Building configuration...

Current configuration : 18299 bytes
!
! No configuration change since last restart
! NVRAM config last updated at 01:00:01 MSK Thu Jul 28 2022
!
version 15.0
service nagle
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
service password-encryption
service sequence-numbers
!
hostname IZH-KG-P11-SW-10-1
!
boot-start-marker
boot-end-marker
!
logging buffered 512000 informational
enable secret 5 $1$knIF$e07Kp1TsrEPcTdMIC7DT00
!
username netadmin privilege 15 secret 5 $1$l8SN$yIBDbPVOt/eSgxWtWK06R1
aaa new-model
!
!
aaa group server radius NPS
 server name IZH-RDS002
 server name P11-RDS003
 load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated 
!
!
!
!
!
!
aaa session-id common
clock timezone MSK 4 0
system mtu routing 1500
vtp mode transparent
no ip source-route
no ip gratuitous-arps
!
!
ip dhcp snooping vlan 2,12,150,351,500
ip dhcp snooping
no ip domain-lookup
ip domain-name komos.ru
ip host tftp 10.4.0.214
ip host VM-KG-NET 10.1.12.70
login on-failure log
login on-success log
!
!
crypto pki trustpoint TP-self-signed-1967994752
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-1967994752
 revocation-check none
 rsakeypair TP-self-signed-1967994752
!
!
crypto pki certificate chain TP-self-signed-1967994752
 certificate self-signed 01
  3082024E 308201B7 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 31393637 39393437 3532301E 170D3138 30393034 31333138 
  31345A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 39363739 
  39343735 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  8100A565 B5DA5465 51B43227 0019CBB8 3E057058 96A8B24B C7FEBED6 30F8702A 
  66F01084 50E294B9 12ABA49C 71C04E2A A03CE6C2 DF4646D8 5AB659DA 1563ED53 
  B21B9778 BD7D8EC8 C657BEBC F25BF285 06697A3A 574941C8 0AFC39C8 7FA4B6A7 
  15CE2350 5FEAF876 685CAB4F E836EC70 FEAD0EF1 661DED16 0C6EB9AD 521BC892 
  B3A10203 010001A3 76307430 0F060355 1D130101 FF040530 030101FF 30210603 
  551D1104 1A301882 16495A48 2D4B472D 53573130 2D312E6B 6F6D6F73 2E727530 
  1F060355 1D230418 30168014 62B7FF79 3B535646 A560889E 8B40FB96 28942F25 
  301D0603 551D0E04 16041462 B7FF793B 535646A5 60889E8B 40FB9628 942F2530 
  0D06092A 864886F7 0D010104 05000381 81001D06 C2E9D6C8 4518AD9A B5FC2DB3 
  021F49D7 ADE585D5 AAC5D03E 7B09A9CB 9B922312 50D80763 8C07D4DF D135E76C 
  C9C5B7BF 245FCB38 B100650A ABA5278F 82A42281 1947D28C 18CDB27D DA04F871 
  CCA6220C FD84D4BF DC04E248 A3EE843D CA87C548 E8A38CF8 4176AD9F 5B8B0FB8 
  7B3BBBEB 51D6D292 EAC8C073 9BC5F8D0 6E4D
  	quit
!
!
!
!
!
errdisable recovery cause bpduguard
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause psecure-violation
errdisable recovery cause port-mode-failure
errdisable recovery cause loopback
errdisable recovery interval 600
archive
 log config
  logging enable
  logging size 900
  notify syslog contenttype plaintext
  hidekeys
 path tftp://tftp/IZH/KG/P11-SW_L2/$H.$T.conf
 write-memory
 time-period 10080
!
spanning-tree mode rapid-pvst
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
vlan 2
 name KG_LAN-USER
!
vlan 12
 name UNIFI_WIRELESS
!
vlan 100
 name Inbound_management
!
vlan 150
 name KG_WIFI-USER
!
vlan 300
 name KG_MGMT-NET
!
vlan 301
 name KG_MGMT-WIFI
!
vlan 351
 name KG_VOIP
!
vlan 500
 name KG_WIFI-GUEST
lldp run
!
ip tftp source-interface Vlan100
ip ssh authentication-retries 2
!
!
!
!
!
interface Loopback7777
 description TK5742m-TK6529m
 no ip address
 no ip route-cache
 shutdown
!
interface Port-channel1
 description [CORE] SW-1-1
 switchport mode trunk
 ip dhcp snooping trust
!
interface FastEthernet0/1
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/2
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
 spanning-tree bpdufilter enable
!
interface FastEthernet0/3
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/4
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/5
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/6
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/7
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/8
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/9
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/10
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/11
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/12
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/13
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/14
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/15
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/16
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/17
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/18
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/19
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/20
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/21
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/22
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/23
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/24
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/25
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/26
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/27
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/28
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/29
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/30
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/31
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/32
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/33
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/34
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/35
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/36
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/37
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/38
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/39
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/40
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/41
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/42
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/43
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/44
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/45
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface FastEthernet0/46
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
 spanning-tree bpdufilter enable
!
interface FastEthernet0/47
 description [WIFI] AP-10-Second
 switchport trunk native vlan 12
 switchport trunk allowed vlan 9,10,12,150,301,500
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no lldp transmit
 no lldp receive
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/48
 description [WIFI] AP-10-First-LSV
 switchport trunk native vlan 12
 switchport trunk allowed vlan 9,10,12,150,301,500
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no lldp transmit
 no lldp receive
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet0/1
 description [CORE] Po1 SW-1-1
 switchport mode trunk
 logging event trunk-status
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet0/2
 description PORT-CHANNEL
 switchport mode trunk
 logging event trunk-status
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet0/3
 description PORT-CHANNEL
 switchport mode trunk
 logging event trunk-status
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet0/4
 description PORT-CHANNEL
 switchport mode trunk
 logging event trunk-status
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface Vlan1
 no ip address
 no ip route-cache
 shutdown
!
interface Vlan100
 ip address 10.1.1.101 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 no ip route-cache
!
ip default-gateway 10.1.1.1
no ip http server
ip http secure-server
kron occurrence EveryDay at 1:00 recurring
 policy-list SaveBackup
!
kron policy-list SaveBackup
 cli write memory
!
logging origin-id hostname
logging facility local6
logging source-interface Vlan100
logging host 192.168.2.25
logging host 10.4.244.4 transport udp port 515
access-list 23 permit any
access-list 23 deny   any log
snmp-server community private RW
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvlv 
tacacs-server host 192.168.2.2 timeout 5
tacacs-server directed-request
tacacs-server key 7 1066080B17180518
!
radius server IZH-RDS002
 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
radius server P11-RDS003
 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
!
!
vstack
privilege exec all level 7 show cdp
privilege exec all level 7 show running-config
privilege exec all level 7 show configuration
privilege exec level 7 show
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 access-class 23 in
 logging synchronous
 login authentication NPS
 length 0
 transport input ssh
line vty 5 15
 access-class 23 in
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp source Vlan100
ntp server 10.1.1.1
end