Building configuration...

Current configuration : 18981 bytes
!
! Last configuration change at 11:40:24 MSK Sat Mar 5 2022 by akhmetzyanovrr_adm
! NVRAM config last updated at 01:00:04 MSK Thu Jul 28 2022
!
version 15.2
service nagle
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
service password-encryption
service sequence-numbers
!
hostname IZH-TK-M44-SW-1-1
!
boot-start-marker
boot-end-marker
!
logging buffered 512000 informational
enable secret 5 $1$j4UP$Wgs2xMeWlYNzcOvcwfmE90
!
username netadmin privilege 15 secret 5 $1$VCPI$IPJL91HNG73xfoP95Gmtl1
aaa new-model
!
!
aaa group server radius NPS
 server name IZH-RDS002
 server name P11-RDS003
 load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated 
!
!
!
!
!
!
aaa session-id common
clock timezone MSK 4 0
switch 1 provision ws-c2960s-48ts-l
no ip source-route
no ip gratuitous-arps
!
!
ip dhcp snooping vlan 2,150,200,300,350,500
ip dhcp snooping
ip domain-list komos.local
no ip domain-lookup
ip domain-name komos.ru
ip host tftp 10.4.0.214
ip host VM-KG-NET 10.1.12.70
login on-failure log
login on-success log
vtp mode transparent
!
!
!
!
!
!
!
crypto pki trustpoint TP-self-signed-3369415296
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-3369415296
 revocation-check none
 rsakeypair TP-self-signed-3369415296
!
!
crypto pki certificate chain TP-self-signed-3369415296
 certificate self-signed 01
  3082024A 308201B3 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 33333639 34313532 3936301E 170D3933 30333031 30303033 
  30345A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 33363934 
  31353239 3630819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  8100984F BB41698A F2B18D55 81E83ABF 6265FEA8 E0C61197 59AF4273 36F66E72 
  DE5BC570 728C8028 5AF31FF7 CF28A8F6 6124B535 6B648F2B 7B6E7E2B C1FBEAE5 
  469E617C 33BFB8A1 0B5D2473 F4AA1202 47B5277C EEA2A14F 6E8FD102 658275D4 
  412D2038 51DAF4FA F1191B8F 7ACF4F86 76DC5C53 97EE14A0 629EB331 F1348E9D 
  6C330203 010001A3 72307030 0F060355 1D130101 FF040530 030101FF 301D0603 
  551D1104 16301482 124F322D 5377332D 312E746B 6F2E6C6F 63616C30 1F060355 
  1D230418 30168014 3977260B 4880114C 2DD4BB09 4682DB1D 7856CE3B 301D0603 
  551D0E04 16041439 77260B48 80114C2D D4BB0946 82DB1D78 56CE3B30 0D06092A 
  864886F7 0D010104 05000381 810050B7 4EA0A753 66778E8B BE9D4D1F F166DC1F 
  904A99CF B2EBBA36 E7F209F4 5E3FB27C F26EDFE5 29F6B126 CF90EE0E C2452ADC 
  31CE41D6 9FE5F573 20231EF8 5B0ECB02 A385C904 E5237E02 07D58209 CB5542C0 
  4E7E2035 5F7FFF02 6508B0FC 0C6F0F8E 044D2D30 C68E61F0 A9CE4D38 C04813AC 
  F6BAF28A B4F4876F 202909C7 43AE
  	quit
archive
 log config
  logging enable
  logging size 900
  notify syslog contenttype plaintext
  hidekeys
 path tftp://tftp/IZH/TK/M44-SW_L2/$H.$T.conf
 write-memory
 time-period 10080
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
errdisable recovery cause bpduguard
errdisable recovery cause security-violation
errdisable recovery cause channel-misconfig
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause psecure-violation
errdisable recovery cause port-mode-failure
errdisable recovery cause loopback
errdisable recovery interval 600
!
!
!
!
vlan internal allocation policy ascending
!
vlan 2
 name TK-LAN-USERS-AREA
!
vlan 25
 name VOICE_AREA
!
vlan 102
 name VD
!
vlan 103
 name Roctelecom_Video
!
vlan 150
 name TK-WIFI-USERS-AREA
!
vlan 200
 name TK-SERVERS-AREA
!
vlan 300
 name NETWORK_MANAGEMENT
!
vlan 350
 name TK-VOICE-AREA
!
vlan 400
 name TK-VIDEO-RTK-AREA
!
vlan 500
 name TK-WIFI-GUEST-AREA
!
ip tcp selective-ack
ip tcp path-mtu-discovery
lldp run
!
! 
!
!
!
!
!
!
!
!
interface Loopback7777
 description FTK2654
 no ip address
 shutdown
!
interface FastEthernet0
 no ip address
 shutdown
!
interface GigabitEthernet1/0/1
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/3
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/4
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/5
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
!
interface GigabitEthernet1/0/6
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/7
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/8
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/9
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/10
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/11
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/12
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/13
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/14
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/15
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/16
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/17
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/18
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/19
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/20
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/21
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/22
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/23
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/24
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/25
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/26
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/27
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/28
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/29
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/30
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/31
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/32
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/33
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/34
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/35
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/36
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/37
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/38
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/39
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/40
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/41
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/42
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/43
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/44
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/45
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/46
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/47
 switchport access vlan 2
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet1/0/48
 description [CORE] M44-SW-1-3
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/49
 description Not_LINK_TO_TK-M44-SW4-2-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
!
interface GigabitEthernet1/0/50
 description Not_LINK_TO_TK-M48-SW1-2-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
!
interface GigabitEthernet1/0/51
 description [KU] M44-SW-1a-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/52
 description Not_LINK_TO_TK-M44-SW2-1-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan300
 ip address 10.0.5.249 255.255.255.0
 no ip route-cache
!
ip default-gateway 10.0.5.254
no ip http server
no ip http secure-server
!
ip tftp source-interface Vlan300
ip ssh authentication-retries 2
ip ssh version 2
!
kron occurrence EveryDay at 1:00 recurring
 policy-list SaveBackup
!
kron policy-list SaveBackup
 cli write memory
!
logging trap debugging
logging origin-id hostname
logging facility local1
logging source-interface Vlan300
logging host 192.168.2.25
logging host 10.4.244.4 transport udp port 515
access-list 23 permit any
access-list 23 deny   any log
!
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvlv 
!
!
radius server IZH-RDS002
 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
radius server P11-RDS003
 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
banner login ^C
*****************************************************************************
*                                                                           *
*                             KOMOS GROUP LLC                               *
*                        Izhevsk, Mayakovskogo 44                           *
*                                3rt FLOOR                                  *
*                                CROSS ROOM                                 *
*                                                                           *
*                    UNAUTHORIZED ACCESS IS PROHIBITED                      *
*                                                                           *
*                     You have accessed network equipment.                  *
*  You must have authorized permission to access or configure this device.  *
*     All activities performed on this device are logged and monitored.     *
*                                                                           *
*****************************************************************************^C
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 logging synchronous
 login authentication NPS
 length 0
 transport input ssh
line vty 5 15
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp source Vlan300
ntp server 10.0.5.254
end