed vlan 4030-4034
 switchport trunk encapsulation dot1q
 logging event trunk-status
 logging event spanning-tree
!
interface Port-channel7
 description [SRV] Cisco
 switchport trunk allowed vlan 2,5,201,558,559
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 201
 switchport mode trunk
 no snmp trap link-status
!
interface FastEthernet0
 no ip address
!
interface GigabitEthernet1/0/1
 description kg-esxi-c-01.komos.local
 switchport trunk allowed vlan 11,100,201,500
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/2
 description NONE
 switchport trunk allowed vlan 11,100,201,500
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/3
 description NONE
 switchport access vlan 11
 switchport trunk encapsulation dot1q
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/4
 description NONE
 switchport access vlan 100
 switchport trunk encapsulation dot1q
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/5
 description [SRV] p11-bkp002
 switchport access vlan 249
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/6
 description [SRV] KG-DAX-SQL-02-3
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
!
interface GigabitEthernet1/0/7
 description [SRV] KG-DAX-SQL-02-1
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
!
interface GigabitEthernet1/0/8
 description NONE
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/9
 description [SRV] KG-DAX-SQL-02-2
 switchport access vlan 50
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/10
 description [SRV] KG-DAX-SQL-02-4
 switchport access vlan 50
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/11
 description NONE
 switchport access vlan 249
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/12
 description [SRV] p11-amm001.komos.local_BS
 switchport access vlan 200
 switchport trunk encapsulation dot1q
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/13
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/14
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/15
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
!
interface GigabitEthernet1/0/16
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
!
interface GigabitEthernet1/0/17
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/18
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/19
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/20
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/21
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/22
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/23
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/24
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/25
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/26
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/27
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/28
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/29
 description none
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/30
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/31
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/32
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/33
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/34
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/35
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/36
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/37
 description [SRV] p11-vmw006_mgm
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/38
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/39
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/40
 description NONE
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/41
 description [SRV] KG-DAX-SQL-02-i
 switchport access vlan 200
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/42
 description [SRV] p11_bkp002_ilo
 switchport access vlan 201
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/43
 description [SRV] p11-vmw006_srv
 switchport trunk encapsulation dot1q
 switchport mode trunk
!
interface GigabitEthernet1/0/44
 description [SRV] AnywhereUSB
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/45
 description [CORE] RT-1-3
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/46
 description [CORE] RT-1-4
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/47
 description [CORE] RT-1-3
 switchport access vlan 149
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/0/48
 description [CORE] RT-1-4
 switchport access vlan 149
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet1/1/1
 description [CORE] Po1 SW-1-1
 logging event trunk-status
 channel-group 1 mode on
!
interface GigabitEthernet1/1/2
 description [CORE] Po1 SW-1-1
 logging event trunk-status
 channel-group 1 mode on
!
interface GigabitEthernet1/1/3
 description [CORE] Po5 SW-1-3
 switchport trunk allowed vlan 4030-4034
 switchport trunk encapsulation dot1q
 logging event trunk-status
 logging event spanning-tree
 channel-group 5 mode active
!
interface GigabitEthernet1/1/4
 description [CORE] Po5 SW-1-3
 switchport trunk allowed vlan 4030-4034
 switchport trunk encapsulation dot1q
 logging event trunk-status
 logging event spanning-tree
 channel-group 5 mode active
!
interface TenGigabitEthernet1/1/1
!
interface TenGigabitEthernet1/1/2
!
interface GigabitEthernet2/0/1
 description [CORE] FW-1-1
 switchport access vlan 11
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/2
 description [CORE] FW-1-1
 switchport access vlan 100
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/3
 description [SRV] Po3 Flex_Block1
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 channel-group 3 mode on
!
interface GigabitEthernet2/0/4
 description [SRV] Po3 Flex_Block1
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 channel-group 3 mode on
!
interface GigabitEthernet2/0/5
 description [SRV] Po3 Flex_Block1
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 channel-group 3 mode on
!
interface GigabitEthernet2/0/6
 description [SRV] Po3 Flex_Block1
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 channel-group 3 mode on
!
interface GigabitEthernet2/0/7
 description [SRV] Po4 Flex_Block2
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 channel-group 4 mode on
!
interface GigabitEthernet2/0/8
 description [SRV] Po4 Flex_Block2
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 channel-group 4 mode on
!
interface GigabitEthernet2/0/9
 description [SRV] Po4 Flex_Block2
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 channel-group 4 mode on
!
interface GigabitEthernet2/0/10
 description [SRV] Po4 Flex_Block2
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 channel-group 4 mode on
!
interface GigabitEthernet2/0/11
 description [SRV] EMC_CCC1
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/12
 description [SRV] EMC_FCCC1
 switchport access vlan 200
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/13
 description [SRV] EMC_FCCC2
 switchport access vlan 200
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/14
 description [SRV] EMC_CCC2
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/15
 description [SRV] Iron_Port_2
 switchport access vlan 11
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/16
 description [SRV] Iron_Port_1
 switchport access vlan 11
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/17
 description [SRV] Load_Master
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/18
 description [SRV] Load_Master
 switchport access vlan 11
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/19
 description [SRV] Load_Master
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/20
 description [SRV] Load_Master
 switchport access vlan 11
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/21
 description [SRV] KG-DAX-SQL-01-2
 switchport access vlan 50
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/22
 description [SRV] KG-DAX-SQL-01-4
 switchport access vlan 50
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/23
 description [SRV] KG-DAX-SQL-01-1
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 50.00
!
interface GigabitEthernet2/0/24
 description [SRV] KG-DAX-SQL-01-3
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 50.00
!
interface GigabitEthernet2/0/25
 description PU3
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/26
 description PU1
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/27
 description PU2
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/28
 description [UPS]
 switchport access vlan 200
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/29
 description [SRV] p11_bkp002_eth4
 switchport access vlan 297
 switchport mode access
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/30
 description [SRV] p11_bkp002
 switchport access vlan 249
 switchport mode access
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/31
 description UNKNOWN
 switchport access vlan 200
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/32
 description UNKNOWN
 switchport access vlan 200
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/33
 description FREE
 switchport access vlan 5
 switchport mode access
!
interface GigabitEthernet2/0/34
 description FREE
!
interface GigabitEthernet2/0/35
 description [SRV] Po7 cisco ORSSI eth1
 switchport trunk allowed vlan 2,5,201,558,559
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 201
 switchport mode trunk
 no snmp trap link-status
 channel-group 7 mode active
!
interface GigabitEthernet2/0/36
 description [SRV] Po7 cisco ORSSI eth2
 switchport trunk allowed vlan 2,5,201,558,559
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 201
 switchport mode trunk
 no snmp trap link-status
 channel-group 7 mode active
!
interface GigabitEthernet2/0/37
 description [SRV] p11-vmw006_mgm
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/38
 description [SRV] p11-vmw006_srv
 switchport trunk encapsulation dot1q
 switchport mode trunk
!
interface GigabitEthernet2/0/39
 description --Po6_LINK_TO_3850X--
 switchport trunk allowed vlan 4030-4034
 switchport trunk encapsulation dot1q
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 shutdown
 channel-group 6 mode active
!
interface GigabitEthernet2/0/40
 description --Po6_LINK_TO_3850X--
 switchport trunk allowed vlan 4030-4034
 switchport trunk encapsulation dot1q
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 shutdown
 channel-group 6 mode active
!
interface GigabitEthernet2/0/41
 description Comp_Shahev
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/42
 description USB_HUB
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/43
 description Flex_MGM_Port
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/44
 description KG-DAX-SQL-01-MGM_Port
 switchport access vlan 200
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet2/0/45
 description VIDEOWALL
 switchport access vlan 2
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
!
interface GigabitEthernet2/0/46
!
interface GigabitEthernet2/0/47
 description [CORE] Po2 RT-1-1
 switchport trunk allowed vlan 100,102,551,556,557,598,3073
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no snmp trap link-status
 spanning-tree portfast edge
 channel-group 2 mode on
!
interface GigabitEthernet2/0/48
 description [CORE] Po2 RT-1-1
 switchport trunk allowed vlan 100,102,551,556,557,598,3073
 switchport trunk encapsulation dot1q
 switchport mode trunk
 no snmp trap link-status
 spanning-tree portfast edge
 channel-group 2 mode on
!
interface GigabitEthernet2/1/1
 description [ISP-1G] L2VPN-to-MLK-IZM_ER-Telecom
 switchport trunk allowed vlan 556,596
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 4030
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
 no snmp trap link-status
 no lldp transmit
 no lldp receive
 spanning-tree bpdufilter enable
!
interface GigabitEthernet2/1/2
 description [CORE] RT-1-4
 switchport trunk allowed vlan 3074,4093
 switchport trunk encapsulation dot1q
 switchport mode trunk
 logging event spanning-tree
 no lldp transmit
 no lldp receive
!
interface GigabitEthernet2/1/3
!
interface GigabitEthernet2/1/4
!
interface TenGigabitEthernet2/1/1
!
interface TenGigabitEthernet2/1/2
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan100
 ip address 10.1.1.4 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
!
ip default-gateway 10.1.1.1
no ip http server
no ip http secure-server
ip tftp source-interface Vlan100
ip ssh authentication-retries 2
!
kron occurrence EveryDay at 1:00 recurring
 policy-list SaveBackup
!
kron policy-list SaveBackup
 cli write memory
!
logging origin-id hostname
logging facility local6
logging source-interface Vlan100
logging host 10.4.244.4 transport udp port 515
access-list 23 permit any
access-list 23 deny   any log
snmp-server community private RW
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvlv 
!
!
radius server IZH-RDS002
 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 1101000E31332A2C2C2D721C7135262D18301E56100E4E5D4917483D194F55715E495E517C20430A355D45572123537A09153B3266590D3B3B2537382A402F0174
!
radius server P11-RDS003
 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 151A1207220B0A0400346C1A4A01050C0A61510D420C190602551F66560A5E7C5D1157022F734F0821031608392358004E5D3D0A2F00162932360F18026C361F72
!
privilege exec all level 7 show cdp
privilege exec all level 7 show running-config
privilege exec all level 7 show configuration
privilege exec level 7 show
banner login ^CCC
*****************************************************************************
*                                                                           *
*                            OOO "KOMOS GROUP"                              *
*                              Pesochnaya 11                                *
*                                1st FLOOR                                  *
*                                DATACENTR                                  *
*                                                                           *
*                    UNAUTHORIZED ACCESS IS PROHIBITED                      *
*                                                                           *
*                     You have accessed network equipment.                  *
*  You must have authorized permission to access or configure this device.  *
*     All activities performed on this device are logged and monitored.     *
*                                                                           *
*****************************************************************************^C
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 access-class 23 in
 logging synchronous
 login authentication NPS
 length 0
 transport input ssh
line vty 5 15
 access-class 23 in
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp source Vlan100
ntp server 10.1.1.2
!
end